Linux Fundamentals 2
TryHackMe is an amazing platform to learn CyberSecurity, regardless your knowledge level. Recently they lanched a new PreSecurity learning pathway , in case you have no prior security knowledge.
The pathway includes multiple rooms with entry level knowledge on Networks, Web, Linux and Windows Fundamentals.
Task 1:-
This writeup is for Linux Fundamentals 2 room.
I prefer to start with the AttackBox provided by the platform, but you can still use your own machine.
Task 2:-
Start with deploying the Linux Machine. Once deployed you will have the machine IP address.
For your own delopyment or attack box, try accessing the machine with ssh.
SSH is a way to use commandline to access remote machines. It is widely used, even more than remote desktop , for ease of use and being lightweight.
The IP provided for me is : 10.10.100.49
The username provided is tryhackme
Password is : tryhackme
To access the machine with SSH, start the Termianl then type :
ssh username@ipaddress
enter the password when requested
Accept to connect by typing yes
Once connection is established, you will have the username@machinename prompt
Task 3:-
The room starts with learning some basic commands on linux
ls : To view the contents of a directory ( this is simliar to dir in windows)
man : this is to show the manual pages for the command
you can also use other flags like -h or –help ( if the command allows) .
It is always good to view the help / manual page for any command to see the different flags you can use and the proper syntax.
You can use the up and down arrow keys to navigate across the manual page.
Task 4:-
These commands are common to use in your terminal:-
CP: cpy file or folder
touch: create a file
mkdir: Creates a folder
mv: moves a file or a folder
rm: removes ( deletes) a file or a folder
file : Determines the file typeclear
to see the contents of a file use the cat command
Task 5:-
File permissions on linux are read, write and excute. They are distributed on owner level, user level, group level and folder level.
If you can’t access a file with your current user permissions, you need to change the user using the su command , and enter the new user password
Task 6:-
Linux has a large directory structure. The directories of importantce to start looking at :-
/etc : this has the passwd and shadow files where the encrpyer passwords hases are located. These two files are important in pen testing
/ var :Has the /log subfolder. Logs usually have a lot of imporatnt information
/root: This is the root folder directory. If you can access it you have root access to the machine.
/tmp: for temporary files. This has useful information for the temporary files info used by different applications. This is also useful in pentesting
After finisihing your exploration on the vm , don’t forget to terminate it !
Facebook.net
The long waited for SDK, At last
Download the facebookSDK for .net developers, supporting Windows Phone and Windows 8.
Now Facebook application development has become a piece of cake on Microsoft platforms.
Windows 8 Supports ISO images
I ‘ve always used third party tools to mount the ISO images. But now, Windows 8 support this transparently
Support Egypt–#windowsphonecamp
I’m at Windows Phone Camp. for the conference competition, I chose to submit my idea as a windows phone application to support egypt.
In this application, People can submit ideas to support egypt , either in healthcare, economy or education. People have votes for these ideas. People also can donate through the phone application using online payments, they can choose to support either healthcare , economy or education. According to the available fund, decided by the charity admins, all funds in each category go to implement the top voted 5 ideas in each category. The app is integrated with facebook to ensure Cause distribution using the wide network viral marketing concept, collecting a bigger amount if ideas, besides having a better distribution for the free app .
The app idea can be tweaked to be used for whatever fundraising / charity / support ideas program.
Support my idea by rating at http://www.codevnext.com/apps/479
Windows Phone 7.5 Data Cookbook
I ‘ve recently read “Windows Phone 7.5 Data Cookbook” . The book covers different database related alternatives in a chapter to chapter basis. You can read what you want without having to read the book from cover to cover. Chapters discuss different topics without being dependent on each other’s.
The book mainly targets experienced Windows Phone developers. The book aims at boosting your mobile database development skills. If you are not familiar with programming C#.net, Silverlight and other necessary development skills , then, you have to check some extra books too for the basics. But if you have been writing some Windows Phone applications and had some hard times with the database stuff, then you are in the right place.
The book uses the latest updates in Windows Phone 7.1 SDK that enable developers write applications for the latest version Windows Phone 7.5
The book discusses new stuff like Twitter , Atom and RSS, and mobile specific database connections using JSON, also the conventional powerful SQLite. and SQLCE . LINQ to SQL and ADO.net.
There are some examples using REST and WCF and the new Model View View Model (MVVM ).
The book uses a simple coding style, straight and to the point, without confusing the reader with complex code that doesn’t add a value. After having hands on every topic separately, at the end of each chapter, you have a sum-up sample app where you combine all the knowledge you gained in the chapter in one single app to see how things fit together in the big picture.
The book also uses examples that can be implemented in the real world, so you learn fast, improve your skills, and you don’t have to reinvent the wheel.
Although the book is great in discussing the different data alternatives, it should have made a comparison between the different alternatives and discussing pros and cons of each using different case studies showing when to use each alternative rather than another.
Overall: that is a really good book. You can download a sample chapter from the book here.
Windows Phone Data Programming..
I found a nice book about Windows Phone data programming..
There is a sample chapter available here for download.
I ‘ll be reviewing this book in the next few weeks.
Install GFI Webmonitor
GFI Webmonitor is a nice proxy tool , to use to control your internet usage and analyze it too. It is a simple one to use.
Installing GFI Webmonitor is really simple. You don’t have to be a security engineer to install it.
This is a step by step installation
. Welcome screen
. You may check for a newer version
. Accept the license agreement
. Enter ip addresses for the computers accessing internet through Webmonitor [the ips shown are for my wifi and a virtual lan card, besides the localhost]
. Enter the username and password for the admin account on your machine
. Enter the mail server settings so that you can receive email reports from Webmonitor
. Choose the installation folder
. Install Microsoft Message Queuing Service if it is not installed on your machine
. Start the installation by clicking the install button
. Congratulations !! Now installation is complete
. Based on your firewall settings, you may have to allow Webmonitor
Multiple machines with the same keyboard and mouse
Having multiple machines on your desk is really nice, but using multiple keyboards and mouses ( or mice ??? ) is not that fun. I even knew somebody that used to remote desktop to those machines on the same desk !! to use the same keyboard and a mouse.. hehehe what a workaround !!
Input Director can be used among different / multiple windows versions machines.
Synergy is a cross platform one .. use it on Windows, Linux, Mac or even iPhone
Web based code reviews
Code reviews is a good approach among developers, for coder refactoring, bug fixes, ensuring code quality following coding standards …etc
Browser-based code reviews using viewvc or Crucible are very useful, especially that they integrate with source control systems like CVS and Subversion.
Crucible has an edge, being integrated with the full Atlassian suite. That will be great add-on if you are using Jira for your development teams.
Mockupbuilder for iPad ,iPhone, Android and blackberry apps
Mockupbuilder, A nice Silverlight based mockup builder to design ui for your smartphones and tablets..
Just nice and simple
Tamer Maher 