Powershell Deobsfuscation Ep.7
Team, has anyone ventured into PowerShell Deobsfucation yet? I’ve got to 7 no issues but I cannot get another further. The drama is every time you reset it’s a completely different code or it freezes or stutters. When it’s not being choppy it’s pure nails. I can’t ask an exact question as it keeps changing but more of how are you approaching it. Are you creating your own scripts to decode this, if so could you share ideas, are you copying it out to powershell decoder or manually doing it by hand or using cyberchef if so what actions are you selecting?42Views0likes2Commentstweaks to career paths
Hi - I'm reasonably close to finishing career path: Advanced Threat Hunting and Digital Forensics However I really don't like the look of "DFIR CTF: LightNeuron DLL" Is it possible to get the career path amended so that this lab does not have to be completed. many thanks - gus32Views1like2CommentsConfusion on Cyber Fundamentals Linux CLI ep.16 question 6
Question 6 seems fairly straight forward but I have yet to stumble on the combination of commands the lab is looking for. The question is "In a single line: runsleep 600to sleep in the background for 10 minutes then run touch emptyfile in the foreground to create an empty file." At first glance it seems to be leading the student to try something like sleep 600 & && touch emptyfile but that's invalid syntax. I've tried ( sleep 600 & ) && touch emptyfile but that doesn't work, I suspect because the && sees the success from the () being executed and immediately runs touch. I've tried ( sleep 600 && touch emptyfile ) & but after 10 minutes of waiting the lab never "detects" success which I'm guessing because the touch is ran from the background. I can't find the magic combination to satisfy a sleep command running in the background and then a touch command running in the foreground in a single oneline statement. Any hints would be appreciated, greatly.Solved20Views1like1CommentDoS Practical
Hello again, I am working on another lab - The DoS practical in the networking module. I have been combing the packets with a fine tooth comb and can’t find any info on the Crypto currency it’s after or the last two questions either. Any pointers would be greatly appreciated. I spent 2 hours combing packets and reading packet data and I just couldn’t see anything. I will endeavour to keep trying!! I tried filtering by HTTP, but couldn’t figure out how to filter HTTP packets coming from the DoS tool or find info on the Tool used in the DoS attack. thanks again scottSolved42Views1like3CommentsProtocols:Modbus
Hello all, forgive me if this is simple however, I am new to cyber and Immersive labs. I’m currently going through the networking labs and I am stuck on question 9 of the Modbus lab. its asking: ”follower 45 sent the command ‘read could’ during an exchange between client and server. What are the last four characters of the raw hex value returned by the follower”. i have been combing through this lab for over an hour and it’s proving very hard to find. Could someone please help. thanks Scott50Views0likes4Comments