How to BOOT Kali Linux over HTTP

Booting Kali Linux Live Over HTTP

Kali Linux
Kali Linux Features Here at Offensive Security, we tend to use Kali Linux in unconventional ways – often making use of some really amazing features that Kali Linux has to offer. One of these interesting use-cases includes booting instances of Kali Linux Live over HTTP, directly to RAM. We realized…
Read More
Kali NetHunter 1.2 Released

NetHunter 1.2 – Lollipop & Nexus 6/9

Kali NetHunter
Kali NetHunter 1.2 Released! Kali NetHunter 1.2 is fresh out, with a whole bunch of improvements, bug fixes….and yes, Android Lollipop support. This means that NetHunter now supports the Nexus6 and Nexus 9 devices too! This is awesome news to all those who have bought these new Nexus devices and…
Read More
Multiple Persistent USB Stores

Kali USB – Multiple Persistent Stores

Kali Linux
One of the markings of the 1.0.7 Kali release was the introduction of Kali Live USB LUKS encrypted persistent storage, on which we further elaborated in one of our previous blog posts. However, we're not done yet with USB persistent storage as more features in Kali remain to be explored.
Read More
Offsec say, you must Try Harder

Offensive Security Say – Try Harder!

Offensive Security
Offsec students go through hell. They endure levels of stress and frustration beyond what is considered normal, and we at Offsec appreciate this. So much in fact, that we've dedicated the following song to anyone who's taken an Offsec course, and tried harder!
Read More
NetHunter. The most dangerous phone in the world.

NetHunter 1.1 Released

Kali NetHunter
With the opening shots of 2015 fired, we are happy to make some announcements in the NetHunter arena! One of the things that excite us the most about Kali Linux is how our Kali projects always end up being greater than the sum of their parts. This is most evident…
Read More
Happy Holidays from Offensive Security

Happy Holidays from Offsec

Offensive Security
We at Offensive Security would like to thank all of our students, customers, and friends for a wonderful 2014. Its been a busy but productive year, with major upgrades to Kali Linux, the release of Kali NetHunter, the public launch of the hosted virtual labs, the first ever Kali Linux…
Read More
Professional Penetration Testing Labs

Professional Penetration Testing Labs

Offensive Security
For the past few months, we have been quietly beta testing and perfecting our new "Offensive Security Penetration Testing Labs", or as we fondly call it, the "Offsec Playground". Today, we are proud to unveil our hosted penetration testing labs - a safe virtual network environment designed to be attacked…
Read More
Raspberry Pi TFT Screen Support

Kali with Raspberry Pi TFT support

Kali Linux
Several weeks ago a request in the Kali forums prompted us to look at the integration of the Adafruit 2.8in TFT touch screen for Kali Linux. A few weeks and much less hair later, we are happy to announce the availability of this image in our Offensive Security custom Kali…
Read More
Disarming Enhanced Mitigation Experience Toolkit

Disarming and Bypassing EMET 5.1

Exploit Development
Last week Microsoft released EMET 5.1 to address some compatibility issues and strengthen mitigations to make them more resilient to attacks and bypasses. We, of course, were curious to see if our EMET 5.0 disarming technique has been addressed by the latest version of the toolkit.
Read More
NetHunter 1.0.2 Released!

Kali Nexus NetHunter 1.0.2

Kali Linux, Kali NetHunter, Offensive Security
It's been a week since our release of the Kali Linux NetHunter, and the feedback is amazing. A NetHunter community has sprung up from nowhere, and the forums and github pages are really active. We're completely stoked about this community response, and are eager to see it grow. After an…
Read More
NetHunter 1.0.2 Released!

Disarming EMET v5.0

Exploit Development, Offensive Security
In our previous Disarming Emet 4.x blog post, we demonstrated how to disarm the ROP mitigations introduced in EMET 4.x by abusing a global variable in the .data section located at a static offset. A general overview of the EMET 5 technical preview has been recently published here.
Read More
Symantec Endpoint Protection: Privilege Escalation

Symantec Endpoint Protection 0day

Exploit Development
In a recent engagement, we had the opportunity to audit a leading Antivirus Endpoint Protection solution, where we found a multitude of vulnerabilities. Some of these made it to CERT, while others have been scheduled for review during our upcoming AWE course at Black Hat 2014, Las Vegas. Ironically, the…
Read More
Menu