Offsec’s PEN-300 course: becoming an OSEP / OSEP Review 2023

Introduction

This post is to serve as a general guideline and provide some useful resources to others who are looking to get their hands on the offsec’s PEN-300 course and getting the OSEP certification. This course has been a wealth of information, I strongly advise for anyone interested to look at the PEN-300 course’s syllabus. It mostly relates to penetration testing targeted towards a more hardened modern network environment, which includes modern AV solutions and additional access controls. One of the most important aspects of the course is it strongly focuses on penetration testing against an Active Directory environment.

Continue reading “Offsec’s PEN-300 course: becoming an OSEP / OSEP Review 2023”

Keeping progress of huge wordlists with fuzzing tools like wfuzz, THC Hydra & Patator using tcpdump and grep

Introduction

One of the non-trivial tasks when dealing with bulky wordlists like rockyou.txt is that tools either can not handle them, or the ones which can, do not usually have a progress bar to keep track of how far the current wordlist has been exhausted.

In this post I’ll be providing a quick copy-paste one-liners and explaining the methodology on how to implement an improvised progress tracker with tools like hydra, wfuzz and patator. In my example I will be using patator as it has no limitation on resources and I like to use it when I need to go > 100 threads (for refernce hydra supports up to 64).

Continue reading “Keeping progress of huge wordlists with fuzzing tools like wfuzz, THC Hydra & Patator using tcpdump and grep”

Resize images automatically based on width, height or percentage

Recently I came up with the issue of having to resize a set of images based on their width and at keep aspect ratio at the same time. I came up with the following threads on stackoverflow:


https://stackoverflow.com/questions/15987091/imagemagick-resize-images-to-25px-height-and-aspect-ratio
https://stackoverflow.com/questions/965053/extract-filename-and-extension-in-bash

The purpose is to resize all images in the current folder using ImageMagick, while keeping old files and whereas the new filenames are written with the same extension and an appendix for easier identification of the resized images. The new filenames  also could be easily put in a new folder by changing the destination within the following commands:

 #!/bin/bash

# resize image based on width and keep aspect ratio
for i in *; do convert -verbose -geometry 800x "$i" "${i%.*}-small.${i##*.}"; done

# resize image based on height and keep aspect ratio
for i in *; do convert -verbose -geometry x600 "$i" "${i%.*}-small.${i##*.}"; done

# resize image by percentage and keep aspect ratio
for i in *; do convert -verbose -resize 40% "$i" "${i%.*}-small.${i##*.}"; done
A simple solution for designers who need to convert a folder of images at once instead of using a graphical editor and having to go through each image separately.