blog.scriptmonkey.uk blog.scriptmonkey.uk
AboutBlog PostsProjects & Talks

Blog Posts

Most Recent Post

Playing with RLI-NG
A while ago I gave a bit of a haphazard [presentation](https://www
2023/11/03

Previous Posts

Moving Sites / Bloody Brexit
So some of you may have seen my previous website over at https://blog
2022/12/09
EMFCTF - Electromagentic Field CTF Write-Up 2018
So it’s come around once again, EMFCamp is an event held every 2 years somewhere in the UK (usually south of England as far as i’m aware) where people from all walks of life come together to celebrate anything that’s geeky/nerdy or just plain cool!
2018/09/13
Playing with AutoPlay
Intro First
2017/08/24
PeSKy VPNs - A lesson in IPSEC and IKEv1
Introduction So every quarter my company arranges an internal “conference” where the members of my team have to come up with some sort of presentation discussing research or learning that they have done in the past 3 months
2014/10/15
NFAL - Episode Two : Wyze Thin Clients
Why do I get excited whenever I am presented with a thin client, with an RDP or CITRIX or VMWare View session to a backend virtualised desktop? Because you can almost guarantee the thin client is the easiest local lockdown check you’ll ever do
2013/10/13
Bypassing Group Policy Proxy Settings using the Windows Registry
Foreword: Irresponsible Disclosure? I have tried to report this to Microsoft Security Response Center ([@msftsecurity](https://www
2013/09/12
BSides London 2013: Blinking Hell - Extracting data using keyboard lock states
So hopefully if you’re reading this you’ve seen mine and Matt Phillips ([@phillips321](https://www
2013/04/25
Notes from a lockdown: Episode 1
So I’ve done a few posts in the past about getting command prompts from GPO’d workstations and running what’s known as “mobile code” in locked down environments (##, VBS, BAT, Bash, Python, Perl, etc…)
2012/11/07
NFTF: Bypassing Group Policy Denied Command Prompt
This is an old trick but I ended up doing it the other day just for kicks, it will only work on 32bit systems at the moment (edit
2012/08/15
NFTF: Local Lockdown - Getting prompts, Fun with macros and Scripting help on airgapped systems
Using VBS to fire up FTP as a local command shell This is probably a duplicate somewhere but I wanted it noted for my own use anyway – here’s a very handy VBS that does the job nicely for accessing useful commands as a user on a locked down desktop
2012/07/12
Cross-Post: Exploiting Windows 2008 Group Policy Preferences - Expanded
Cross posting some work of a friend of mine that I was helping with, I say “helping” in the lightest form of the word
2012/06/22
NFTF: Alternative Data Streams - Bits and Pieces
To those not familiar with the world of NTFS
2012/05/12
My First CTF - PlaidCTF 2012
So it was the same as any other usual Friday, 10pm I’m shattered after a particularly taxing week at work so laying in bed reading a book (the rock and roll lifestyle of a social pariah) when I get a text from a colleague
2012/05/04
Leveraging HTML5 in order to turbocharge clickjacking
You have a website and you’ve proven it’s vulnerable to clickjacking, but what use is fooling a user into submitting a form unless you can specify some of the data that the user is submitting within those fields?
2012/03/28
NFTF: Extracting the important bits from wsusscn2.cab
Working on a script for extracting MS numbers for patches as part of my work
2011/10/28
Tip of the day: Logical Syntax
Just a neat little way of thinking about logical vs syntax errors
2011/04/04
Bash 'while read line' vs Awk Large File Processing
Recently I had to fudge some data so that it would be imported into a database after an outage caused our “php” data loader to try and allocate a crazy amount of memory and die fantastically
2010/07/24

blog.scriptmonkey.uk

  • Scriptmonkey_
  • Scriptmonkey.blog@gmail.com
  • © 2024
  • scriptmonkey_
  • scriptmonkey_
  • console
  • RSS Feed

Blog is currently undergoing construction. See about page for info. Posts will be migrated across from an older website https://blog.scriptmonkey.eu