breenmachine.blogspot.com

alert(1)

Monday, August 17, 2015. Bad AS - More on Broken JBoss Configurations. It's been a while since I've posted anything about JBoss. Once in a while I still get an email or IM about someone trying to use the exploit code released here or in the "clusterd" framework against a JBoss instance that should be vulnerable, but seems to fail when the payload attempts to deploy. This was (and still is) a bit of a mystery, mostly because I haven't spent the time to reproduce these configurations. The property "BaseDir...

http://breenmachine.blogspot.com/

OVERVIEW OF breenmachine.blogspot.com

TRAFFIC RANK

>1,000,000

REVIEWS

0

PAGES IN THIS WEBSITE

19

LINKS TO THIS WEBSITE

CONTACTS

ADDRESSES

SOCIAL LINKS

ONLINE SINCE

WEBSITE DETAILS

SEO

PAGES

SIMILAR SITES

TRAFFIC RANK FOR BREENMACHINE.BLOGSPOT.COM

TODAY'S RATING

>1,000,000

TRAFFIC RANK - AVERAGE PER MONTH

BEST MONTH

December

AVERAGE PER DAY Of THE WEEK

HIGHEST TRAFFIC ON

Saturday

TRAFFIC BY CITY

Sign up

CUSTOMER REVIEWS

Average Rating: 4.7 out of 5 with 7 reviews

5 star

5

4 star

2

3 star

0

2 star

0

1 star

0

Hey there! Start your review of breenmachine.blogspot.com

AVERAGE USER RATING

Write a Review

WEBSITE PREVIEW

LOAD TIME

0.9 seconds

FAVICON PREVIEW

16x16
32x32
64x64
128x128

CONTACTS AT BREENMACHINE.BLOGSPOT.COM

ADD CONTACT

Login

TO VIEW CONTACTS

Remove Contacts

FOR PRIVACY ISSUES

CONTENT

PAGES IN
THIS WEBSITE

19

SSL

EXTERNAL LINKS

12

SITE IP

74.125.228.202

LOAD TIME

0.921 sec

SCORE

6.2

PAGE TITLE

alert(1) | breenmachine.blogspot.com Reviews

<META> DESCRIPTION

Monday, August 17, 2015. Bad AS - More on Broken JBoss Configurations. It's been a while since I've posted anything about JBoss. Once in a while I still get an email or IM about someone trying to use the exploit code released here or in the clusterd framework against a JBoss instance that should be vulnerable, but seems to fail when the payload attempts to deploy. This was (and still is) a bit of a mystery, mostly because I haven't spent the time to reproduce these configurations. The property BaseDir...

<META> KEYWORDS

1 alert 1

2 jmx console/htmladaptor

3 further work

4 posted by

5 stephen breen

6 no comments

7 email this

8 blogthis

9 share to twitter

10 share to facebook

CONTENT

Page content here

KEYWORDS ON PAGE

alert 1,jmx console/htmladaptor,further work,posted by,stephen breen,no comments,email this,blogthis,share to twitter,share to facebook,share to pinterest,http / marc info/,accept */*,connection keep alive,content length 151,doctype foo,element foo any

SERVER

GSE

CONTENT-TYPE

utf-8

GOOGLE PREVIEW

alert(1) | breenmachine.blogspot.com Reviews

https://breenmachine.blogspot.com

Monday, August 17, 2015. Bad AS - More on Broken JBoss Configurations. It's been a while since I've posted anything about JBoss. Once in a while I still get an email or IM about someone trying to use the exploit code released here or in the "clusterd" framework against a JBoss instance that should be vulnerable, but seems to fail when the payload attempts to deploy. This was (and still is) a bit of a mystery, mostly because I haven't spent the time to reproduce these configurations. The property "BaseDir...

INTERNAL PAGES

breenmachine.blogspot.com

1

alert(1): August 2014

http://www.breenmachine.blogspot.com/2014_08_01_archive.html

Thursday, August 21, 2014. BlackHat Talk and Railo Shoutout. Haven't really talked about it much here but recently finished up some research and my BlackHat USA 2014 presentation titled "Mobile Device Mismanagement" - http:/ www.slideshare.net/breenmachine/mobile-device-mismanagement. Overall the MDM stuff has been pretty interesting. The attack vectors are very realistic because these are systems that can not be firewalled off from the Internet, yet they expose some pretty sensitive functionality.

