Skip to content

Laconic Wolf

Building and Breaking Things…

  • Home
  • Penetration Testing
  • Python
  • PowerShell
  • Defense
  • Cloud
  • Forensics
  • /dev/random
  • Contact Us
Laconic Wolf

Category: Penetration Testing

September 21, 2018 Jake

MFA Bypass and Privilege Escalation

This post briefly examines two flawed implementations of Multi-Factor Authentication

Continue reading
September 8, 2018 Jake

5 ways to bypass account lockout in web applications

Introduction I recently wrote a post on enumerating valid usernames

Continue reading
August 27, 2018 Jake

Exploring the Burp Suite API

  With the release of Burp Suite Professional 2.0 came

Continue reading
August 22, 2018 Jake

5 ways to enumerate usernames in web applications

Introduction When performing security testing on a website, one of

Continue reading
July 24, 2018 Jake

Password Manager Vulnerability – Dashlane

This post discusses a flaw in the Dashlane password manager.

Continue reading
July 14, 2018 Jake

Exploring FTP with Python3

This post explains basic interactions with FTP using Python3 from

Continue reading
April 20, 2018 Jake

Briefly Exploring HTTP Header Vulnerabilities

I’ve recently come across (or read about) several vulnerabilities dealing

Continue reading
April 13, 2018 Jake

Burp Extension Python Tutorial

This post provides step by step instructions for writing a

Continue reading
April 4, 2018 Jake

The SMI protocol, and why Nessus is wrong

I was reviewing some port scan data and noticed port

Continue reading
March 16, 2018 Jake

PowerShell Web Enumeration – Get-WebsiteInfo

I was tasked to do a penetration test of a

Continue reading

Posts navigation

«Previous Posts 1 2 3 4 5 Next Posts»

About me…

I’m an information security professional with a focus  on offensive security. My day job is in penetration testing, but I also have experience in host defense, audit, and system administration. When I’m not doing that, I enjoy coding, building things in the AWS cloud, and ultra running.

Follow me:

  • Facebook
  • Twitter
  • LinkedIn
  • GitHub
  • Flipboard
  • RSS Feed

Recent Posts

  • SANS 2019 Holiday Hack Frosty Keypad Challenge
  • Walkthrough: OWASP MSTG UnCrackable App – Android Level 1 – Part 2
  • Walkthrough: OWASP MSTG UnCrackable App – Android Level 1 – Part 1
  • Using Burp Suite with Android devices
  • Hashcat Tutorial – Rule Writing
Powered by WordPress and Wellington.