From 310d67543d7e15918f77a640cf0d60aefd8285e6 Mon Sep 17 00:00:00 2001 From: bitvijays Date: Mon, 6 May 2024 19:45:06 +0000 Subject: [PATCH] Updated ICS --- .../LFC-BinaryExploitation.html | 4 +- .../LFC-CodingQuickRef.html | 8 +- Series_Capture_The_Flag/LFC-Cryptography.html | 4 +- Series_Capture_The_Flag/LFC-Forensics.html | 4 +- .../LFC-ReverseEngineering.html | 2 +- .../LFC-WebExploitation.html | 4 +- .../LFCWebExploitation.html | 4 +- .../LFFSecuringDebian.html | 4 +- .../LFL-CFG-SEC-Windows.html | 4 +- .../LFF-CIS-EVCI.html | 387 +++ .../LFF-CIS-ElectricalGrid.html | 8 +- .../LFF-CIS-IndustrialControlSystems.html | 2953 +++++++++++++++-- .../LFF-CIS-MobileNetworks.html | 4 +- Series_Home_Lab/LFF-HLSC-Applications.html | 463 +++ Series_Home_Lab/LFF-HLSC-Cloud-Tier.html | 1395 ++++++++ Series_Home_Lab/LFF-HLSC-Edge-Tier.html | 272 ++ Series_In_Progress/LFF-IoT.html | 4 +- Series_In_Progress/LFFWirelessPentesting.html | 4 +- .../LFF-IPS-P1-IntelligenceGathering.html | 8 +- .../LFF-IPS-P2-VulnerabilityAnalysis.html | 4 +- .../LFF-IPS-P3-Exploitation.html | 4 +- .../LFF-IPS-P4-PostExploitation.html | 4 +- .../LFF-IPS-P5-Reporting.html | 4 +- .../LFF-IPS-P6-ConfigurationReview.html | 4 +- .../LFF-IPS-P99-SAP-Pentesting.html | 4 +- Series_Investments/Stock_Market.html | 4 +- Series_Other_Information/Feedback.html | 2 +- Series_Other_Information/aboutme.html | 2 +- Series_Other_Information/content.html | 2 +- Series_Other_Information/contrib.html | 4 +- .../LFF-ESS-P0A-CyberSecurityEnterprise.html | 4 +- .../LFF-ESS-P0B-LinuxEssentials.html | 51 +- .../LFF-ESS-P0C-CloudEssentials.html | 4 +- .../LFF-ESS-P0D-SecureSoftware.html | 8 +- .../LFF-ESS-P0E-OpenSource.html | 4 +- .../LFC-VM-P0-InitialRecon.html | 4 +- ...-VM-P1-FromNothingToUnprivilegedShell.html | 4 +- ...C-VM-P2-UnprivilegedToPrivilegedShell.html | 4 +- .../LFC-VM-P3-TipsAndTricks.html | 4 +- .../LFC-VM-P4-Appendix.html | 4 +- .../LFC-VulnerableMachines.html | 4 +- .../LFF-CIS-EVCI.rst.txt | 272 ++ .../LFF-CIS-IndustrialControlSystems.rst.txt | 2314 ++++++++++++- .../LFF-HLSC-Applications.rst.txt | 368 ++ .../LFF-HLSC-Cloud-Tier.rst.txt | 1470 ++++++++ .../LFF-HLSC-Edge-Tier.rst.txt | 155 + .../LFF-ESS-P0B-LinuxEssentials.rst.txt | 47 +- _static/basic.css | 2 +- _static/doctools.js | 2 +- _static/language_data.js | 4 +- _static/searchtools.js | 165 +- genindex.html | 2 +- index.html | 2 +- objects.inv | Bin 3412 -> 3433 bytes search.html | 2 +- searchindex.js | 2 +- 56 files changed, 9931 insertions(+), 545 deletions(-) create mode 100644 Series_Critical_Infrastructure/LFF-CIS-EVCI.html create mode 100644 Series_Home_Lab/LFF-HLSC-Applications.html create mode 100644 Series_Home_Lab/LFF-HLSC-Cloud-Tier.html create mode 100644 Series_Home_Lab/LFF-HLSC-Edge-Tier.html create mode 100644 _sources/Series_Critical_Infrastructure/LFF-CIS-EVCI.rst.txt create mode 100644 _sources/Series_Home_Lab/LFF-HLSC-Applications.rst.txt create mode 100644 _sources/Series_Home_Lab/LFF-HLSC-Cloud-Tier.rst.txt create mode 100644 _sources/Series_Home_Lab/LFF-HLSC-Edge-Tier.rst.txt diff --git a/Series_Capture_The_Flag/LFC-BinaryExploitation.html b/Series_Capture_The_Flag/LFC-BinaryExploitation.html index 84d9944..f41992f 100644 --- a/Series_Capture_The_Flag/LFC-BinaryExploitation.html +++ b/Series_Capture_The_Flag/LFC-BinaryExploitation.html @@ -25,7 +25,7 @@ - + @@ -61,7 +61,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

    Critical Infrastructure

    diff --git a/Series_Capture_The_Flag/LFC-CodingQuickRef.html b/Series_Capture_The_Flag/LFC-CodingQuickRef.html index 601a4fe..acb9b63 100644 --- a/Series_Capture_The_Flag/LFC-CodingQuickRef.html +++ b/Series_Capture_The_Flag/LFC-CodingQuickRef.html @@ -25,13 +25,13 @@ - + - + @@ -61,7 +61,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

    Critical Infrastructure

    @@ -856,7 +856,7 @@

    Hex to ASCII - +
    diff --git a/Series_Capture_The_Flag/LFC-Cryptography.html b/Series_Capture_The_Flag/LFC-Cryptography.html index 7b4d43c..2099f7a 100644 --- a/Series_Capture_The_Flag/LFC-Cryptography.html +++ b/Series_Capture_The_Flag/LFC-Cryptography.html @@ -25,7 +25,7 @@ - + @@ -61,7 +61,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

    Critical Infrastructure

    diff --git a/Series_Capture_The_Flag/LFC-Forensics.html b/Series_Capture_The_Flag/LFC-Forensics.html index 8484334..91a78d8 100644 --- a/Series_Capture_The_Flag/LFC-Forensics.html +++ b/Series_Capture_The_Flag/LFC-Forensics.html @@ -25,7 +25,7 @@ - + @@ -61,7 +61,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

    Critical Infrastructure

    diff --git a/Series_Capture_The_Flag/LFC-ReverseEngineering.html b/Series_Capture_The_Flag/LFC-ReverseEngineering.html index 4696b2c..b2eaa25 100644 --- a/Series_Capture_The_Flag/LFC-ReverseEngineering.html +++ b/Series_Capture_The_Flag/LFC-ReverseEngineering.html @@ -25,7 +25,7 @@ - + diff --git a/Series_Capture_The_Flag/LFC-WebExploitation.html b/Series_Capture_The_Flag/LFC-WebExploitation.html index c7bfbe0..66d2f32 100644 --- a/Series_Capture_The_Flag/LFC-WebExploitation.html +++ b/Series_Capture_The_Flag/LFC-WebExploitation.html @@ -25,7 +25,7 @@ - + @@ -59,7 +59,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

    Critical Infrastructure

    diff --git a/Series_Capture_The_Flag/LFCWebExploitation.html b/Series_Capture_The_Flag/LFCWebExploitation.html index 5d14971..5903686 100644 --- a/Series_Capture_The_Flag/LFCWebExploitation.html +++ b/Series_Capture_The_Flag/LFCWebExploitation.html @@ -25,7 +25,7 @@ - + @@ -59,7 +59,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

    Critical Infrastructure

    diff --git a/Series_Configuration_Management/LFFSecuringDebian.html b/Series_Configuration_Management/LFFSecuringDebian.html index a4127aa..3c2cf8a 100644 --- a/Series_Configuration_Management/LFFSecuringDebian.html +++ b/Series_Configuration_Management/LFFSecuringDebian.html @@ -25,7 +25,7 @@ - + @@ -59,7 +59,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

    Critical Infrastructure

    diff --git a/Series_Configuration_Management/LFL-CFG-SEC-Windows.html b/Series_Configuration_Management/LFL-CFG-SEC-Windows.html index 3dbbe7f..66d669c 100644 --- a/Series_Configuration_Management/LFL-CFG-SEC-Windows.html +++ b/Series_Configuration_Management/LFL-CFG-SEC-Windows.html @@ -25,7 +25,7 @@ - + @@ -59,7 +59,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

    Critical Infrastructure

    diff --git a/Series_Critical_Infrastructure/LFF-CIS-EVCI.html b/Series_Critical_Infrastructure/LFF-CIS-EVCI.html new file mode 100644 index 0000000..6051c9d --- /dev/null +++ b/Series_Critical_Infrastructure/LFF-CIS-EVCI.html @@ -0,0 +1,387 @@ + + + + + + + + + + + Electric Vehicle Charging Infrastructure — tech.bitvijays.com 2.0.0 documentation + + + + + + + + + + + + + + + + + + +
    + + +
    + +
    +
    +
    +
      +
      • +
    • Electric Vehicle Charging Infrastructure
      • +
    • +
      • +
    +
    +
    +
    +
    + +
    +

    Electric Vehicle Charging Infrastructure

    +
      +

    • Charging electric vehicles (EV) is a complex process that involves several key entities, including

      • +
    +

    the EV itself, charging stations, charge point operators, aggregators, e-Mobility Service Providers +(eMSPs), and distribution system operators (DSO)/transmission system operators (TSO).

    +
      +

    • EV may be fully electric or hybrid that use an electric propulsion system and an internal combustion

      • +
    +

    engine. Some hybrid vehicles, called plug-in Hybrid EV (PHEV), may include a charging socket +for the internal battery. EVs are charged through the charging Station (CS) that allows electricity to +be pulled from the hardwired power grid and delivered to directly connected EVs to recharge their +batteries.

    +
      +

    • Depending on the type of the charging station, they might provide different charging

      • +
    +

    characteristics. An AC charging station uses AC voltage to charge EVs over several hours, while a +DC charging station provides fast charging capability to charge EVs during a short time period.

    +
      +

    • EV communicates with the CS via the charging cable using power line communication (PLC).

      +
        +

      • Power-Line Communication (PLC) is used during charging of electric vehicles. PLC allows the charging station (aka electric vehicle supply equipment or EVSE) and the EV to negotiate charging sessions, allowing various charging profiles and potentially to negotiate payment.

        • +
      +
      • +

    • Charging points are managed and operated by Charging Point Operators (CPO), responsible for setting up and maintaining physical chargers. This includes selecting suitable locations, installing the necessary equipment, and ensuring that charging stations work properly.

      +
        +

      • Management of the charging stations is performed using the Open Charge Point Protocol (OCPP).

        • +
      +
      • +

    • The e-MSP is a company an electric vehicle (EV) driver contacts for all services related to electric charging. The e-MSP issues charging passes or RFID cards that allow EV drivers to access and use charging stations within the e-MSP’s network. The e-MSP is responsible for billing and invoicing

      • +
    +

    EV drivers for charging sessions. They may offer different pricing models, such as pay-as-you-go or subscription-based plans. Many e-MSPs have agreements with charging station operators to create a roaming network. The cooperation between eMSP and the CPO is achieved by the Open +Charge Point Interface (OCPI) protocol. +- This allows EV drivers to use a single provider’s services across multiple charging networks, making it more convenient to charge their vehicles. This simplifies the usage and payments by EV drivers for chargers from different operators, e.g. by using a single RFID card. +- To establish and maintain seamless operation during roaming services, the identity of an e-MSP and CPOs are maintained by external registries, usually national ones, e.g. EV Roam (UK), AFIREV (France), EIPA (Poland). Some e-MSPs also provide services aggregating cross-network data (e.g., Zap-Map and Open Charge Map) to provide fairly comprehensive static and real-time +data on charge points. They use OCPI protocol for real-time charge point information, including availability, blocked, charging status and maintenance information such as out-of-order and planned unavailability.

    +
      +

    • Transmission System Operator (TSO) and Distribution System Operator (DSO) are the power grid

      • +
    +

    operators are responsible for the transmission and distribution of energy in grid systems. A TSO is +an organisation responsible for the operation of transmission energy, in charge of transmitting +the electricity from production facilities to various distribution operators locally or regionally +effectively and reliably.

    +
      +

    • Finally, the energy aggregators are the entities cooperating in the distributed charging process

      • +
    +

    through V2G, controlling the charging and discharging of each EV, taking part in the demandresponse +of the power grid [13, 59]. They play a crucial role as intermediaries connecting the +Distribution System Operator (DSO) with electric vehicles (EVs).

    +

    EV to CS via PLC (medium) using ISO-15118 (Protocol)

    +
      +

    • ISO 15118 is an international standard that defines communication protocols for EV and it’s charging

      • +
    +

    stations for the transfer of electric energy.

    +

    The official name for ISO 15118 is “Road Vehicles – Vehicle to Grid Communication Interface”. It defines +bidirectional digital communication between Electric Vehicles (EVs), involving Battery Electric +Vehicles (BEV) and Plug-In Hybrid Electric Vehicles (PHEV), and Electric Vehicle Supply Equipment +(EVSE).

    +
      +

    • The ISO 15118 protocol functions as a client-server system, with the EV serving as the client and the EVSE as the

      • +
    +

    server. Each of these entities is equipped with its communication controller, the EV utilizing an +Electric Vehicle Communication Controller (EVCC) and the EVSE employing a Supply Equipment +Communication Controller (SECC).

    +

    The characteristics of ISO 15118 include: (i) Automated authentication & authorization: offers +two authentication methods: the External Identification Mechanism (EIM) and the more userfriendly +Plug and Charge (PnC). With EIM, users are required to authenticate using RFID tags, +QR code scanning, debit/credit cards, or charging applications. In contrast, PnC PnC simplifies +authentication by employing digital certificates, supporting billing processes between the electric +vehicle and the charging station, eliminating the need for external identification methods like RFID +tags. (ii) Wireless Power Transfer (WPT): WPT enables automatic and contactless charging, +eliminating the need for physical cables and connectors. (iii) Bidirectional Power Transfer (BPT): +encompasses bidirectional power capabilities, also known as Vehicle-to-Grid (V2G) functionality, +enabling electric vehicles to not only receive power from the grid but also feed power back into the +grid or supply power to a home or building. (iv) Automated Connection Device (ACD): provides +components supporting the automatic connection and disconnection process for conductive energy +transfer between an EV and an EVSE, e.g. use of an ACD device to charge an electric bus through a +pantograph.

    +

    The ISO 15118 protocol defines a robust architecture for communication +within Electric Vehicle (EV) charging systems, establishing a standardized framework to ensure +seamless interoperability. There are two key components within this architecture, the Electric +Vehicle Communication Controller (EVCC) and the SECC (Supply Equipment Communication +Controller). The EVCC, embedded within the EV, acts as the communication hub, facilitating secure +and standardized data exchange with the CS. On the other hand, the SECC, integrated into the CS, +manages the power supply and communication with the EV. It’s worth noting that both EVCC and +SECC adhere to a client-server protocol, with EVCC functioning as the client and SECC serving as +the server. Together, these components enable sophisticated features where the EVCC and EVSE +engage in secure, automated communication to initiate and authorize the charging process without +requiring additional user input. They exchange mutual charging limits and a charging schedule +via message request-response pairs.

    +

    There are different message sequences involved between both entities– Communication setup sequence, Identification, authentication and authorization sequence, +Target setting and charge scheduling, Charging loop/re-scheduling, and End of charging. Both EVCC +and SECC transmit various charging technical parameters to SECC, including 𝑑𝑒𝑝𝑎𝑟𝑡𝑢𝑟𝑒_𝑡𝑖𝑚𝑒, +𝑚𝑎𝑥𝑖𝑚𝑢𝑚_𝑐𝑢𝑟𝑟𝑒𝑛𝑡_𝑙𝑖𝑚𝑖𝑡 ,𝑚𝑎𝑥𝑖𝑚𝑢𝑚_𝑣𝑜𝑙𝑡𝑎𝑔𝑒_𝑙𝑖𝑚𝑖𝑡 , 𝑓 𝑢𝑙𝑙_𝑠𝑜𝑐, 𝑒𝑛𝑒𝑟𝑔𝑦_𝑟𝑒𝑞𝑢𝑒𝑠𝑡 , and more [17]. Using +these exchanged parameters, a charging schedule is established, which can be renegotiated.

    +

    ISO-15118-2/20 suggests mandatory use of Transport Layer Security (TLS) +for all communication between the charging station and the vehicle, except in trusted environments.

    +

    The standard defines a trusted environment as a ’closed user group’ possessing pre-issued +tokens for accessing the SECC charging service. This could encompass scenarios like home garages +with physical keys or Radio Frequency Identification (RFID) tokens for car sharing.

    +

    The authorization mechanisms outlined in the ISO 15118 standard +operate in a unimodal manner. For example, within the PnC mode, the authentication process +exclusively validates the authenticity of the legitimate EV itself. The modes for EIM are– smartphone +app, credit card, RFID card or a license plate scanning at a charging station. For PnC– the method +works with an asymmetric key algorithm supported by a public key infrastructure (PKI) and +certificates stored in the EV and EVSE. Conversely, the EIM focuses solely on authenticating the +genuine EV user. Consequently, situations can arise where an illegitimate EV could misuse a valid +EV user’s smart card to initiate charging, or an EV possessing a valid digital certificate might gain +charging privileges even in cases where the driver isn’t authorized.

    +

    CS to CPO via IP(4G/Wi-Fi/Ethernet) using Open Charge Point Protocol (OCPP) (protocol)

    +

    OCPP is a globally used open-source communication protocol between charging stations and the +back-end systems (servers) which manage the charging stations.

    +

    Here the term “manage” means: +(a) To establish communication with the CS and the EVSE. (b) To set the specific characteristics of +the charging service, considering the user’s preferences, the condition of the EV, and the status of +the power grid. (c) To gather and save data related to the charging system. (d) To manage the user’s +application and provide a platform for it. (e) To keep a record of scheduled charging appointments +for the service

    +

    OCPP is an IP-based protocol, that relies on Transmission Control +Protocol (TCP) and Transport Layer Security (TLS) for authentication and encrypted communication. +For the Physical and Data link layer, OCPP is entirely based on Ethernet communication. According +to Open Charge Alliance (OCA), OCPP functions are specified as client-server communication, +where the CS is the client and the CPO plays the server role

    +

    characteristics of OCPP 2.0 +are as follows: +• Device Management: It includes features to get and set configurations and monitor a Charging +Station. This is particularly useful for Charging Station Operators managing complex +multi-vendor charging stations. +• Added Security: OCPP 2.0 introduces secure firmware updates, security logging and event +notification, and security profiles for authentication and secure communication. +• Smart Charging Functionalities: These are added for scenarios with an Energy Management +System (EMS), a local controller, and for integrated smart charging of the EV, charging +station, and Charging Station Management System. +• Support for ISO 15118: This standard covers plug-and-charge and smart charging requirements +from the EV. +• Display and Messaging Support: This feature provides the EV driver with information on +the display, for instance regarding rates and tariffs.

    +

    The architecture of the Open Charge Point Protocol (OCPP) is designed +to facilitate seamless communication between Electric Vehicle Service Equipment (EVSE) and CPO. +At its core, OCPP defines three main components: the Charging Station (CS), which represents +the physical infrastructure where electric vehicles (EVs) connect for charging, equipped with an +embedded controller that communicates with the CPO. The CPO, the software application at the +core of the EV charging ecosystem, acts as a backend infrastructure which manages and monitors +the entire charging network, coordinating interactions between the CPs and EVSEs. It handles +tasks like assigning charging slots, monitoring charge sessions, billing customers, and facilitating +communication with external systems, such as payment gateways and energy management +platforms. The interaction between the CS, EVSE, and CPO occurs through standardized OCPP +messages. These messages, exchanged over a secure communication channel, convey essential +information about the charging process, station status, and energy consumption. The CPO responds +with corresponding messages, ensuring bidirectional communication.

    +

    OCPP Security Profiles. According to OCA and the official documentation of OCPP [1], There +are three major security profiles in OCPP 2.0.1 which we are going to discuss here. First, The UTBA +(Unsecured Transport with Basic Authentication) profile lacks fundamental security measures and +does not incorporate authentication for the Charging Station Management System (CPO) or secure +communication channel setup. It relies solely on HTTP Basic Authentication, making it suitable +only for trusted networks, like those employing VPNs between the CPO and Charging Station. In +contrast, the TLS-BA (TLS with Basic Authentication) profile enhances security by employing TLS +to encrypt communication between the charging station and CPO. While it improves authentication +compared to UTBA, it still relies on username and password, which may not suffice for robust +security. Finally, TLS-CSC (TLS with Client-Side Certification) stands as the highest security profile, +using TLS for encryption and requiring both charging station and CPO to authenticate using +certificates. This model offers a superior level of security but must be carefully managed to address +potential vulnerabilities in TLS or certificate systems. Additionally, avoiding TLS compression +methods is recommended to prevent compression side-channel attacks and ensure interoperability.

    +

    eMSP to CPO via TCP/IP/Lorawan using Open Charge Point Interface (OCPI)

    +

    Its primary function lies in +fostering interoperability among diverse stakeholders within the EV charging landscape. These +stakeholders encompass CPOs, CS Operators (CSOs) and eMSPs. +OCPI empowers +these entities to engage in seamless information exchange, enabling the provision of uninterrupted +and user-friendly charging services to the community of EV users.

    +

    The OCPI architecture involves orchestrating the interactions between two key entities namely CPOs and eMSPs with CSOs playing a more indirect role.

    +

    CPOs +are service providers that own, operate, and manage EV charging stations. They integrate OCPI +into their CSMS to oversee the entire charging process. This includes managing charging sessions, +setting and managing charging fees, and engaging in roaming agreements to expand their network’s +coverage. eMSPs act as intermediaries between EV drivers and CPOs, providing a comprehensive +platform for managing charging services. eMSPs communicate with CPOs using OCPI messages +to initiate charging sessions, manage charging accounts, and access charging station information. +CPOs, in turn, relay these commands and data to the relevant CSOs to manage the physical +charging process. This indirect interaction ensures centralized control over charging networks +while maintaining compatibility with the standardized OCPI messaging framework.

    +

    Open Automated Demand Response (OpenADR)

    +

    OpenADR is a standardised communication protocol that was originally created to manage electricity +demand across many sectors.

    +

    OpenADR is intended to support a wide range of applications, from simple home demand response +programs to big industrial and commercial systems like EV charging stations. It can handle a wide +range of devices, including thermostats, building management systems, and industrial equipment, +making it suited for a wide range of applications.

    +

    OpenADR improves grid reliability and energy efficiency with +essential characteristics such as scalability for multiple applications, two-way communication +enabling bidirectional information sharing, and support for various demand response signals +such as event-based, price-based, and simple-level signals.

    +

    VEN is a device or group of +devices capable of responding to demand response signals. VENs are in charge of receiving and +responding to events, generating reports, and managing demand-side resources. VENs can be found +anywhere along the power grid, from individual homes and businesses to large industrial facilities. +A VTN is a system that manages VENs and transmits demand response signals to them. VTNs play +an important role in resource management, event creation and transmission, and report request. +Whereas VTNs can be run by utilities, aggregators, or other entities.

    +

    OpenADR uses web services to send and receive messages between VTNs and VENs. These +messages can be used to send demand response events, set availability schedules, request and +receive reports, and register VENs. OpenADR uses standard communication protocols and XML +payloads, which makes it easy for different systems to communicate with each other.

    +

    OSCP

    +

    The OSCP serves as an open communication protocol that facilitates interaction between the CPO +and the DSO. This protocol is responsible for transmitting a 24-hour forecast of the power grid’s +available capacity to the CPO.

    +

    This section delves into the primary characteristics of OSCP: (i) Remote Management: +The protocol allows for remote management of charging sessions, enabling users and service +providers to monitor, control, and manage the charging process; (ii) Dynamic Charging Control: +OSCP supports dynamic charging control, allowing adjustments to charging parameters based on +factors such as grid conditions, energy demand, or user preferences; (iii) Scalability: The protocol +is designed to be scalable, accommodating a variety of charging infrastructure sizes and types, +from small home chargers to public fast-charging stations. (iv) Interoperability: OSCP promotes +interoperability between different manufacturers’ EVs and charging infrastructure, ensuring a +seamless experience for users regardless of the equipment they are using.

