In my environment all of our network connected devices are configured to respond to PINGs; this mainly comes about from using PRTG Network Monitor to confirm that devices and services are up even in the most simple of fashions. The same also applies to client PCs which through Group Policy are configured to reply to PING. Thus to save OpenVAS… Read more
Category: Software
This section looks at what is new in the world of software (Operating Systems included) and how to take best advantage of what is out there.
A little fun with PowerShell and Milestone XProtect (read the config.xml file and get a list of Devices and Cameras)
A little bit of fun today with Milestone XProtect (in our case the express version) today; with the goal of improving our documentation I wanted to somehow obtain a list of all of the hardware devices (and to some degree the cameras) including there names, MAC addresses and IP addresses from our XProtect server. Lone behold the configuration.xml file typically… Read more
Setting the Source Interface/VLAN for RADIUS, SNTP, syslog, TACACS, Telnet, TFTP and sFlow on HPE Aruba (ProCurve) switch
If you are running an HPE Aruba (formally ProCurve) switch you may come across cases where your switch (in the example above a 5400R zl2) has multiple IP Addresses/VLANs and you need it to talk to another service (in my case syslog and sFlow receivers) on a set interface. When this occurs you can use the ip source-interface command (make… Read more
Unable to mount the WIM, so the update process cannot continue – MDT on Hyper-V
Not the first time I’ve run into this issue and probably won’t be the last! While building a new Windows Server 2016 (Full) Microsoft Deployment Toolkit server when attempting to run the ‘Update Deployment Share’ wizard I was getting the following error message. Unable to mount the WIM, so the update process cannot continue. The solution is simple; if you… Read more
Securing Remote Desktop Protocol Port 3389 – Tools
Following on from more work with OpenVAS and after resolving issues around PHP/MySQL the next largest priority was flagged as issues with the Remote Desktop Server (this applies if the server is being used as a Session Host or is just running Windows Server/Client). Here are two pointers in the right direction to get these port 3389 issues resolved! SSL/TLS:… Read more
Upgrading PHP on a Windows IIS Server (Really basic)
Following on from some recent OpenVAS testing and in turn discovering that some of our PHP versions were sorely out of date I’ve set about to patch and document all of the installations. In turn we have a simple guide on how to update PHP security releases! Please note – this guide is aimed at really simple single server instances… Read more
A Windows SysAdmin installs and uses OpenVAS – End to end guide – Simple Beginnings
Following on from the previous post (A Windows SysAdmin installs and uses OpenVAS – End to end guide – Simple Beginnings) in this post we’ll be using PowerShell, OpenVAS and the OMP (Open Management Protocol from Greenbone) to create a Target (a machine/device) to conduct some Pen Testing against, create a Task to scan the target and then generate a… Read more
GitHub ‘Your account has been flagged.’
As anyone who has been keeping tabs on my work will know I’ve recently started making use of GitHub (https://github.com/jamesfed) but was quite surprised today when logging in and I received the message below. Your account has been flagged. Because of that, your profile is hidden from the public. If you believe this is a mistake, contact support to have… Read more
A Windows SysAdmin installs and uses OpenVAS – End to end guide – Installation
This guide covers one (of I’m sure a 1,000) ways to deploy and use OpenVAS 9 in your environment on Ubuntu Server 16.04 for the purpose of White Hat Penetration Testing, more so it’s also written from the viewpoint of a SysAdmin who mainly works with Windows Systems (Windows Server/Hyper-V/PowerShell/suchlike) and so takes a very simplistic approach to the setup…. Read more
Managing Sympa (Mailing Lists) with PowerShell (v1.0)
If you are running (or use) the Sympa Mailing List but also use Windows PowerShell then you may want to be aware of PSSympa which recently went v1.0 on GitHub and the PowerShell Gallery. In this release we have… Functions Get-SympaLogin (to login and get a session cookie – the result of which is used with all other functions) Get-SympaMailingListMember… Read more