Monday, October 25, 2021

 Penetration Testing Study

I have been working on my penetration tester studies.

I have been using sites like https://ine.com and https://tryhackme.com/ for those efforts. I feel having access to these two sites as learning resources is helping me to re-acquaint myself with tools I have used, or still use, in my professional career.

I am using the newly established Junior Penetration Tester path on TryHackMe:

https://tryhackme.com/path/outline/jrpenetrationtester

Why do I like this path?

  • Instructions are broken up in small, easy to digest and work on portions
  • You can resume right where you left off
    • Interruptions happen in-life but excuses are human generated
  • The materials offered utilize current tools, both CLI and GUI

Give it a try! You can use a free account to get started on https://tryhackme.com and if you like it and want access to all content (and more than 1 hour of use per day) sign-up like I did and progress your career!

73 (Best Wishes, in ham radio speak)

David

Saturday, June 19, 2021

pentoo/gentoo airmon-ng kismet (.. is softblocked..)

    I was learning some Pentoo (Gentoo) linux security distribution stuff this evening, just some scrap notes that might help someone else out with any airmon-ng issues.

    If you are trying to put a wireless nic into monitor mode, make sure you do not have any wifi profiles saved to connect over wireless to an AP, if you do you may see the following (partial):

    sudo airmon-ng start wlan# (where # is the wireless interface you are bringing up)

    airmon-ng "is soft blocked ... please run "rfkill unblock #"

    I figured this out by remembering I had connected to my wifi to update the distro, I manually deleted the wireless profile and wholla, it's working again w/airmon-ng and kismet.

73, david kk4zuu


Tuesday, March 2, 2021

Virginia QSO Party - 2021

 It is that time again for the Virginia QSO Party (VaQP).

I started my route planning about a week ago with some information from fellow mobiles in Virginia to get a feel for where coverage may be lacking this year.

2m/70cm FM Antenna Check

    First, I verified my SWR (1.25:1) is still good on my Diamond antenna I have mounted to my Tundra's bed rail on my daily driver.

ToDo

    There is a whole lot of ToDo's (after 5 of 7 years being mobile for VaQP I should be ok):

  • Is my teenager going? I received the Covid vaccine, he did not and can not before VaQP
  • Route planning and hotel (^Fri/Sat nights ^)
  • Yaesu FTM-400XDR, daily driver plus APRS (on 5/8 wave Diamond antenna, 2m/70cm)
  • Yaesu FT-991A HF and adds 6m FM and 2m SSB (not too popular for VaQP) - would need ant
  • 1.25m HT (5w) on  5/8 bed rail mounted 5/8 wave antenna (the TYT 9800 still n/a, Alinco no mas)
  • Logging - [KISS] (N3FJP, Windows laptop as always)
  • HF - received great feedback from W4GO/Matt on my SS Whip/Wolf River Coil Antenna for HF
    • Move HF antenna mount from rail to direct chassis contact
    • Move will lower coil below bedrail, need short mast to raise it = better RF ground
    • Shorten 104" whip, 20/40/80m optimal (we'll see)
  • digital - I run mostly digital modes at home except when contesting or mobile (may add FT8)
  • Power layout - improve existing setup, add West Mountain Radio DC Distribution
  • Layout - The Tundra has more room inside, some interior changes to accommodate HF, laptop, etc. 
 That's all for now. Hope to work you on the bands.

Saturday, January 2, 2021

Amateur Radio - Spotting Websites and javascript

     I am a frequent user of websites that plot or otherwise present amateur radio signals on maps, tables, or in other formats to find radio activity (propagation). One thing that bothers me personally is when they use my visit for advertising cookies and the like to third party sites. A third party site is a website that I did not attempt to access. This is a simple look at a few of the websites I use for amateur radio to track radio propagation and a high-level look at their use of javascript (js).

    In this example, I use a browser plug-in to show, permit, and block additional third party websites. I do this to limit third party use of my website visits from third parties. In some cases, the third party websites may provide a service or function the website will not function without permitting the traffic. I make no representation on whether or not the information show here is accurate in respect to the trustworthiness of any website listed, this is for educational purposes.

firefox and noscript

    I use a browser plug-in called noscript, it is a js blocker that permits you to control whether or not js may run on a particular website you visit as well as whether or not additional js code to third party sites may execute.

    In the example websites and figures below, I make no disparaging comments against the site operators, their selection of third party partners is up to them. You will see green padlocks where I granted temporary trusted permission for a website to run its js to write this blog, in just about all cases, the website does not display correctly without permitting the js to execute in your browser. If you are not running a js blocker, and js is enabled in your browser, all of the third party website traffic will execute. There are many tutorials on the web for finding these settings in your web browsers and how to add plugins like noscript.

    Now, there is good js and bad, this blog post is focused on showing what third parties particular websites use at the time of the blog post for educational purposes. This is not a deep dive into whether these websites use js code that is 'safe' so understand what I show below was done to write this blog post and that website owners change this often.

dxmaps.com

    This was the first website that I started with when I became a ham in 2014 using PSK modes and JT65 digital modes. I loved the graphical representation of the data, many other features exist on the website that I simply do not use. I have donated the site in the past, hoping to help the operator and to show appreciation for the site. But, even when logged in as a contributing user, a visit to this website still reaches out to third parties that I do not want to promote (figure 1).

Figure 1 - dxmaps.com

pskreporter.info

    My second website to look for radio propagation information from is pskreporter.info, I prefer its graphical map representation showing radio communications across the globe. In programs like WSJT-X you can choose to send your radio spots to the site for use. This website also communicates with third party sites for advertising and other activities (figure 2).

Figure 2 - pskreporter.info

    Upon first glance, a visit to the site shows little third party involvement, mainly google website analytics. But, if you allow the js to run from pskreporter.info additional third party sites appear (figure 3).

Figure 3 - pskreporter.info

    You can see that I had to temporarily trust some of the js to run for this website to function and display its map. I did not look at any of the js code to see what its purpose is, just to note the third party websites visited at the time of this blog post.

hamspots.net

    The last example website shows a website that appears to value its visitors by not using any third party websites, this includes before and after I logged into the site as a registered user (figure 4).

Figure 4 - hamspots.net

    That is it, a quick look at amateur radio websites used for looking at radio propagation and some of the third party websites that share some of your website visit information with when you allow their javascript to run from their site on your device.

    Go have a cookie (oops, another blog post)