The third assignment of the SLAE64 exam states:

• Study about the Egg Hunter shellcode
• Create a working demo of the Egg Hunter
• It should be configurable for different payloads

I for one had not heard before of the concept of an egg hunter so a little searching around led me …

The second assignment of the SLAE64 exam states:

• Create a Shell_Reverse_TCP shellcode:
  • Reverse connects to configure IP and port
  • Needs a "passcode"
  • If passcode is correct then execute a shell
• Remove 0x00 from the Reverse TCP shellcode discussed in the course

Reverse TCP shellcode

This is quite a lot simpler …

The first assignment of the SLAE64 exam states:

• Create a Shell_Bind_TCP shellcode:
  • Binds to a port
  • Needs a "passcode"
  • If passcode is correct then execute a shell
• Remove 0x00 from the Bind TCP shellcode discussed in the course

Shell Bind TCP shellcode

The first assignment is to create a shell …

Recently I decided to study for the SLAE64 course from Pentester Academy to work on my assembly knowledge, specifically on x86_64. Through the course does focus on Linux I want to apply the knowledge to OpenBSD/amd64 too and thus I installed NASM and looked at what I needed to …

The following documents the steps needed to setup NetBox on OpenBSD. I am running NetBox on a PC Engines APU which holds up fairly well and I have since migrated my own setup from RackTables to NetBox, primarily because of the API functionality NetBox offers which allows for integration with …

When managing configuration for various services, you'll (hopefully) end up having to install TLS certificates at some point. Instead of having to come up with the same logic in various modules, roles or formulas I've had an Ansible role for a while that bundled all the logic into a single …

Whilst setting up consul on SmartOS I noticed the packages distributed through pkgsrc were lagging behind a bit and the upstream "distribution" contains only the consul binary.

Running consul -dev in a tmux window will get boring pretty quickly, so I came up with the following SMF manifest using …

As mentioned in an earlier post I'd been working on two new Ansible modules; for imgadm(1M) and vmadm(1M). So here I want to demonstrate these new modules which will be part of Ansible 2.3.

imgadm

The imgadm module allow for managing both images and data sources. Let's …

None of the machines I currently run SmartOS on are big enough to run SDC/Triton, so I looked at Rundeck for creating zone definitions. and provisioning new zones as jobs. However Rundeck is unable to dynamically add new option fields. This is required for example in order to …

After losing some hair over the question how does Ansible do hiera-style %{} variable interpolation? I figured I'd jot down my findings. If nothing else, it'll serve as a handy cheatsheet for future me.

Background

In Hiera one can do variable interpolation and internal lookups. So that's Hiera calls withing …