Installing Ansible on OS x – with sshpass

PIP I used pip (is Python’s package manager) to install Ansible. If you don’t have it yet, you could install pip using the following command line code: > sudo easy_install pip If you do have PIP, you could start the installation of Ansible right away. > sudo pip install ansible You might experience issues with the –ask-pass parameter, if so: install sshpass. Somehow OS X might give you issues while connecting using ssh passwords instead of keys. Preview error: “to use the 'ssh' connection type with passwords, you must install the sshpass program” Execute the following to resolve the issue: 1)...

Using a pre-stage Weevely backdoor

While testing a php cms from one of our customers, I’d found out that the php mail form had the functionality to upload files ( with no extension check built in ). So, I’ve tried to upload a simple php webshell to the web server. Which failed. At least that is what I thought. But.. I did found out that the php form saves the attachments temporary to a particular directory, which I could see in the php errors burp suite traced. To be exact: “./uploads”. To fix the temporary file deletion issue I wrote the following script to bypass...

Snoop your HTTP traffic on OS X

I still prefer using BurpSuite for snooping/modifying HTTP packets, but HTTP Snoop is very basic which may fill in your needs while burp suite could be too much. HTTP Scoop passively listens for HTTP requests from any browser (or other application for that matter) running on your Mac. If you’re running a web server or an application server on your machine then you will see requests going to that too. You can view request or response data as text or in a hex dump, view images from within the app and save responses to disk. Through the Headers view, you...

Research your malware using Docker images

Docker takes advantage of Linux kernels’ ability to run applications in containers, which are sometimes described as “chroot on steroids.” Containers provide each application an independent runtime environment, while avoiding the overhead of a full-fledged virtual machine. Each container gets its own virtual file system, process listing and network stack; however, containers share the OS kernel with each other and the underlying host. In this respect, the isolation provided by containers is less robust than that of real virtual machines, which have independent kernels and run on top of a hypervisor. Yet, sharing the kernel allows containers to run faster...

How to use a usb-serial adapter on a MacBook

You’ll need to get a usb-serial adapter and then connect with a console cable. Adapters aren’t very expensive. Connecting to the Console Port with Mac OS X To connect a Mac OS X system USB port to the console using the built-in OS X Terminal utility, follow these steps: Step 1 Use the Finder to go to Applications > Utilities > Terminal. Step 2 Connect the OS X USB port to the router. Step 3 Enter the following commands to find the OS X USB port number: Jays-MacBook-Pro:~ jaymaree$ ls /dev| gre p usb tty.usbserial Step 4 Connect to the USB...