Cybersecurity Notes

---

This is Corban Pendrak’s cybersecurity notes and writeups.

Navigation

Click links to move around or use the graph. Maps of Content (MOCs) are lists of other notes/resources for organization.

Modules

• Hardware MOC
• Linux MOC
• Network MOC
• Offensive Security Concepts MOC
• Programming MOC
• Regular Expressions
• Web MOC
• HackTheBox Writeups

Fix backlinks (for Obsidian editing)

formulas:
Backlinks: file.backlinks.filter(! file.hasLink(value)).map(value.asFile())
Num Backlinks: file.backlinks.filter(! file.hasLink(value)).length
views:
 - type: table
   name: Non-reciprocal Backlinks
   filters:
     and:
       - file.name.contains("MOC")
       - file.backlinks.length > 0
   order:
     - file.name
     - formula.Backlinks
   sort:
     - property: formula.Num Backlinks
       direction: DESC
   columnSize:
     file.name: 213

file.backlinks.filter(! file.hasLink(value)).map(file)

Todo

• research syscall hooking
• research linux kernel for persistence
  • dmesg is kernel log
• research rootkits/C2
  • Sliver
  • Singularity
• Create parent-child malicious process triggered by killing
  • Theme it Jinx or Batman
• Research fanotify
• Research Apparmor
• char device interacts with kernel for privelige escalation
  • requires root, but useful for persistence, unless kernel bug
• Hooks replace kernel commands with user defined command
  • More hooks is more functionality.
  • tcp_seq_show hook for hiding from netstat
• Hide PID in /proc
• Don’t dereference user memory in root/kernel
• Hide process in Windows in kernel _EPROCESS double linked list
• Minifilters with highest altitude value allows for Windows file hiding
• GRFOBins/LOLBAS
• Wiki
  • Review MOCs
    • Write social Descriptions
    • Add link in generate result
    • Add link in social preview
• Move over stuff from other vault
  • Maintain some privacy/consider total privacy
• Work on breaks
• OWASP article
• Using Hashcat
• Common ports
• Recompile bash
• Using tmux
  • Tmux Cheat Sheet
  • IppSec Video
• Privacy
  • Tails
  • Tor
  • Signal
• Physical breaks
  • GrabAccess
• Reference/cheatsheets
  • Common port numbers
    • Top Ports from Nmap
    • Common Ports
    • More common ports
  • Common commands
• GodPotato
• Initramfs
• Kraker.js
• Randomart image
  • Research paper on randomart images
• Cryptography
• Email stuff
  • More
  • SPF
  • SMTP AUTH
  • Internet Message Format
• Common payloads
  • Payloads All The Things
  • High on Coffee
  • PEASS
  • HackTricks
  • Reverse Shells
  • Impacket
• Challenges
  • OvertheWire
  • UndertheWire
  • Damn Vulnerable Web App
  • Metasploitable 2
  • OWASP Juice Shop
• Nmap Docs
• Writeups
  • 0xdf
  • pwndoc
  • Ghostwriter
  • AttackForge
• YouTube Channels
  • LiveOverflow
  • STÖK
  • VbScrub
  • IppSec
  • CPTC Bootcamp
  • CPTC10 Presentation
• Bug Bounty Programs
  • Bugcrowd
  • HackerOne
• CVSS Calculator
• sshuttle

formulas:
  Backlinks: file.backlinks.filter(! file.hasLink(value)).map(value.asFile())
  Num Backlinks: file.backlinks.filter(! file.hasLink(value)).length
views:
  - type: table
    name: Table
    filters:
      and:
        - file.name.contains("MOC")
        - file.backlinks.length > 0
        - file.backlinks.filter(! file.hasLink(value.asFile())).length > 0
    order:
      - file.name
      - formula.Backlinks
    sort:
      - property: file.name
        direction: ASC
      - property: formula.Num Backlinks
        direction: DESC