I got peer pressured into this, I am not doing this out of free will! Just kidding, in this blog post I will summerize my first journey with Gentoo and how to set it up inside a VM with VMware workstation version 16. This guide will help you setup a virtual instance of Gentoo and i suggest that you read carefully the Gentoo Handbook to understand what we are going to do here in great detail.
Using Splunk to monitor your computer or vps is free, easy and let you learn about one of the best SIEM tool available on the market (as for now 2022). In this post I will share some of my personal Splunk configurations and alerts so you can start monitoring what is going on in your windows machine and maybe see things you didn’t before. So let’s start shall we!
we find a file that was created by the maker in the process of creation ie : flag.txt.
Flag.txt was created 22 august 2017
find / -type f -newermt 2017-08-20 ! -newermt 2017-08-24 -ls 2>/dev/null
We see all files that have changed between 20-08 and 24-08 (if needed we can change the range)
With that we can see interesting changes inside the boxes
I did root many windows rig in the last week. You can practice your skill too, just go to hackthebox.eu. Here i will not tell you how specificity root those vulnerable windows os, i just want to keep some of the basics that i learned from this.
As expected the info gathering is the same nmap nikto dirb etc.
The windows command line, as i am used to unix bash this command line was like Korean to me.
Here are the basic commands that are useful : Read more “A journey into Windows pentesting.”