2

alert(1): BlackHat Talk and Railo Shoutout

http://www.breenmachine.blogspot.com/2014/08/blackhat-talk-and-railo-shoutout.html

Thursday, August 21, 2014. BlackHat Talk and Railo Shoutout. Haven't really talked about it much here but recently finished up some research and my BlackHat USA 2014 presentation titled "Mobile Device Mismanagement" - http:/ www.slideshare.net/breenmachine/mobile-device-mismanagement. Overall the MDM stuff has been pretty interesting. The attack vectors are very realistic because these are systems that can not be firewalled off from the Internet, yet they expose some pretty sensitive functionality.

3

alert(1): Cisco ASA SSL VPN Backdoor PoC (CVE-2014-3393)

http://www.breenmachine.blogspot.com/2014/10/cisco-asa-ssl-vpn-backdoor-poc-cve-2014.html

Monday, October 27, 2014. Cisco ASA SSL VPN Backdoor PoC (CVE-2014-3393). A coworker and I recently had the opportunity to work with a new vulnerability released at Ruxcon just earlier this month and while we didn't get exactly what we wanted, it was quite interesting. The conference presentation was titled "Breaking Bricks and Plumbing Pipes: Cisco ASA a Super Mario Adventure" https:/ ruxcon.org.au/assets/2014/slides/Breaking%20Bricks%20Ruxcon%202014.pdf. We spotted the SSL VPN login page in the wild re...

4

alert(1): September 2014

http://www.breenmachine.blogspot.com/2014_09_01_archive.html

Tuesday, September 16, 2014. Transfer File Over DNS in Windows (with 13 lines of PowerShell). In a previous post (http:/ breenmachine.blogspot.ca/2014/03/downloading-files-through-recursive-dns.html) I mentioned that it is possible to download files through recursive DNS queries with Bash or Powershell. Can be found on github (https:/ github.com/breenmachine/dnsftp) - or below. Usage is simply:. On the server hosting the file:. Server.py -f /path/to/file. On the target client to deliver the binary:.

5

alert(1): October 2014

http://www.breenmachine.blogspot.com/2014_10_01_archive.html

Monday, October 27, 2014. Cisco ASA SSL VPN Backdoor PoC (CVE-2014-3393). A coworker and I recently had the opportunity to work with a new vulnerability released at Ruxcon just earlier this month and while we didn't get exactly what we wanted, it was quite interesting. The conference presentation was titled "Breaking Bricks and Plumbing Pipes: Cisco ASA a Super Mario Adventure" https:/ ruxcon.org.au/assets/2014/slides/Breaking%20Bricks%20Ruxcon%202014.pdf. We spotted the SSL VPN login page in the wild re...

UPGRADE TO PREMIUM TO VIEW 14 MORE

TOTAL PAGES IN THIS WEBSITE

19

LINKS TO THIS WEBSITE

0xthem.blogspot.com

Incursus Absconditus: Temporal Persistence with bitsadmin and schtasks

http://0xthem.blogspot.com/2014/03/t-emporal-persistence-with-and-schtasks.html

Saturday, March 8, 2014. Temporal Persistence with bitsadmin and schtasks. Leaving a Key Under the Mat -. On a recent engagement, I ran into a well-meaning individual who, after being briefed about our team's access to their network, decided to reboot compromised hosts and change user credentials in the middle of the testing. After losing multiple shells that weren't actually being detected, I decided to spend that evening after work creating a method to let myself back in. Remotely Mutable C2 Addressing.

0xthem.blogspot.com

Incursus Absconditus: March 2014

http://0xthem.blogspot.com/2014_03_01_archive.html

Saturday, March 8, 2014. Temporal Persistence with bitsadmin and schtasks. Leaving a Key Under the Mat -. On a recent engagement, I ran into a well-meaning individual who, after being briefed about our team's access to their network, decided to reboot compromised hosts and change user credentials in the middle of the testing. After losing multiple shells that weren't actually being detected, I decided to spend that evening after work creating a method to let myself back in. Remotely Mutable C2 Addressing.

0xthem.blogspot.com

Incursus Absconditus: October 2014

http://0xthem.blogspot.com/2014_10_01_archive.html

Tuesday, October 14, 2014. Self-removing PE's with Remote Thread Injection. There has been a great deal of sharing of client side techniques of late, so I thought I'd toss out a tip. A means to have a PE executable terminate and delete itself while running on a modern Windows system. The technique we will use is not new, but is one I discovered independently while tinkering with thread injection techniques a few years back. Since many people are familiar with the CreateThread. As many people are using Py...

