I write a post on here.The plug-in posts it to my twitter feed.That’s the thing that I’m testing. Move along. Move along./me waves arm in a Jedi dismissing-like fashion
Using PowerShell to send a HTML email containing a Canary Token (for tracking)
Ok. I admit it. I am (was!) a member of a gym and hadn’t been in ages. That’s how they get ya! Was ok under lock-down, as membership was frozen. But, as measures started to lift they sent out a mailshot saying it was rising from £9.99/mth to £17-18/mth. That’s Continue Reading
HP MicroServer Remote Access Card
These are add-on iLO/RMC/BMC type cards as used in HP MicroServers. They’re looong-past EoL. /etc/passwd Super-easy to exploit. Just browse to http://[ip]:5988/etc/passwd To access the web users & hashed pwd Browse to http://[ip]:5988/flash/data0/etc/avctpasswd Discovered & tested this on my own one. It’s well past EoL. But, can’t find this referenced Continue Reading
Bash: Always knowing tun0 address
When studying for OSCP I found that I was always forgetting what my tun0 IP was.Can’t send them shells back to yourself, if you don’t know your IP, right? I put a lil’ tweak into my ~/.bash_aliasesWhen you open a new tab/window/shell, it looks like this: In this example, I’m Continue Reading
From the archives – evading work firewalls in 2004/05
Found this in my personal email. I used to work somewhere that had a port-based firewall (Checkpoint Firewall 1), but, with no restrictions on what you could install locally. I wanted to use IRC to chat with my ‘net buddies. So, what did I do? Installed a HTTP tunnel at Continue Reading
Who am I?
Hello!You can call me Baz/Bazza. But, why the ‘mcbazza’, you ask? Do you MC on the side?Hell no. It’s more of a McBazza, but, all lowercase.The avatar?Yep, that’s me. Comedy/geeky t-shirt. MTB. Cup of tea. Though, the hair may be more gray/sparse these days. Who am I?Just your regular I.T. Continue Reading