tommytri

accesschk -w -s -u Users "C:\Program Files" >> programfiles.txt
accesschk -w -s -u Everyone "C:\Program Files" >> programfiles.txt
accesschk -w -s -u "Authenticated Users" "C:\Program Files" >> programfiles.txt
accesschk -w -s -u Interactive "C:\Program Files" >> programfiles.txt
accesschk -w -s -u "This Organization" "C:\Program Files" >> programfiles.txt
accesschk -w -s -u "Authentication authority asserted identity" "C:\Program Files" >> programfiles.txt
accesschk -w -s -u "Mandatory Label\Medium Mandatory Level" "C:\Program Files" >> programfiles.txt
accesschk -w -s -u %username% "C:\Program Files" >> programfiles.txt

accesschk -w -s -u Users "C:\Program Files (x86)" >> programfilesx86.txt

tommytri

Penetration Testing Report for Target System 192.168.8.4 - August 2024

Date: August 13, 2024
Pentester: Eno Leriand

---

Table of Contents

1. Report Overview

• 1.1 Executive Summary

tommytri

@echo off
setlocal enabledelayedexpansion

:: Get current time zone
for /f "tokens=2 delims==" %%A in ('wmic timezone get Description /value') do set TIMEZONE=%%A

:: Get current time for the detected timezone
for /f %%A in ('curl -s "https://timeapi.io/api/Time/current/zone?timeZone=!TIMEZONE!"') do set TIME_DATA=%%A

:: Extract Date and Time

tommytri

# Get current time zone
$TIMEZONE = (Get-TimeZone).Id
$TIMEZONE = "Asia/Saigon"

# Fetch the correct time from TimeAPI.io using Invoke-WebRequest
$RESPONSE = Invoke-WebRequest -Uri "https://timeapi.io/api/Time/current/zone?timeZone=$TIMEZONE"
$TIME_DATA = $RESPONSE.Content | ConvertFrom-Json

# Format dateTime as "dd/MM/yyyy HH:mm:ss"
$CURRENT_TIME = "{0:D2}/{1:D2}/{2} {3:D2}:{4:D2}:{5:D2}" -f $TIME_DATA.day, $TIME_DATA.month, $TIME_DATA.year, $TIME_DATA.hour, $TIME_DATA.minute, $TIME_DATA.seconds

tommytri

#!/bin/bash

# Get the system's current timezone
TIMEZONE=$(timedatectl show --property=Timezone --value)

# Fetch the current time from TimeAPI.io for the detected timezone
TIME_DATA=$(curl -s "https://timeapi.io/api/Time/current/zone?timeZone=$TIMEZONE" | jq -r '.dateTime')

# Extract the date and time
CURRENT_TIME=$(echo "$TIME_DATA" | awk -F. '{print $1}' | sed 's/T/ /')

tommytri

Ubuntu-Server-Hardening

1. Secure Shared Memory

What is shared memory?

Shared memory is an efficient means of passing data between programs. Because two or more processes can use the same memory space, it has been discovered that, since shared memory is, by default, mounted as read/write, the /run/shm space can be easily exploited. That translates to a weakened state of security.

If you’re unaware, shared memory can be used in an attack against a running service. Because of this, you’ll want to secure that portion of system memory.

tommytri

Compare-Object -ReferenceObject (Get-Service | Select-Object -ExpandProperty Name | % { $_ -replace "_[0-9a-f]{2,8}$" } ) -DifferenceObject (gci -path hklm:\system\currentcontrolset\services | % { $_.Name -Replace "HKEY_LOCAL_MACHINE\\","HKLM:\" } | ? { Get-ItemProperty -Path "$_" -name objectname -erroraction 'ignore' } | % { $_.substring(40) }) -PassThru | ?{$_.sideIndicator -eq "=>"}

tommytri

DevOps

• DevOpsish - DevOps’ish is a weekly newsletter assembled by open source contributor, DevOps veteran, and CNCF Ambassador Chris Short.

• DevOpsLinks - DevOpsLinks is a community of aspiring DevOps professionals and practicioners from all over the world.

• DevOps Weekly - weekly devops news from Gareth Rushgrove.

• WebOps Weekly - A weekly newsletter on Web operations, infrastructure, performance, the backend, and tooling, from the browser down to the metal.