Wednesday, February 10, 2016

ATMs send Credit Cards Plain text per Krebs Article

I saw this arcticle on krebs about ATM skimmers and thought it was fascinating reading all the comments that it's likely your Debit card number is going over the wire unencrypted back to the private network. Scarey. Just reminds me too of my old blog I wrote about killing http. As I see it encryption is coming, it's the new normal. If you're not doing it you're increasing your risk.

More about neonprimetime


Top Blogs of all-time
  1. pagerank botnet sql injection walk-thru
  2. DOM XSS 101 Walk-Through
  3. php injection ali.txt walk-thru


Top Github Contributions
  1. Qualys Scantronitor 2.0


Copyright © 2015, this post cannot be reproduced or retransmitted in any form without reference to the original post.
Posted by at No comments:
Labels: ,

iPhone/iPad Locked out Passcode Factory Reset

So I had a iphone and ipad that I had no clue what the passcode was and I wanted to factory reset it. I did some google searches, and found several instructions, but none were simple & straightforward. Here's my simpler straightforward instructions. Warning of course you're going to lose everything.

0.) download and install itunes
1.) start itunes
2.) Plug iphone/ipad into computer with usb
3.) Power off phone
4.) Hold Home and Power down in iphone/ipad for about 10 seconds until apple power-up icon goes away
5.) Continue holding home ... release Power button ... so you're just holding home
6.) Hold home until computer has popup from itunes that says iphone/ipad detected in recovery mode
7.) click ok
8.) click restore ipad
9.) wait until iphone reboots, you should now be on a new phone welcome screen with no password




More about neonprimetime


Top Blogs of all-time
  1. pagerank botnet sql injection walk-thru
  2. DOM XSS 101 Walk-Through
  3. php injection ali.txt walk-thru


Top Github Contributions
  1. Qualys Scantronitor 2.0


Copyright © 2015, this post cannot be reproduced or retransmitted in any form without reference to the original post.
Posted by at No comments:
Labels: , ,

Friday, February 5, 2016

Lookup user by Full Name powershell

How to lookup a list of users by full name only with powershell

Import-CSV C:\fullnames.csv | ForEach-Object { $filter = "Name -eq '" + $_.name + "'"; $b = Get-ADUser -Filter $filter; if($b) { $b.samaccountname; } else { "-Not found-" + $_.name ;} }

More about neonprimetime


Top Blogs of all-time
  1. pagerank botnet sql injection walk-thru
  2. DOM XSS 101 Walk-Through
  3. php injection ali.txt walk-thru


Top Github Contributions
  1. Qualys Scantronitor 2.0


Copyright © 2015, this post cannot be reproduced or retransmitted in any form without reference to the original post.
Posted by at No comments:
Labels: ,

Lookup Users by Last Name Powershell

How to lookup a list of users by last name only with powershell

Import-CSV C:\lastnames.csv | ForEach-Object { $filter = "Name -like '*" + $_.name + "'"; $b = Get-ADUser -Filter $filter; if($b) { $b.samaccountname + "`t" + $_.name ; } else { "-No-" + "`t" + $_.name ;} }

More about neonprimetime


Top Blogs of all-time
  1. pagerank botnet sql injection walk-thru
  2. DOM XSS 101 Walk-Through
  3. php injection ali.txt walk-thru


Top Github Contributions
  1. Qualys Scantronitor 2.0


Copyright © 2015, this post cannot be reproduced or retransmitted in any form without reference to the original post.
Posted by at No comments:
Labels: ,

Get User from AD Group in powershell

How to list all names and descriptions of a user in an Active Directory Group with powershell

Get-ADGroupMember -identity "AD GROUP I WANT TO LOOKUP" | select name | export-csv -path c:\output.csv

Import-CSV output.csv | ForEach-Object { Get-ADUser -identity $_.name -Properties Description } | select name, Description

More about neonprimetime


Top Blogs of all-time
  1. pagerank botnet sql injection walk-thru
  2. DOM XSS 101 Walk-Through
  3. php injection ali.txt walk-thru


Top Github Contributions
  1. Qualys Scantronitor 2.0


Copyright © 2015, this post cannot be reproduced or retransmitted in any form without reference to the original post.
Posted by at No comments:
Labels: ,
Good article on an example of a UXSS (Universal Cross-Site Scripting) which is an XSS vulnerability in the browser itself (rather than on a website) by SECURINTI about UXSS on Chrome that he demonstrates on facebook. Definitely an interesting topic that isn't always talked about.

More about neonprimetime


Top Blogs of all-time
  1. pagerank botnet sql injection walk-thru
  2. DOM XSS 101 Walk-Through
  3. php injection ali.txt walk-thru


Top Github Contributions
  1. Qualys Scantronitor 2.0


Copyright © 2015, this post cannot be reproduced or retransmitted in any form without reference to the original post.
Posted by at No comments:
Labels: , ,
I really enjoyed TechAnarchy's blog on a command injection vulnerability in Security Onion. It was easy to read and thus very educational in value. Good article.

More about neonprimetime


Top Blogs of all-time
  1. pagerank botnet sql injection walk-thru
  2. DOM XSS 101 Walk-Through
  3. php injection ali.txt walk-thru


Top Github Contributions
  1. Qualys Scantronitor 2.0


Copyright © 2015, this post cannot be reproduced or retransmitted in any form without reference to the original post.
Posted by at No comments:
Labels: ,
Subscribe to: Posts (Atom)