0xthem.blogspot.com

Incursus Absconditus: Hijacking SSH to Inject Port Forwards

http://0xthem.blogspot.com/2015/03/hijacking-ssh-to-inject-port-forwards.html

Friday, March 13, 2015. Hijacking SSH to Inject Port Forwards. During red team post exploitation I sometimes run into jump boxes leading to test environments, production servers, DMZs, or other organizational branches. As these systems are designed to act as couriers of outbound traffic, hijacking SSH sessions belonging to other users can be useful. So what do you do when you have full control over a jump box and want to leverage another user's outbound SSH access to tunnel into another segment? OpenSSH ...

0xthem.blogspot.com

Incursus Absconditus: Getting Busy at the Command Line

http://0xthem.blogspot.com/2014/08/getting-busy-at-command-line.html

Friday, August 1, 2014. Getting Busy at the Command Line. We all can get a little lazy relying on the frameworks that have arisen due to the monetization of offensive skills. In light of this, I wanted to make a short post to inspire people to explore what can still be done by rubbing two sticks together in a shell. The command line. Use it more, and harder. A simple reverse shell using fifos and openssl s client. There's a great deal you can do with this tool, take a look at the server options. Mkdir -p...

0xthem.blogspot.com

Incursus Absconditus: Late Night Privilege Escalation (keepUP)

http://0xthem.blogspot.com/2014/06/late-night-privilege-escalation-keepup.html

Friday, June 6, 2014. Late Night Privilege Escalation (keepUP). Local Interprocess Command Sockets -. How this came to be:. A few weekends ago I was working through exercises from the folks at Offensive Security when the VPN connection died. ifconfig. Told me that the tap. Interface was down, out of habit I fired off netstat. To see what other connections were established, something strange stood out. There was a root-owned process listening in the Registered Ports. Digging deeper with lsof,. Just how fe...

0xthem.blogspot.com

Incursus Absconditus: June 2014

http://0xthem.blogspot.com/2014_06_01_archive.html

Friday, June 6, 2014. Late Night Privilege Escalation (keepUP). Local Interprocess Command Sockets -. How this came to be:. A few weekends ago I was working through exercises from the folks at Offensive Security when the VPN connection died. ifconfig. Told me that the tap. Interface was down, out of habit I fired off netstat. To see what other connections were established, something strange stood out. There was a root-owned process listening in the Registered Ports. Digging deeper with lsof,. Just how fe...

0xthem.blogspot.com

Incursus Absconditus: August 2014

http://0xthem.blogspot.com/2014_08_01_archive.html

Friday, August 1, 2014. Getting Busy at the Command Line. We all can get a little lazy relying on the frameworks that have arisen due to the monetization of offensive skills. In light of this, I wanted to make a short post to inspire people to explore what can still be done by rubbing two sticks together in a shell. The command line. Use it more, and harder. A simple reverse shell using fifos and openssl s client. There's a great deal you can do with this tool, take a look at the server options. Mkdir -p...

0xthem.blogspot.com

Incursus Absconditus: Self-removing PE's with Remote Thread Injection

http://0xthem.blogspot.com/2014/10/self-delete-pe.html

Tuesday, October 14, 2014. Self-removing PE's with Remote Thread Injection. There has been a great deal of sharing of client side techniques of late, so I thought I'd toss out a tip. A means to have a PE executable terminate and delete itself while running on a modern Windows system. The technique we will use is not new, but is one I discovered independently while tinkering with thread injection techniques a few years back. Since many people are familiar with the CreateThread. As many people are using Py...

UPGRADE TO PREMIUM TO VIEW 3 MORE

TOTAL LINKS TO THIS WEBSITE

12

OTHER SITES

breenlaw.org

Bankruptcy Attorney, Divorce Lawyer, Family Law: North Adams & Western MA

1326 MASS MoCA Way North Adams, MA. Hours: available for evenings and weekends. Divorce & Separation. Directions to Breen Law Offiice and Mediation. Free Consultations On All Cases! Don't you want a local attorney that cares. About western Massachusetts representing you? Worried About Navigating through a Bankruptcy in Western Massachusetts? Have a chance at a successful outcome by hiring our attorney. Whether you’re trying to modify your child support agreement or file for Chapter 7 bankruptcy. R at Bre...

