John Pierce

. CISSP, SLAE, Security+

SSH Tunneling

In this video I go through the process of setting up an SSH tunnel to hide an IP and also setting one up to create a simple router, in this case, on a dual-homed host.  The second instance could also be used to route traffic through an encrypted channel on an unexpected port.  For example, it could be used to route IRC traffic through port 80 to avoid a network policy.  In addition to the demonstration of setup, I analyze traffic from the points of view of the browsing computer, the host for the tunneling, and the recipient of the tunneled traffic.

Network security

Most Recent Articles

Format string exploit example, 64bitprimer CTF from vulnhub.com, level 4
Categories: Computer general, Computer general
First bit::

This is a writeup of the format string vulnerability in level 4 of the 64bitprimer VM from vulnhu

Setting up a Yubikey 4 in Debian Jessie
Categories: Computer general, Computer general
First bit::

Installation of the software to make a yubikey 4 work in FIDO U2F mode on Debian Jessie i386

Takeaways from PANW CTF 2016 Labyrenth
Categories: Reversing, Computer general
First bit::

Lesson(s) learned

PANW CTF Labyrenth Unix Track Challenge 7
Categories: Reversing, Computer general
First bit::

This one stumped me. Overall, it was a great competition for me as I got to learn a whole lot of new things. I had never worked on a Mac, other than as a user, had never used Hopper, lldb or any of the other tools for reversing on a Mac, and haven't got any experience in the Objective C/Swift framework.

PANW CTF Labyrenth Unix Track Challenge 6
Categories: Reversing, Computer general
First bit::

4 rounds, lots of debugging

Videos

iptables Lesson 2
Categories: Network security, Videos
First bit::

Explains the workings of a DMZ, walks through setting up and testing of a DMZ in a virtual machine lab environment

SSH Tunneling
Categories: Network security, Videos
First bit::

In this video I go through the process of setting up an SSH tunnel to hide an IP and also setting

Buffer overflow demonstration
Categories: Exploits, Videos
First bit::

Useful for someone who is interested in what a buffer overflow is. Does not go into the details of development, just explains generally and demonstrates the use of one.

Buffer Overflow of SLMail 5.5.0.4433 - full development
Categories: Exploits, Videos
First bit::

a demonstration of a vulnerability discovered and published by Muts in 2004, exploited on a Windows XP SP3 machine using Python, Immunity Debugger, and Metasploit.

iptables Lesson 1
Categories: Network security, Videos
First bit::

In this video I demo some simple iptables rules and show them how to perform network traffic analysis to test them out.