NetHunter Article Featured in Hakin9 Magazine

The latest Hakin9 Magazine is out! This issue is all about Android security and features my article on using Kali NetHunter and Responder together for getting quick user credentials.

Front Cover

In my article I explain how you could recover network credentials from a Windows network using the Android based Kali NetHunter and Responder (an LLMNR, NBT-NS & MDNS poisoner). I also show how you can “pass the hash” with credentials obtained and gain remote shell access to an unsecured or improperly secured Windows Server.

Other Articles in this Issue Include:

Mobile Penetration Testing Tutorial

by Olivia Orr

The objective of this tutorial is to learn the most common vulnerabilities in mobile applications using an app intentionally designed to be insecure. This tutorial will be based on the Windows platform, but you can use other systems if you wish.


Quick Android Review Kit (QARK) – A comrade for Android security analysis

by Vinayak Joshi and Venkatesh Sivakumar (Pranav Venkat)

QARK stands for Quick Android Review Kit. A quirky companion to get the hidden potential vulnerabilities of any Android applications. It is an open community tool designed to assist mobile application security pentesters to leverage its capabilities to reverse engineer mobile applications and conduct static analysis on the hidden vulnerabilities that can potentially create critical breaches. This article will explain how to use it.


Peeping Inside Android Applications: Reverse Engineering with Androguard

by Ajit Kumar

Reverse engineering is one of the ways to find out what’s inside of any Android applications; it also helps developers to learn, test and debug their and applications as well as applications written by others. Reverse engineering is a complex and cumbersome task, so tools like Androguard make this task automated and hence ease the job of reverse engineers. This tutorial provides a brief introduction of Androguard, explains various tools available inside Androguard and provides some examples of basic reverse engineering with Androguard.

And much more, check it out!

Advertisements

Password Dump Tool Spreadsheet

Every wanted a list of the most commonly used password dump tools compared by capabilities? Then look no further, Bernardo Damele has created a comparison list of 46 Password recovery tools!

The Google Docs spreadsheet list includes the tool name and 24 comparative features  including if it has a GUI, local or remote, what OS it works against, and where it can obtain information from.

Pretty good list, though I don’t agree with all of it. Some tools are listed as local only and can be used remotely. Though technically the capability may not be built into the app, they can be used in conjunction with other apps to work remotely with no problems.

Mimikatz comes to mind immediately. It works great remotely, but to be fair, you do need a remote shell opened first.

Great job!

 

BSides Cleveland Security Conference Videos

If you don’t have the chance to get to the big security conferences, then you always look forward to the conference videos when they come out. July is no exception with several awesome conferences taking place. Adrian Crenshaw (aka Irongeek) has released links to all of the BSides Cleveland Security conference videos.

Below are two of my favorites.

First up is Dave Kennedy, mad hugger, and security guru extraordinaire, with a great look at some of his pentesting secrets and techniques. This is an excellent look at his Social Engineering Toolkit, tips on bypassing Anti-Virus, elevating a user to Admin account, and egress techniques.

Next up is “Pass the Hash like a Rockstar” by Martin “Purehate” Bos. This is a great look at different techniques used to compromise systems by using pass the hash. Kind of disappointing, this is not the talk he was going to do. He was going to do a speech on password cracking, which sounded really interesting, but he had to change it at the last moment. Hopefully he will release the intended speech at some point, but this talk is very good too!