    +

    The OSCP specification employs various terms, including Capacity +Provider, Capacity Optimizer, Flexibility Provider, and Flexibility Resource, as shown in Figure 4. A +Flexibility Resource refers to a physical device with the ability to consume or generate energy in a +controlled and flexible manner, such as electric vehicles. Flexibility Resources have the potential to +exhibit flexibility in terms of both the timing and the quantity of energy they consume or generate. +The management of all Flexibility Resources is the responsibility of the Flexibility Provider. The +Flexibility Provider, such as a CPO, gives instructions to Flexibility Resources for either generating +or consuming energy. The Flexibility Providers are provided with upper and lower bounds for +energy consumption or generation by the Capacity Provider. It’s important to note that Capacity +Providers do not directly interact with individual Flexibility Resources. In contrast, it is the duty +of the Flexibility Provider to skillfully manage their Flexibility Resources, guaranteeing that they +operate within the constraints defined by the Capacity Provider. For instance, a Capacity Provider, +such as a DSO, ensures the proper functioning of a certain area, and a Flexibility Provider, such as a +CPO, manages energy requests and demands while staying within the prescribed capacity limits of +the grid connection.

    +

    There is another entity, referred to as the Capacity Optimizer, which can assist

    +

    the Flexibility Provider by offering an optimal approach to managing their Flexibility Resources. In +practical terms, the Capacity Optimizer may leverage additional data sources, including weather +forecasts and historical energy tariffs. These additional data sources can enhance the decisionmaking +process for the Flexibility Provider. However, it’s worth mentioning that Capacity Provider +has the capacity to establish an optimal solution on their own. +In general, the aforementioned entities mentioned in the above section can transmit five types +of messages. Among these five messages, three of them, namely UpdateGroupCapacityForecast, AdjustGroupCapacityForecast, +and GroupCapacityComplianceError, pertain to Capacity. The remaining +two messages, UpdateGroupMeasurements, and UpdateAssetMeasurements, relate to Metering

    +
    + + +
    +
    +
    + +
    + +
    +

    © Copyright Vijay Kumar & Contributors.

    +
    + + + +
    +
    +
    +
    +
    + + + + \ No newline at end of file diff --git a/Series_Critical_Infrastructure/LFF-CIS-ElectricalGrid.html b/Series_Critical_Infrastructure/LFF-CIS-ElectricalGrid.html index ece665a..56784a9 100644 --- a/Series_Critical_Infrastructure/LFF-CIS-ElectricalGrid.html +++ b/Series_Critical_Infrastructure/LFF-CIS-ElectricalGrid.html @@ -25,13 +25,13 @@ - + - + @@ -60,7 +60,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

    Critical Infrastructure

    Infrastructure Pentest

    Critical Infrastructure

    diff --git a/Series_The_Essentials/LFF-ESS-P0A-CyberSecurityEnterprise.html b/Series_The_Essentials/LFF-ESS-P0A-CyberSecurityEnterprise.html index 484e4f9..f01205f 100644 --- a/Series_The_Essentials/LFF-ESS-P0A-CyberSecurityEnterprise.html +++ b/Series_The_Essentials/LFF-ESS-P0A-CyberSecurityEnterprise.html @@ -25,7 +25,7 @@ - + @@ -152,7 +152,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

    Critical Infrastructure

    diff --git a/Series_The_Essentials/LFF-ESS-P0B-LinuxEssentials.html b/Series_The_Essentials/LFF-ESS-P0B-LinuxEssentials.html index e970e86..a9d1b78 100644 --- a/Series_The_Essentials/LFF-ESS-P0B-LinuxEssentials.html +++ b/Series_The_Essentials/LFF-ESS-P0B-LinuxEssentials.html @@ -25,7 +25,7 @@ - + @@ -318,6 +318,15 @@
  • systemd-networkd
  • ip
  • netplan
    • +
  • ifconfig
    • + + +
  • Ping IP Address
    • @@ -692,7 +701,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

    Critical Infrastructure

    @@ -3273,9 +3282,11 @@

    ifupdown
    ifupdown’s configuration file
    -

    There are two main directives: -- auto network-device, which tells ifupdown to automatically configure the network interface once it is available, and -- iface network-device inet/inet6 type to configure a given interface.

    +

    There are two main directives:

    +
      +

    • auto network-device, which tells ifupdown to automatically configure the network interface once it is available, and

      • +

    • iface network-device inet/inet6 type to configure a given interface.

      • +

    For example, For example, a plain DHCP configuration looks like this:

    auto lo
 iface lo inet loopback
@@ -3284,7 +3295,7 @@ 
    ifupdown’s configuration fileiface eth0 inet dhcp
    -

    Note that the special configuration for the loopback device should always be present in this file. For a fixed IP address configuration, you have to provide more details such as the IP address, the network, and the IP of the gateway:

    +

    Note that the special configuration for the loopback device should always be present in this file. For a fixed IP address configuration, we have to provide more details such as the IP address, the network, and the IP of the gateway:

    auto eth0
 iface eth0 inet static
 address 192.168.0.3
@@ -3294,11 +3305,11 @@ 
    ifupdown’s configuration filegateway 192.168.0.1
    -

    For wireless interfaces, we must have the wpasupplicant package, which provides many wpa-* options that can be used in /etc/network/interfaces. Have a look at /usr/share/doc/wpasupplicant/README.Debian.gz for examples and explanations.

    +

    For wireless interfaces, we must have the wpasupplicant package, which provides many wpa-* options that can be used in /etc/network/interfaces. Have a look at /usr/share/doc/wpasupplicant/README.Debian.gz for examples and explanations.

    The most common options are

      -

    • wpa-ssid (which defines the name of the wireless network to join) and

      • -

    • wpa-psk (which defines the passphrase or the key protecting the network).

      • +

    • wpa-ssid (which defines the name of the wireless network to join) and

      • +

    • wpa-psk (which defines the passphrase or the key protecting the network).

    iface wlan0 inet dhcp
 wpa-ssid HomeNetworkSSID
@@ -3314,8 +3325,8 @@ 
    systemd-networkd/lib/systemd/network/ for packaged files or /run/systemd/network/ for files generated at run-time.
    
 
  • The format of those files is documented in systemd.network(5).
    
 
      
-
    • The [Match] section indicates the network interfaces the configuration applies to. We can specify the interface in many ways, including by media access control (MAC) address or device type.
      • 
-
    • The [Network] section defines the network configuration.
      • 
+
    • The [Match] section indicates the network interfaces the configuration applies to. We can specify the interface in many ways, including by media access control (MAC) address or device type.
      • 
+
    • The [Network] section defines the network configuration.
      • 
 
    
 
    • 
 
@@ -3339,7 +3350,7 @@ 
    systemd-networkd
 
    Note
    
-
    System-networkd is disabled by default. We should should enable it. It also depends on systemd-resolved for proper integration of DNS resolution, which in turn requires to replace /etc/resolv.conf with a symlink to /run/systemd/resolve/resolv.conf, which is managed by systemd-resolved.
    
+
    System-networkd is disabled by default. We should enable it. It also depends on systemd-resolved for proper integration of DNS resolution, which in turn requires to replace /etc/resolv.conf with a symlink to /run/systemd/resolve/resolv.conf, which is managed by systemd-resolved.
    
 
    systemctl enable systemd-networkd
 systemctl enable systemd-resolved
@@ -3355,6 +3366,22 @@ 
    ip
    
 
    netplan
    +
    +

    ifconfig

    +
    + +
    +

    Ping IP Address

    +

    Sometimes, we might be in strange situations where we need to ping some IP address

    +
    +

    Windows

    +
    +
    Powershell
    +
    +
    +
    CMD
    +
    +
    diff --git a/Series_The_Essentials/LFF-ESS-P0C-CloudEssentials.html b/Series_The_Essentials/LFF-ESS-P0C-CloudEssentials.html index 7336c69..26d84c2 100644 --- a/Series_The_Essentials/LFF-ESS-P0C-CloudEssentials.html +++ b/Series_The_Essentials/LFF-ESS-P0C-CloudEssentials.html @@ -25,7 +25,7 @@ - + @@ -328,7 +328,6 @@
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

      @@ -357,6 +356,7 @@

    Critical Infrastructure

    diff --git a/Series_The_Essentials/LFF-ESS-P0D-SecureSoftware.html b/Series_The_Essentials/LFF-ESS-P0D-SecureSoftware.html index 86ba8ac..a57c758 100644 --- a/Series_The_Essentials/LFF-ESS-P0D-SecureSoftware.html +++ b/Series_The_Essentials/LFF-ESS-P0D-SecureSoftware.html @@ -25,13 +25,13 @@ - + - + @@ -147,7 +147,6 @@ -
  • Industrial Control Systems

    • Infrastructure Pentest

      @@ -176,6 +175,7 @@

    Critical Infrastructure

    @@ -1489,7 +1489,7 @@

    Assurance - +
    diff --git a/Series_The_Essentials/LFF-ESS-P0E-OpenSource.html b/Series_The_Essentials/LFF-ESS-P0E-OpenSource.html index 0c28cc8..732b0d2 100644 --- a/Series_The_Essentials/LFF-ESS-P0E-OpenSource.html +++ b/Series_The_Essentials/LFF-ESS-P0E-OpenSource.html @@ -25,7 +25,7 @@ - + @@ -147,7 +147,6 @@
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

      @@ -176,6 +175,7 @@

    Critical Infrastructure

    diff --git a/Series_Vulnerable_Machines/LFC-VM-P0-InitialRecon.html b/Series_Vulnerable_Machines/LFC-VM-P0-InitialRecon.html index 3f5d246..1066788 100644 --- a/Series_Vulnerable_Machines/LFC-VM-P0-InitialRecon.html +++ b/Series_Vulnerable_Machines/LFC-VM-P0-InitialRecon.html @@ -25,7 +25,7 @@ - + @@ -61,7 +61,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

      @@ -114,6 +113,7 @@

    Critical Infrastructure

    diff --git a/Series_Vulnerable_Machines/LFC-VM-P1-FromNothingToUnprivilegedShell.html b/Series_Vulnerable_Machines/LFC-VM-P1-FromNothingToUnprivilegedShell.html index 7e4b67f..d8560bb 100644 --- a/Series_Vulnerable_Machines/LFC-VM-P1-FromNothingToUnprivilegedShell.html +++ b/Series_Vulnerable_Machines/LFC-VM-P1-FromNothingToUnprivilegedShell.html @@ -25,7 +25,7 @@ - + @@ -61,7 +61,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

      @@ -214,6 +213,7 @@

    Critical Infrastructure

    diff --git a/Series_Vulnerable_Machines/LFC-VM-P2-UnprivilegedToPrivilegedShell.html b/Series_Vulnerable_Machines/LFC-VM-P2-UnprivilegedToPrivilegedShell.html index 5feb2b0..e85ae62 100644 --- a/Series_Vulnerable_Machines/LFC-VM-P2-UnprivilegedToPrivilegedShell.html +++ b/Series_Vulnerable_Machines/LFC-VM-P2-UnprivilegedToPrivilegedShell.html @@ -25,7 +25,7 @@ - + @@ -61,7 +61,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

      @@ -186,6 +185,7 @@

    Critical Infrastructure

    diff --git a/Series_Vulnerable_Machines/LFC-VM-P3-TipsAndTricks.html b/Series_Vulnerable_Machines/LFC-VM-P3-TipsAndTricks.html index ae3a3e4..0bc5829 100644 --- a/Series_Vulnerable_Machines/LFC-VM-P3-TipsAndTricks.html +++ b/Series_Vulnerable_Machines/LFC-VM-P3-TipsAndTricks.html @@ -25,7 +25,7 @@ - + @@ -61,7 +61,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

      @@ -177,6 +176,7 @@

    Critical Infrastructure

    diff --git a/Series_Vulnerable_Machines/LFC-VM-P4-Appendix.html b/Series_Vulnerable_Machines/LFC-VM-P4-Appendix.html index a44b424..a2fd4b8 100644 --- a/Series_Vulnerable_Machines/LFC-VM-P4-Appendix.html +++ b/Series_Vulnerable_Machines/LFC-VM-P4-Appendix.html @@ -25,7 +25,7 @@ - + @@ -61,7 +61,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

      @@ -188,6 +187,7 @@

    Critical Infrastructure

    diff --git a/Series_Vulnerable_Machines/LFC-VulnerableMachines.html b/Series_Vulnerable_Machines/LFC-VulnerableMachines.html index 2d8907a..ceb1a2e 100644 --- a/Series_Vulnerable_Machines/LFC-VulnerableMachines.html +++ b/Series_Vulnerable_Machines/LFC-VulnerableMachines.html @@ -25,7 +25,7 @@ - + @@ -59,7 +59,6 @@
  • Cloud Infrastructure Technologies
  • Open Source Concepts
  • Secure Software Development Fundamentals
    • -
  • Industrial Control Systems

