Active Members
  • Content count

  • Joined

  • Last visited

About Urieal

  • Rank
    Hak5 Fan
  • Birthday
  1. Hi everyone - Unique question hoping for some assistance. The question / objective: Rent / Acquire / Invest / Purchase VM space in the cloud for the purposes of running Kali Linux instances. Looking for privacy first cloud services, something akin to protonmail. Anyone able to make some recommendations if I find anything as well I'll be sure to update this post.
  2. Sorry everyone, don't mean to raise a dead topic but I'm sure others may be curious as well. I see a couple of you have invested in multiple battery packs, anyone willing to divulge what brands and how many MAH's per they are? Thanks again
  3. Greetings all, Recently recovered several hashes during a recent engagement - cracked all but one. Anyone care to take a stab? It's an NTHASH, I've tried hashcat, rainbowtables via oph still no dice HASH: 59658e5f44d88ec0ff7b40cfcb21ecc2
  4. https://forums.hak5.org/index.php?/topic/33518-big-thanks-to-hak5-i-snuck-in-a-question-too/ I posted about this in my thread -- I hope some of the pros read through it. It involves DNS Proxy 2 and SSLSTRIP2. It has a pretty high success rate; but I'm having a hard time contacting the author.. Hopefully someone can expand on this...
  5. My understanding is it is entirely dependent on the browser -- and -- if its apart of the HSTS site list... Thats why In another forum post I am inquiring to the infusion of SSLSTRIP2 and DNS2Proxy. SSLStrip as it stands has worked flawlessly against all our targets of interest when using Internet Explorer... Safari,Chrome,Firefox -- Thats a different story all together.. But remember - just because SSLStrip doesn't work -- you could always just ettercap or wireshark the data and hope they login to something with HTTP (Clear Text) You'd be surprised how many people use the same email and password for everything -- We're human. If you're not having much luck with SSLStrip and you're currently working for someone (client) perhaps try SEToolkit... clone the page and e-mail your clients.. You'd be amazed at how many people believe they really did win a free Ipad -- or a cruise to the bahamas.