Jump to content

Bob123

Active Members
  • Posts

    202
  • Joined

  • Last visited

  • Days Won

    7

Everything posted by Bob123

  1. HAPPY HALLOWEEN!!! So many moons ago I purchased the USB Power Hub via Hak5. Does anyone remember it or have one? It looked like a little spider thingy. It had two USB A's on one end, one black one red. Then on the other end it had a USB mini and several female USB A's. Does anyone have a diagram on how this works or a pinout? I haven't used it in forever and I'd like to use it again. All I remember is there is a trick to using it and it has to do with the red plug. I don't think the red plug is OTG but at this point I have no idea. There may have been a hak5 video or two way back in the day as well that showed this off. If you know which videos they are that would be cool too. Thanks for the help.
  2. Guess I'm a bit confused. You got a connection. You just have to select it. What's the line right after your session 1 opened line? Is it just a blinking curser saying: msf exploit(handler) >? From there just select your session which would be session 1 and interact with it. Are you hoping that after typing exploit that it'll go right into the session? The above snipit shows that when you started the exploit it backgrounded it which is why you stayed in the msf console rather than jumping right into a meterpreter session. Did you type something before hand to force it to background? Does this happen every time you run this now?
  3. Bob123

    Proxmox

    So this is a bit weird and I'd like to get more information on this but according to proxmox's wiki: "Proxmox VE High Availability Cluster (Proxmox VE HA Cluster) enables the definition of high available virtual machines. In simple words, if a virtual machine (VM) is configured as HA and the physical host fails, the VM is automatically restarted on one of the remaining Proxmox VE Cluster nodes." and: You must meet the following requirements before you start with HA: at least three cluster nodes (to get reliable quorum) I've never heard of needed 3 nodes not including a separate data store just for HA. I'll keep digging.
  4. Bob123

    Proxmox

    Hey Hunty, Yes I only used one data store when doing my tests. I was just wondering because I think in Hyper-V 2012's hypervisor they now have a feature that's called something like share nothing live migration which will actually take a running VM on a physical server and move it to another physical server while the VM is live. And I thought for HA that had a feature like that as well where a backup or cloned VM sits on a second server just syncing the whole time until a failover occurs. I'll see if I can setup a small proxmox lab to see if I can mimic this. Can't promise how quickly I can do this since I just lost out on some really cheap hardware. I think I have enough laying around to try this though. Oh and give me as much info as possible. What your using version wise. Do I need to learn ceph as I've never used that before or can my data store just be an iSCSI or something like that?
  5. Bob123

    VMWare Help

    If this is a new machine I'd strongly advise that you do a fresh install of Kali and start over. Not that you did anything wrong but some of what I read above means that you more than likely changed things that you didn't have to change. Just my two sense.
  6. Bob123

    VMWare Help

    Just an FYI, go to VMware's website and sign up (it's free) then download the 12.5.7 bundle file. If your Kali machine doesn't have much of anything on it, I'd blow it away and follow what I did above. The prebuilt VM from Offensive Security I believe had gcc-6 already installed. The 2017.2 ISO from Kali's website does NOT. So again follow what I did above and you should have VMware's workstation 12 running in no time. It's just gcc and adding the missing headers for 4.12. Don't do 4.13 as that won't work. I did not have to mess with anything else. And everything is 64bit. You need a complete 64bit system / hypervisor if you want to have any 64bit VMs.
  7. Bob123

    VMWare Help

    digip, Hhow would I know if it's a bug or just the way they intended it to be? I know a vm in a vm isn't a good solution but I don't see anything wrong with installing a piece of software (VMware's workstation) in a Linux vm? Is it bare metal...no but it is just a piece of software after all. And I believe my test setup would be just as true as physical. Exmix, Ok so 4.13 headers are not the solution you need 4.12 headers. Here's what I have done so far today. Yes it's a VM within a VM but I can test this on physical hardware this evening. But here we go: Install kali 2017.2 iso I'm not a fan of the update/upgrade so your millage may vary. I can try doing that first in the next go round and see if that changes anything. Now install VMware-Workstation-Full-12.5.7-5813279.x86_64.bundle Install gcc-6 apt-get install gcc-6 Change gcc to point to gcc-6 rather than gcc-7 rm /usr/bin/gcc ln -s /usr/bin/gcc-6 /usr/bin/gcc Find 4.12 headers linux-headers-4.12.0-kali1-common_4.12.6-1kali6_all.deb linux-kbuild-4.12_4.12.6-1kali6_amd64.deb linux-headers-4.12.0-kali1-amd64_4.12.6-1laki6_amd64.deb I can send you these somehow if you can't find them. Now install them manually using: apt install ./name.deb You have to install them in the order above (common, kbuild, amd64) Once those are installed then you can just type vmware and it will setup everything correctly. Let me know if you have any luck with this. This was a challenge but I think (hope) we got it.
  8. Bob123

