tnkr

@[email protected]
48 Followers
19 Following
82 Posts
tnkrOct 4, 2018
While the world was tearing itself apart of Stack Overflow being down, I put together my new chair. #Noblechair #Hero and my God, my back is soooo thankful.
tnkrOct 2, 2018
So using DuckDuckGo as the default search is taking some getting used to. It's weird to see how accustom we are to "forced" results versus "pure" results. Gonna take some re-education for sure.
tnkrSep 30, 2018
All this DuckDuckGo talk... Guess I need to check it out again.
tnkrSep 29, 2018
OSCP done and passed. What an absolute piss poor excuse for a certification that is supposed to represent the industry. Thing is more out dated than my 90's DC shoes and JNCO jeans. And now with their proctoring exams via web and screen share. Step 1 in being a security company, demand all students give up personal security for 24 hours because people are cheating on your unmodified in almost a decade exam. #isaidit #flameon #OSCPisthenewCEH
tnkrMar 29, 2018

part 2:

well there it was. I was on an older Linux kernel and nmap --interactive. damn... hours, folks... hours.

moral of the story that really is well known but not adhered to... it's not about the exploit, it's about the misconfigurations.

I'm sure we have all had those moments but damn if it ain't frustrating.

tnkrMar 29, 2018

I sat on a box last night and it was pushing me to throw in the towel and go to bed. it kept eating at me, "I'd seen this before!" I thought to myself but I just could not get the escalation. kernel exploit after kernel exploit being thwarted by account limitations.

exploit-db has an extreme issue with proper documentation. spent 2 hours fixing a gcc issue in the blind, so to speak.

this box was haunting me, y'all.

then it hit me, "mistakes and misconfigurations". where are they?

tnkrMar 28, 2018

literally went "fuck it mode" in the #pwk lab yesterday and popped all boxes with exposed 445 (in the public network minus two that are not exposing pipes)... thank you nsa for the useful tool.

can't use them all for the lab write ups but it felt pretty bad ass to knock down that many boxes in the span of 5 minutes.

now after web apps, again. need to focus on diversifying my LFI/RFI skillset.

tnkrMar 28, 2018
zǝɹosum0x0Mar 28, 2018
Hello world
tnkrMar 26, 2018
php://filter is my go to tool and it hasn't worked once in the labs. I need new tricks, y'all!!
tnkrMar 26, 2018
.