https://everything-cyber.netlify.app/tags/vm/Recent content in VM on Everything CyberHugo -- gohugo.ioen-usWed, 05 Jul 2023 12:49:58 +0530https://everything-cyber.netlify.app/blog/buffer-overflow/Wed, 05 Jul 2023 12:49:58 +0530https://everything-cyber.netlify.app/blog/buffer-overflow/Practical Buffer Overflow with FreeFloat FTP Server Description A walkthrough illustrating the methodology of the Buffer Overflow attack, focusing on the FreeFloat FTP Server. Lab Setup -Virtual box -A windows XP machine -Favourite Pentest Distro -Favourite Code editor Softwares and Tools -Download or Install Immunity Debugger and the Free Float FTP server onto the Windows XP -Download the mona.py file to Windows XP -Need Metasploit and SPIKE tools on the Pentest box (Here, I won’t be using spike script but would manually exploit the application)https://everything-cyber.netlify.app/blog/2fa-steal/Sat, 15 Apr 2023 12:49:58 +0530https://everything-cyber.netlify.app/blog/2fa-steal/2FA Steal Description Just a simple demonstration inspired from the video of John Hammond to bypass 2FA SMS Authentication. You can watch the video Here Languages and Utilities Used - Linux - Python - Java Environments Used - Windows 10 - kali Procedure: - Took the HTML code from the browser view page source - Added the json payload inside the code payload that we use in the html pages, bear in mind to change the input type based on the webpages <script src ="https://cdnjs.https://everything-cyber.netlify.app/blog/fim/Wed, 04 Jan 2023 12:49:58 +0530https://everything-cyber.netlify.app/blog/fim/File Integrity Monitor Description Integrity in CIA Triad means the correctness in a file. If a data gets changed or edited an alert needs to be triggered so that an analyst or others can check the integrity This projects is to create a FIM – File integrity Monitor powershell script(below). FIM – is to monitor some important files and is designed to provide an alert once it gets modified # change the file path D:\Desktop\FIM\baseline.https://everything-cyber.netlify.app/blog/nessus/Sun, 01 Jan 2023 12:49:58 +0530https://everything-cyber.netlify.app/blog/nessus/Vulnerability management using Nessus Description Using Nessus essentials vulnerability management we are scanning a Windows 10 VM for vulnerabilities that are present and trying to remediate it. Tools Used Nessus Essentials Deployed Windows 10 VM in Virtual box Procedure: Set up a VM in Virtual box with windows 10 and bridged adapter settings Test connectivity using the PING command from host machine to the VM (Might need to allow SMTP in firewall or Disable Firewall)