Enumerating Users on WordPress

2020-09-05

Finding valid usernames can significantly improve your chances of breaking into a WordPress account. In this blog post I cover some of the methods I use to find valid users and how you can protect your own site against them.

Read More

Upgrading reverse shells

2020-06-01

Once you've got a reverse shell, there are a number of things you can do to make it nicer to work with. I go through those and at the end, automate the annoying bit with zsh.

Read More

Current Word Completion

2020-05-26

ZSH's tab completion is excellent, although limited to completing based on your command. With this, I can also make completions based on my current word.

Read More

3 Simple Steps to Improve Your Freelance Business's Security

2020-04-09

All too often, security advice is aimed at large companies who can afford to spend hundreds or thousands of pounds on security procedures. In this blog, I will try and lay out some advice for freelancers and small businesses can follow, without breaking the bank.

Read More

Using Mutt with Exchange

2020-03-10

Many companies use an Exchange server for email and calendar. My preferred email client is NeoMutt. You can use Davmail to make these two work together.

Read More

The switch to ZSH

2020-02-29

ZSH is great shell but in this blog I explain some of the annoyances I've had with it, as well as some of the benefits.

Read More

Fuzzy Search Hashcat Modes

2020-02-24

Hashcat is an amazing tool for cracking hashes but the syntax leaves a bit to be desired. This article explains one way to improve the experience of selecting modes by overriding ZSH's built in tab-completion using FZF.

Read More