    • Infrastructure Pentest

      @@ -88,6 +87,7 @@

    Critical Infrastructure

    diff --git a/_sources/Series_Critical_Infrastructure/LFF-CIS-EVCI.rst.txt b/_sources/Series_Critical_Infrastructure/LFF-CIS-EVCI.rst.txt new file mode 100644 index 0000000..683ccfb --- /dev/null +++ b/_sources/Series_Critical_Infrastructure/LFF-CIS-EVCI.rst.txt @@ -0,0 +1,272 @@ +Electric Vehicle Charging Infrastructure +######################################## + +- Charging electric vehicles (EV) is a complex process that involves several key entities, including +the EV itself, charging stations, charge point operators, aggregators, e-Mobility Service Providers +(eMSPs), and distribution system operators (DSO)/transmission system operators (TSO). + + +- EV may be fully electric or hybrid that use an electric propulsion system and an internal combustion +engine. Some hybrid vehicles, called plug-in Hybrid EV (PHEV), may include a charging socket +for the internal battery. EVs are charged through the charging Station (CS) that allows electricity to +be pulled from the hardwired power grid and delivered to directly connected EVs to recharge their +batteries. + +- Depending on the type of the charging station, they might provide different charging +characteristics. An AC charging station uses AC voltage to charge EVs over several hours, while a +DC charging station provides fast charging capability to charge EVs during a short time period. + +- EV communicates with the CS via the charging cable using power line communication (PLC). + + - Power-Line Communication (PLC) is used during charging of electric vehicles. PLC allows the charging station (aka electric vehicle supply equipment or EVSE) and the EV to negotiate charging sessions, allowing various charging profiles and potentially to negotiate payment. + +- Charging points are managed and operated by Charging Point Operators (CPO), responsible for setting up and maintaining physical chargers. This includes selecting suitable locations, installing the necessary equipment, and ensuring that charging stations work properly. + + - Management of the charging stations is performed using the Open Charge Point Protocol (OCPP). + +- The e-MSP is a company an electric vehicle (EV) driver contacts for all services related to electric charging. The e-MSP issues charging passes or RFID cards that allow EV drivers to access and use charging stations within the e-MSP’s network. The e-MSP is responsible for billing and invoicing +EV drivers for charging sessions. They may offer different pricing models, such as pay-as-you-go or subscription-based plans. Many e-MSPs have agreements with charging station operators to create a roaming network. The cooperation between eMSP and the CPO is achieved by the Open +Charge Point Interface (OCPI) protocol. +- This allows EV drivers to use a single provider’s services across multiple charging networks, making it more convenient to charge their vehicles. This simplifies the usage and payments by EV drivers for chargers from different operators, e.g. by using a single RFID card. +- To establish and maintain seamless operation during roaming services, the identity of an e-MSP and CPOs are maintained by external registries, usually national ones, e.g. EV Roam (UK), AFIREV (France), EIPA (Poland). Some e-MSPs also provide services aggregating cross-network data (e.g., Zap-Map and Open Charge Map) to provide fairly comprehensive static and real-time +data on charge points. They use OCPI protocol for real-time charge point information, including availability, blocked, charging status and maintenance information such as out-of-order and planned unavailability. + +- Transmission System Operator (TSO) and Distribution System Operator (DSO) are the power grid +operators are responsible for the transmission and distribution of energy in grid systems. A TSO is +an organisation responsible for the operation of transmission energy, in charge of transmitting +the electricity from production facilities to various distribution operators locally or regionally +effectively and reliably. + +- Finally, the energy aggregators are the entities cooperating in the distributed charging process +through V2G, controlling the charging and discharging of each EV, taking part in the demandresponse +of the power grid [13, 59]. They play a crucial role as intermediaries connecting the +Distribution System Operator (DSO) with electric vehicles (EVs). + +EV to CS via PLC (medium) using ISO-15118 (Protocol) + +- ISO 15118 is an international standard that defines communication protocols for EV and it’s charging +stations for the transfer of electric energy. + +The official name for ISO 15118 is “Road Vehicles – Vehicle to Grid Communication Interface”. It defines +bidirectional digital communication between Electric Vehicles (EVs), involving Battery Electric +Vehicles (BEV) and Plug-In Hybrid Electric Vehicles (PHEV), and Electric Vehicle Supply Equipment +(EVSE). + +- The ISO 15118 protocol functions as a client-server system, with the EV serving as the client and the EVSE as the +server. Each of these entities is equipped with its communication controller, the EV utilizing an +Electric Vehicle Communication Controller (EVCC) and the EVSE employing a Supply Equipment +Communication Controller (SECC). + +The characteristics of ISO 15118 include: (i) Automated authentication & authorization: offers +two authentication methods: the External Identification Mechanism (EIM) and the more userfriendly +Plug and Charge (PnC). With EIM, users are required to authenticate using RFID tags, +QR code scanning, debit/credit cards, or charging applications. In contrast, PnC PnC simplifies +authentication by employing digital certificates, supporting billing processes between the electric +vehicle and the charging station, eliminating the need for external identification methods like RFID +tags. (ii) Wireless Power Transfer (WPT): WPT enables automatic and contactless charging, +eliminating the need for physical cables and connectors. (iii) Bidirectional Power Transfer (BPT): +encompasses bidirectional power capabilities, also known as Vehicle-to-Grid (V2G) functionality, +enabling electric vehicles to not only receive power from the grid but also feed power back into the +grid or supply power to a home or building. (iv) Automated Connection Device (ACD): provides +components supporting the automatic connection and disconnection process for conductive energy +transfer between an EV and an EVSE, e.g. use of an ACD device to charge an electric bus through a +pantograph. + + +The ISO 15118 protocol defines a robust architecture for communication +within Electric Vehicle (EV) charging systems, establishing a standardized framework to ensure +seamless interoperability. There are two key components within this architecture, the Electric +Vehicle Communication Controller (EVCC) and the SECC (Supply Equipment Communication +Controller). The EVCC, embedded within the EV, acts as the communication hub, facilitating secure +and standardized data exchange with the CS. On the other hand, the SECC, integrated into the CS, +manages the power supply and communication with the EV. It’s worth noting that both EVCC and +SECC adhere to a client-server protocol, with EVCC functioning as the client and SECC serving as +the server. Together, these components enable sophisticated features where the EVCC and EVSE +engage in secure, automated communication to initiate and authorize the charging process without +requiring additional user input. They exchange mutual charging limits and a charging schedule +via message request-response pairs. + +There are different message sequences involved between both entities– Communication setup sequence, Identification, authentication and authorization sequence, +Target setting and charge scheduling, Charging loop/re-scheduling, and End of charging. Both EVCC +and SECC transmit various charging technical parameters to SECC, including 𝑑𝑒𝑝𝑎𝑟𝑡𝑢𝑟𝑒_𝑡𝑖𝑚𝑒, +𝑚𝑎𝑥𝑖𝑚𝑢𝑚_𝑐𝑢𝑟𝑟𝑒𝑛𝑡_𝑙𝑖𝑚𝑖𝑡 ,𝑚𝑎𝑥𝑖𝑚𝑢𝑚_𝑣𝑜𝑙𝑡𝑎𝑔𝑒_𝑙𝑖𝑚𝑖𝑡 , 𝑓 𝑢𝑙𝑙_𝑠𝑜𝑐, 𝑒𝑛𝑒𝑟𝑔𝑦_𝑟𝑒𝑞𝑢𝑒𝑠𝑡 , and more [17]. Using +these exchanged parameters, a charging schedule is established, which can be renegotiated. + +ISO-15118-2/20 suggests mandatory use of Transport Layer Security (TLS) +for all communication between the charging station and the vehicle, except in trusted environments. + +The standard defines a trusted environment as a ’closed user group’ possessing pre-issued +tokens for accessing the SECC charging service. This could encompass scenarios like home garages +with physical keys or Radio Frequency Identification (RFID) tokens for car sharing. + +The authorization mechanisms outlined in the ISO 15118 standard +operate in a unimodal manner. For example, within the PnC mode, the authentication process +exclusively validates the authenticity of the legitimate EV itself. The modes for EIM are– smartphone +app, credit card, RFID card or a license plate scanning at a charging station. For PnC– the method +works with an asymmetric key algorithm supported by a public key infrastructure (PKI) and +certificates stored in the EV and EVSE. Conversely, the EIM focuses solely on authenticating the +genuine EV user. Consequently, situations can arise where an illegitimate EV could misuse a valid +EV user’s smart card to initiate charging, or an EV possessing a valid digital certificate might gain +charging privileges even in cases where the driver isn’t authorized. + + +CS to CPO via IP(4G/Wi-Fi/Ethernet) using Open Charge Point Protocol (OCPP) (protocol) + +OCPP is a globally used open-source communication protocol between charging stations and the +back-end systems (servers) which manage the charging stations. + +Here the term “manage” means: +(a) To establish communication with the CS and the EVSE. (b) To set the specific characteristics of +the charging service, considering the user’s preferences, the condition of the EV, and the status of +the power grid. (c) To gather and save data related to the charging system. (d) To manage the user’s +application and provide a platform for it. (e) To keep a record of scheduled charging appointments +for the service + +OCPP is an IP-based protocol, that relies on Transmission Control +Protocol (TCP) and Transport Layer Security (TLS) for authentication and encrypted communication. +For the Physical and Data link layer, OCPP is entirely based on Ethernet communication. According +to Open Charge Alliance (OCA), OCPP functions are specified as client-server communication, +where the CS is the client and the CPO plays the server role + +characteristics of OCPP 2.0 +are as follows: +• Device Management: It includes features to get and set configurations and monitor a Charging +Station. This is particularly useful for Charging Station Operators managing complex +multi-vendor charging stations. +• Added Security: OCPP 2.0 introduces secure firmware updates, security logging and event +notification, and security profiles for authentication and secure communication. +• Smart Charging Functionalities: These are added for scenarios with an Energy Management +System (EMS), a local controller, and for integrated smart charging of the EV, charging +station, and Charging Station Management System. +• Support for ISO 15118: This standard covers plug-and-charge and smart charging requirements +from the EV. +• Display and Messaging Support: This feature provides the EV driver with information on +the display, for instance regarding rates and tariffs. + +The architecture of the Open Charge Point Protocol (OCPP) is designed +to facilitate seamless communication between Electric Vehicle Service Equipment (EVSE) and CPO. +At its core, OCPP defines three main components: the Charging Station (CS), which represents +the physical infrastructure where electric vehicles (EVs) connect for charging, equipped with an +embedded controller that communicates with the CPO. The CPO, the software application at the +core of the EV charging ecosystem, acts as a backend infrastructure which manages and monitors +the entire charging network, coordinating interactions between the CPs and EVSEs. It handles +tasks like assigning charging slots, monitoring charge sessions, billing customers, and facilitating +communication with external systems, such as payment gateways and energy management +platforms. The interaction between the CS, EVSE, and CPO occurs through standardized OCPP +messages. These messages, exchanged over a secure communication channel, convey essential +information about the charging process, station status, and energy consumption. The CPO responds +with corresponding messages, ensuring bidirectional communication. + +OCPP Security Profiles. According to OCA and the official documentation of OCPP [1], There +are three major security profiles in OCPP 2.0.1 which we are going to discuss here. First, The UTBA +(Unsecured Transport with Basic Authentication) profile lacks fundamental security measures and +does not incorporate authentication for the Charging Station Management System (CPO) or secure +communication channel setup. It relies solely on HTTP Basic Authentication, making it suitable +only for trusted networks, like those employing VPNs between the CPO and Charging Station. In +contrast, the TLS-BA (TLS with Basic Authentication) profile enhances security by employing TLS +to encrypt communication between the charging station and CPO. While it improves authentication +compared to UTBA, it still relies on username and password, which may not suffice for robust +security. Finally, TLS-CSC (TLS with Client-Side Certification) stands as the highest security profile, +using TLS for encryption and requiring both charging station and CPO to authenticate using +certificates. This model offers a superior level of security but must be carefully managed to address +potential vulnerabilities in TLS or certificate systems. Additionally, avoiding TLS compression +methods is recommended to prevent compression side-channel attacks and ensure interoperability. + + +eMSP to CPO via TCP/IP/Lorawan using Open Charge Point Interface (OCPI) + + +Its primary function lies in +fostering interoperability among diverse stakeholders within the EV charging landscape. These +stakeholders encompass CPOs, CS Operators (CSOs) and eMSPs. +OCPI empowers +these entities to engage in seamless information exchange, enabling the provision of uninterrupted +and user-friendly charging services to the community of EV users. + +The OCPI architecture involves orchestrating the interactions between two key entities namely CPOs and eMSPs with CSOs playing a more indirect role. + +CPOs +are service providers that own, operate, and manage EV charging stations. They integrate OCPI +into their CSMS to oversee the entire charging process. This includes managing charging sessions, +setting and managing charging fees, and engaging in roaming agreements to expand their network’s +coverage. eMSPs act as intermediaries between EV drivers and CPOs, providing a comprehensive +platform for managing charging services. eMSPs communicate with CPOs using OCPI messages +to initiate charging sessions, manage charging accounts, and access charging station information. +CPOs, in turn, relay these commands and data to the relevant CSOs to manage the physical +charging process. This indirect interaction ensures centralized control over charging networks +while maintaining compatibility with the standardized OCPI messaging framework. + + +Open Automated Demand Response (OpenADR) + + +OpenADR is a standardised communication protocol that was originally created to manage electricity +demand across many sectors. + +OpenADR is intended to support a wide range of applications, from simple home demand response +programs to big industrial and commercial systems like EV charging stations. It can handle a wide +range of devices, including thermostats, building management systems, and industrial equipment, +making it suited for a wide range of applications. + +OpenADR improves grid reliability and energy efficiency with +essential characteristics such as scalability for multiple applications, two-way communication +enabling bidirectional information sharing, and support for various demand response signals +such as event-based, price-based, and simple-level signals. + +VEN is a device or group of +devices capable of responding to demand response signals. VENs are in charge of receiving and +responding to events, generating reports, and managing demand-side resources. VENs can be found +anywhere along the power grid, from individual homes and businesses to large industrial facilities. +A VTN is a system that manages VENs and transmits demand response signals to them. VTNs play +an important role in resource management, event creation and transmission, and report request. +Whereas VTNs can be run by utilities, aggregators, or other entities. + +OpenADR uses web services to send and receive messages between VTNs and VENs. These +messages can be used to send demand response events, set availability schedules, request and +receive reports, and register VENs. OpenADR uses standard communication protocols and XML +payloads, which makes it easy for different systems to communicate with each other. + + +OSCP + +The OSCP serves as an open communication protocol that facilitates interaction between the CPO +and the DSO. This protocol is responsible for transmitting a 24-hour forecast of the power grid’s +available capacity to the CPO. + +This section delves into the primary characteristics of OSCP: (i) Remote Management: +The protocol allows for remote management of charging sessions, enabling users and service +providers to monitor, control, and manage the charging process; (ii) Dynamic Charging Control: +OSCP supports dynamic charging control, allowing adjustments to charging parameters based on +factors such as grid conditions, energy demand, or user preferences; (iii) Scalability: The protocol +is designed to be scalable, accommodating a variety of charging infrastructure sizes and types, +from small home chargers to public fast-charging stations. (iv) Interoperability: OSCP promotes +interoperability between different manufacturers’ EVs and charging infrastructure, ensuring a +seamless experience for users regardless of the equipment they are using. + +The OSCP specification employs various terms, including Capacity +Provider, Capacity Optimizer, Flexibility Provider, and Flexibility Resource, as shown in Figure 4. A +Flexibility Resource refers to a physical device with the ability to consume or generate energy in a +controlled and flexible manner, such as electric vehicles. Flexibility Resources have the potential to +exhibit flexibility in terms of both the timing and the quantity of energy they consume or generate. +The management of all Flexibility Resources is the responsibility of the Flexibility Provider. The +Flexibility Provider, such as a CPO, gives instructions to Flexibility Resources for either generating +or consuming energy. The Flexibility Providers are provided with upper and lower bounds for +energy consumption or generation by the Capacity Provider. It’s important to note that Capacity +Providers do not directly interact with individual Flexibility Resources. In contrast, it is the duty +of the Flexibility Provider to skillfully manage their Flexibility Resources, guaranteeing that they +operate within the constraints defined by the Capacity Provider. For instance, a Capacity Provider, +such as a DSO, ensures the proper functioning of a certain area, and a Flexibility Provider, such as a +CPO, manages energy requests and demands while staying within the prescribed capacity limits of +the grid connection. + +There is another entity, referred to as the Capacity Optimizer, which can assist + +the Flexibility Provider by offering an optimal approach to managing their Flexibility Resources. In +practical terms, the Capacity Optimizer may leverage additional data sources, including weather +forecasts and historical energy tariffs. These additional data sources can enhance the decisionmaking +process for the Flexibility Provider. However, it’s worth mentioning that Capacity Provider +has the capacity to establish an optimal solution on their own. +In general, the aforementioned entities mentioned in the above section can transmit five types +of messages. Among these five messages, three of them, namely UpdateGroupCapacityForecast, AdjustGroupCapacityForecast, +and GroupCapacityComplianceError, pertain to Capacity. The remaining +two messages, UpdateGroupMeasurements, and UpdateAssetMeasurements, relate to Metering \ No newline at end of file diff --git a/_sources/Series_Critical_Infrastructure/LFF-CIS-IndustrialControlSystems.rst.txt b/_sources/Series_Critical_Infrastructure/LFF-CIS-IndustrialControlSystems.rst.txt index 16fbc87..01b7e62 100644 --- a/_sources/Series_Critical_Infrastructure/LFF-CIS-IndustrialControlSystems.rst.txt +++ b/_sources/Series_Critical_Infrastructure/LFF-CIS-IndustrialControlSystems.rst.txt @@ -9,158 +9,1804 @@ Purpose - Importance of knowing the networks that needs to be protected - Discuss mitigation strategies and defense in depth for more secure ICS environment -Definitions -*********** +Basic Concepts +************** IT == - IT refers to anything related to computing technology. +IT Infrastructure Components +---------------------------- + +- The most common IT infrastructure components are: Switches and routers, Firewalls, Remote access, Databases, Clients, Local Area Network (LAN) / Wide Area Network (WAN), Servers, Wireless access. + +Switches and Routers +^^^^^^^^^^^^^^^^^^^^ + +- Switches are used when connecting computers, printers, databases, and other networking equipment. To optimize communications and make sure data are going where they need to go, switches provide a high level of control and efficiency within the network. Switches can be used to isolate communications between specific devices and are configured to regulate network traffic, ensuring the network doesn't get congested by too much information. If they're not available, network data just don't flow. + +- Switches generally come in two different types: Managed switches and unmanaged switches. + + - Managed switches are fully configurable. They provide tremendous flexibility and usually more capacity than unmanaged switches. They allow the administrator granular control over the network. Management can be done locally or remotely. + - Unmanaged switches are switches that you buy, take out of the box, and put on the network. There is no requirement to configure them; in fact, they are often designed so they cannot be configured. An unmanaged switch is simple to use, such as the switch built into the router that your Internet Service Provider may provide for your home network. + +- Routers act as a dispatcher, choosing the best path for information to travel so it's received quickly. While switches are used to connect components within a network, routers are used to connect networks together. Routers determine the best path for networks to connect and are configured so information is always up-to-date and accurate. + +LAN/ WAN +^^^^^^^^ + +- A Local Area Network (LAN) supplies networking capability to a group of computers in close proximity, such as in an office building, a school, or a home. A LAN is useful for sharing resources such as files, printers, games, or other applications. A LAN often connects to other LANs, to the Internet, or a wide area network (WAN). +- A WAN is a geographically dispersed telecommunications network. The term distinguishes a broader telecommunication structure from a LAN. A WAN may be privately owned or rented, but the term usually includes a connection with, or through, public (shared user) networks. An intermediate form of network in terms of geography is a metropolitan area network (MAN). +- From a cybersecurity perspective, most organizations deploy their information infrastructures in a manner that implies trust between all assets connected to it. In a LAN environment, the trust relationship is easier to control because most, if not all, the assets connected to a LAN are managed internally. Securing a WAN is much more complex and requires cross-domain trust, authentication, and management. + + +Remote Access +^^^^^^^^^^^^^ + +- Remote access allows a user to connect to a network or system as though they were physically located at the console. +- Remote access extends the network outside of physical and network perimeters and allows access from anywhere. Organizations provide remote access services to support telecommuters, remote management and support, and vendor support access. +- Remote access components can include modems, remote access servers, virtual links, or any capability that facilitates non-local user access into the IT infrastructure. + +Firewall +^^^^^^^^ + +- A firewall is a network security system that controls incoming and outgoing traffic based on an applied rule set. A firewall establishes a barrier between a trusted secure network and another network (e.g., the Internet) that is assumed to be insecure and untrusted. + + - Administrators use access control lists (ACLs) to create rule sets to ensure only authorized communications occur between networks. Firewalls can be simple or complicated, but almost all have the capability to be actively managed by an administrator. Even the firewall you use to protect your home network has that capability. + +Databases +^^^^^^^^^ + +- Businesses demand users have access to vast stores of information; historical information as well as up-to-the-minute data that can influence current and future business decisions. Having timely access to data, either historical or recent, is vital for ensuring optimum performance. +- Databases store information needed for operations, such as customer lists, marketing and sales data, accounts payable and receivable, payroll, and order tracking. Many business decisions are made, and operations function, based on the numbers or values that reside in databases. The networking component of the IT architecture provides communications between databases. The client queries the database for information and uses that information locally, then sends updated information back to the database. +- Databases are often configured to reside on servers so clients from across the organization can request data, often in user-customized formats and configurations. Large, centralized databases may exchange information with peripheral secondary databases located across the business domain. +- ICS databases hold critical information used to ensure proper set points and functions on devices, or to gather monitoring information used to determine system state. They can include time-stamped data, events, or alarms that are queried or used to populate graphic trends in the human-machine interface (HMI). ICS database security is an important consideration when designing overall defense strategies. + +Wireless Access +^^^^^^^^^^^^^^^ + +- Wireless access allows for the information infrastructure to be expanded quickly and effectively without having to lay network cable, drill holes, or adjust ceiling conduits. Almost every modern IT device has the capability to use wireless, and fewer organizations are building hard-wired networking infrastructures; their business architectures are being built primarily using wireless networking. ICS operators and vendors also use wireless communications to manage, monitor, and control their ICS devices. Many control systems include built-in wireless capabilities. +- Wireless access points are actually routers and require specific attention regarding security and reliability. Wireless access points are an attractive target for the cyber adversary, allowing direct access into the infrastructure or devices connected to it. The availability of wireless access points is critical to the effectiveness of the network. If rendered inoperable, no one can connect to the network without being on the wire. +- Historically, the communications protocols used by wireless systems were not very secure; however, current technology provides the capability to securely deploy and manage these devices if the organization enables it. Sometimes the overhead of applying and managing secure wireless configurations is considered too much for an organization to bear so it employs useful but insecure access points. +- Because of the criticality of the devices in an ICS, and the potentially dire consequences of a compromise, ICS wireless architectures should be carefully configured with as many cybersecurity controls applied as possible while still allowing required functionality. + +Servers +^^^^^^^ + +- Web pages, mail, customer service portals, and other information services usually reside on dedicated network hosts called servers (or sometimes, application servers). Clients connect to servers to perform tasks or use services that are common to a group. Servers are the workhorses in the IT infrastructure—they "serve" the applications, databases, stored information, and services to the clients on a network. Because organizations often maintain large information stores on dedicated servers, they typically have a large amount of random access memory (RAM) and storage space. +- Modern IT environments may have servers located in any number of physical locations. Connectivity between the servers and clients is supported through the networking infrastructure. As organizations continue to grow and more information needs to be made available to more users, businesses add more servers—and the security footprint of the business grows along with it. +- The security of these assets is important because if they are unavailable or the information they contain is corrupt, users and applications cannot work properly. Security protection profiles can vary from server to server, depending on the information stored or processed on the server and the requirements of the business. The protection of the information stored or transmitted by servers, and controlling access to them are vital components of an organization's cybersecurity strategy. + + +Clients +^^^^^^^ + +- Clients are the information resources, such as personal computers, laptops, or smartphones that provide an interface for users to view and manipulate digital information. +- Clients are the most common interface between human users and information. Clients often depend on information that resides both locally and on servers that could be elsewhere. +- Local applications run on the client, and help us process information or connect to other devices in our networking environment. +- In the control system domain, clients are called HMIs - a computer used to control and manage processes in critical infrastructure sectors such as energy, water, and transportation systems. + +Client-Server Relationship +^^^^^^^^^^^^^^^^^^^^^^^^^^ + +The relationship between clients and servers can be confusing because both can also be called a host. The table below helps to clarify this relationship. + ++-----------------------------------------+----------------------------------------------+------------------------------------------------------+ +| Host | Server | Client | ++=========================================+==============================================+======================================================+ +| Always a physical node | Can be a physical node or a software program | Can be a physical node or a software program | ++-----------------------------------------+----------------------------------------------+------------------------------------------------------+ +| Can run both server and client programs | Installed on a host | Installed on a host | ++-----------------------------------------+----------------------------------------------+------------------------------------------------------+ +| Provides specific services | Provides specific services to clients | Accesses specific services available from the server | ++-----------------------------------------+----------------------------------------------+------------------------------------------------------+ +| Serves multiple users and devices | Serves only clients | Stand-alone or part of a client-server network | ++-----------------------------------------+----------------------------------------------+------------------------------------------------------+ + +UPS Battery Backup +^^^^^^^^^^^^^^^^^^ + +- Many data center and control system environments have back-up power on standby. This back-up power supply ranges from a simple off-the-shelf universal power supply (UPS) under a desk, to larger ones found in server racks, taking up the same space as a 4U server. +- Other back-up power solutions involve a building being equipped to handle its functions, such as a different room with a wall of batteries, or generators ready to kick on. + +Virtualization +^^^^^^^^^^^^^^ + +HMI workstations, Historians and Databases, and anything that uses a standard operating system on any workstation or server platform, could be virtualized. + +Cybersecurity Tenets +-------------------- + +- Confidentiality is defined by the International Organization for Standardization (ISO) as ensuring that information is accessible only to those authorized to have access. + + - For example, a credit card transaction on the Internet requires the credit card number to be transmitted from the buyer to the merchant and from the merchant to a transaction processing network. The system attempts to enforce confidentiality by encrypting the card number during transmission by limiting the places where it might appear, and by restricting access to the places where it is stored. Confidentiality is necessary for maintaining the privacy of the cardholder's personal information held in the system. +- Integrity is maintaining and ensuring the accuracy and consistency of data over its entire life cycle. All characteristics of the data, including business rules, dates, definitions, lineage, and rules for how pieces of data relate must be correct for data to be complete. +- Availability is the proportion of time a system is in a functioning condition. For any information system to serve its purpose, the information must be available when it is needed. + +General IT Security +------------------- + +- Security controls are the mechanisms used to mitigate vulnerabilities. An example of a security control is patching. +- The Information Security Standard 27002 (ISO-27002) outlines hundreds of potential controls and control mechanisms +- SANS provides a `set of security policy templates `_ that can be used to define policies. + +Security Policy +^^^^^^^^^^^^^^^ + +- The IT/ICS security policy document should reinforce management's commitment to information security and contain the following items: + + - A definition of information security and its importance to the organization. + - The intent of the policy regarding goals and principles of information security in conjunction with business strategy and objectives. + - The structure of risk assessment and risk management as a framework for establishing controls. + - Essential security policies, principles, standards, and compliance requirements, including the Rules of Behavior expected for all computing users. + - Specific Security roles, responsibilities, accountabilities, and authorities (R2A2s) for IT/ICS security management and implementation, including reporting IT/ICS security incidents. + - References to other policies and procedures that identify