Forum Replies Created

  • Eric

    Member
    June 25, 2021 at 4:43 pm in reply to: Updating Burpsuite ?

    You are welcome! It took many times messing up burpsuite updates on my kali vm’s. If for any reason Anthony you run into a problem we can jump on a Discord really quick and I can help walk you through it.

  • Eric

    Member
    June 27, 2020 at 2:35 pm in reply to: Standing Out In Cybersec: Best Entry-Level Resume Recommendations

    Absolutely awesome and super helpful article! So many things I haven’t thought of before. Thank you!

  • The other task that I had an extremely difficult time with was setting up a pentesting lab utilizing vmware workstation. I have since set up multiple virtual pentesting labs. One of the main issues were trying to understand the virtual networking aspect. The most current lab I have set up uses pfsense to distribute IP’s within lan segments to my VM’s. I have a DC with another server instance and two windows machines and a kali machine. One of the issues was understanding that in order for vmware workstation to use the bridge setting on a laptop wirelessly is you have to go into network editor and set the bridge adapter to your wireless adapter and not automatic. But I would say that setting up these labs were probably the most challenging in that a lot of tutorials don’t cover virtual networking. Vmware has extensive documentation but when your using wireless via a laptop it gets tricky. I think the community for students could really use an in depth series on setting up realistic pentesting labs and utilizing pfsense. Another crucial area that I have not seen covered really well is the area of setting up honeypots and using for example the onion security VM that has tools to analyze the traffic coming into the honeypot like snort. There are some but I know for myself it really isn’t covered well enough to feel comfortable running a honeypot. Sorry to ramble on I just think the way you explain things is amazing and so many students would benefit from your instruction in some of these areas.

  • Thank you so much for the insight and I think it would be awesome to connect with you especially for my brother. He is currently developing a keylogger and has already created a website utilizing python flask. He is also a wiz with networking. But he is very discouraged and has had several interviews with no results. The labs that I had the most trouble with was actually configuring Burp. I ended up figuring everything out and wrote two tutorials on Burp and Ettercap. Haven’t shared them publicly but have no problem sharing them with you. I used Microsoft word to create both please let me know how I can get them to you.

  • Eric

    Member
    June 22, 2020 at 8:29 pm in reply to: Hi, I’m Christophe

    Wow! Amazing. Thank you for starting this as I could never put into words what you just did. It is so much a struggle among students like myself especially being older I have been just overwhelmed. My younger brother for example has a two year with CCNA and sec+ certs and still can’t find a job. They want experience. My goal is to go on to get my masters but in between find a job in this field. Just wanted to say thank you and that out of all the sites out there no one has put this as succinctly as you have!

  • Hello my name is Eric and I just signed up after watching one of your awesome videos on sql injection. I am a full time student but first a husband and father. This is my second career as I was injured and couldn’t continue with my first which was in law enforcement. I am almost finished with about 3 years of school but is not the same as you would think as my community college has a special program with a local university which allows me to complete my third year at the community college level then go on to the university level and finish up 1 year and get my bachelors in cybersecurity. I love ethical hacking specifically webapp and malware analysis. My biggest expectation is to find some direction and help as I move forward. It’s overwhelming the amount of information and resources to sift through and I often find myself on rabbit trails. I would then love to give back to this community by sharing some of the projects I had difficulty with in school. I’ve written a few tutorials but still have a long way to go. I’m trying to focus on programming, networking, and webapp pentesting. Please let me know if you have any questions.

  • Eric

    Member
    June 25, 2021 at 4:20 pm in reply to: Updating Burpsuite ?

    There are a couple of ways to update, however if you are using Kali or Parrot you need to rename the current install of Burpsuite to burpsuite_old as Kali uses a .jar file. So the steps in order are as follows:

    1. Download the updated version from portswigger website (if you click update when opening burp it will take you directly to their site and give you the updated version to download) Also, choose the .jar file not the .sh file.

    2. Navigate to the /usr/bin directory: cd /usr/bin

    3. Rename the current install to burpsuite_old: sudo mv burpsuite burpsuite_old

    4. Now copy the newly downloaded .jar file to the /usr/bin directory: sudo cp {directory of where you downloaded the burpsuite_community file} /usr/bin/

    Example on my system: sudo cp /home/sechvn/Downloads/burpsuite_community_*.jar /usr/bin/

    5. Rename the downloaded updated burpsuite_community_*.jar file to burpsuite: sudo mv {name of downloaded .jar file} burpsuite

    Note: The .jar file will have a version number associated with it. Using the * is just a wildcard and will work but I always name the exact file when doing this.

    6. You need to chmod the burpsuite binary that you just renamed while still in the /usr/bin directory: sudo chmod +x burpsuite

    7. Finally, remove the burpsuite_old binary or .jar file in the /usr/bin directory: sudo rm burpsuite_old

    8. Finished! If you download the .sh file and then chmod the installation script it will work, however you will have two versions of burpsuite on your system.