This week I upgraded my Macbook to the latest version and since the update, I realized that every time I opened a new terminal I had this warning issue from Oh-my-Zsh. [oh-my-zsh] Can’t update: not a git repository. If you search a bit, there are several messages explaining that this error may be due to the application folder has been messed up and the .git folder being lost. It wasn’t
octubre 31, 2022
Burp Suite Academy lab – Stored XSS into HTML context with nothing encoded
This lab contains a stored cross-site scripting vulnerability in the comment functionality.To solve this lab, submit a comment that calls the alert function when the blog post is viewed. Access to the lab https://0a7900e404a806d2c000170700c90074.web-security-academy.net Solution Click on View post button: https://0a7900e404a806d2c000170700c90074.web-security-academy.net/post?postId=6 At the bottom of the page, there is a comments section where you can add a message. We can try to use the comment system to place our payload. Now access again to
octubre 24, 2022
Burp Suite Academy lab – Reflected XSS into HTML context with nothing encoded
Today we start a new series of CTF lab solutions. In this case, we start to solve labs from the Burp Suite Academy from portswigger.net Objective: This lab contains a simple reflected cross-site scripting vulnerability in the search functionality.To solve the lab, perform a cross-site scripting attack that calls the alert function. Solution: The lab’s URL is always a random series of characters followed by the domain web-security-academy.netIn this case,
octubre 17, 2022
What is my external ip?
This is a small script to know what is our external ip from the terminal.
octubre 10, 2022
HTB Mongod
This is another of the Very easy HTB Starting Point boxes. $ nmap -sV -p- 10.129.143.75 –min-rate 5000 As we can see in the Nmap results we hava a MongoDB version 3.6.8 MongoDB is a NoSQL database.You can find more information in their documentation here: https://www.mongodb.com/docs To be able to interact with the db, we need to install the MongoDB package into our Kali Linux. it is included in the
octubre 3, 2022
How to fix – Warning apt-key is deprecated
Last week I tried to install Ulauncher into a Linux Mint 21 freshly installed. After installing Ulauncher using: sudo add-apt-repository ppa:agornostal/ulauncher && sudo apt update && sudo apt install ulauncher I got this error: «Warning apt-key is deprecated«. After some Googling, I found this that help me to fix it. Fixing process: $ sudo apt-key list Now, we need to remember the last 8 Hexa digits (99503176) of the corresponding
septiembre 26, 2022
Bat overview
Bat is a cat clone tool with many extra features: Syntax highlighting Git integration Show non-printable characters Automatic paging File concatenation Installation For a macOs sytem. (For other systems check the specific installation description in the documentation) ❯ brew install bat Usage Display a single file on the terminal ❯ bat file.txt Display multiple files at once ❯ bat *.txt Read from the stdin and detect the syntax automatically ❯
septiembre 19, 2022
Short break
There will not be a new post this week due to the Amsterdam Schiphol chaos with the queues, flight cancellations, multiple hotel reallocations… If we can go back home, hopefully next week you will have a new one again. Sorry for any inconvenience…
septiembre 12, 2022
Obsidian – «EMFILE: too many open files» after upgrading to Obsidian 0.15.6
After the last Obsidian upgrade to 0.15.6 in my Ubuntu 22.04 TLS with KDE, I got a message «EMFILE: too many open files» when trying to run the application whatever vault I tried to open. After searching a bit, I found this webpage where there is a workaround than can used to run Obsidian in the meantime the issue is fixed. You just have to increase the max_user_instances in the
septiembre 5, 2022
VMware – Cannot open dev-vmmon – No such file or directory» error – Ubuntu 22.04 LTS
After an update for my Ubuntu 22.04 LTS, a new kernel was installed and again VMWare Workstation 16 could not start my Kali VM machine. I got a vmmon error: I’ve been an alternative solution to this problem more than the small workaround of modifying the default kernel to start in the Grub menu.After some Googling I found this script that worked fine. https://github.com/LinuxEuphony/vmware-host-modules-builder-cli The script is pretty simple to