detailed security processes that everyone in the organization is expected to follow. + +Access Control +^^^^^^^^^^^^^^ + +- An access control policy defining user or group rules and rights should be clearly stated. Access controls for both logical and physical assets should be considered together. The policy should consider: + + - The security requirements of each application/system. + - The identification of all information related to the application or system and risks associated with access to the information. + - The implementation of Least Privilege concepts for access to systems and applications. + - Standard user profiles for common job roles. + - The segregation of access control roles, such as access requests, access authorizations, and access administration. + - Formal procedures for access requests and approvals. + - The removal of access rights, including requirements for notifying administrators when individuals are transferred, their roles or access authorizations change, or they are terminated. + +Asset Management +^^^^^^^^^^^^^^^^ + +- IT/ICS assets include: + + - Information such as databases, systems and research information, logs, operational or support procedures, continuity plans, failure and recovery procedures, and archives. + - Software assets such as application software, system software, development tools, and utilities. + - Physical assets such as computer equipment, communications equipment, removable media, and test and analysis equipment. + - Services such as computing and communications services, general utilities such as air conditioning, fire protection, surveillance services, and other services. + - People and their capabilities, skills, and experience; in addition to the reputation and image of the organization. +- All IT/ICS assets must be clearly identified, inventoried, and maintained. The ownership of assets must be clearly identified, and the asset owner should be responsible for ensuring that IT/ICS assets are appropriately classified based on risk and are periodically reviewed for access restrictions and classification. + +Business Continuity +^^^^^^^^^^^^^^^^^^^ + +- The business continuity management process is implemented to protect critical business processes from the effects of major failures in systems as they relate to IT and ICS environments. The reliance on automated processes leaves an organization in distress when these automated processes are no longer functional and is exacerbated when no prior planning or instruction exists on how to cope with the event. +- Understanding the impacts of an interruption caused by a security incident are important tools, even for the most seasoned business executive. + +Communications and Operational +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- Operating procedures should be documented, maintained, and made available to all authorized users. These procedures should specify instructions for the execution of each function, to include processing and handling of information, backup and/or restoration instructions, scheduling and interdependencies of work, abnormal execution instructions including support contacts, restart instructions, and the expectations for managing system log information. +- Configuration management and change control policies and procedures must be controlled and maintained. Any changes to systems must be tested prior to implementation, and should be independently reviewed and security controls verified. Updates to all documentation associated with the change should also be accomplished before the change is implemented. Logs of all changes containing relevant test procedures and results should be maintained. + +Compliance +^^^^^^^^^^ + +- Individuals must understand the legal ramifications of their activities. Compliance activities fall into categories such as regulatory, legal, statutory, contractual, security, and intellectual property/copyright/trademark issues. +- Control of the organization's legal obligations requires that any of these items be documented and kept up to date. Usually the legal department should be involved in any IT or ICS acquisition associated with any legal or statutory requirement. +- Records associated with information, systems, applications, or security should be categorized and maintained, and a retention schedule identified. If the records are stored electronically, procedures to access the data for the retention schedule must be ensured, even when technology changes render obsolete systems unusable. These technology changes normally require a conversion process that should be overseen by the owner of the information + +Human Resources +^^^^^^^^^^^^^^^ + +- Security roles, responsibilities, accountabilities, and authorities (R2A2) for employees, contractors, and third-party users must be defined and documented according to the organization's IT/ICS security policies. Security roles and responsibilities include: + + - Requirements to implement the organization's security policies + - Protect assets from unauthorized access, disclosure, modification, destruction, or interference + - Execute security processes as required + - Take responsibility for individual actions + - Report security events that pose a risk to the organization. + +- These R2A2s must be communicated to employees, contractors, and third parties prior to beginning work. Job descriptions provide an effective means of communicating the security responsibilities. In addition, the continual reinforcement of R2A2s via regular training play an important role in keeping personnel aware of their security obligations. + +Information Systems Acquisition, Development, and Maintenance +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- Procurement specifications for systems must take into consideration the security controls to be incorporated into the system. DHS provides templates for Procurement Specifications that include significant security provisions. They should be used for even the smallest of acquisitions and considered mandatory for large scale, sensitive environments. +- A formal testing and acquisition process should be followed by the organization. Contracts should address the identified security requirements. Additional functionality built into the product that may cause a security risk should be disabled/removed. +- Many products have been evaluated formally for security and are certified for a particular use. A process in place to review equipment and evidence of security is provided through an "Evaluation Assurance Level" document performed by independent contractors to review equipment and software to the formal requirements of Common Criteria (ISO/IEC 15408). + +Physical and Environmental +^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- Security perimeters must be used to protect areas containing sensitive IT/ICS facilities. These perimeters should be clearly defined, access controlled via electronic locks or other physical barriers, and monitored via surveillance equipment. +- Third-party users (vendors, support personnel, etc.) should be physically separated from the organization's sensitive facilities. Likewise, public access, delivery and loading areas should be controlled and isolated where feasible. + +Risk Assessment +^^^^^^^^^^^^^^^ + +- Business exposure to IT/ICS security risks is a balance of cost and potential harm. This includes physical harm to people and assets, loss of reputation, environmental harm, regulatory violations, and others. Each of these potential business exposures has a cost that may be equated to the bottom line in terms of profits. +- An organization performs a risk assessment to identify, quantify, and prioritize the risk against criteria for managing the risk and objectives related to the business bottom line. The product of the risk assessment is an estimate of the magnitude of the risk (risk analysis) and the significance of that risk (risk evaluation), along with the identification of potential threats and the current vulnerability to the threats (risk exposure). +- Risk assessments are as important to an organization as any other business undertaking and should be a key activity performed on a regular basis. They should involve key stakeholders of the organization, including those with knowledge to assess the risks and prioritize mitigation actions based on the criticality of the asset. These key human resources should include, but are not limited to, CIO, Legal Counsel, Risk Manager, Compliance Manager, Public Relations, and Physical Security. + +Security Incident Management +^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- Suspected security events must be reported through appropriate channels as quickly as possible. A formal security event reporting procedure is required, along with an incident response and escalation procedure identifying the actions to be taken in the event of a security incident. +- A point of contact should be established for reporting and managing security incidents. The reporting procedure generally contains: + + - Instructions to the individual reporting the incident (e.g., to do nothing that would compromise the ability to perform forensics on the system). + - Security incident forms to support reporting. + - Steps to be taken by responders in case of a security event. + - Feedback processes to ensure those reporting security events are notified of results after the issue has been closed + +Security Governance +^^^^^^^^^^^^^^^^^^^ + +- Security governance encompasses a set of multi-disciplinary structures, policies, procedures, processes, and controls. It is implemented to manage information at an enterprise level, and supports an organization's immediate and future regulatory, legal, risk, environmental, and operational requirements. +- As defined by Gartner, Inc., security governance is, "the specification of decision rights and an accountability framework to encourage desirable behavior in the valuation, creation, storage, use, archival, and deletion of information. It includes the processes, roles, standards and metrics that ensure the effective and efficient use of information in enabling an organization to achieve its goals." +- Organizations take great pride in their use of technology to advance their reputation and worthiness to the public and other organizations. However, too much information provides an avenue of risk when this information slips into the hands of those seeking to use it for their own benefit to do harm. A fine balance must be achieved to ensure IT/ICS information technology does not provide that avenue of risk. + +IT Vulnerabilities +------------------ + +- To fully understand cyber risk, we need to understand vulnerabilities. Simply put, vulnerabilities are weaknesses that, if exploited, could result in an undesirable consequence (such as a system compromise). Vulnerabilities usually have a negative impact on the security posture of the system and need to be mitigated to reduce the cyber risk. +- Vulnerabilities can usually be mitigated, either by a reconfiguration of the system or by applying a security patch issued by the vendor. People often associate vulnerabilities with weaknesses that give a potential attacker a specific opportunity to compromise a system; but the existence of a vulnerability doesn't always equate to an opportunity upon which an adversary can capitalize. Many factors contribute to whether an adversary will take advantage of a vulnerability, such as: + + - The ease in which the vulnerability could be exploited. + - Where the adversary needs to be, relative to the system to attack. + - Whether the adversary must authenticate to the system to carry out the attack. + +- Interestingly, system owners can also decide whether to fix a vulnerability based on similar criteria: + + - What are the tools available to exploit the vulnerability? + - How easy is it to exploit the vulnerability? + - How much does it cost to fix the vulnerability? + - How accurate is the information about this vulnerability? + - Is there any collateral damage (in other systems) that can be caused by exploiting this vulnerability? + +- As the number of cyber vulnerabilities grow, so does the capability to track and score these vulnerabilities. Scoring establishes a common measure of how much concern a vulnerability warrants, as compared to other vulnerabilities measured the same way. Scoring allows organizations to prioritize their cyber risk reduction activities and provides valuable intelligence on the current status of known vulnerabilities, their mitigation strategies, and the constantly evolving changes in levels of difficulty associated with exploiting the vulnerability. The most popular vulnerability scoring system is called the Common Vulnerability Scoring System (CVSS), and is hosted at National Institute of Standards and Technology (NIST). + +- The decision to implement a countermeasure to mitigate a vulnerability is not always obvious. Scoring allows the system owner to assess the potential impact in a general sense; however, operational requirements must also be taken into consideration. Updating a system or application or applying a patch may not be feasible as it could alter the functionality, cause a service interruption, or even cause the service or process to fail. This is where defense-in-depth strategies are applied. +- In some cases, the vulnerabilities are inherent in the system and users of the technology are not in a position to fix them. For example, known vulnerabilities in some network protocols have been in place since they were designed. Network administrators and security implementers have worked together to compensate for them (as opposed to fixing the root problem). +- In addition to insecure protocols, there are inherent vulnerabilities associated with all operating systems. Given that relatively few operating systems support the majority of our global IT infrastructures, any vulnerability in that operating system provides a target-rich environment for cyber attackers. When vulnerabilities are discovered in operating systems, it impacts not just one or two IT architectures; it impacts all architectures that use it. In some cases, this can impact tens of millions of computers, many of which control critical processes. + +OT/ICS +====== + OT -== +-- - OT refers to hardware and software used to monitor events, processes, and devics and make adjustments in industrial operations. - Operational Technology (OT) refers to systems used to monitor and control industrial operations. ICS -=== +--- + +- ICS is a general term used to describe the integration of hardware and software with network connectivity in order to support critical infrastructure. An ICS is a system that handles process control and monitoring for the facility. It will take inputs from sensor and process instruments and provide output based on control functions in accordance with approved design control strategy. +- The structures of ICS architectures are diverse, and depend upon system requirements, process function, and business needs. Vendor solutions sometimes dictate using specific ICS architectures; however, depending on the functionality and the complexity of the control action, there are common elements seen across all ICS architectures. +- We should note that the differences between systems are diminishing as the capabilities merge. To reduce the confusion among the various types of control systems, we refer to them by their generic name, industrial control system (ICS). +Different ICS Terms +------------------- + +- Industrial control system (ICS) is a collective term used to describe different types of control systems and associated instrumentation, which include the devices, systems, networks, and controls used to operate and/or automate industrial processes. Depending on the industry, each ICS functions differently and are built to electronically manage tasks efficiently. Today the devices and protocols used in an ICS are used in nearly every industrial sector and critical infrastructure such as the manufacturing, transportation, energy, and water treatment industries. +- ICS: A computer-based system used within many critical infrastructures to monitor and control sensitive processes and physical functions. "Control Systems" is a generic term applied to hardware, firmware, communications, and software that are used to monitor and control vital functions of physical systems. +- ICS refers to the facilities, systems, and equipment that comprise the operational real-time control environment, services, diagnostics, and functional capabilities necessary for the effective and reliable operation of automation systems. ICS are made up of a device, or set of devices, that manage the behavior of other devices. +- An ICS system is an interconnection of components related in such a manner as to command, direct, or regulate itself or another system. This process could occur within a single factory (e.g., a batch mixing process contained in a chemical plant) or be distributed over a large geographical area (e.g., tracking and coordination of train movement over a busy rail system). - Industrial Control Systems (ICS) includes systems used to monitor and control industrial processes. - ICS refers to a broad set of control systems including - - SCADA (Supervisory Control and Data Acquistion): geographically spread out (pipelines, electric substations) - - DCS (Distributed Control System): might be located at one location only such as Nuclear power station with reactor basement (ground and first floor), cooling tower and field controller (communicating with IO and sending data to control room) (Distributed control) - - PCS (Process Control System) - - EMS (Energy Management System) - - AS (Automation System) - - SIS (Safety Instrumented System): Separate system from a DCS created specifically for safety purposes. For example as long as the variables (temperature, pressure and other important variables) are within specfied all is good. If not, SIS will shutdown the systems. - - Any other automated control system. + - SCADA (Supervisory Control and Data Acquistion): A large scale, distributed measurement and control system (geographically spread out). SCADA systems are used in the transmission and distribution of oil (pipelines), gas, water, and electricity (pipelines). + - DCS (Distributed Control System): A system where control is achieved by the distribution of live data (intelligence) throughout the controlled system, rather than from a centrally located single unit. DCS are used in power generation, chemical processing, oil refining, and wastewater treatment. They might be located at one location only such as Nuclear power station with reactor basement (ground and first floor), cooling tower and field controller (communicating with IO and sending data to control room) (Distributed control). + - PCS (Process Control System): A general term that encompasses several types of control systems used in industrial production, including SCADA, DCS, and other smaller control system configurations such as programmable logic controllers (PLC). PCS are used in water treatment, chemical processing, mining, pharmaceuticals, and manufacturing. + - EMS (Energy Management System): A system of computer-aided tools used by operators of electric utility grids to monitor, control, and optimize the performance of the generation and/or transmission system. EMS are used in electrical energy and pump optimization. + - AS (Automation System): A technology concerned with performing a process by means of programmed commands combined with automatic feedback control to ensure proper execution of the instructions. The resulting system is capable of operatingwithout human intervention. AS are used in material handling and discrete manufacturing. + - SIS (Safety Instrumented System): An engineered set of hardware and software controls commonly used on critical process safety systems. SIS are especially useful in safety shutdown and equipment protection systems. Separate system from a DCS created specifically for safety purposes. For example as long as the variables (temperature, pressure and other important variables) are within specfied all is good. If not, SIS will shutdown the systems. + - Any other automated control system: An example of another automated control system is a building automation system (BAS), such as automatic doors, or controls for heating, ventilation, and air conditioning (HVAC). + +Supervisory Control & Data Acquisition (SCADA) +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- SCADA is an acronym for supervisory and data acquisition, a computer system for gathering and analyzing real time data. SCADA systems typically used to control geographically dispersed assets that are often scattered over thousands of square kilometers. In the past, communications between field controllers and host computers were dependent upon serial communications, most typically RS232. Data rates rarely exceeded 9,600 bits per second and resulted in ICS needing to be co-located or include multiple relays. +- As digital technology and data transfer rates improved, networks extended to include more remote locations, and asset owners started to migrate their serial SCADA circuits and converted to digital networks. While this migration offers asset owners significant benefits, there are pitfalls. An improperly designed network can be a conduit for cyberattacks. +- Because a tremendous amount of data is collected, the success of the SCADA system is dependent on the master controller successfully communicating with field controllers, such as RTU, IED, and PLC. If communications fail, the field controllers must individually control the remote facilities until the system re-establishes communications and the RTU or PLC can report to the master station. +- Using SCADA components provides flexibility, in that they can integrate the HMI from one vendor with the PLC or RTU from another vendor, provided they use the same protocol. This means you can replace the HMI software without having to replace the RTU or PLC (and vice-versa). +- SCADA is used in a wide range of industries. Some of the common places that use SCADA for various processes include: + + - Electrical Delivery + - Oil and Gas Delivery + - Drinking Water Delivery + - Wastewater Removal + - Transportation Systems + +Distributed Control System (DCS) +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- DCS were initially developed to support large process industries such as refineries and chemical plants. The DCS controllers are distributed throughout the plant; hence the name distributed control system. They are typically deployed at site facilities over the plant or control area. +- DCS are different from a centralized control system where a single controller handles the control functions from a central location. DCS has each machine or group of machines controlled by a dedicated controller. These distributed individual automatic controllers are connected to the field devices. +- The biggest advantage of DCS is its ability to have multiple controllers dividing tasks, because DCS is best suited for large-scale processing or manufacturing plants where a large number of continuous control loops need to be monitored and controlled. The biggest advantage to multiple controllers dividing the control tasks, because if any part of DCS fails, the plant can continue to operate irrespective of the failed area. +- Due to the distribution of control system's architecture of DCS, it has become prominent in large and complex industrial processes. They include: + + - Papermaking + - Fixed Chemical + - Water Treatment + - Rail Transit + - Power Stations + - Petrochemical + - Biopharmaceutical + + +SCADA vs DCS +^^^^^^^^^^^^ -Embedded Systems -================ ++--------------------------------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+ +| SCADA | DCS | ++================================================================================================================================+==============================================================================================================================================================================+ +| Data-gathering oriented | Process oriented | ++--------------------------------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+ +| Larger geographical areas that use different communication systems, which are generally less reliable that local area network | Data acquisition and control modules located within a confined area and communication between various distributed control units is carried out by local area network (LAN). | ++--------------------------------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+ +| No closed-loop control | Closed-loop control at process control stations and remote terminal units | ++--------------------------------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+ +| Event driven - not scanned regularly, waits for an event to trigger actions | Process-state driven - scans the process regularly and displays to operator, as well as on-demand | ++--------------------------------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+ +| Used in larger geographical locations, such as water management systems, power transmission and distribution control, etc. | Used in installations within confined-space, such as single plant or factory, for complex control processes | ++--------------------------------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+ + +Process Control Systems (PCS) +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- PCS, sometimes called ICS, function as pieces of equipment along the production line during manufacturing, testing the process and returning data for monitoring and troubleshooting. PCS are architecturally similar to SCADA systems, but also perform many of the functions of a DCS, and are similarly used at site facilities. PCS supports a variety of manufacturing processes including continuous, batch, and discrete processing. +- Many PCS applications overlap with DCS applications. PCS are scalable and used in small power plants, as well large production facilities. As a general rule, however, DCS implementations are more suitable for large refineries and chemical plants. +- PCS use many of the same software packages and hardware components as SCADA systems. This includes PLC and RTU. The main difference between PCS and SCADA system is that a PCS communicates with the field controllers using a plant network, while SCADA systems traditionally use serial communications and remote networks for the same task + +OT Infrastructure Components +---------------------------- + +Human-Machine Interface (HMI) +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- The user interface in a manufacturing or process control system. It provides a graphics-based visualization of an industrial control and monitoring system. Previously called an "MMI" (man-machine interface), an HMI typically resides on a computer that communicates with a specialized computer in the plant, such as a programmable automation controller (PAC), programmable logic controller (PLC) or remote terminal unit (RTU). The HMI generally comes in two forms: either a touch panel or a software-based application that is loaded on a personal computer, workstation, tablet, or smart phone. +- HMI workstations are typically located at a centralized or distributed control center, where operators see a complete set of unified control system data presented in a graphical user interface. This allows the operator to have a real-time or near real-time operational view of the process. An operator typically uses the HMI to monitor and control the process. They are also capable of providing historical trends, alarms and event notifications, or support other applications that an operator may use to do their job. +- From a security perspective, the HMI system and/or data is an obvious target, as they typically use standard operating systems and are interconnected with outside networks or available through remote access methods. Many HMI have command and control functionality, and if compromised, could allow an attacker to take over a mission-critical process. The SCADA Server is the data server that sends data to the field control devices via communications network using various communication protocols. It facilitates the communication through the system. The Energy Management System (EMS) is the energy data of the system and optimizes the energy use of the ICS. + + +Field Controllers +^^^^^^^^^^^^^^^^^ + +- The devices that consolidate inputs and outputs, taking the instructions from the operators to make changes in the field. Controllers can be programmed or updated in the field (remotely). These devices were designed as if they were in a “trusted” (the network map should show information about the trusted vs. un-trusted environments) environment. Therefore, when given a command, they obey or respond. Most do not authenticate to make sure they are receiving commands from a specific source. +- Field controllers collect and process input and output (I/O) data. They also send the process data to the HMI, as well as process control commands from the HMI to the field controllers. The field controllers are often located close to the field devices in order to process the information as quickly as possible. For large distributed systems, field controllers may collect and aggregate information from hundreds or thousands of sources. +- Field controllers are embedded microprocessor devices and are designed to withstand the rigors of an industrial environment. Like personal computers, they have a processor and internal memory, but usually do not have a mechanical hard drive. They convert the electrical signal from field devices (input) into a digital signal (1s and 0s), and convert a digital signal to an electrical signal (output). +- There are many different types of field controllers, and each is designed to support specific processes or sectors. The are four common types of field controllers: remote terminal units (RTU), intelligent electronic devices (IED), programmable logic controllers (PLC), and programmable automation controllers (PAC). + +RTU +"""" + +- A remote terminal unit (RTU) is a microprocessor-controlled electronic device that interfaces objects in the physical world to a distributed control system or SCADA (supervisory control and data acquisition) system by transmitting telemetry data to a master system, and by using messages from the master supervisory system to control connected objects. As this interfacing involves the collection of telemetry data, the system is sometimes called a remote telemetry unit. One of the key characteristics of an RTU is that it relays information from a remote location over long distances to a centrally located host using/supporting a variety of communications mediums and ICS protocols. +- RTU are capable of executing programs autonomously without having to involve the HMI or operator. This enables RTU to respond quickly to emergencies without operator input. For example, if the RTU program "sees" a high flow rate on one of the input flows, it can issue an output command to shut down a pump. In addition to converting analog or discrete measurements to digital information, RTU are also used as data concentrators and protocol converters. Typically, RTU are used by utilities and other industries that monitor and control geographically dispersed facilities. +- Sectors using RTUs + + - Oil and gas – RTUs are used in offshore platforms, onshore oil wells, pipelines + - Refineries and chemical plants – RTUs are used in environmental monitoring systems (pollution, air quality, emissions monitoring), outdoor warning sirens + - Water and Wastewater – RTUs can be found in distribution systems, aqueducts, water resource management, collection systems + - Electric power – RTUs are used in transmission and distribution systems across the country + - Mine sites – RTUs are used in conveyor monitoring and control, mine water management, underground equipment monitoring, bore management, and material handling + - Transportation Systems – RTUs are used in air traffic control, railroads, and trucking + +Intelligent Electronic Device (IED) +""""""""""""""""""""""""""""""""""" + +- An Intelligent Electronic Device (IED) is a term used in the electric power industry to describe microprocessor-based controllers of power system equipment. It is used by the Energy sector to monitor and control electrical power devices such as circuit breakers, capacitors, and transformers. IED receive data from field sensors (I/O) and power equipment and can issue control commands. These commands include simple things such as tripping circuit breakers if they sense anomalies in voltage or current. They can also instruct system output to raise or lower voltage levels in order to maintain the desired level. Common types of IED include protective relaying devices, load tap changer controllers, circuit breaker controllers, capacitor bank switches, re-closer controllers, and voltage regulators. +- Many owners/operators leave their IED with their “fresh out of the box” configurations. These default configurations, unfortunately, make it easier for those with ill intent to make changes to the operational parameters of the device. Furthermore, some owners opt to keep the extra communication programming ports active so they can view or make online changes from the shop or control room. Considering that modern IED are fully network aware, and in some cases, may have embedded services that facilitate remote administration, there is a valid concern for the cybersecurity of these devices. +- The utilities which operated the power transmission stations were some of the first to use IED. This early use was not to comply with regulatory requirements, but to save money. The use of IED in this instance meant a highly paid technician would not have to drive to a potentially remote transmission station to retrieve data. + + +Programmable Logic Controller (PLC) +"""""""""""""""""""""""""""""""""""" + +- Over the years, PLC functionality matured, and the devices are now found in other sectors. In fact, there is a new class of field controllers called Process Automation Controllers (PAC). PAC combine the best features of RTU, PLC, and Distributed Control System (DCS) controllers into a universal controller for use across multiple sectors. The onboard processor and memory, along with the network capabilities, make this device particularly interesting from a cybersecurity perspective. Click the controller image for the list of languages used by PLC. +- A Programmable Logic Controller, or PLC, is a ruggedized computer used for industrial automation and was created to respond to the needs of the automotive industry. These controllers can automate a specific process, machine function, or even an entire production line. In the 1960s, the automotive industry used relays, timers, and switches, along with extended wiring and cabling runs to control its assembly lines. Every time a model changed, the assembly line required a tear down and rebuild, making the process of auto manufacturing incredibly expensive and time-consuming. Only skilled electricians were qualified to perform this re-purposing of an assembly line. +- In 1968, General Motors issued a request for a proposal to replace the vast hardwired relay systems with a computer-based system. A company called Bedford Associates won the