    VMWare Help

    Well I don't know how I did it but I finally was able to repeat exactly what your seeing. I'm thinking it's because of the 4.13 headers since the 2017.2 ISO has 4.12 headers by default. Updating the headers and image to 4.13 seems to fix the headers issue but then it crashes on the virtual network adapters. I'll have to look at the VMs I created earlier today and see what their headers were compared to their images. My guess is my earlier successful attempt had 4.12. I'll keep digging.
  9. Bob123

    VMWare Help

    You are right. I wonder why the ISO is so much different than the vm I downloaded. I can't even apt-get install gcc-6. Had no issue doing that in my vm. It's like something is missing. Did update/upgrade and it showed 0. I'm online with it and yet it can't find any packages...
  10. Bob123

    VMWare Help

    When you do an apt-get update/upgrade. Is there a change log for all of the programs that get updated? Noob question I know.
  11. Bob123

    VMWare Help

    I agree 100% digip! I don't like the idea of changing the pointer but that's the only way I got it to work. Plus I'm sure it can be put back to gcc-7 once VMware is installed. I couldn't get it to work using the whole method although it sounds like Exmix had better luck with that. Once I replaced the pointer so gcc points to gcc-6 vs -7 then it installed fine. My latest vm is almost done. Once it's built I'll try doing an update/upgrade and see if it breaks it. Digip could you tell me where to look for a change log? I'm curious what changes from a virgin 2017.2 iso to one that has had the update/upgrade. Starting to wonder if workstation 14 has the same issues.
  12. Bob123

    VMWare Help

    See that's interesting that you got it to work by typing /usr/bin/gcc-6. It didn't like that when I typed that in. gcc by itself when doing a "ls -l gcc" says gcc -> gcc-7 which means the pointer /usr/bin/gcc is actually pointing to /usr/bin/gcc-7 which workstation doesn't like. If you haven't done this before I would give word of caution that again everything I've done is purely in a virtual environment which I just toss when done. If this is your main pc then you may mess things up but I typed: rm /usr/bin/gcc then ln -s /usr/bin/gcc-6 /usr/bin/gcc then check it again with ls -l gcc to see if it now says gcc -> gcc-6 and it should be green. If it's red then apt-get install gcc6. Then when you run VMware and it asks about gcc you can just type /usr/bin/gcc and it knows you mean gcc-6. As long as you did that, and grabbed the headers then I would think you would be good to go. From the screen shots above you have an issue that I haven't run into. So with that said you have the latest kali iso and all you have done is an update/upgrade? If so I'll give that a try and report back. (Personally I'm not an updater/upgrader but that's just me.)
  13. Bob123

    VMWare Help

    Maybe there's more to it that I'm missing. In my virgin Kali vm all I did was change gcc to point to 6. It points to 7 by default. Then it complained about missing Linux headers so I ran the command above which grabbed the latest headers. Then typed 'vmware' again and it took off, installing the four items before opening allowing me to run the software. And looking at ifconfig it shows the two virtual adapters. So on my VM it appears to be working fine. I'll try everything I did above on my physical machine this evening and report back. Keep in mind everything I'm using is virgin with no changes except for the ones above. I've found that Linux tends to evolve after a person uses it for a while so sometimes a fix on one machine doesn't necessarily fix it on another.
  14. Bob123

    VMWare Help

    I think I got it. So you changed your /usr/bin/gcc pointer to point to version 6 rather than version 7? I can walk you through that if you haven't but then you need to run: sudo apt-get install build-essential linux-headers-$(uname -r) Probably without the sudo since it's Kali. After that VMware workstation installed like a champ and opened up. Granted I did all of this testing in VMs but I believe it should work on a physical box too. I can check tonight and let you know of the results. I had no issues setting up workstation in Ubuntu and all I had to do in Parrot was change the gcc pointer. Two websites I used to figure it out: https://askubuntu.com/questions/26498/choose-gcc-and-g-version https://askubuntu.com/questions/40979/what-is-the-path-to-the-kernel-headers-so-i-can-install-vmware
  15. Bob123

    VMWare Help

    Ok so I tried this on a physical machine with the newest (2017.2) of Kali (which ran awful for some reason) and you are correct it barks at gcc. To continue testing I tried it on Ubuntu and 12.5.7 of workstation runs just fine without issue. I did notice that Ubuntu uses gcc 5 where as Kali uses gcc 7. Maybe we need to install 5? I'm going to try a few other distros just see if there is something else I'm missing. I'll even try older versions of Kali and see if they have any better luck. I'll keep you posted.
  16. Bob123

    Proxmox

    It's been a while since playing with Proxmox but if it's anything like ESXi and Hyper-V then for HA to work that VM has to be shared between both machines. Are you using one data store between the two nodes to store the VMs or are the VMs physically running on a machine. I know when I did my POCs that I had a common data store that held the physical VMs and my two virtual nodes just pointed to them. If they are physically on a machine then for HA to work you have to have a duplicate on a second node and maybe even a second network just for HA. (Again remembering more of ESXi and Hyper-V). Let me know if any of this helps or at least points you in the right direction. If not I can try to setup a configuration likes yours and give it a try.
  17. Bob123

    VMWare Help

    You got a lot there and I'll try to read through it shortly but forgive me is Kali 4.13 the latest? And workstation 12 came from where? Right from VMware's site? Let me see if I can repeat this on my system. Thanks.
  18. Bob123

