Things to Do#

~~FINISH GETTING THE NOTES UP FIRST!!!~~

  • Move Kusto Detective Agency from Purview to PracticeRooms

  • Clean up the ‘Red Team’ Chapter, only half linked

  • Craft/Frameworks is VERY empty…

  • ~~XSS looks quite empty~~ Working on it now. It looks a bit better

  • Redo the Cisco Programming page. It was a short term thing and I can do much better now

  • add last modified to sections

  • Finish “The Basics”

  • ~~Add attacks in a separate sections~~ done

  • ~~HackerCraft: Add the general process (OSINT, Info Gathering, expl, escalation, covering/maintaining)~~ Removed as working on Killchain now

  • write python program for SQL injection

  • ~~JNR Pen tester page is empty~~ I’m removing it

  • ~~Mention more on HoloLive~~ Closed account, I’ll come back to it when I reactivate

  • Add intro page about WHY cyber security is important

  • Nmap - Add examples and videos

  • ~~Add people who helped (Giraffe Academy, The Cyber Mentor)~~

  • ~~Add my linked In page~~ Added

  • Remove the default Links

  • ~~Explore “Hack the Box”, add here~~ Not so fun, maybe when I want to pay for it again.

  • Add my “TryHackMe” account

  • Dark Mode

  • I’m sure the google analytics ID is wrong

  • ~~Mitre’s ATT&CK looks interesting…~~ It was

  • ~~Nmap has external 3rd party services? “Checks using a third-party service, such as Geoplugin and Virustotal”~~ answered with scripts

  • LinuxPrivesc task 8 - try a write as SUID

  • Expand on yara rules

    • need to add how to install the expansion packs too

  • ~~Finish Agent SUDO Page~~ Done

  • Finish Terminator Page

  • Finish LazyAdmin Page

  • ~~Finish TomgHost Page~~ Done

  • Document ISAC https://tryhackme.com/room/introtoisac

  • Document MISP https://tryhackme.com/room/misp

  • OpenVAS looks fun, try it out

    • Tried it, add building the appliance

  • Build process flow for Core windows processes https://tryhackme.com/room/btwindowsinternals

  • Finish SysInternals Tools

  • Add domain structure to WindowsAD Page

  • Things to looking into more

    • Vulnix (Active Scanning)

    • rafax00/Bruteforcer

    • ~~Nessus - vulnerability scanner. Theres rooms for it too (got the appliance set up though)~~ Happy where I am for now

      • should look into the reporting side with the extra licences too….

    • Shodan.io & Sensys

    • Linpeas/Linenum/LES expand on

    • Spend some time on SET (Social Engineering Toolkit)

    • https://osintframework.com/

    • https://securitytrails.com/blog/osint-tools

    • wazuh - free SIEM & XDR

    • Bloodhound AD

    • Ettercap / Bettercap; not high on the list though

    • MSFVenom