proposal and created the PLC. The first PLC were programmed in Ladder Logic. This programming language is designed to mimic the relay diagrams electricians used to wire relays and timers in the older assembly plants. The image shows PLC ladder logic illustrating basic motor start/stop control. +- In addition to ladder logic, other PLC programming languages have been developed. They are ladder logic, structured text, function block diagrams, sequential function chart, and instruction lists. + +Programmable Automation Controller (PAC) +"""""""""""""""""""""""""""""""""""""""" + +- PAC is a term that is loosely used to describe any type of automation controller that incorporates higher-level instructions. The systems are used in ICS for machinery in a wide range of industries, including those involved in critical infrastructure. They provide a highly reliable, high-performance control platform for discrete logic control, motion control, and process control. There is no specific agreement between industry experts as to what differentiates a PAC from a PLC. In any case, defining exactly what constitutes a PAC is not as important as having users understand the types of applications for which each is best suited. +- A PAC is geared more toward complex automation system architectures composed of a number of PC-based software applications, including HMI functions, asset management, historian, advanced process control (APC), and others. A PAC is also generally a better fit for applications with extensive process control requirements, as PACs are better able to handle analog I/O and related control functions. A PAC tends to provide greater flexibility in programming, larger memory capacity, better interoperability, and more features and functions in general. +- PAC provide a more open architecture and modular design to facilitate communication and interoperability with other devices, networks, and enterprise systems. They can be easily used for communicating, monitoring, and control across various networks and devices because they employ standard protocols and network technologies, such as Ethernet, Open Platform Communication (OPC), and Structured Query Language (SQL.) +- PACs also offer a single platform that operates in multiple domains, such as motion control, communication, sequential control and process control. Moreover, the modular design of a PAC simplifies system expansion and makes adding and removing sensors and other devices easy, often eliminating the need to disconnect wiring. Their modular design makes it easy to add and effectively monitor and control thousands of I/O points, a task beyond the reach of most PLC. + +Field Devices +^^^^^^^^^^^^^ + +- The instruments and sensors that measure process parameters and the actuators that control the process. This is the interface between the ICS and the physical process, be it the mixing of chemicals, the management of trains, or measuring of pressures in a gas pipeline. +- This is the point in the system where information is collected about the process, modifications are made, and the process is controlled. The sensors or measuring instruments are often referred to as input devices because they "input" data into the ICS. In contrast, switches, valves, and other types of actuators that control the process are called output devices. This input and output information is often referred to as I/O. + +Field Devices - Input +""""""""""""""""""""" + +- Sensors, or transmitters, collect data, or input, and are built into control instruments. The sensor may monitor one input point or measure over 100,000 points, such as within large refineries or utility front-end processors. The sensors convert physical parameters, such as temperature, pressure, level, flow, motor speed, valve state, or breaker position to electrical signals. The input device allows the operator to communicate and transmit instructions and data to computers for transmission, processing, display, or storage. +- Sensors are commonly described by their type: discrete, analog, and digital + + - Discrete: Discrete input sensors support binary events including alarms and states. For example, the tank is full, the door is closed, the pressure is too high, or the pump is turned on. + - Analog: Analog input sensors (transmitters) measure continuous processes such as flow, level, or pressures within a range; 0-100%, empty to full, 0 to 100 mph. Typically, they transmit this information to field controllers using an analog signal such as a 4 to 20-mA. + - Digital input sensors are similar to both discrete and analog instruments in that they measure continuous processes (such as flows) and support binary events. However, instead of using an analog loop signal or clean contacts, digital sensors use a digitally encoded ICS communications protocol format (representing an equivalent to 1s and 0s) signal to relay the data. + +- Signals generated by discrete and analog field devices are converted to digital format in a networked environment. The digital signals extend the network to the instrument, and consequently, the process. + +Field Devices - Output +"""""""""""""""""""""" + +An output device is any peripheral that receives data from the field controller. + +- Discrete: Like their input counterpart, discrete output devices are also binary appliances. For instance, the field controller issues a signal to an output device, such as a circuit breaker, to open or close a breaker. Discrete output devices can communicate directly with discrete input devices. Furthermore, they can make control decisions and are programmable like a field controller. +- Analog: The analog output transmits analog signals (voltage or current) that operate controls. Analog outputs are predominantly used to control actuators, valves, and motors in industrial environments. In this case, the field controller will send a varying electrical signal that can open or close the valve as needed. +- Digital: A digital output allows you to control a voltage with a computer. If the computer instructs the output to be high, the output will produce a voltage (generally about 5 or 3.3 volts). If the computer instructs the output to be low, it is connected to ground and produces no voltage. As a result, they can communicate more quickly and reliably, thus enabling their use in environments that are more critical, covering a wider range of applications. Examples include: alarms, control relays, fans, lights, horns, valves, switches, motor starters, etc. + + + +Servers +^^^^^^^ + +Used to store configuration for the ICS and saves process data in historians for later retrieval. The servers connect to business networks to allow remote operations, configuration, or information exchanges to improve productivity. + +Engineering Workstations +^^^^^^^^^^^^^^^^^^^^^^^^ + +A specialized type of HMI, typically interface with the servers to modify the database or controllers to ensure the critical process runs properly. As we gain an understanding of the similarities between IT and ICS architectures, we will have greater success mapping traditional cybersecurity issues into the ICS domain. + +Safety Systems +^^^^^^^^^^^^^^ + +Safety systems provide protection to the process, physical equipment, or people from harmful situations that may arise during operations. It is a counter action critical in industrial operations in the case of a process goes beyond allowable control parameters. +While this would result in a loss of productivity, it would spare the equipment and people harm. Safety systems are traditionally, designed to be separated from the control systems they protect. However, they frequently share some communications, field devices, alarms, etc. + + +ICS components +^^^^^^^^^^^^^^ + +Relationship +"""""""""""" + + +Machines installed in industrial plants use a variety of field devices for control and monitoring. These devices connect to field controllers, which connect to Human Machine Interface (HMI). + +.. code:: block + + |-----------------Human Machine interface + V + Field Device (Actuator) <---- Controller <--------- Field Device (Sensor) + + +ICS Segments In-Depth +"""""""""""""""""""""" + +ICS are composed of several components such as field devices, field controllers, and HMI. Each of these components can become complex. The images below shows common examples of each device. + +- Field Devices (Meters, Sensors, Valves, Switches) +- Field Controller (PLC, PAC, RTU, IED) +- HMI (Workstations, SCADA Server, Emergency Management System) + +Cybersecurity Tenets +-------------------- + +Availability, Integrity, and Confidentiality + + +Here's an important fact to keep in mindmaybe you've heard of the C-I-A elements in IT environments? +It is important to be cautious about how we utilizie security technology developed for IT and how we implement it into ICS environments + +- Availability; The proportion of time a system is in a functioning condition. For any information system to serve its purpose, the information must be available when it is needed. +- Integrity: Maintaining and ensuring the accuracy and consistency of data over its entire life cycle. All characteristics of the data including business rules, rules for how pieces of data related, dates definitions, and lineage must be correct for data to be complete. +- Confidentiality: Ensuring that information is accessible only to those authorized to have access. + + +Uses of ICS +----------- + +- A process is a series of steps taken to achieve a desired result. Purifying water, landing airplanes, and distilling chemicals are all examples of processes. ICS have components that are common to controlling all processes, even if the processes are different. However, because of differences within process environments, there will also be differences in ICS implementations. +- For example, one process may be designed to shut off the product flow into a vessel based on the level the product has reached, while another process uses the product weight or a calculation of volumetric flow as a control. Each method has advantages and disadvantages based on costs, safety, environmental impacts, and product quality; but each uses ICS and the ICS used are implemented differently. + +Examples of ICS attacks +----------------------- + +Oldsmar Water Treatment plant +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- In February 2021, an attacker targeted a water treatment plant in Pinellas County, Florida. The plant was utilizing the software Team Viewer for remote access and assistance. This software was left running and the attacker was able to connect to the system through this channel. +- The hacker increased the amount of sodium hydroxide setting from 100 parts-per-million (ppm) to about 11,100 ppm. This level is extremely dangerous in a water system. +- The plant operator recognized the intrusion, observed the configuration change, immediately reversed the change, and initiated incident response protocols. + +Colonial Pipeline +^^^^^^^^^^^^^^^^^ + +- In early May 2021, Colonial Pipeline experienced a ransomware attack. Attackers entered the system via an unused but active VPN account. The attackers stole approximately 100 GB of data and installed ransomware. +- An operator noticed the ransom message on a control room system early the morning of May 7. To stop the spread of the ransomware before it reached critical OT systems, the entire pipeline system was shut down 70 minutes after the initial discovery. +- The pipeline delivered 2.5 million gallons of fuel per day to the southeast states. As word of the attack spread, people rushed to purchase fuel, causing shortages. A federal state of emergency was declared, allowing other means of transportation (road, rail, etc.) to attempt to ease the supply shortage. + +Stuxnet +^^^^^^^ + +- Stuxnet was a game changer because it was the first known malware to specifically target a control system. It is believed to have been introduced by a USB stick. +- Stuxnet modifies programs for a specific PLC, hides the changes, and employs sophisticated evasion techniques. It only impacts ICS operating variable frequency drives. + +Critical infrastructure and Key Resources (CIKR) Sectors +-------------------------------------------------------- + +Chemical +^^^^^^^^ + +The Chemical Sector is an integral component of the economy that manufactures, stores, uses, and transports potentially dangerous chemicals upon which a wide range of other critical infrastructure sectors rely. Securing these chemicals against growing and evolving threats requires vigilance from both the private and public sector. + +Commercial facilities +^^^^^^^^^^^^^^^^^^^^^ + +The Commercial Facilities Sector includes a diverse range of sites that draw large crowds of people for shopping, business, entertainment, or lodging. Facilities within the sector operate on the principle of open public access, meaning the general public can move freely without the deterrent of highly visible security barriers. The majority of these facilities are privately owned and operated, with minimal interaction with the federal government and other regulatory entities. + +Communications +^^^^^^^^^^^^^^ + +The Communications Sector is an integral component of the economy, underlying the operations of all businesses, public safety organizations, and government. It is critical because it provides an "enabling function" across all critical +infrastructure sectors. The sector has evolved from predominantly a provider of voice services into a diverse, competitive, and interconnected industry using terrestrial, satellite, and wireless transmission systems. The transmission of these services has become interconnected; satellite, wireless, and wireline providers depend on each other to carry and terminate their traffic, and companies routinely share facilities and technology to ensure interoperability. + +Critical manufacturing +^^^^^^^^^^^^^^^^^^^^^^ + +- The Critical Manufacturing Sector is crucial to the economic prosperity and continuity. A direct attack on or disruption of certain elements of the manufacturing industry could disrupt essential functions at the national level and across multiple critical infrastructure sectors. +- Products made by these manufacturing industries are essential to many other critical infrastructure sectors. The Critical Manufacturing Sector focuses on the identification, assessment, prioritization, and protection of nationally significant manufacturing industries that may be susceptible to manmade and natural disasters. + +Dams +^^^^ + +- The Dams Sector delivers critical water retention and control services including hydroelectric power generation, municipal and industrial water supplies, agricultural irrigation, sediment and flood control, river navigation for inland bulk shipping, industrial waste management, and recreation. Its key services support multiple critical infrastructure sectors and industries. + +Defense Industrial Base +^^^^^^^^^^^^^^^^^^^^^^^ + +The Defense Industrial Base Sector is the worldwide industrial complex that enables research and development, as well as design, production, delivery, and maintenance of military weapons systems, subsystems, and components or parts, to meet U.S. military requirements. + +Emergency Services +^^^^^^^^^^^^^^^^^^ + +- The Emergency Services Sector is a community of millions of highly-skilled, trained personnel (along with the physical and cyber resources) that provide a wide range of prevention, preparedness, response, and recovery services during both day-to-day operations and incident response. +- This sector includes geographically distributed facilities and equipment in both paid and volunteer capacities organized primarily at the federal, state, local, tribal, and territorial levels of government-such as city police departments and fire stations, county sheriff's offices, Department of Defense police and fire departments, and town public works departments. +- The Emergency Services sector also includes private sector resources, such as industrial fire departments, private security organizations, and private emergency medical services providers. + +Energy +^^^^^^ + +- The energy infrastructure fuels the economy of the 21st century. Without a stable energy supply, health and welfare are threatened, and the economy cannot function. The Energy Sector as uniquely critical because it provides an "enabling function" across all criticalinfrastructure sectors. +- Country's energy infrastructure is often owned by the public, private sector, supplying fuels to the transportation industry, electricity to households and businesses, and other sources of energy that are integral to growth and production across the nation. + +Finance +^^^^^^^ + +The Financial Services Sector represents a vital component of our nation's critical infrastructure. Large-scale power outages, recent natural disasters, and an increase in the number and sophistication of cyberattacks demonstrate the wide range of potential risks facing this sector. + +Food and Agricultrual +^^^^^^^^^^^^^^^^^^^^^ + +The Food and Agriculture Sector is almost entirely under private ownership and is composed of an multiple farms, restaurants, and food manufacturing, processing, and storage facilities. + +Government Facilities +^^^^^^^^^^^^^^^^^^^^^ + +- The Government Facilities Sector includes a wide variety of buildings, both in the country and overseas, that are owned or leased by federal, state, local, and tribal governments. Many government facilities are open to the public for business activities, commercial transactions, or recreational activities while others that are not open to the public contain highly sensitive information,materials, processes, and equipment. These facilities include general-use office buildings and special-use military installations, embassies, courthouses, national laboratories, and structures that may house critical equipment, systems, networks, and functions. +- In addition to physical structures, this sector includes cyber elements that contribute to the protection of sector assets (e.g., access control systems and closed-circuit television systems) as well as individuals who perform essential functions or possess tactical, operational, or strategic knowledge. + +Healthcare and Public Health +^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- The Healthcare and Public Health Sector protects all sectors of the economy from hazards such as terrorism, infectious disease outbreaks, and natural disasters. Because the vast majority of this sector's assets are privately owne and operated, collaboration and information sharing between the public and private sectors is essential to increasing resilience of the nation's Healthcare and Public Health critical infrastructure. + +Information Technology +^^^^^^^^^^^^^^^^^^^^^^ + +- The Information Technology Sector is central to the nation's security, economy, and public health and safety as businesses, governments, academia, and private citizens are increasingly dependent upon its functions. These virtual and distributed functions produce and provide hardware, software, and information technology systems and services, and-in collaboration with the Communications Sector-the Internet. This sector's complex and dynamic environment makes identifying threats and assessing vulnerabilities difficult and requires that these tasks be addressed in a collaborative and creative fashion. +- Information Technology Sector functions are operated by a combination of entities-often owners and operators and their respective associations-that maintain and reconstitute the network, including the Internet. Although information technology infrastructure has a certain level of inherent resilience,its interdependent and interconnected structure presents challenges as well as opportunities for coordinating public and private sector preparedness and protection activities. + +Nuclear Reactors +^^^^^^^^^^^^^^^^ + +- From the power reactors that provide electricity, to the medical isotopes used to treat cancer patients, the Nuclear Reactors, Materials, and Waste Sector covers most aspects of civilian nuclear infrastructure. + +Transportation +^^^^^^^^^^^^^^ + +- Transportation Systems Sector consists of 7 key subsectors: Aviation, Highway and Motor Carrier, Maritime Transportation, Mass Transit and Passenger Rail, Pipeline Systems, Freight Rail, and Postal and Shipping. The nation's transportation system quickly, safely, and securely moves people and goods through the country and overseas. + +Water and waste +^^^^^^^^^^^^^^^ + +- The Water and Wastewater Systems Sector is vulnerable to a variety of attacks, including contamination with deadly agents; physical attacks, such as the release of toxic gaseous chemicals; and cyberattacks. The result of any variety of attack could be large numbers of illnesses or casualties and/or a denial-of- service condition that would also impact public health and economic vitality. The sector is also vulnerable to natural disasters. +- Safe drinking water is a prerequisite for protecting public health and all human activity. Properly treated wastewater is vital for preventing disease and protecting the environment. Ensuring the supply of drinking water and wastewater treatment and service is essential to modern life and the nation's economy. + +CIKR Interdependencies +---------------------- + +- ICS play a major role in the operations of each sector. Because many of the individual sectors are interdependent, a failure in one sector could cause a significant impact on other sectors, and possibly place national security and safety at risk. It is important to recognize the interdependency between the sectors. +- For example, an ICS failure in the Energy sector resulting in electrical blackouts will likely affect other CIKR sectors that depend on electrical power. Such a failure may have cascading effects on other sectors such as transportation, communications, and the water sector-all of which depend upon electrical power. +- Interdependencies can create cybersecurity concerns when a failure in any of the dependent processes causes the process to fail. + +Cascading Effects +^^^^^^^^^^^^^^^^^ + +Northeast Blackout + +- The impacts to critical infrastructure during the 2003 Northeast Blackout is an example of sector interdependency. This power outage affected 55 million people in Canada and the U.S. +- Since then, research has been performed to understand the interdependency of critical infrastructure sectors; how the failure in one sector can have a significant impact on other sectors; and how these sectors can protect against cascading threats. + +Northeast Blackout impacts + +Water Supply: +"""""""""""""" + +- Some areas lost water pressure because pumps lacked power. This loss of pressure caused potential contamination of the water supply. + + - Four million customers in 8 counties within the Detroit water system were under a "boil-water advisory" for 4 days after the initial outage. + - Macomb County, Michigan, ordered all 2,300 restaurants closed until they were decontaminated. + - Twenty people living on the St. Clair River claim to have been sickened after bathing in the river during the blackout. + - The accidental release of 310-pounds of vinyl chloride from a Sarnia, Ontario chemical plant into the river was not revealed until 5 days later. + - Cleveland also lost water pressure and instituted an advisory. + - New York City reported sewage spills into waterways, requiring beach closures. + - Newark experienced major sewage spills into the Passaic and Hackensack Rivers, which flow directly to the Atlantic Ocean. + - The City of Kingston, Ontario, lost power to sewage pumps, causing raw waste to be dumped into the Cataraqui River at the base of the Rideau Canal. + +Power +""""" + +- With the power fluctuations on the grid, power plants automatically went into "safe mode" to prevent damage in the case of an overload. This put most of the nuclear power plants in the affected area offline until they could recover. In the meantime, all available hydro-electric plants (as well as many coal- and oil-fired electric plants) were brought online, bringing some electrical power to the areas immediately surrounding the plants by the morning of August 15. Homes and businesses in the affected and nearby areas were requested to limit power usage until the grid was back to full power. + +Industry +"""""""" + +- A large number of factories were closed in the affected area, and others outside the area were forced to close or slow work because of supply issues and the need to conserve energy while the grid was being stabilized. At one point, a 7-hour wait developed for trucks crossing the Ambassador Bridge between Detroit and Windsor, Canada because the electronic border check systems were down. Freeway congestion affected the "just in time" supply system in many metropolitan areas. Some industries (including the auto industry) did not return to full production until August 22. + +Communication +"""""""""""""" + +- Cellular communication devices were disrupted due to the loss of backup power at cellular sites, where generators ran out of fuel. Many cell phones failed without a power source for recharge. Wired telephone lines continued to work, although the volume of traffic overwhelmed some systems and millions of home users had only cordless telephones that depended on electricity to function. Most New York and many Ontario radio stations were momentarily knocked off the air but were able to return on backup power. +- Cable television subscribers could not receive news, health warnings, or information until power was restored to the cable provider. Those who relied on the Internet were similarly disconnected from news sources for the duration of the blackout; with the exception of dial-up access from laptop computers, which were widely reported to work until the batteries ran out of charge. Information was available by over-the-air TV and radio for those who were equipped to receive TV and/or audio via antenna. +- The blackout impacted communications well outside the immediate power outage area. The New Jersey-based Internet operations for Advance Publications were among those knocked out by the blackout, and Internet editions of their newspapers as far removed from the blackout area as The Birmingham News, New Orleans Times-Picayune, and The Oregonian were offline for days. +- Amateur radio operators with independent power sources passed emergency communications during the blackout. + +Transportation +"""""""""""""" + +- Railroad service was stopped north of Philadelphia and all trains running into and out of New York City were shut down. Both were able to establish a "bare-bones" all-diesel service by the next morning. Canada's Via Rail, which serves Toronto and Montreal, suffered service delays; but most routes were still running, and normal service was resumed on most routes by the next morning. +- Passenger screenings at affected airports ceased and regional airports were shut down. In New York City, flights were cancelled even after power had been restored to the airports because of difficulties accessing electronic ticket information. Air Canada flights remained grounded on the morning of August 15 due to a lack of reliable power for its Mississauga, Ontario control center. This problem affected all Air Canada service and canceled the most heavily traveledflights to Halifax and Vancouver. At Chicago's Midway International Airport, Southwest Airlines employees spent 48 hours dealing with the disorder caused by the blackout. +- Many gas stations were unable to pump fuel due to lack of electricity. In North Bay, Ontario, a long line of transport trucks was held up, unable to go further west to Manitoba without refueling. In some cities, motorists who simply drove until their cars ran out of gas on the highway compounded traffic problems. +- Many oil refineries on the East Coast of the U.S. shut down as a result of the blackout, and were slow to resume gasoline production. As a result, gasoline prices rose significantly across the U.S. In both the U.S. and Canada, gasoline rationing was also considered by the authorities. + +Types of Facilities +------------------- + +Site +^^^^ + +The process and discrete manufacturing industries produce products at site facilities. A site facility is usually physically protected within a fence or other enclosure. The tools and personnel who support the equipment are typically located at the site, and can therefore quickly respond to onsite problems. + +Tranmission +^^^^^^^^^^^ + +Transmission facilities can span counties, states, or countries. They are the transmission lines or pipelines that carry electricity, oil, gas, and water over long distances. Transmission facilities include the railroads and highways that trains and trucks use to carry goods from the manufacturing facilities to distribution warehouses. Transmission facilities are usually unmanned. Maintenance and operational staff only visit these facilities when scheduled or called out for emergency repairs. Most transmission infrastructure, such as pumps and compressor stations, are in remote locations, which are also difficult to secure. + +Generation +^^^^^^^^^^ + +Generation facilities produce energy. They consist of electric generators and auxiliary equipment for converting mechanical, chemical, hydro, wind, solar, or nuclear energy into electric energy. Larger facilities are usually physically secured, but some facilities such as dams, wind or solar farms, and other remote operations are publicly accessible. + +Distribution +^^^^^^^^^^^^ + +- Distribution facilities are used to distribute products to the customers. They provide the infrastructure to deliver electricity, water, and natural gas to our homes and businesses. Distribution facilities are located throughout the country, and many remote stations are generally unmanned. A fence or other barrier physically protects most distribution stations. +- The controls and safety systems within these facilities are accessible through on-site visits and, increasingly, through remote access. Distribution facilities may be monitored and controlled from a central control center, or may be stand-alone systems. Communications to the central control center are crucial for monitoring and controlling many of the more remote distribution facilities; and because the communication paths are routed beyond the fence line, securing the data transmission paths becomes a concern. + +Manufacturing (Discrete and Process) +------------------------------------ + +The manufacturing process is used to produce a product-be it electricity, chemicals, plastics, food, pharmaceuticals, or cars. The processes used to manufacture these goods are broadly classified as either discrete or process. + +Discrete +^^^^^^^^ + +- Discrete manufacturing results in the creation of products that can be easily differentiated; products you can touch, such as cars, books, toys, furniture, or cell phones. Discrete manufacturing is not continuous, meaning it can be started or stopped at any time, depending on production requirements. +- Discrete manufacturing involves creating, assembling, and handling individual components to make a product. Discrete products are easily counted and are measured in units, as opposed to process manufacturing products that are measured by weight or volume. Assembly robots are often used in discrete manufacturing. + +Process +^^^^^^^ + +- Process manufacturing involves using formulas, much like a recipe, to take a set of ingredients to make a final product. Examples of process manufacturing include oil refining, chemical refining, food and beverage production, and pulp and paper production. +- Process manufacturing is different from discrete manufacturing because once the final product is produced from individual elements, it cannot be taken apart to get the original components. For example, it would be hard to retrieve the resins, pigments, solvents, and other additives from paint after it was made. +- Within process manufacturing, there are 3 types of processes: continuous, batch, and hybrid. + +Continuous +"""""""""" + +- Continuous processes require an uninterrupted flow of material from start to finish during the transition from a raw material to a finished product, such as the process used to make chemicals. Generally, a continuous process runs constantly unless interrupted by an unscheduled outage, usually caused by an emergency or equipment failure. +- Continuous processes may be shut down for scheduled maintenance, sometimes referred to as turnarounds. Turnarounds are used to keep refineries running in a safe operational state; however, not every sector has scheduled maintenance periods. The turnaround time will vary between sectors. +- The ICS used in continuous processes must be flexible to control all phases of the process: from startup, to continuous operations, to emergency shutdowns, to maintenance shutdowns. During continuous operations, such as in a refinery, the ICS is constantly adjusting the valves and pumps to keep the process within specifications. + +Batch +"""""" + +- A batch process has a starting and ending point. Batch processes are similar to cooking, in that you have a list of items or ingredients and a procedure (recipe) consisting of a series of steps for mixing the various components to create a product. As one phase of the batch is finished, the system will transition to another phase of the batch process. Pharmaceuticals and specialty chemicals rely heavily on batch automation to create their products. +- Many batch manufacturers will procure a batch management system that is used along with the control system. Batch management systems work with the control system to execute batch processes. They are also used to manage recipes and records. Records management is especially important in regulated industries where the operators are required to audit the batch process. + +Hybrid +"""""" + +- A hybrid process uses a combination of continuous and batch controls. Water treatment is a good example of a hybrid process. Water flows through the treatment plant where disinfectants are injected into the water to kill bacteria. The chemicals cause particles to clump together, where they are removed through sedimentation or filtration. +- For the most part, water treatment is a continuous process as it flows through the pre-treatment, filtration, and post-treatment processes. However, as solid particles build up in the filters they need to be flushed. This is typically done through a process called backwashing. Backwashing uses batch control to automatically operate valves and pumps in a series of steps to reverse the flow of water through the filters to remove the particles. + +Process Dependencies +^^^^^^^^^^^^^^^^^^^^ + +- A process relies on a number of upstream and downstream systems to produce a product. These interdependencies create both cyber and physical security concerns. A failure in the supply chain or any dependent process can cause the main process to fail, or result in the manufacturing of inferior products that can fail at a later date. +- Most process and discrete manufacturing facilities have a control system that monitors and controls the main process. +- Processes are not islands; they do not stand alone. An ICS-controlled process may have numerous dependencies on upstream and downstream systems and processes or energy sources that may pose environmental and safety concerns. A process can be defined for