Author Archive

Frogger – The VLAN Hopper

Frogger – VLAN Hopping Script Here is a little script I made that automates VLAN enumeration and hopping. Firstly it is not a tool so to speak, it is simply a bash script I put together that automates the process of VLAN enumerating and hopping end to end with interactive menus etc. It uses tools […]


ShieldPass Two-Factor Authentication

I recently came across something called ShieldPass which is a two factor authentication system that you can integrate into your website easily and more importantly cheaply. You receive a cool little credit size card that has a clear window area with parts of digits displayed. Once you add the code for this system into your website it will present an area […]


MS11-080 Local Privilege Escalation

MS11-080 – CVE-2011-2005 A great little Python script that escalates privileges and results in a SYSYEM shell. It works on Windows XP SP3 and Windows 2003 SP2.  Running the script as a standard non admin user will escalate privileges to compromise the system via Afd.sys. It does require Python installed on the victims system which is […]


Customising The Metasploit Console

I came across some interesting posts about this area and looked into it more (credit to and @egyp7). There is a nice way to customise the msf> console prompt to give you some extra info. For me having the local IP address is very useful, saves time later on when using LHOST etc. For example set PROMPT […]


A Windows 7 Workout

  Working on computers all day, its nice to get away from one and get to the gym…. well it seems gym equipment is just a computer too these days. The gym I go to has just got these cool new state of the art bikes in.. Handle bars that steer, brakes, gears etc and […]


Fun With WordPress Blog

It has been a while since I have posted or created any videos, so I thought would create a quick one relating to WordPress. It is not something you get to test much in the real world, but there are some useful tools out there. Nothing cutting edge or new about the contents, but some […]


Metasploit Book Review

I have just finished the new Metasploit: The Penetration Tester’s Guide book and thought would share my thoughts on this. I am not really a big fan of reading books, I tend to play about and work things out myself but I had to order this book the second I see it as Metasploit is a […]


Metasploit April Fools

Very funny to see this when updated and logged in today to Metasploit..Good to see they have a sense of humor! Tweet


Common Exploits Goes Mobile!

Yes you can now view common exploits with ease on your smart phone devices. It will auto detect and display a much more friendly version to your mobile device. Most pen testers are often travelling over the place to clients and a perfect way to view on your mobile. Hope you like it. Tweet