Kali tools: Nmap

Terminal with the nmap output

The Nmap network mapper is an industry-standard network scanner that is over 20 years old. The Nmap is featured in numerous movies as the “hacking tool”. These movies include The Matrix, Die Hard 4, and The Girl With the Dragon Tattoo. Full list of the Nmap’s appearances you can find at the Nmap homepage (https://nmap.org/movies/). …

How to make Kali Linux Iptables Firewall Persistent

By default, Kali Linux doesn’t use a firewall in its network interfaces. Although Kali is silent on the network on its default setting, nothing is stopping you from starting up services. And some of the most popular tools are starting up network services (and using default username/password combination)! So just to play on the safe …

How to Hijack Windows 10 Session?

Description Purpose: To hijack a local windows session (any user) Requirements: Local administrator rights Tools: PsExec Even with administrator rights, you can not impersonate (or hijack) a another user. With this attack you gain full control over a locally logged user account. Instructions Download SysInternal’s PsExec tool from here. Extract it to a folder of …

Your Face Is Not Your Password

In recent years there have been an influx of different biometric authentication methods. The latest horse in the race is the Apple’s iPhone X Face ID.  Although face recognition is not anything new, it surely adds it’s own twist in to the game. Apple promises that it’s algorithms can not be beaten by photographs or …

The Anatomy of a Good Password

The recipe for a good password is not an easy one. It needs to be at the same time easy for the user to remember and hard for the computer to guess. Unfortunately past (and too often current) rules for the password complexity have been exactly the opposite. First rule of password: Length Complex strings …