any type of critical infrastructure. + +Upstream, Downstream, Processes, Safety +"""""""""""""""""""""""""""""""""""""""" + +- Upstream is the material that provides the feedstock or raw material for the primary process. For example: We cannot refine oil without crude oil, nor can make polymers without their monomer feedstock. This is the main process responsible for producing the final product. Whether it is electricity, chemicals, plastics, food, pharmaceuticals or petrochemicals. Obviously, if the main process fails, we will not be able to produce the end product. +- The downstream process is responsible for handling the end product. The end product is either used as an upstream product for other processes, or distributed to customers. If the downstream process fails we may be able to store the product. However, when the storage is full or there is no storage, we will need to shut down the primary process. If the product is electricity, generators will probably trip offline since there is no good method to store electricity and later feed it to the grid. +- Processes that require thermal heating or for that matter, cooling will fail if the energy process cannot provide the heating or cooling resources needed. For instance, a refinery process will shut down if the flow of steam is interrupted. Most processes depend on electrical power. Unless the process has a backup energy source, such as generators or batteries. The process will fail without electricity. Many processes depend on pressurised air for power and control valves. Without air the control valves will not control the process. The process could have other dependencies like solar, hydraulic, wind or nuclear. +- A process cannot produce waste indefinitely without some form of waste management. Some waste streams become product streams, but other waste streams must be treated or dispose. If a process is polluting or leaking hazardous materials, a regulatory agency such as the environmental protection agency may force asset owners to shut down the process. Finally, depending on the hazard of the process, and or environmental regulations, the system may have a safety system. +- Safety Systems are separate from the control system and are designed to safely shut down the process at the primary control system fails, best protecting the people, the environments and the equipment. + +Communication Dependencies +^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- In addition to having process dependencies, most ICS must communicate to other systems or other ICS to function properly. This may be as simple as an operator looking at two different screens from two different ICS and manually adjusting the systems. Or it may require that two or more separate control systems are networked together to share information. The information transfer must occur for proper control to be achieved. +- A cyber-based event could interrupt critical communications and cause a process to fail. The failure could have both upstream and downstream consequences, as wellas impact the process itself. This is why system and process availability is of paramount importance to control system asset owners. + +What do you think the consequences would be if the events described below occurred? + +- If a safety system monitoring a critical process stops receiving data then it may shut down the process, despite the process operating correctly. +- If a community warning system fails following a facility chemical spill then local residents may not be notified to evacuate. +- If a leak detection system fails to alert operators then hazardous materials may be released. +- If operators don't receive an alarm that a power line is compromised then they may not be able to take action in time to prevent a blackout. +- If a subway control room stops receiving updates from track detection sensors then the trains may be routed to the wrong track, and result in a crash. + +IT and ICS +========== + +IT vs. ICS Priorities +--------------------- + +- The protection of data in information systems has traditionally been of primary importance, with the integrity and availability of that data following close behind. Sometimes this hierarchy is referred to as C-I-A (Confidentiality-Integrity-Availability). There are instances in traditional IT domains where the availability and integrity are critical elements (e.g., in real-time financial transactions), but for the most part, organizations are more concerned with keeping data from prying eyes. +- The critical infrastructure systems requirements for availability can exceed five 9s (99.999% uptime). Services must be running 24 hours per day X 7 days per week X 365 days per year. Safety and resiliency requirements in ICS demand that system information be exchanged at millisecond or sub-millisecond rates. It is easy to see why the control system domain is much more concerned with availability and integrity than confidentiality. This hierarchy is referred to as A-I-C (Availability-Integrity-Confidentiality). +- Historically, data on the networks did not mean anything except to the operators, so prying eyes seeing the data had little impact on whether the system was operating normally. The speed at which many of these systems operated suggests that by the time prying eyes did see the data in transit, it would be of no use to them. Although confidentiality does play a role in defending mission-critical control systems, the availability and integrity of the control system and the data in it remain paramount to operations. +- In the IT world: Confidentiality is the Priority +- In the ICS world: Availability is the Priority + +- The security focus of an IT group is to protect the system from threats, both intentional and unintentional, and from inside or outside the organization. +- The security focus of ICS is to protect the system from use by unauthorized personnel, and to ensure the system maintains its functionality (availability and integrity) and continues to operate in a safe manner. + +Example: + +- Sales Management: A simple example is a marketing executive trying to get the most recent sales figures. While the executive wants to ensure no unauthorized personnel will have access to the data, they also want that data to be correct. In this case, confidentiality is a priority followed closely by integrity of the data. In terms of availability, it is acceptable if the executive must wait a couple minutes to download the sales figures. +- Natural Resources Management: The control systems within a refinery are responsible for cleaning the gas and pushing it into the pipeline. Under high pressure, the pipeline transmits the gas over long distances to delivery nodes. The information about how much gas is being refined or its destination is not secret. In many cases, the the information is published online. However, the timely and accurate information about the refining process itself, and the management of the pipeline, is critical. In this example, the availability of real-time data from the ICS running the refining process to the ICS managing the pipeline compressor stations is vital to safety and flow control. The integrity of the data is also critical as it allows operators to adjust control system parameters within the refining process and pipeline management activities. If the data reflect real-time operations and refining for the pipeline is unavailable or wrong, it can have significant negative consequences. + + +IT and ICS Security +------------------- + +Identify security focuses with integration of IT and ICS +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +The Changing Landscape +"""""""""""""""""""""" +In the past, ICS were specialized stand-alone systems protected by a physical security perimeter (guns, guards, and gates) and controlled by onsite operators with manual switches and controls. In fact, many of the systems with analog/ manual controls are still in use. + +Today, ICS owners and operators function under constrained budgets and are required to reduce the costs associated with managing and maintaining ICS. Control system technology has moved from using disparate, manual systems to interconnected digital systems and remotely controlled apparatus. + +Although this evolution in system design is great for business and productivity, it bridges the air gap separating critical ICS from business and peer networks. While this has provided significant business benefits, it has blurred the boundaries between ICS and traditional security systems. + +With the integration of IT and ICS networks, security concerns arise. The new interconnected architectures introduce new vulnerabilities, and there are now significant risks for ICS that were never a consideration before-such as worms, viruses, and unauthorized remote access. + +Control system architectures, by their nature, operate with high trust. Security for these systems used to be focused on ensuring only authorized personnel had access to the control environment. Control systems were built with minimal security countermeasures, and asset owners assumed that anyone with access to the control system was authorized to interface with it. Unauthorized access can be a grave concern, as are the +can be a grave concern, as are the consequences of malicious activity on the ICS and its potentially devastating downstream effects. + +In the past, there were issues on who was the responsible authority for managing authenticators. IT personnel typically managed and provided login IDs and established clear policies for their use, but many ICS are unable to follow these policies. + + +Security Goals +^^^^^^^^^^^^^^^ + +The security goals between an ICS and an IT system are different but are base on the same principles. When we think about security, we generally define it using confidentiality, integrity, and availability. + +Almost every instance to involving protection of information or information systems will fall into one of these categories. Business objectives often dictate how these categories and the activities to supporting them are prioritized. + +Preventing unauthorized personnel from viewing protected information (confidentiality) is the main concern when implementing security controls for business systems. However, in a control system environment, availability and integrity exceed confidentiality. + +Business system owners are concerned about the inadvertent disclosure of proprietary information. They are also concerned the information is correct, but are generally willing to wait to get the information. In an ICS environment the system must always be available and must send the correct instructions to the system it controls-so confidentiality is not the primary goal. The security focus of an IT group is to protect the system from threats, both intentional and unintentional, and from inside or outside the organization. + +The security focus of ICS is to protect the system from use by unauthorized personnel, and to ensure the system maintains its functionality (availability and integrity) and continues to operate in a safe manner. + +IT and ICS Communication +------------------------- + +Compare IT and ICS communication +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +While both IT and ICS share similar-if not identical, technologies-the implementation and upkeep of these systems can be drastically different. + +Determinism +"""""""""""" + +- IT Systems + + - IT systems generate network traffic on demand when a user requests resources or when maintenance activities are performed. As a result, there is a high amount of irregular traffic. The traffic is generated by any number of IT elements or events and can be sporadic and unpredictable. This is expected in corporate networks where diverse users using disparate resources perform a broad range of activities. + - IT systems are used for a variety of purposes. As a result, a broad range of applications are used to support the diverse requirements of the organization. Therefore, they often expect and are often granted unfettered Internet access. + +- OT Systems + + - Most control systems are purpose-built and are designed to accomplish specific tasks and to perform those tasks continuously. It is repeatable, predictable, and designed so that fluctuations from normal operations can be easily detected. This is what creates an environment where the network traffic is highly deterministic. This is important in the control system domain because detection of anomalies and errors is vital to sustaining operations. Having this type of predictability and determinism can make it easy to set up effective intrusion detection system (IDS) monitoring for ICS networks. + - The applications running in an ICS environment are typically limited to those required to monitor and control a process. They are limited in functionality and are specific to the task they were designed to perform. + - Internet connectivity to ICS has traditionally been unavailable, primarily because ICS components are usually operated in an isolated environment. However, the creation of control system networks establishes many different business cases whereInternet access is required-especially where remote administration, remotevendor support, and budget limitations are important. + - Don't organizations prohibit their control systems from connecting directly to the Internet? Although most organizations prohibit their control systems from connecting directly to the Internet, some asset owners support it. There are two common operational benefits of allowing ICS to be connected to the Internet. + - The ability to maintain and support systems with remote staff. + - To enable vendors to provide support and updates to the system. + + - Is it common to see field equipment directly connected to the Internet as part of a larger control system operation? It is not uncommon to see field equipment directly connected to the Internet as part of a larger control system operation. These connections are often read-only and provide an operator at a control center real-time or near real-time system information. It was having email on the system and not being careful that was the downfall here. + +IT and ICS Operations +^^^^^^^^^^^^^^^^^^^^^ + +Security/CIKR Compliance +"""""""""""""""""""""""" + +ICS plays a major role in the functioning of critical infrastructures and key resource (CIKR) sectors. These assets, systems, and networks (whether physical or virtual) are so vital to the United States that their incapacitation or destruction would have a debilitating effect on security, national economic security, national public health or safety, or any combination. + +The electric sector is subject to North American Electric Reliability Corporation (NERC) critical infrastructure protection (CIP) requirements. This is a comprehensive set of cybersecurity standards designed to +protect critical cyber assets supporting the reliability of the North American bulk power system. Failure to comply with the CIP regulations can result in stiff penalties, and numerous entities have been fined. + +SPower incident: First, losing connection to remote sites that are part of the power generation network could produce impacts to power generation. As they are a power company, they fall under NERC and lose of the site could be a regulatory issue. Power generation is part of CIKR. If the remote sites that had this problem were to go offline, that could cause problems delivering power to critical businesses. + +https://inl.gov/content/uploads/2024/02/INL-Wind-Threat-Assessment-v5.0.pdf + +Secure System Development +""""""""""""""""""""""""" + +- As cybersecurity awareness increases, the implementation of security controls is extended beyond how a system is configured and deployed, to how a system is developed. Secure application architectures, secure coding, supply chain management, and the procurement of secure applications have also risen in importance in reducing the targets of opportunity for cyber threats. + +- As many organizations go through the process of obtaining new IT systems as part of their ICS architecture, they include cybersecurity requirements directly in the procurement process. There are few things that can cause complications. The requirements that ICS must operate in high-availability, high-capacity modes make the implementation of some common security countermeasures difficult. This does not mean that cybersecurity countermeasures cannot be implemented; it means that special care must be taken to ensure the countermeasures do not impede the ICS operators from performing specific tasks, or prohibit them from performing urgent or time-sensitive actions. + +- There are some of the more common differences in control system environments? One was the use of individual usernames and passwords for each computing resource, and the requirement that passwords must be complex and changed regularly. While some ICS still utilize shared accounts, more now use individual user IDs and passwords effectively and efficiently so as not to impede an operator's ability to access the system under duress. + +- Do many control systems require rigorous security practices? They do not. The continued use of these inferior practices is usually due to the age of the control system, the lack of opportunity to update the system, and the cost associated with trying to retrofit legacy automation systems with contemporary security controls. + +- ICS owners, regardless of the age of their systems, have several excellent options for implementing effective cybersecurity strategies. In some cases, the static nature of the architecture and the age of the systems can work to their advantage. ICS owners must balance security with functionality requirements and creatively apply best security practices, while enabling ICS operators to perform their duties unimpeded. + +- So, what happened at sPower? Firewalls that protect these sites should be on a firmware update cycle. DOE said in a statement sent to Archer News that the event is "related to a known vulnerability that required a previously published software update to mitigate." That means someone had already found a security hole in the past, the device maker reported it and came up with a patch for it, but the power company may not have applied that patch. Also, if there was an attack (or problem) then they should have a backup way to get into the sites. This should be part of your disaster recovery plan. + +Physical Security +""""""""""""""""" + +- Physical security is generally scaled in proportion to the criticality of the information being protected. In the IT domain, physical security prevents unauthorized access to locations where proprietary information is handled or stored. +- However, many people are familiar with the concept of physical security as it relates to the electric power grid. Substations, transformer stations, and maintenance offices are usually well protected with fences, cameras, and possibly a security guard. Yes, but physical security for power stations located in urban centers is everywhere, and easily seen. There are also some unstaffed facilities in remote locations, and security is limited to a single gate or padlock. + +- Although additional security mechanisms may be protecting critical devices and critical cyber assets within the station yard, getting past perimeter defenses can be a trivial task, usually because of the cost associated with protecting remote assets.These systems can be a significant cyber risk if accessed by an adversary. + +- What can be done to reduce cyber risk? Establishing a robust physical security perimeter around ICS assets is critical to reducing cyber risk. Integrating corporate and control system networks is also justified because it provides a more cost-effective management model. + +- However, the blending of IT and ICS networks can negate the physical security perimeter and open the system up to threats across the world. Are firewalls part of physical security? Indirectly. The remote site firewall could be part of the physical security network. There might be cameras, sensors, or other security related controls attached to it. These controls would alarm back to the main control room and warn of any physical security breach. + +- During an unexpected reboot, sPower should have a backup way to contact the remote site so they can verify physical security controls. Worst case they would need to send someone out to the check the site-just to make sure it was not a physical security incident. + +Change Management +"""""""""""""""""" + +- Change management is a challenge for both IT and ICS. This is correct and there are two fundamental elements impacting the change management process. + + - The verification that the change is not going to impact the system in a negative way. + - The time to make the change to the system. + +- So what happens after these changes? All changes made to an ICS, whether to operator consoles or field devices, must be tested. ICS asset owners cannot simply accept a vendor's promise that a system patch or application modification will work. ICS administrators must implement the change in a test environment to determine what negative impacts are observed. This can be a long and expensive process, especially if the change is to be implemented across a wide range of production elements. + +- All sPower needed to do was have some change management in place to keep these firewalls up to date. The vendor should also be aware of any issues that firmware in a device might have. If a firmware upgrade was available, then they should have had it on a plan for install. They did do a good job of testing before deployment, as to not cause any additional issues. + +IT and ICS Support +^^^^^^^^^^^^^^^^^^ + +Anti-Virus and Anti-Malware +"""""""""""""""""""""""""""" + +- Being able to manage malware effectively is critical to the survivability and security of any network environment. In the IT domain, virus scanners and anti-malware technology are common and are placed on centralized servers, gateways, and individual user desktops. Organizations work hard to ensure their anti-malware defenses are optimized, and usually automate updates to anti-malware solutions across all cyber assets. + +- In the with ICS systems. Well, because of their specialized functions and limited processing capability, many ICS do not have the capability to run anti-virus software. Many anti-virus vendors do not have a product designed toward ICS protocols or threats. Signatures are not available for many ICS-centric malicious code variants. Also, timely updates to virus signatures are difficult to deploy because of the "always on" nature of ICS. +- Do the computing resources traditionally used by an anti-virus impede control system software from operating at peak efficiency? Yes it can. Anti-virus technology can consume significant processing capacity during real-time and scheduled scans. If memory is not available for other critical processes, there is a significant risk software related to control system operations may not perform properly. +- I thought control system vendors support the use of anti-virus on their ICS and provide specific guidance on which directories to avoid when scanning. Some do, although this may not solve the resource problem. It can mitigate historical issues associated with the anti-virus moving. It can also accidentally delete files critical to control system operation. +- Virus scanners that are not up-to-date cannot provide protection against the latest threats from malicious code. To ensure anti-virus signatures and anti-malware capabilities are most useful, they need to be constantly updated. +- The most efficient way to do this is to have a primary server obtain updates and automatically push them to the critical cyber assets. +- Servers and individual workstations may need to be connected to the Internet to obtain the updates. In theory this makes good sense, but directly connecting to a server located in the control system domain to the Internet can introduce cyber risk. That does seem kind of risky. What else can be done? Well, the deployment of a secure file transfer mechanism across the boundary separates the corporate domain from the control system. Tasking administrative personnel with manually obtaining anti-virus and anti-malware updates and physically applying them to control system assets may solve some of the issues with maintaining up-to-date signatures for anti-virus solutions. +- Manual updates may be cost prohibitive, however, and do not address the requirement that processing on ICS is uninterrupted. + +Patch Mangement +"""""""""""""""" + +- Patch management is closely related to change management and can be a challenge for both IT and ICS administrators. +- Did you know the disclosure rate of cybersecurity vulnerabilities is growing, and security patches are released almost daily by responsive vendors? That is usual for someone working with ICS systems. Patches are often applied on the IT systems as soon as they are released. However, there is still potential they will damage the system or network. IT domains face an increasingly threatening cyber landscape from both internal users and external adversaries. Maintaining up-to-date security patches is considered a normal best practice in countering those threats. + +- But many ICS systems are not built to run on contemporary operating systems. ICS operators rely on the isolation and supplemental physical security for control system operations to minimize the opportunity an attacker may have to exploit a vulnerability. +- ICS asset owners must decide whether to implement patches at all. Often they are not applied unless they enhance functionality and sometimes not even then! I heard a vulnerability is only exploitable when the adversary is sitting at an operator console. The asset owner may consider that the only realistic threat actor to capitalize on this vulnerability would be someone who breaks into the facility control room or a malicious insider. The asset owner may choose not to apply the patch because of the physical security they have in place to protect against an unauthorized individual getting into the control room, as well as their exhaustive personnel screening program designed to mitigate an insider attack. Yeah, we feel that isolation from the Internet or corporate network reduces our cyber risk to zero. + +- With the pervasive use of portable media, such as USB or optical drives, malicious code or transport hacking software can be introduced into the system. Then an intruder can use the code or software against older or un-patched operating systems. The result is a growing number of un-patched control systems at risk of cyberattack. + +Support Personal +"""""""""""""""" + +- ICS operators are the link between the system and the function it performs. Did you know that a system is only as secure as its weakest link? +- Human error, whether accidental or intentional, can wreak havoc on an ICS and bring the functionality and safety of the system to a halt. The most prevalent human threats are untrained operators causing accidental infections. Untrained operators may accidentally infect the ICS system or network by not following policies (such as not accessing email or the Internet through the ICS network) and inadvertently introduce malicious code into the system through spam, spyware, or phishing campaigns. The potential for damage is increased because an untrained user does not know what the indicators of compromise are and may not realize the system is infected until it is too late. +- While IT faces the same human threat as ICS, the consequences for ICS can be far reaching and could impact the safety and well-being of millions of people and devastate a company's finances and industry reputation. + +Security testing +"""""""""""""""" + +- The goal of security testing is to gain a comprehensive understanding of the cyber-risk profile of a system. Testing provides insight into system vulnerabilities, as well as workable countermeasures, and helps asset owners determine how best to improve their security. Testing objectives can be broad in nature, and the methods used to perform security testing can be diverse. +- It focuses on confidentiality, integrity, and availability. Contemporary testing tools and test frameworks are used to categorize the areas where the security of a system may be weak and where the defenses are functioning as intended. +- Security testing tools can be configured to model a range of attack types with different capabilities. They are designed to be used on resilient, stable, and robust IT systems. These testing tools scan large numbers of systems for a variety of vulnerabilities, and complete the test over a short period. As a result, security testing can be aggressive. +- ICS devices and components were not designed to withstand the high volumes or types of traffic used by most testing tools, and intense scanning can often cause undesirable effects. Most ICS operate in highly deterministic and predictable ways, and traffic flows are usually within a well-defined norm. + +- Aggressive testing can introduce abnormal conditions, causing the system to experience tremendous stress and result in system failure, improper operations, or physical damage to the equipment. Some security testing tools are beginning to incorporate the capability to test control systems. Security researchers and vendors are working together to create test frameworks and plug-ins to allow asset owners to obtain vulnerability data, without causing undue stress and damage to the ICS elements being tested. +- How effective is it? The effectiveness of security testing and the impact of testing on the control system are governed by the level of expertise and experience of the tester. Individuals with only testing experience on modern IT systems should not be allowed to test control system environments unless they have been properly trained to minimize the consequences associated with aggressive scanning techniques. +- Security tests for ICS should only be performed in a test bed or sandbox because testing within a production environment can often result in unforeseen and undesirable consequences. + +Incident Response and Forensics +"""""""""""""""""""""""""""""""" + +- As part of an effective defense-in-depth strategy, organizations need to be able to respond to cyber incidents and investigate how those incidents happened. Most organizations have an existing incident response capability to manage those cyber incidents that impact normal operations. +- Incident response and forensics techniques applied to the IT domain are straightforward. Well-documented processes and procedures and numerous recommended practices and guidelines are available to assist organizations in developing their incident response plans and the methods for executing a forensics investigation. Modern IT equipment meets most, if not all, the requirements necessary to carry out an investigation, and provides well-developed capabilities to enable effective incident response and attack mitigation. Most common commercial off-the-shelf tools have been developed with traditional IT in mind. + +- Issues can prevent IT security technologies from being effective for ICS incident response. The age of the average ICS can negatively impact both the incident response capability and forensics effectiveness. The technical capabilities required to facilitate appropriate response and investigation techniques, such as event logging, do not exist in many of the control systems in operation today. Luckily, some ICS vendors are making it easier for asset owners to perform incident response and forensics by moving to more contemporary operating systems as the platform for control system solutions. +- By doing so, asset owners investigating control system cyber incidents can take advantage of the response and investigation tools designed for modern computing platforms. Often, both IT and ICS are required to simply reboot an impacted computing resource, reconfigure equipment, or rebuild/restore from a system image to facilitate a quicker restoration of the system. + +- Rebooting or rebuilding systems for either IT or ICS can result in loss of forensics data. These methods may destroy evidence artifacts that could have been used to determine root cause(s) of the cyber incident. + +Outsourcing +"""""""""""" + +- Competitive technology markets, an increasingly mobile workforce, and resource limitations have caused many organizations to outsource the management and implementation of their IT functions. Cloud computing, infrastructure as a service, software as a service, and security as a service are being used more throughout the IT domain. These benefits could possibly outweigh the risks for companies striving to maintain a competitive advantage, and to ensure their data are available anywhere, any time. +- The implementation of IT services is well known and understood; however, ICS poses a much greater challenge to a company offering services outside the confines of the corporate network. ICS operations are much more sensitive to failure than IT systems. ICS also require in-depth knowledge of the operational technologies and their limitations to function at expected performance levels for availability and integrity. +- ICS are under more stringent levels of oversight and require experienced technicians to manage and maintain them. +- Sadly, outsourcing for ICS operations is not at the same level of maturity as IT operations. +- The risks to critical infrastructure and the consequences of service failures should be carefully examined before outsourcing is considered for ICS. + +Conclusion +"""""""""" + +- In August 2017 and the Saudi plant has reported another breach! Reports say that a flaw in the code gave the hackers away before they could do any harm. +- A flaw in the code triggered a response from a safety system in June, which brought the plant to a halt. Unfortunately, the first outage was mistakenly attributed to a mechanical glitch. Then in August 2017, several more systems were tripped, causing another shutdown. After the second outage, the plant's owners called in investigators. The malware was finally found. The hackers appear to have been inside the petrochemical company's corporate IT network since 2014. +- The hackers could have been inside the petrochemical company's corporate IT network since 2014. They probably found a way into the plant's own network. Most likely through a hole in a poorly configured digital firewall that was supposed to stop unauthorized access. They then could have gotten into an engineering workstation, either by exploiting an unpatched flaw in its Windows code or by intercepting an employee's login credentials. +- ICS vendor Schneider Electric has drawn praise for publicly sharing details of how the hackers targeted its Triconex model at the Saudi plant, including highlighting the zero-day bug that has since been patched. + +- How do the personnel play into all of this? +- Well, first of all, the June Triconex system outage occurred on a Saturday evening. This is a time when most engineers aren't typically in the plant. Secondly, the petrochemical firm called in Schneider to assist in troubleshooting the Triconex system failure. The vendor pulled logs and diagnostics from the machine, checked the machine's mechanics, and, after later studying the data in its own lab, addressed what it thought was a mechanical