breenlawfirm.com

Pittsburgh Pennsylvania Family Law Lawyer - North Hills Of Pittsburgh PA - Employment Attorney - Breen Law Firm

Call Today for a COMPLIMENTARY CONSULTATION 412-367-7710. Commitment & Services. David V. Breen. Ryan D. Breen. Divorce & Family. Criminal & Juvenile. Rosters, Panels & Associations. Maps & Directions. Experienced Pittsburgh Attorney, Mediator and Neutral Arbitrator. Serving individuals and businesses in Pennsylvania and West Virginia in the areas of family law, criminal law, labor and employment, and business and commercial matters. The Breen Law Firm for a free consultation. Pittsburgh, PA 15237.

breenleboeuf.com

Accueil

Concert pour la vie. Merci à Marco Labrie de m'avoir invité à participer de nouveau à son Concert pour la vie, cette fois comme président d'honneur! En plus on a eu la chance de jouer quelques pièces ensemble! L'édition 2015 a eu lieu au Capitole de Québec le 7 mai passé. Bravo à Marco et toute son équipe! Ils ont une fois de plus organisé une superbe levée de fonds pour combattre le fléau du cancer. Lâchez-pas, les amis! Gala Lys Blues - Hommage! Oh, what a feeling, what a rushhhhhhh! Kelly Jay, Crowbar.

breenlegal.com

Commercial Representation in the New Economy. 7761 Chetwood, Suite 200,. Columbus, OH 43054. 100 Campus View Blvd., Suite 250,. Columbus, Ohio 43235. T (614) 374-3324 [24/7]. Tips to reduce legal bills. Tips to prevent big legal bills. Do It Yourself Legal Zoom. Business Litigation and General Legal Counsel, located in Columbus, Ohio. Experience, Expertise and Flexibility. Try our revolutionary budget estimator. The Budget Wizard. In Columbus, Ohio, to discuss your legal needs with our office.

breenline.com

Home Page - My ASP.NET Application

SİTE TEST AŞAMASINDADIR. ÇOK YAKINDA HİZMETİNİZDEYİZ. Learn more ». İşletmeniz İçin Diğer Çözümler. Learn more ». Learn more ». 2015 - My ASP.NET Application.

breenmachine.blogspot.com

alert(1)

Monday, August 17, 2015. Bad AS - More on Broken JBoss Configurations. It's been a while since I've posted anything about JBoss. Once in a while I still get an email or IM about someone trying to use the exploit code released here or in the "clusterd" framework against a JBoss instance that should be vulnerable, but seems to fail when the payload attempts to deploy. This was (and still is) a bit of a mystery, mostly because I haven't spent the time to reproduce these configurations. The property "BaseDir...

breenmachineworldtour.blogspot.com

Breen Machine - World Cyclocar tour

Breen Machine - World Cyclocar tour. Attempt at establishing the World Distance record for a human powered Cyclocar. CyclOcar at the Guadalupe Desert Salt Flats, Texas nearly 2,000 miles into it's 30,000 mile journey. Pedal Power = Carbon Neutral Living. Wednesday, December 8, 2010. Please keep his spirits up and send him your encouragement to complete the adventure soon. At the moment we are just trying to get him home for Christmas. Gerry is now home and well with a story to tell. You know what I mean ...

breenmagazine.nl

Breen Magazine | In deze Breen

In deze Breen o.a. Zondag 20 t/m donderdag 24 augustus. Cantus sing-a-long, Collegetour, City Break-in, Backstage Campus Tour. Wat een uitkomst die OWee! Een half jaar lang heeft het OWee-bestuur fulltime ’t hok bewoond om de OWee weer tot een groot succes te maken. De vergunningen zijn binnen en de vergaderingen achter de rug. Tijd om te gaan genieten van de activiteiten die de OWee te bieden heeft! Wat staat er dit jaar allemaal op het programma? Lees het in 'BREEN'. Meld je aan vóór 22 september!

breenmail.com

Index of /

Apache Server at www.breenmail.com Port 80.

breenmediagroup.com

Breen Group | Broadcast, Web, Training, Music, or Viral

HD Video Production, Social Media, Inspiration and Imagination. We'll help you discover new business through an approach that's memorable and resonates. We have a passion for results. We create meaning campaigns that will increase your profits. The secret to success is to know something nobody else knows. Let us put our knowledge to work for you. 280 Brinkby, Ste 201. Reno, Nevada 89509.

breenmerchantprocessing.com

Breen An Authorized Keystone Affiliate