    BB vs RP Zero

    I believe your correct in that it just takes the entries in the lookup table/rainbow table and converts them to hashes then compares the hashes. I'm glad to hear it's capable of doing that. I can picture it but I don't know that I'd be able to write it. I would think one script to call out other smaller scripts, first connect and grab the hash, second load up john and compare the lookup hashes to the one grabbed, then if found type it out and log in to the machine. Easier said than done. :)
  19. Trapman16 you are correct. If you were to use the radiating device it would probably take out the router and any device close to it. I'd be curious if anything near by would be affected by an EMP device that literally had a CAT5 plug on it. I've done some reading on them as well as seen a few videos and they all talk about spark gaps which I think it itself would emit some radiated EMF.
  20. Why kill a perfectly good router? I'll trade you? I have a ton of older wireless B routers. A brand new shinny N router sounds good right about now. :) I would search around for making a device that'll create a sort of EMP. Using high voltage at a high frequency would zap it pretty good. I'm pretty sure that's what they use in the killer usb. Low voltage high current would do the trick but it would take time. It would slowly heat up the device and kill it where as the high voltage high frequency (typically low current) would take out a device quickly. Only problem is it might only be temporary. It'd be like a surge through your incoming power. Most devices can take a hit and keep on ticking. Also the killer usb uses 5v from the usb port to charge the caps before discharging them. If you can't get any power from a Ethernet port then you'd have to provide your own power this is where a hand held powered EMP like device would be ideal.
  21. Bob123

    BB vs RP Zero

    So quick question and I apologize if it's been asked already. But I've been playing with the P4wnP1 for the RP Zero and testing the Windows 10 lockpick. My understanding is it grabs the ntlm v2 hash, then runs john the ripper to see if it's an easy password (for testing I make the passwords easy) then types in the password and unlocks the computer. My thought has been great this is more powerful than my Bash Bunny. However after watching the latest two Hak5 episodes I have to wonder, can the Bash Bunny do this? I know it can grab the hashes but can it run john the ripper and use a word list that is saved on the BB? If so I would assume it could then turn into a HID and type in the password. Could all of this actually work on a Bash Bunny? If it could then as Darren said in 2225, this guy has a quad core arm chip and fast ssd which is a lot more horse power than a RP Zero. Which could then mean cracking slightly harder passwords in shorter time??? Just wondering. Thanks.
  22. Anyone heard of Security Onion Linux? I do a lot of ICS work and am always interested in security since there pretty much is none in the ICS world. I came across a blue team pdf and it talks about Security Onion Linux. I just downloaded it and plan to put it on a machine this evening. Was wondering if anyone else has used it?
  23. It does make you wonder. There's plenty of tech videos on youtube that show them using Mac's of some sort. And I know people who swear by them. But as mentioned above...who wants to spend that much on a machine that's going to basically be spending most of their time just surfing the web. My preferences are second hand machines or a few generations old machines. Sandy bridge i5 machines are selling for $100!!! Sorry don't mean to go off topic a bit but perfectly usable machines are cheap. And like a lot of people on here...Other than Windows 7 I'm finding myself using Linux more and more. Again if I have a laptop that I'm using to surf the web 95% of the time...why would I use Windows when I could just use Linux. Just my two sense. (I need to start forcing myself to use Windows 10 however I just can't seem to do it. :) Maybe I'll just go full on Linux)
  24. This looks really cool and I'm looking forward to testing it out!
  25. Sorry this is thread is old but I was looking through the forum and wanted to comment on this. Yes you are 100% correct and I've asked about this (probably in a different sort of way) and did not get the answer I was hoping. The very first time you plug the duck into a box Win7 has to load up a driver for it. (I haven't done too much with win10 just cause I don't like it so I cannot comment on that) but I would assume all windows OS's will have to initially install a driver. Be it keyboard or storage. So the very first time you plug a duck in it may not run the script. I have had this happen every time and I own two ducks. Hitting the replay button on the duck itself usually takes care of it or just re-inserting it. Don't get me wrong I love the ducks and lan turtles but you simply cannot just plug them in to a virgin machine and expect it to work within a few seconds. They are great tools but they just don't do what they show them doing on tv. On Win7 I actually had to manually install a driver to get he lan turtle to work... Again great tools though! For your second question, to get them to reinstall again you'd have to go to your device manager and find the duck, (keyboard or storage) remove the driver and then the next time you plug it in it should have a small delay while it looks up the driver for it. I do not believe it will 100% as long as the very first time it was plugged in because I believe there is some sort of lookup table that gets created. Just my assumption but...I think of it as first time you plug something in the computer goes oh what's this, let me look it up and make a note of it, find the driver, install the driver, ah it works. Plug it in again and it goes let look this up, ah I already have it done, ah it works. Uninstalling the driver would (I assume) go let me look this up, I have it but the driver is missing, reinstall the driver, ah it works again. So that should cause some delay so you can test a longer delay in the script or force a replay. Hope this answered your question.
×
×
  • Create New...