issue. +- We were just talking about vendors. How did they play a part? +- In June 2017, the end user suspected an issue had occurred with their safety controllers and took one Triconex system offline, completely removing the Main Processors, and sent them to Schneider Electric's Triconex lab in Lake Forest, Calif. Schneider said "At this stage, the end user wasn't aware of a cyber incident. At the time, Schneider Electric was not onsite to review the safety controllers." Once these controllers were removed from power, the memory was cleared and there was no way to conclude that the failure was the result of a cyber incident. Schneider was only able to analyze whether the controllers were working correctly within their safety function. After they completed their analysis, they determined there was no fault with the system components and they returned them to the end user. + +- What about security testing? Was any of that done? +- It is not known what types of security testing occurred, if any. We do know the petrochemical firm called in Schneider to assist in troubleshooting the Triconex system failure. The vendor pulled logs and diagnostics from the machine, checked the machine's mechanics, and, after later studying the data in its own lab, addressed what it thought was a mechanical issue. No malware was found. + +- Were any teams called in for investigations? +- A forensics and incident response team was not called in during the June incident. However, a team was called in for a rapid-response engagement after the now-infamous August shutdown of the Saudi Arabian firm's Triconex ESD system. This company was very lucky. If there wasn't a flaw in the code, it would have still gone undetected. Many believe that something bigger was being planned but was interrupted. + +Embedded Systems +================ + +- Embedded Systems is computer system consisting of hardware and software specifically defined for a specific purpose or dedicated task. (Workstations, laptops and servers are not embedded system). +- Embedded system used in ICS + + - Programmable Logic Controller, Remote Terminal Unit, DCS controllers, Intelligent Electronic Devices, field devics (HART, Foundation Fieldbus, Profibus, Devicenet) + - Network/communication equipment (Routers, switches, modems, radios, terminal servers, gateways, firewall and other security appliances) + - Others (GPS, time synchronziation, network printers, hand-held configuration devices, test equipment) + +Field Controllers +------------------ + +- Processors (X86, PowerPC, ARM, MIPS) + +Memory +^^^^^^ + +- Non-volatile Memory + + - Flash memory, EEPROM, EPROM, ROM + - Firmware (boot code, real time operating system (RTOS), application program) +- Volatile Memory (lost after power; much less susceptible to being able to manipulate or take items from) + + - RAM + - Variables, stack, buffers + +Input/Output +^^^^^^^^^^^^ + +- Discrete, Analog, Fieldbus (4 to 10 milliAmps or 0-10 Volts) + +Communication Ports +^^^^^^^^^^^^^^^^^^^ + +- Serial - RS232, RS422/485, USB, modems, radios +- Network - Ethernet radio, ControlNet, LonWorks + +User interface +^^^^^^^^^^^^^^ + +Internal +"""""""" +- Status lights, small LCD screens (HMIs), keypads, jumpers, dip switches, switches + +External +"""""""" +- Browers (allows to see the status, working of the devices), Applications (always check if the applications can be shutdown, is there a business use-case for them?). Remember the smaller the attack surface area the better! + +Programs +^^^^^^^^ + +- RTOS (Neutrino & RTOS (QNX), VxWorks, Windows CE) +- IEC 61131 program languages + - Workbences (CoDeSys (allows the ability to program in anyone of the below languages), ISaGRAF) + - Languages + + - Ladder Logic + - Function Block Diagram (FBD) + - Sequential Function Chart (SFC) + - Structured Text (ST) + - Instruction List (IL) + +- Device Drivers and Device Managers + + - Ethernet/IP Stacks + - RS232/RS-485 + - Memory Managers + - User interfaces +- Services (Web server, FTP server, SNMP) (Any business case for these running? If not, turn them off) +- Debuggers (data for troubleshooting, are we turning it off after debugging? Often, debuggers are turned-on exposing data and possible vulnerablities) + +Programmable Logic Controller +----------------------------- + +Program Execution +^^^^^^^^^^^^^^^^^ + +- A line of code in a PLC program is called a rung. +- PLC program execute from left to right and top to bottom. +- Each completion of the program is called a scan. +- A PLC will complete many scans in a single second (Scan rate: 50-60 milli-seconds/scan; SCADA system scan rate is approx 2 mins; metering at home (water/energy) is approx 15-30 mins). + +Programming Concepts +^^^^^^^^^^^^^^^^^^^^ + +- Each rung executes on an "IF-Then" principle +- IF the instruction(s) on the left are true then execute the instructions on the right. +- Direct/Normal Open Contact +- Direct/Normal Open Output Coil +- Reverse/Normally Closed Contact +- Placing multiple rungs (branch) on a single rung = OR +- Placing multiple inputs on the same rung = AND + +ICS Process Flow +================ + +Process Data +------------ + +- Processes are designed to change the chemical or physical properties of upstream materials to more useful downstream products. These changes must be monitored and controlled during this transition. Accurate and timely measurements on the physical and chemical properties of the process are crucial to controlling the process, as well as the outcome. These measurements referred to as process data. +- Numerous field devices are used to generate process data. Flow, level, temperature, and pressure are common sources of process data; however, many other parameters of complex processes must also be measured. For example, a water treatment plant relies on accurate pH and turbidity measurements in addition to flow, level, and pressure to produce clean water. An ICS uses these measurements for adjusting control devices to ensure the product (in this example, treated water) meets specifications. +- Process data are not only used for control. For example, the data can also be used to: + + - Meet regulatory requirements + - Track energy costs + - Provide design inputs for the process enhancements (i.e., identify and justify capital improvements) + - Control inventory/ determine product pricing + +ICS Process Flow – Control Loop +------------------------------- + +- A typical ICS contains numerous control loops, human interfaces, as well as remote diagnostics and maintenance tools. They are built using an array of network protocols on layered network architectures, allowing ICS support staff and vendors access to diagnose and correct operational problems. +- A control loop, single-loop control is the fundamental building block of industrial control systems. It is communication used to regulate the process. It consists of a group of components working together as a system to achieve and maintain a desired value of a system variable by manipulating the value of another variable in the control loop. +- For example, a field device sensor produces a measurement of a physical property and sends this information as controlled variables to the controller. The controller interprets the signals and generates corresponding manipulated variables, based on set points, which it transmits to the actuators (field devices), such as control valves, breakers, switches, and motors. These field devices are used to directly manipulate the controlled process based on commands from the controller. Control can be fully automated or include a human in the loop. + +ICS Process Flow – Diagram +-------------------------- + +- This graphic depicts the ICS process flow. We see the field devices that provide the process data. This is where the actual physical process happens, be it the mixing of chemicals or the management of trains, or the measuring of the pressure of gas at a certain point in a pipeline. +- A field controller collects information from field devices and assesses, manages, and processes state information about the process. +- The HMI monitors the information and presents it to an operator. The operator uses the HMI to observe the process, watch for events and alarms, and to make decisions or adjust the system to keep the process stable and safe, as required. The operator function can be performed by a person, or a system such as an EMS, DCS, or any a specialized system that may be unique to a particular sector. + + +ICS Control Loop – Cascading Control +------------------------------------ + +- Sometimes these control loops are nested and/or cascading – whereby when multiple sensors are available from measuring conditions in a controlled process, a cascade control system can often perform better than a traditional single-loop. For example, the steam-supplied water heater shown heats water using cascade control. The second controller has taken over responsibility of manipulating the valve opening based on measurements from a second sensor monitoring the steam flow rate. + + +ICS Data Flow +============= + +- The data flow through ICS varies by vendor, topology, and protocols. The network can be wired or wireless, but it links the components of the ICS. The HMI receives information from the field controllers, relaying information through communication protocols and providing the operator with a view of what is happening in the process. +- This diagram is a simplified representation of an ICS communication network. The process is controlled by an application running inside the field controllers, which communicates with a series of field inputs and outputs devices. The field controllers consolidate the data and transmits it to the HMI stations where it is presented on displays. + +- ICS collect information about some process or function using a communications infrastructure to send the data back to an operator. The operator reviews the data, typically in a graphical format, assesses the operational status of the process, and tunes the system for optimal performance. +- Field Devices are the instruments and sensors that measure process parameters and the actuators that control the process. This is the interface between the ICS and the physical process. These sensors or measuring instruments are often referred to as input devices because they “input” data into the ICS. +- Field Controllers are responsible for collecting and processing input and output information, sometimes referred to as I/O. They also send the process data to the human machine interface (HMI) and process control commands from the operators. They are often located close to the field devices. +- Servers, HMIs, and engineering workstations take the information from field controllers and display the data in a manner that depicts what is happening in the process. The user interface, usually referred to as the HMI, allows the operator to have a real‐time, or near real‐time, operational view of the process. These three components are linked using networks or communication channels. + + - Field Devices (Meters, Sensors, Valves, Switches) <-------> Field Controllers (PLC, IED, RTU, Controller, PAC) <-----------> HMI (SCADA Server, HMI, Workstations, EMS) + - Direct connection or Device level protocols (HART, Foundation Fieldbus, Profibus) <----------> Command and Control Protocols (DNP3, Modbus, Ethernet/IP) + - Field Controllers --> Primary Historian --> Secondary Historian + |---> Configuration Database ---> HMI + ----> HMI + +- Protocols (ANSI X3.28, BBC 7200, CDC Type 1/2, Contitel, DCP, DNP, Gedac 7020, ICCP, Landis, Modbus, OPC, ControlNet, DeviceNet, DH+, Profibus, Tejas 3/5, TRW 9550, UCA) + + +- Indusoft (HMI Software?) +- Connected Components Workbench + +https://www.rockwellautomation.com/en-us/products/hardware/allen-bradley/programmable-controllers/micro-controllers/micro800-family/micro850-controllers.html + +https://www.plcfiddle.com/ + +ICS topology +------------- + +- ICS network topologies are similar to IT topologies. However, there are some fundamental differences critical to ICS applications. ICS networks require redundancy to ensure availability, which is not a common practice in IT. In addition, many older ICS networks use proprietary technologies, which are not used in the IT domain. +- Some similarities that an IT network engineer might notice are the serial technologies. RS232, RS485, and Ethernet reside at the physical layer in the OSI stack and are common to both domains. RS232, which is an older technology in the IT domain, is still commonly used for point-to-point communications in RTUs and PLCs. RS485 is the foundation for many proprietary control networks used at site facilities. + +Bus +^^^ + +The bus topology is constructed on a single cable, referred to as the bus, that each node on the network connects to. Each of these nodes passively listens for data being transmitted along the bus. If one node wants to transmit data to another node along the bus, it sends out a signal to the entire network, letting everyone know that a transmission is occurring. This transmission then travels down the bus, being ignored by all other nodes until it reaches its destination node and is accepted. + +Ring +^^^^ + +The ring topology is constructed from a closed loop cable, known as a ring, that each node on the network connects to. In this topology, the network forms a circular shape and data is transmitted clockwise via a token that each node in the network actively listens for. If a node does not want to transmit data, the node will act as a repeater and send the token around the ring. If a node does want to transmit data, it must wait until the token makes its way to the node and is no longer carrying data. + +Star +^^^^ + +The star topology is constructed from a central device, either a switch, router, or hub, which every other node in the network connects to. In this design, each distinct cable only connects two physical devices, with one end hooking up to a node on the network and the other hooking up the central device. If one node wants to transmit data to another node, it must send its transmission to the central device, which will then act as a relay station and pass along the transmission to the destination node. + + +Polling Methods +--------------- + +- An ICS master station repeatedly communicates with field controllers through a process called "polling." The master station will send a request for updates whereby a field controller, such as an RTU or PLC, responds by sending back the requested information. assets are polled to verify they are still functioning as expected. When the asset is polled, it sends data about it's state back to the SCADA, and if everything is OK, it will be polled on a regular schedule. If it's not OK, it will be polled again to determine whether a technician needs to get to the asset to perform maintenance on it. +- The poll can contain a general request such as a pressure reading or it can be related to specific metrics. An example could be that the pressure has exceeded required parameters. Has it overheated? Has it seen events that would cause you to believe the life cycle is being degraded? This polling process can happen every couple of seconds, every couple of minutes, every couple of hours, days, months or years. It is dependent on the asset, the role the asset plays in a system, and the risk that asset presents. + +Master/Field Controller Relationships +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- Some field controllers are assigned a higher priority where they are polled more frequently than other field controllers. For example, critical field controllers may be polled twice a second, while lower priority devices are polled once per minute. +- Polling rates also depend on the information being reported. The status of regional high voltage transmission lines will be checked more frequently than ambient temperature because the line status can change quickly compared to relatively slower temperature changes. +- This image shows several types of relationships between the master and the field controllers. For instance, a master can communicate directly with a single field controller or with multiple field controllers. Multiple masters can also communicate with a common field controller. Most modern control system networks are made up of a blend of communications methods, topologies, architectures, and protocols, which introduces complexity when creating security mitigation strategies + +Physical Media +^^^^^^^^^^^^^^ + +A number of choices are available to support the physical layer in ICS networks. Selecting the proper physical media depends on a number of factors, including costs, reliability, data rates, distance, topology, and availability. Some options are easier to secure than others. + +Leased Line +"""""""""""" + +- Leased lines are dedicated communication circuits, usually provided by a phone company. They are popular options for ICS communications to remote facilities because they are ubiquitous and affordable. Typically, the installation costs are minimal, and the monthly recurring costs are reasonable. The two types of leased lines are analog and digital. +- Analog leased line circuits are older lines and limit ICS communications to 9,600 bits per second, although there are some technologies that can squeeze higher data rates out of these circuits. +- Digital leased lines support higher data rates, but they are not available in all areas. Leased lines are not as secure as dedicated lines because the asset owner does not control the physical infrastructure or access. In addition, the leased line infrastructure is not isolated from other phone systems, creating a potential vulnerability from outside sources + +Dedicated Lines +"""""""""""""""" + +Dedicated lines are more secure than leased lines, because they are owned and managed by the asset owner. Unlike leased lines, dedicated lines are not shared with the public, so the exposure is reduced. The capital costs to install a dedicated network can be substantial because of labor and material costs; however, the recurring costs are generally lower than leased lines. + +Wired Media – Copper and Fiber +"""""""""""""""""""""""""""""" + +Fiber and copper lines provide the physical layer in an Ethernet-based environment; this medium is often referred to as wired media. These environments are used extensively in ICS networks. They are so popular because they offer fast, reliable, and inexpensive services. Fiber optic cabling is known to be harder to tap into than copper-wired media. However, tapping an optic cable is not impossible therefore, a significant cyber risk still exists. + + +PowerLines +"""""""""" +PowerLine1 + +- Power line carrier systems transmit data on electrical conductors. The single main advantage of Power Line Communication is that the power line infrastructure ensures coverage almost everywhere. Power line communication systems are favored by utilities because they allow data to reliably move data over an infrastructure they control. +- Electric, gas, and water utilities are adopting power line communication as a means to communicate with meters, enabling them to send and receive information on current consumption, gather diagnostic information, and remotely manage loads. Building owners and managers are also using power line communication to monitor, diagnose, and control loads such as lighting and HVAC systems. + +PowerLine2 +"""""""""" + +- Broadband over power line (BPL) is a technology that allows data to be transmitted over utility power lines. This technology uses medium wave, short wave, and low-band VHF frequencies, and operates at speeds similar to those of digital subscriber line (DSL). +- BPL has existed for many years, but so far, has not been implemented in the United States on a broad scale because of signal degradation, and technical difficulties involving interference with radio signals used for communications by public safety officials during emergencies. +- The term used for these traditional systems is Power Line Communications or Power Line Telecommunications (PLT). In Europe, the term Power Line Communications is also used for the Broadband data transmission, whereas in North America, the term Broadband over Power Lines (BPL) is more commonly used. + +Wi-Fi +"""""" + +- Wi-Fi is a wireless networking protocol that allows devices to communicate without direct cable connections. Wi-Fi is common in local plant operations. Longer distances are also possible with the use of directional antennas. WI-FI's low cost makes it extremely attractive solution. From a security perspective, vendors are able to provide several different authentication and encryption technologies. For more information, see the Recommended Practice Guide, "Securing WLANs using 802.11i." + +Radio Frequency +"""""""""""""""" + +Radio Frequency is any of the electromagnetic wave frequencies that lie in the range extending from below 3 kilohertz to about 300 gigahertz and that include the frequencies used for communication signals (as for radio and television broadcasting and cell-phone and satellite transmissions) or radar signals Radio frequency communications is commonly used locally within a site facility for plant operations, as well as for some long-distance communications to transmission and distribution facilities. The speeds associated with older radio systems are slow and analogous to those seen when using low-speed modems, although some proprietary spread spectrum radios do support Ethernet. + +Microwave and cellular +"""""""""""""""""""""" +Microwave and cellular data transmission rates are fast, but the installations can be expensive, and they ultimately require line-of-sight to achieve "five nines" availability. Cellular communications leverage existing telephone networks, and many vendors have incorporated either CDMA (Code Division Mobile Access), which is being gradually phased out, or GSM (Global System for Mobile communications), commonly known as 3G and 4G, respectively, into their products. + + +Communication channels +----------------------- + +A communication channel is a physical transmission path that data follows from one device to another. The medium can be a wire or a logical connection. Protocols define the rules for the communication and detail the interactions between these devices. The protocols include mechanisms for how the devices identify and make connections, arranging rules to specify how the data is packaged into sent and received. Basically, protocols specify interactions between the communicating entities. + +ICS Communication Channels +^^^^^^^^^^^^^^^^^^^^^^^^^^ + +The three main segments of an ICS – field devices, field controllers, and HMI – are connected using these communication protocols. As illustrated, the communications between the field devices and field controllers are separate from command and control communications. Initially, ICS were isolated systems running proprietary control protocols using specialized hardware and software. Widely available, low-cost Ethernet and Internet Protocol (IP) devices are now replacing the older proprietary technologies + + + +The communications medium and the protocols used in ICS will depend on the device selected, the requirements of the system, and the business. For example, organizations dealing with the reliability and management of a bulk power system, in real time have different data communication requirements than an organization that needs to measure the water level in a massive reservoir once or twice a day. + +ICS Common Protocols +==================== + +- There are dozens of protocols used in the ICS domain. Many of these protocols were developed to support a specific technology, and as such, are uncommon or only applicable to a single vendor. Some ICS devices are old—they can be in use 25 or 30 years—and use proprietary protocols developed by vendors that are no longer in business. The owners of these systems often resort to buying used equipment to keep their systems operational. +- Most, if not all, common ICS protocols are openly published and available for review. The protocols are typically transmitted in clear text, meaning they are not encrypted. This makes them easy targets for eavesdropping and subject to man-in-the-middle (MiTM) attacks. Many of the older protocols were adapted for a network environment by "wrapping" them in TCP/IP packets. This does not improve security because TCP/IP is not a secure protocol. +- The ICS vendor community has been under pressure by the ICS owner/operator community to move toward greater inter-operability, and toward a more common set of protocols for communications. Unfortunately, many of these protocols are not secure by design—they were designed for reliability. + +Modbus +------ + +Modbus is one of the oldest and most popular ICS protocols in use today, largely because of it's openness and simplicity. Modbus is a digital communication protocol for two or more devices to talk to one another. Modbus is related to the application-level protocols of the Open System Interconnection (OSI) network model. The physical layer is not specified in the Modbus protocol. As a result, Modbus implementations are not limited to a single communication media. This frees the communications engineer to select the best physical media for transporting Modbus packets. It has an open source code, which allows most field controllers to support Modbus, and this has made it very popular. Click the icon below to learn how Modbus is used. + +Modbus + +- Simple protocol +- Low cost development +- Minimum hardware requirement to support +- Master/slave protocol +- Communicates with up to 247 devices +- Uses standard TCP/IP protocols + +Modbus can be found in: + +- Industrial Buildings +- Commercial Buildings +- Infrastructure +- Transportation +- Energy Applications + +Modbus – Master/Slave Architecture +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +Modbus is a serial communications protocol, which acts as a message structure to a establish a master/slave or client/server communication between intelligent devices. This means that a master device talks to all the other devices on the network. It can query them for information or tell them what to do. Unlike most other protocols, however, Modbus is used for both command and control and device level communications. + +Modbus – Protocol Versions +^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +There are several versions of the Modbus protocol because the protocol was originally developed for serial connections but has been adapted for the networking world. These include: + +- Modbus ASCII – Original serial version. Data is transmitted in ASCII characters, which makes it easy to troubleshoot when there are problems +- Modbus Plus – An extended, proprietary version that runs on RS485 +- Modbus RTU – Serial protocol that transmits data in binary form, making data more compact and transmission more efficient than the ASCII version. More commonly used than Modbus ASCII. (Based on Serial communication like RS485, RS422, and RS232.) +- Modbus TCP/IP – The TCP/IP encapsulated version of Modbus. (Based on Ehternet.) + +Modbus – Authentication & Authorization +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- To facilitate interoperability in modern networks, the Modbus Application Protocol (MBAP) header is dropped onto the TCP/IP stack at the application layers in both the OSI and Advanced Research Projects Agency (ARPA) models. This creates a cybersecurity situation where an insecure protocol is using an insecure transport mechanism to perform mission critical and vital operations. +- The TCP/IP Modbus payloads provide enough intelligence to analyze the traffic. It is also easy to create a list of Modbus-aware field controllers, which attacks can leverage. In addition, no authentication or authorization is required to communicate with a Modbus device. The default port that Modbus/TCP uses is 502. The original performance requirements that have been ported over to new transport mechanisms have not taken into consideration the impact of non-structured data on delicate field controllers + +Modbus – Vulnerabilities +^^^^^^^^^^^^^^^^^^^^^^^^ + +Modbus Flooding Attack + +- Modbus Flooding: The Modbus protocol, like many control protocols, does not include any mechanisms to protect confidentiality, although there is Cyclical Redundancy Check (CRC) integrity checking. CRC is a common method used by ICS protocols to determine if the data were unintentionally changed during transmission. +- The original Modbus protocol does not protect the system from malformed packets and out-of-scope data storms. As a result, attacks such as denial of service, session hijacking, and integrity compromise, are easily executed against the Modbus protocol. +- One attack example is called ModBus flooding. The aim of the attack is to control the system through this flood of messages, effectively drowning out legitimate commands from the HMI. + +- Modbus protocol is a master/slave protocol: the master reads and writes slaves' registers. +- Modbus RTU is usually used via RS-485 (serial network): one master is present with one or more slaves. Each slave has an unique 8-bit address. +- Modbus data is used to read and write "registers" which are 16-bit long. + + - Holding register: 16-bit; readable and writable + - Input register: 16-bit; readable + - Coil (Discrete Output): 1-bit long; readable and writeable + - Discrete input (Status Input): 1-bit long; readable + +Distributed Network Protocol 3 (DNP3) +------------------------------------- + +- DNP3 is a communication protocol used in SCADA and remote monitoring systems. DNP3 stands for Distributed Network Protocol 3rd version. It is widely used because it is an open protocol, meaning any manufacturer can develop DNP3 equipment that is compatible with other DNP3 equipment. Because DNP3 was designed to support communications with geographically dispersed facilities, it is also used extensively by the oil and gas, water, and wastewater sectors to communicate with distribution and transmission facilities. It supports communications between station computers, RTU, IED. DNP3 also: + + - Provides features and functions missing from Modbus + - It is an open protocol, therefore numerous vendors support it + - Most often uses TCP, but also supports UDP + - Uses Port 20000 + - Traffic is sent in plain text + - Does not provide for authentication or authorization + - Originally designed to operate on serial communications, but has been migrated to work on IP + + +DNP3 – DNP3 Application +^^^^^^^^^^^^^^^^^^^^^^^^ + +- DNP3 uses the TCP/IP protocol stack and exists on top of the transport layer (TCP or UDP). Three distinct layers contained within the DNP3 application are DNP3 Data Link layer, DNP3 Transport layer, and DNP3 Application layer. +- Just as Modbus DNP traffic is sent in plaintext, DNP3 connections are susceptible to session hijacking, denial of service, and other attacks found in modern networking environments. Although the DNP3 protocol was designed to be very reliable, it was not designed to be secure from attacks that could potentially disrupt control systems or disable critical infrastructure. +- DNP3 does not natively provide authentication or authorization as a function of the protocol standard; however, the security specification extensions developed for DNP3 are now compliant to the IEC 62351-1 standard (International Electrotechnical Commission) and, when used, provide mitigation to some modern attack methodologies. Even though DNP was originally designed to operate on serial-based communications, the migration to IP has been successful and embraced by the ICS community. +- Recognize that the assignment of the protocols is a function of the port used, and not necessarily the payload of the packets. For instance, if the screenshots were taken of two devices using a torrent server for music file downloads using port 20000, the protocol would be classified as DNP because DNP is the standard protocol mapped to Port 20000 using IETF (Internet Engineering Task Force) Port allocations. + +Inter-Control Center Communications Protocol (ICCP) +--------------------------------------------------- + +- Inter-Control Center Communications Protocol (ICCP), also known as the Telecontrol Application Service Element 2 (TASE.2), is a vendor-independent standard protocol. It is designed specifically for real-time data exchange between ISO (Independent System Operator) control centers, power pools, regional control centers, transmission utilities, distribution utilities, and generation facilities over LAN and WAN. +- ICCP is based on client-server communication. All data transfers originate with a request from a control center (the client) to another control center that owns and manages the data (the server). ICCP also provides services for data transfer, depending on the type of request. For example, if the client makes a one-time request, the data will be returned as a response. +- If the client makes a request for the periodic transfer of data or the transfer of data only when it changes, the client will first establish the reporting mechanism with the server. This will specify reporting conditions such as periodicity for periodic transfers, or other trigger conditions such as report-by-exception only. The server will then send the data as an unsolicited report whenever the reporting conditions are satisfied. + + +ICCP Security +^^^^^^^^^^^^^ + +- ICCP provides the ability to read objects, make configuration changes on remote objects, and control objects. Because the protocol is clear text, visibility to network traffic allows an observer to gain important information regarding relationships between clients and servers. +- Standard ICCP is inherently insecure, however, a version called Secure ICCP can be used. Sites not using Secure ICCP should consider using OpenSSL, IPSec, and data link encryption to provide inter-node data security for standard ICCP communications + +Fieldbus +-------- + +- Fieldbus is a generic term that describes not one protocol, but a collection or group of industrial computer, digital communication protocols. The idea behind Fieldbus was to eliminate any point-to-point links. Basically, Fieldbus works on a network that permits various topologies, such as the ring, branch, star, and daisy chain. +- Fieldbus is a LAN dedicated to industrial automation. It replaces centralized control networks with distributed control networks and links the isolated devices such as smart sensors/transducer/ actuators/controllers. Click the button below for Fieldbus characteristics. +- A few of the characteristics of the fieldbus include: + + - Bi-directional – This means it is a duplex port; the data can be transmitted in two directions at the same time. + - Multi-drop – This is also referred to as multi-access and can be interpreted as a single bus with many nodes connected to it. + - Serial-bus – This means the data is transmitted in small packets in a sequential manner. + - Multiple Topologies – Fieldbus works on network structures such as daisy-chain, star, ring, branch, and tree topologies. + +Fieldbus – Levels +^^^^^^^^^^^^^^^^^ + +- A simple fieldbus consists of four main levels. As the levels increase the level of complexity increases. +- Level 4 – The most complex level where all computers and departments are located. This computer-driven level allows data monitoring, file management, and file transfer at a large scale. +- Level 