Robert Townley rjt

## Strings
#Unexpected token '3c-0c' in expression or statement.
#You must provide a value expression following the '-' operator.
[string]$Mac3='00-16-d4-08-3c-0c';

$Mac3.GetType() #returns string.
$dhcpEntry.Item("ClientId")

#Get-DhcpS does not find the entry some of the time.  If i put in the number directly, it will work.
 Get-DhcpServerv4Reservation -ClientId $Mac3 -ScodeID 10.0.100.0

## gist:36b4b8df1cde279a9305
Dell Scrutinizer 11.01 several vulnerabilities
http://www.mysonicwall.com has a trial available.


Dell Sonicwall Scrutinizer suffers from several SQL injections, many of which can end up with
remote code execution. An attacker needs to be authenticated, but not as an administrator.
However, that wouldn’t stop anyone since there is also a privilege escalation vulnerability in that
any authenticated user can change any other user’s password, including the admin. One SQL
injection, which a Metasploit module was provided for, requires this privilege escalation to reach
since it exists in the new user mechanism only available to admins.

## gist:6393686
https://twitter.com/deafferret/status/373530616655917057

Mind. Blown.
Did you know when rebasing in git it even correctly patches files that were MOVED in the base branch? I...
Wow.
<3 git

Here, let me show you:


## copy-default-directory.bash
# this assumes you have a default directory defined

find /tftpboot/logs/ | ack 'logs/([^-]+)' --output '$1' | sed '/^$/d' | while read mac
do
    cp -f "000000000000-directory.xml" "$mac-directory.xml"
done
	#Unexpected token '3c-0c' in expression or statement.
	#You must provide a value expression following the '-' operator.
	[string]$Mac3='00-16-d4-08-3c-0c';

	$Mac3.GetType() #returns string.
	$dhcpEntry.Item("ClientId")

	#Get-DhcpS does not find the entry some of the time. If i put in the number directly, it will work.
	Get-DhcpServerv4Reservation -ClientId $Mac3 -ScodeID 10.0.100.0
	Dell Scrutinizer 11.01 several vulnerabilities
	http://www.mysonicwall.com has a trial available.


	Dell Sonicwall Scrutinizer suffers from several SQL injections, many of which can end up with
	remote code execution. An attacker needs to be authenticated, but not as an administrator.
	However, that wouldn’t stop anyone since there is also a privilege escalation vulnerability in that
	any authenticated user can change any other user’s password, including the admin. One SQL
	injection, which a Metasploit module was provided for, requires this privilege escalation to reach
	since it exists in the new user mechanism only available to admins.
	https://twitter.com/deafferret/status/373530616655917057

	Mind. Blown.
	Did you know when rebasing in git it even correctly patches files that were MOVED in the base branch? I...
	Wow.
	<3 git

	Here, let me show you:
	# this assumes you have a default directory defined

	find /tftpboot/logs/ \| ack 'logs/([^-]+)' --output '$1' \| sed '/^$/d' \| while read mac
	do
	cp -f "000000000000-directory.xml" "$mac-directory.xml"
	done