certification I tried harder: My OSCP review and advice A couple weeks ago, I received official word from Offensive Security [http://www.offensive-security.com/] that I obtained my OSCP -- Offensive Security Certified Professional. Needless to say, I'm thrilled with this outcome as I've been working hard to achieve this. And if you're
forensics F-Response + Volatility = <3 This really is a match made in heaven. F-Response [https://f-response.com/] is really slick from a remote memory acquisition standpoint. Combine that with Volatility [https://github.com/volatilityfoundation/volatility] and you have an easy 30-minute meal recipe for memory forensics and incident response. I set F-Response up to allow
tricks DNS Egress Well here's a handy trick. We often find in post-exploitation that it can be difficult to egress data. This is especially true in environments where egress filtering is enabled and a host only allows connections over basic ports like 53/DNS. I came across this trick the other
asides This Should be Fun So, I've started and stopped blogs many times. But this time is for real. Look for me to post useful anecdotes about my foray into the world of pen testing, security and malware analysis. I'm relatively new in the space, so I'm guessing this
Git Tip #1: Removing a Directory I work with git fairly regularly for my day job. I was in need of removing a directory that the CMS uses for caching objects for which there was no need to version control. I discovered that the best way to accomplish the task is the following command: git rm
ethical hacker Passed the CEH Yesterday Yesterday, I passed the CEH certification exam. Big woop, right? Well, it was for me. Mainly because I'm not a sysadmin. Nor am I an IT guy. My college degree was in journalism (public relations, actually) and for my day job I'm a web designer, developer