/ Recent content on /home/ Hugo -- gohugo.io en-us Mon, 26 Oct 2020 00:00:00 +0000 /posts/metactf2020_passwordhereplease/ Mon, 26 Oct 2020 00:00:00 +0000 /posts/metactf2020_passwordhereplease/ MetaCTF 2020 - Password Here Please For this CTF, I'll upload the challenges I found interesting as individual write-ups. I don't know how many I'll do (time is a bastard) but I'll try and get at least a few. For this challenge specifically, I have the source code down below, as well as my full script in the tl;dr. Description I forgot my bank account password! Luckily for me, I wrote a program that checks if my password is correct just in case I forgot which password I used, so this way I don't lock myself out of my account. /posts/acictf2020/ Fri, 24 Apr 2020 00:00:00 +0000 /posts/acictf2020/ Army Cyber Institute Capture the Flag On the ball this year about starting right away, so let's get right in Skip the Tutorial - 0 no thanks First Rule - 1 So this one is just getting us familiar with what a flag looks like; in this case, ACI{this_is_a_flag} Distant Socializing - 2 This one's easy, just join an appropriate group (NCO, in my case), and you get a flag: ACI{welcome_to_the_club} /posts/joshs_posh_3_statusupdates/ Mon, 27 Jan 2020 00:00:00 +0000 /posts/joshs_posh_3_statusupdates/ Got the idea for this one from a conversation I had with one of our senior network engineers at work. I had been using ping -t <ip> for seeing when someone rebooted devices and they came back online. That works fine for one device, but I ended up needing multiple, so I input a couple commands in powershell: $iplist = @() $iplist += <ip1> $iplist += <ip2> $iplist += <ip3> while ($true) {foreach ($ip in $iplist) {if (test-connection -computername $ip -count 1 -erroraction silentlycontinue){write-host "$ip is up"}}} which creates an array, adds the three IP addresses I wanted to test, and then alternates between test-connection on them, which is essentially a ping, but writes “<ip> is up” instead of the output of test-connection. /webring/ Sat, 25 Jan 2020 00:00:00 +0000 /webring/ dade wrote a tweet linking to a blog post on his site about bringing back webrings, and i'm super down. Below are some good people with good content: 0xdade Kelly Shortridge Lesley Carhart MG Grugq SwiftOnSecurity DanielMiessler Trammell Hudson Jessie Frazelle NetworksAreMadeOfString onion n0pbear Topher Timzen Semgnome Vi Grey Whitequark /posts/kringlecon2019pt2/ Sat, 21 Dec 2019 00:00:00 +0000 /posts/kringlecon2019pt2/ Mongo Pilfer - CranberryPi After the last CranPi, I took a week break from the ctf to focus on work, but with the arrival of the weekend and completion of some overdue errands, I was ready to go. To get into the swing of things, I decided to start cleaning up the other CranberryPis I dutifully noted before, starting with Holly Evergreen's in the NetWars Continuous room (where I made a cameo! /posts/joshs_posh_2_adminconsole/ Mon, 16 Dec 2019 00:00:00 +0000 /posts/joshs_posh_2_adminconsole/ Today's post is covering one of the first things I made at my previous employer, which I also have a sanitized version on my github here. We used smartcards for login, and we had separate cards and accounts for administration. We also couldn't select a separate account through UAC for installers/administrative applications, so the solution was to open command prompt and run runas /smartcard cmd.exe, select the admin card, and have a command prompt open as our admin account. /about/ Thu, 12 Dec 2019 00:00:00 +0000 /about/ good (morning|afternoon|evening) I'm Josh. I realized recently that I've accumulated a lot of knowledge on scripting and capture-the-flag-ing, and decided I'd consolidate that knowledge into a blog. I'd been sitting on this domain for ages, and had a bit of fun building a site from scratch, but since I now have actual content to put out, I'm opting for Hugo. Hopefully the posts here can help future users in learning to leverage tools like powershell and python to make computers do work for them. /posts/kringlecon2019/ Thu, 12 Dec 2019 00:00:00 +0000 /posts/kringlecon2019/ Kringlecon 2: Turtle Doves! I'm starting Kringlecon a day late this year, but I'm hoping to be able to at least get as far as I got last year. This time, I plan on documenting my findings, and I'll be updating this as I go. My plan is for this to be one big post, almost in a journal/gamefaqs style. Escape Ed - CranberryPi This one is easy, but I did have to google since i'm unfamiliar with ed. /posts/joshs_posh_1_useraccountcontrol/ Wed, 11 Dec 2019 00:00:00 +0000 /posts/joshs_posh_1_useraccountcontrol/ This first one is the inspiration for the site. I've been a bit obsessed with bitwise anding and parsing flags stored as bits ever since BPF in SANS SEC503. I ran into a situation recently where I wanted to check whether a smartcard was required for an account, but I didn't have access to active directory users and computers (dsa). A quick google search told me that the value for “smartcard required” is 262144, which briefly confused me, since that same search also told me basically all those checkboxes on the account screen are governed by the useraccountcontrol property.