GSR-IconBannerAd_v1d

Security Advisories

Trustwave Press Releases

« [Honeypot Alert] Inside the Attacker's Toolbox: Webshell Usage Logging | Main | CBC-R: It's not just for padding oracles! »

20 June 2013

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a0133f264aa62970b0191037f6bd5970c

Listed below are links to weblogs that reference Wendel's Small Hacking Tricks - Microsoft SQL Server Edition:

Comments

Hi Intercepter Ng,

Great job and thanks for the heads-up. I follow your project for a long time and I enjoy it. I always keep my eyes open to see the console edition improvement since I only use Linux based system for internal penetration tests. I hope to have a console edition with all features such as the Windows version :)

The SMB hijack technique is a nice implementation, a few years ago Steve Ocepek and I discussed it during our Thicknet (https://github.com/SpiderLabs/thicknet) presentation and we considered implementing it, nice to know you did it.

Keep the great work.

Thanks.

Good day spiderlabs team. I guess it might be interesting for you and you can review this technique called SMB Hijacking.

check demo video and the whitepaper

http://youtu.be/flgsD6zdAU0

http://intercepter.nerf.ru/SMB_Hijacking.Kerberos_is_defeated.pdf

Verify your Comment

Previewing your Comment

This is only a preview. Your comment has not yet been posted.

Working...
Your comment could not be posted. Error type:
Your comment has been posted. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Working...

Post a comment