• Home
  • Contact
  • LinkedIn
  • Twitter

Ryan Wendel

My random musings on tech and whatever…

Tag: Metasploit

Forwarding Shells Through A Jump Box Using SSH

Ryan Wendel / February 2, 2020

I worked through a netpen CTF the other day that provided me a jump box to access the entire scenario with. Despite there being some tools installed on the jump, I didn’t want to use it as my attacking host nor did I want to catch shells…

Continue Reading→

Cooking up shells with a compromised Chef server

Cooking up shells with a compromised Chef server

Ryan Wendel / October 3, 2017

I was able to compromise a Chef server on one of my recent engagements. Owning a Chef server means having the keys to the castle. I wasn’t quite sure how to go about using this tool. I’m familiar with Puppet as I’ve spent the majority of my…

Continue Reading→

About

Ryan Wendel

Ryan Wendel currently operates as a penetration testing consultant working for the Dell Secureworks Adversary Group. His primary interests and areas of expertise encompass simulating real-world attacks on web applications and external/internal networks. Outside of his interest in offensive security, Ryan enjoys taking time off to snowboard, lift weights, hike, and enjoy the many delicious craft brews the Denver, CO area has to offer.

Ryan Wendel - GitHub Ryan Wendel - LinkedIn Ryan Wendel - Twitter

Recent Posts

  • DNS Exfiltration using SQLMap in a Microsoft SQL Environment
  • DNS Exfiltration through Blind SQL Injection in a MS-SQL Environment Using Burp Collaborator
  • Forwarding Shells Through A Jump Box Using SSH
  • Application Enumeration Tips using Aquatone and Burp Suite
  • Using Burp Suite’s Cookie Jar for JSON Web Tokens

Categories

  • Bash
  • Burp Suite
  • JavaScript
  • Lab
  • PHP
  • Python
  • Research
  • Scripts
  • SQL Injection
  • Tips
  • Uncategorized
  • WebApp
  • Writeups

Archives

  • February 2020
  • September 2019
  • May 2019
  • April 2019
  • October 2018
  • September 2018
  • April 2018
  • November 2017
  • October 2017
  • August 2017
  • July 2017

Tags

Amap Bash Burp CentOS Chef Credspray Enumeration gobuster JavaScript Lab Metasploit Nessus Netpen Nmap PHP Python Research Scanning Scripts Shells SMB SQL Injection Tips WebApp Workflow
Copyright RyanWendel.com © All rights reserved.
Blog Way by ProDesigns