3 – This is where high-level data communication happens. Controllers, such as PLC, are connected to each other alongside HMI for complete control of the network. +- Level 2 – Increased complexity scale. All sensor bus networks are connected to this network. Variable speed drives and motor control centers are connected to these for individual control over elements. +- Level 1 – This level is the least complex and includes all isolated field devices. + +Fieldbus – OSI vs Fieldbus Model +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- There are basically two sections to the fieldbus system: interconnection and application. Interconnection refers to passing of data from one device to another. This is the communication protocol part of fieldbus. The application is the automation function the fieldbus performs. +- As seen in the diagram, an OSI model requires data to move sequentially through each of the seven layers. With the fieldbus, the process has been simplified as Layers 3, 4, 5, and 6 are not intended to make fieldbus faster and easier to implement in devices with limited processor power, such as field devices. Fieldbus has no interconnections between networks, which is the purpose of these layers + +Profibus +-------- + +- Profibus is a smart fieldbus technology. It is specifically designed for high-speed serial I/O in factory and building automation applications. It is recognized as the fastest fieldbus in operation. Profibus is an open-standard fieldbus defined by German DIN 19245 Parts 1 & 2. Devices on the system connect to a central line. Once connected, these devices can communicate in an efficient manner, but can go beyond automation messages to participate in self-diagnosis and connection diagnosis. +- The data link layer is defined in Profibus as the Fieldbus data link layer (FDL). It is based on a token/bus/floating master system. Profibus is a network made up of two types of devices connected to the bus: master devices and slave devices. It is a bidirectional network, meaning one device (the master) sends a request to a slave, and the slave responds to that request. The bus contention is not a problem because only one master can control the bus at any time, and a slave device must respond immediately to a request from a master. Profibus can support addresses from 0-127, only 0-125 are used, because 126-127 have special uses and are not assigned to operational devices. +- There are three types of Profibus: Fieldbus Message Specification (FMS), Profibus DP (Distributed Peripherals), and Profibus PA (Process Automation). FMS is used for general data acquisition systems. DP is used when fast communications are needed to operate sensors and actuators via a centralized controller. Profibus PA is used in areas when intrinsically safe devices and safe communications are needed, such as to monitor measuring equipment in process automation applications. +- It is very easy to connect all three versions together on the same system because the main difference between the versions is the physical layer. This would allow a company to run lower-cost devices in most of the plant with FMS, DP where speed is needed, and PA in those areas requiring intrinsically safe devices. +- Of the three versions, PA and DP are those most commonly used. Profibus PA was developed to connect directly with Profibus DP. The graphic below demonstrates how the two systems are connected. + +Open Platform Communication (OPC) +--------------------------------- + +- OPC (Open Platform Communication, formerly OLE for Process Control) is a series of standard, manufacturer-independent programming interfaces through which an automation application client such as an HMI can access data coming from remote devices such as PLC, fieldbus devices, or real-time databases. OPC has become the most versatile way to communicate in the automation layer in all types of industry. +- OPC is a client/server based communication, which means that you have one or more servers waiting for several clients to make requests. Once the server gets the request, it then answers that request before returning to a waiting state. The client can also tell the server to send updates when the server receives such updates. It is ultimately the client that decides when and what data the server will gather. +- According to the OPC Foundation's website, "OPC is open connectivity via open standards." For example, an operator pulls up a display on the HMI. The HMI has an OPC client that sends a request to an OPC server to provide the data needed to populate the display. The OPC server, using a protocol such as Modbus or DNP 3.0, obtains the data from the RTU and passes it to the client. + +OPC Classic Specification +^^^^^^^^^^^^^^^^^^^^^^^^^ + +- OPC does not represent a network protocol in the traditional sense, but rather a capability to support the interfacing and interconnection with disparate vendor technologies. +- OPC is a set of several specifications for sharing data based on Microsoft technologies COM, DCOM, OLE, and RPC. Microsoft has since replaced these technologies with .NET and no longer supports these legacy technologies. OPC standards based on COM and DCOM are referred to by the OPC foundation as OPC Classic Specifications. +- The OPC Data Access (DA), the most basic of the protocols and is the original of the OPC Classic Specs, defines the exchange of data including values, time, and quality information. The second protocol to be added, Alarm and Events (A&E), defines the exchange of alarm and event message information. It is a subscription service where the client recieves all incoming events. The OPC Historical Data Access (HDA) specification defines query methods and analytics that may be applied to historical, time-stamped data, and supports record data sets for one or more points. + +OPC Unified Architecture (UA) +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- These classic specifications have served the industry well, but as technology has evolved, so did the need for OPC specifications. In 2008, the OPC Unified Architecture (UA) was developed as a platform independent service-oriented architecture to address the issue of platform interoperability by using Web services-oriented architecture (SOA) in place of .NET and DCOM. UA significantly expands the use of OPC to include non-Windows platforms such as field controller, cellphones, UNIX, and Linux enterprise servers, as well as Window servers. +- The biggest difference between OPC classic and OPC UA is that OPC UA doesn't rely on OLE or DCOM technology (windows), making it possible to implement OPC UA on any platform, such as Apple, Linus, or Windows. Another important UA feature is its ability to use structures and models, so data tags or points can be grouped and given context, making governance and maintenance easier. + +Why is OPC so Popular? +^^^^^^^^^^^^^^^^^^^^^^ + +- Of all the protocols, OPC is most popular. "To understand why OPC is so popular, consider the example of printer drivers: Under MS-DOS, the developer of each application also had to develop a printer driver for every printer, one for an Epson FX-80, one for the HP LaserJet, and on and on. Microsoft solved the printer driver problem by incorporating printer support into the operating system. Today, printer drivers provided by printer manufacturers serve all applications. +- In the industrial automation world, each company writes its HMI software and a proprietary driver for each industrial device (including every PLC brand). Rockwell wrote its HMI and a proprietary driver to each industrial device (including every PLC brand, not just its own) and so on. By adding the OPC specification to OLE technology in Windows, Microsoft is providing the infrastructure to solve the industrial device driver solution as well. +- The image below depicts the 1:1 relationship between devices used in the analogy. + +- OPC simplifies protocol development by eliminating the need for an ICS vendor to produce an OPC client, foregoing the expense and effort of developing multiple protocols for their products. + + +OPC Relationships +^^^^^^^^^^^^^^^^^ + +- OPC provides an elegant solution to the protocol problem by introducing the concept of using an OPC client/server architecture in the ICS environment. The client makes a data request to the OPC server, and the server obtains the data from the field controller by communicating with it using its native protocol. +- The OPC server supports almost any ICS protocol imaginable, including Modbus, DNP3, ICCP, and Foundation Fieldbus. + + + +ICS Cybersecurity Risk +======================= + +- Risk Equation is sort of guideline to understand the level of risk we are taking. There are different equation elements and different factors that contribute to elevated risk, the security concerns that we should be aware of by integrating our IT with our OT control systems. +- Risk is a function of threat, vulnerability, and consequence. The most complex attribute is threat because it can be intentional or unintentional, natural or man-made. When trying to develop defensive strategies to protect control systems, it is important to understand the threat landscape for appropriate countermeasures or compensating controls to be deployed. The risk equation should not be taken literally as a mathematical formula, but as a model to demonstrate a concept. +- Risk is the possibility of something undesirable occurring and we need to understand how to increase or decrease the chances of that happening. +- For cybersecurity, there are three elements of the equation: Threat. Vulnerability. And consequence. The better we understand each of these factors, the easier it is to plan appropriate security measures around control systems. + +Threat +------ + +- We're mainly concerned about people with a malicious intent. A threat would be the potential for someone to exploit a particular information system vulnerability. In the context of cybersecurity, this could be a hacker. As technology has improved in recent years, it has also opened up vulnerabilities for not only malicious nation and terrorist organizations, but other organized and mainstream threats. +- A threat is any person (threat actor), circumstance, or event with the potential to cause loss or damage. +- It is important to consider threat relative to capability, opportunity, and intent. From a defensive perspective, if we know the capability of our adversaries and the vulnerabilities that would most likely provide them opportunity to attack, we can create countermeasures removing those opportunities. We can also create defenses requiring capabilities beyond the adversary's ability to compromise. +- If there is a certain condition associated with compromising a control system, and we create countermeasures forcing the adversary to work at a level beyond that condition, the economics suggests the attacker may abandon the attack altogether. Ultimately, understanding capabilities and motives should help improve security postures to create countermeasures appropriate to the risk, while minimizing impacts to business operations. +- Three attributes of a threat? Capability. Opportunity. Intent. When all of these requirements are met, in all likelihood the attack will succeed. Applying cybersecurity strategies that help to deter, detect, and itigate a threat can alter how or where an attacker might have opportunity. Removing the opportunity increases the chances of an attack failing. +- In your situation, you may choose different policies and security measures to enact to protect your control systems. Some ideas include: + + - Network segmentation with strict ingress and egress firewall rule sets. + - No externally routable network connections. + - Network monitoring, host logging, and maintaining a Collection Management Framework (CMF). + - Secure Credential Management, no credential sharing, active directory, or account/group management. + - Incident response plan, the ability to detect and declare a cyber incident. + - Keep in mind that the Internet, removable media, and email are the main attack vectors for Industrial Control Systems. + +- Finding the appropriate balance of effective countermeasures that don't impact control system operations can be challenging, and in many cases asset owners need to identify levels of acceptable risk to their systems. +- Understanding the threat helps asset owners: + + - Understand the realistic profile of a cyber adversary that could target specific control systems. + - Make better informed decisions regarding what assets to protect and how. + - Have the right information to fine tune cybersecurity training for specific personnel involved in control system operations. + - Define the cybersecurity criteria to be met during system design and when the system is fully operational. + - Understand what countermeasures can be deployed to escalate cyber defenses beyond the capability of recognizing adversaries. + - Design appropriate security monitoring strategies addressing threat aspects with the greatest contribution to cyber risk. + +The attributes associated with a human threat are capability, intent, and opportunity. + +Capability +^^^^^^^^^^ + +- Capability is the means or resources available to perform an attack. This includes attacker expertise and knowledge, as well as the money and tools for carrying out the attack. +- Generally, adversaries will have a static capability and will need to adjust, depending on their intent and the available resources. +- For an adversary to determine if current capability is adequate or needs to be modified, the adversary needs to have as much information as possible about the target. Incorrect calculations regarding requirements needed to successfully attack a target can result in too much or not enough capability for the attack. + +Intent +^^^^^^ + +- Intent is the motive or goal of the attack, and is usually the one attribute cyber defenses cannot impact. +- There are many different motives for launching a cyber attack, including curiosity, economic advantage, industrial espionage, national security, revenge, or promoting a cause. +- The intended consequence plays a factor in intent as well as the selection of the target. + +Opportunity +^^^^^^^^^^^ + +- Opportunity is the set of conditions that need to be met for adversaries to be confident their attack will be successful. This can be related to the actual access an adversary has to a target, as well as access to specific knowledge about the system. +- The opportunity also extends beyond access and knowledge of the system to include timing, which has the potential to change the value of a control system as a target. Opportunities are related to the exposure and vulnerability of targets, two things defenders can control. + +Attributes +^^^^^^^^^^^ + +- It is important to understand attributes because they are interdependent when it comes to determining whether an adversary may execute an attack. Attributes also allow defenders to create strategies that may thwart attacks. +- Alignment of all three attributes—capability, intent, and opportunity—may indicate an attack is imminent. Alignment greatly impacts the probability that a threat actor can execute a successful attack. +- As we will see, influencing an adversary's intent is rarely possible, but improving defensive and detection capabilities to render an adversary's capability insufficient is always possible. Deploying security countermeasures has a direct effect in removing or changing adversarial opportunities to attack control systems. +- Unlike the risk equation, the individual attributes of threat are summed, not multiplied. This means adversaries with a strong intent or motive can still be a threat, even though they may not have the capability or opportunity to launch an attack. Over time, they may acquire or create the capability and opportunity. +- Threat is often the least understood and most difficult to quantify because human behavior can be unpredictable, and involves diverse capabilities, intent, and opportunities. Unpredictable behavior creates situations where static countermeasures may not be adequate to protect critical systems. + +Hazards vs. Threats +^^^^^^^^^^^^^^^^^^^^ + +Threats are not predictable in the same way as hazards, meaning cybersecurity cannot be assessed in the same way as safety. Defense-in-depth strategies can help compensate for the diversity of threat actors and their wide range of capabilities. As such, it is important to recognize that as the threat landscape changes, so must our ability to defend the systems. + +Hazards and threats are two distinct, but related items, as shown in the table below. + ++--------------------------------------------+----------------------------+ +| Hazards | Threats | +| (Safety) | (Security) | ++============================================+============================+ +| - Understood and known danger | Not always well understood | +| - Predictable based on historical trending | Not so predictable | +| - Create probabilities of incident | | ++--------------------------------------------+----------------------------+ + +Hazards +^^^^^^^ + +- Hazards are considered situations possessing inherent and known dangers. Examples of hazards include electrical, confined space, or flammable. The failure of a piece of electronics that causes a chamber filled with acid to overflow is also an example of a hazard. In general, this acid overflow hazard falls into the category associated with safety. In safety studies, we have proven historical data about equipment failures that is tied to known dangers and risks, and we can calculate probabilities on when undesirable events might happen. In some cases, we can calculate the actual average time it will take for a system or device to fail based on environmental factors and past use cases. But the data used to do this are based on predictable behavior. + +- The field of industrial automation has historically collected information on hazards that are used to develop safety guidelines. Databases of hazards and historical events are used to determine the probability of a dangerous event occurring. This in turn allows professional certification of systems to meet measurable safety requirements. Things to consider include system lifetime, mean time between failures, and other measurable attributes that can help system owners proactively manage the safety and resiliency of equipment while optimizing performance. + +- Hazards can be categorized. Certain attributes are associated with different hazards. These attributes offer analysts information that may be used to develop fairly precise forecasting of different types of events, allowing analysts to plan for certain incidents related safe operation. + +Threats +^^^^^^^ + +- Threats are not predictable. Cyber attackers, weather, animals chewing cables, personal events, or falling trees are all examples of threats. If a threats are not man-made, it is still hard to accurately predict how and when they will occur. We don't have data or granular information to help us determine if and when a threat-based event will happen. For human threats, this can be difficult as we usually cannot define the combined value of capability/opportunity/intent. Safety and security have significant roles in the resiliency and reliability of ICS. Safety and security are complementary, but the disciplines themselves are different. It is important to calculate security risk for control systems, and even more important to calculate appropriate proactive and reactive security mitigation strategies. +- Threats are also not predictable even when historical information exists. Being able to categorize threats and predict associated incidents with precision is difficult because people do unpredictable things. This unpredictability is often driven by a multitude of factors beyond the control of even the threat actor (i.e., weather, politics, personal events). + +Threat Actor Categories +^^^^^^^^^^^^^^^^^^^^^^^ + +By better understanding the capabilities, intents, and opportunities of human threat actors, we can better design defenses for ICS. The types of threat actors can roughly be divided into three categories: mainstream; organized; and terrorist and nation state. + ++---------------------------------------+----------------------------------------------+-------------------------------------+ +| Mainstream | Organized | Terrorist / Nation State | ++=======================================+==============================================+=====================================+ +| - Often single entity or small groups | - Structured (star, hierarchy) | - Very sophisticated and structured | +| - Curiosity, notoriety, attention | - Criminals, activists, competitors | - Well organized, well funded | +| | - Financial, revenge, disclosure, blackmail | - War, major security/economic impact | ++---------------------------------------+----------------------------------------------+-------------------------------------+ + +Mainstream +"""""""""" + +- Group 1 is, historically, the largest threat group, although these mainstream threat actors are generally not well organized. The motivation of this group varies, but traditionally it has been related to notoriety, fame, or attacking a system to attract attention. +- Because they are not always organized should not negate the fact their technical skills can be quite advanced. As their notoriety increases, the demand for their services (legal and illegal) increases. +- Some cybersecurity researchers attack systems to improve their knowledge of how these systems work, which makes them more efficient programmers or engineers. +- Although they usually operate independently, mainstream threats can combine to form small groups with limited organization +- Example: + + - Group 1: A Polish teenager modified a TV remote control to change the Lodz Train track positions. As a result, he caused four derailments, injuring 12 people. + - The teenager had the capability to modify a TV remote control. + - His intent was a prank. + - His opportunity was his ability to trespass in the tram depots. + - Source: http://www.theregister.co.uk/2008/01/11/tram_hack/ + +Organized +"""""""""" + +- Group 2 consists of more organized threats, typically targeting a particular group or groups +- Group 2's intent may be financial, revenge, theft of trade secrets, or drawing attention to a cause (hacktivists). Their attacks are more structured and sophisticated than Group 1, but it is not uncommon for Group 2 threats to include membership, capabilities, or skills traditionally found in Group 1. +- As the structure of this group grows, there is the possibility of recruitment from Group 1 individuals to become part of a larger and more organized effort. +- Example: + + - Group 2: Disgruntled traffic engineers who maintained the Los Angeles traffic control computers hacked into the system and modified signals at four major intersections. This caused major gridlock and it was 4 days before traffic could return to normal. + - Their capability was the insider knowledge they had as a result of maintaining the traffic control system. + - Their intent included disgruntled employees and was thought to be motivated by a pay bargaining dispute between employees and the Engineers and Architects Association. + - Their opportunity was their ability to hack into the system. + - Source: www.theregister.co.uk/2008/11/06/traffic_control_system_sabotage/ + + +Terrorist/Nation State +"""""""""""""""""""""" + +- Group 3 includes terrorist and nation state elements. The goals of this group's attacks are to disrupt, terrorize, or eliminate major aspects of society. The impact or consequence of a Group 3 attack could be catastrophic. +- Targeted groups include financial institutions, political establishments, military organizations, and media outlets. Intelligence sources are also concerned about utilities and manufacturing facilities. +- Nation states with well-funded cyber warfare programs are also a concern. +- Both terrorist and nation state threats have significantly more resources than Groups 1 and 2. As a result, Group 3 actors are able to launch more sophisticated attacks. +- As Group 3 programs grow, it is expected they will recruit from, or use, capabilities, techniques, and procedures found in Group 1 and Group 2. +- Example: + + - Group 3: ICS-CERT was notified of the existence of a new malware application called Stuxnet. It is believed to have been introduced through a portable media threat vector (USB stick). It contained more than 4,000 functions and used as much code as some commercial products. Stuxnet modified programs for a specific PLC and hid those changes. This attack was a game changer in the ICS hacking community because it is the first known malware to target a specific ICS configuration. + - Though the author of Stuxnet is still unknown, it has all the hallmarks of a Group 3 attack. As one of the ICS-CERT advisories on Stuxnet reported, "The overall sophistication of the Stuxnet malware cannot be overstated." According to Wikipedia, "The Guardian, the BBC, and The New York Times all reported that experts studying Stuxnet considered the complexity of the code indicates that only a nation state would have the capabilities to produce it." + - Source: http://www.cbsnews.com/news/report-stuxnet-delivered-to-iranian-nuclear-plant-on-thumb-drive/ + +Insider Threats +^^^^^^^^^^^^^^^ + +- Can the security of an ICS be threatened by a trusted insider (an employee or vendor) who has specific knowledge of, and access to, the ICS? Absolutely! Recall that threat attributes are summed. +- Even though an insider may not have intent, they certainly have substantial capability and opportunity, which may make them a significant threat. + +Unintentional Threats +"""""""""""""""""""""" +- Based on known ICS cyber incidents to-date, the most likely ICS attacks originate from an insider, or from an external adversary who has acquired credentials to operate as a trusted insider. +- An insider could be acting alone or as a member of a Group 2 Organized attack, or the more serious Group 3 Terrorist/Nation State attack. The attack may be unintentional or intentional. The causes of an unintentional incident include: + + - Deceived – social engineering, phishing + - Mistakes + - Poor training + - Careless, taking shortcuts, fatigued + +- A mistake or failure to follow adopted policies can also cause a cyber incident on an ICS that is as severe as a deliberate attack. A well-trained system administrator is crucial to protecting an ICS from cyber attacks. + + +- Example: + + - As an example of an unintentional threat, a 16-inch gasoline pipeline operated by Olympic Pipeline Company ruptured due to a pressure surge caused by a faulty pressure relief valve. The rupture released gasoline into Whatcom Creek in Bellingham, WA. This unfolding tragedy was exacerbated by the inability of the Supervisory Control and Data Acquisition (SCADA) to perform control and monitoring functions. The gasoline in the river was accidentally ignited, which resulted in an explosion and fire. + - The explosion resulted in three fatalities, over $45M in property damage, and matching fines of $7.86M against two companies. + - The database used by the pipeline SCADA system was modified in real time, without the necessary review to ensure the changes would not impact normal operations and safety of the pipeline. + - The unchecked changes were implemented to the live database, causing a critical slowdown in system monitoring. These changes resulted in the SCADA system polling operational data from the pipeline every 6 minutes, rather than every 3 seconds. + +- Explosion Findings + - Although the SCADA system was not directly responsible for the rupture of the pipeline or the explosion, it did contribute to the tragedy because it was not operating properly during a crucial time leading up to and following the pipe rupture. + - The findings of the National Transportation Safety Board included: + - If the SCADA system computers had remained responsive to the commands of the Olympic controllers, the controller operating the accident pipeline probably would have been able to initiate actions preventing the pressure increase that ruptured the pipeline. + - The degraded SCADA performance on the day of the accident likely resulted from the database development work done on the SCADA system. + - Had the SCADA database revisions performed shortly before the accident been performed and thoroughly tested on an offline system, instead of the primary online SCADA system, errors resulting from those revisions may have been identified and repaired before they could affect the operation of the pipeline. + - Olympic did not adequately manage the development, implementation, and protection of its SCADA system. + + +Intentional Threats +"""""""""""""""""""" + +- Motivations for launching an intentional attack on an ICS could be related to those cited earlier, but may also include: + + - Recruited – blackmailed, bribed, embedded + - Revenge – disgruntled, terminated + - Curiosity + - Financial + +- As an example of revenge, Mario Azar, an IT consultant for Pacific Energy Resources, successfully disabled an offshore oil platform's leak-detection system remotely, using his company's virtual private network (VPN) over the Internet. After receiving his last payment for contract work, Azar petitioned to continue work as a full-time employee, but Pacific Energy Resources declined to hire him. +- Azar continued to remotely log into the leak-detection system, which was used to monitor three offshore oil platforms near Huntington Beach, CA. This resulted in impaired computer system monitoring for leaks on all three offshore platform + + +- As ICS developers began to leverage interoperability and open-system connectivity, they moved away from isolated architectures. However, during this transition, many of the systems were still dependent on legacy hardware and software, and the requirements for availability often prohibited asset owners from taking their systems offline for long periods for updates. As a result, appropriate security defenses were not installed, and the ones that were installed often did not provide sufficient defense against modern-day attacks. +- ICS defenses have not evolved as quickly as those in the corporate IT world, and in many cases the average ICS is still years behind current levels of cybersecurity found in non-ICS technology. +- Because of the rapid integration of technology and networks between corporate IT and control systems, there is a huge push to protect legacy ICS from modern-day attacks. As many of the security countermeasures were developed for environments that set confidentiality as a primary focus, deploying such security mitigation technology into ICS environments (where both availability and integrity are primary objectives) can actually have a negative impact productivity. + +Current Trends +^^^^^^^^^^^^^^ + +- What are the current threat trends? As mentioned previously, Stuxnet was a game changer in that it was the first publicly known malware developed to target a specific ICS, as well as a specific process. After Stuxnet, new variants of the malware have surfaced, in addition to other ICS-specific attacks. For example, Havex malware sought control systems using a specific protocol unique to industrial automation. +- The emergence of Advanced Persistent Threat (APT) is a trend that cannot be ignored. APT typically refers to cyber threats from nation states. As the name suggests, this type of threat employs advanced techniques to deploy sophisticated attacks that compromise systems, help advance an attacker's goals, and avoid detection to stay resident as long as possible. The attacks are not necessarily limited to cyber methods of compromising a target. They may be combined with other intelligence resources to reach a specific goal or objective. +- This persistence toward reaching a specific goal is different than the objectives of more opportunistic types of attacks where attackers are looking for any information to exploit for financial (or other) gain. Because these are specific attacks, adversaries execute unique, customized code to achieve a specific objective. These threat actors have extensive resources (capability) and motivation (intent) to reach their goals. + +Trends +^^^^^^^ +- We have discussed how complex and sophisticated attacks are now being bundled into easy-to-use tools. The Metasploit framework is an example of such a tool, but similar tools are being adapted to allow attackers to accelerate and simplify attacks on ICS environments. +- Threat actors are also showing an interest in the vulnerabilities of ICS products and architectures, as evidenced by increased chatter in the hacker community. +- Furthermore, Department of Homeland Security's Cyber + Infrastructure (CISA) is seeing an increase in the number of reported incidents. +- The combination of these trends indicates the threat is not going away, but is increasing. Considering this, asset owners need to adopt more comprehensive mitigation strategies to protect their control systems from attack. + + +Attacker Tools and Techniques +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +The phases of the attack life cycle include: +- Reconnaissance/targeting +- Vulnerability assessment +- Attack/penetration + +- Just like a carpenter uses a variety of tools to build a house, an ICS threat actor also uses a number of different tools and techniques to execute an attack. +- Specific tools are designed for each specific phase in the attack life cycle. Some tools research the target, some gain and maintain access to a system, and others launch an attack. Part of successfully defending a system depends on understanding your opponent's capabilities. +- Phishing: Email containing malicious files or links to nefarious websites +- Denial of Service (DoS): Makes networks or computer resources unavailable +- Social Engineering: Used to get privileged information from an insider on the targeted computer system or network +- Zero Day Exploits:Takes advantage of vulnerabilities not known to a broad community, and for which no countermeasure or mitigation has been developed +- Malware: Malicious software + +Malware + +There are several common classifications of malware. Like the tools and techniques just reviewed, the intent is not to delve into details, but to give you an understanding of the basic definitions of these terms by watching the video on the next page. + +Malware + +- Backdoor: A method or program for bypassing authentication or obtaining remote access to a computer. +- Botnet: A large number of infected computers that generate spam, relay viruses, or execute Denial of Service attacks. +- Ransomware: Systems or data are held hostage by a cyber actor until a ransom is paid. +- Rootkit: Code that modifies the operating system to maintain privileged access. +- Trojan Horse: Malicious software posing as a used full program. +- Virus: Parasitic software that copies and inserts itself into a host file or boot sector. They are unintentionally spread by transferring the infected file between computers. +- Worm: Malicious software that independently replicates, executes, and travels across the network without a host program. + +- Many modern ICS threats and exploits are due to the rapid research advancement of more complex attack techniques. There is growth in the number of activities correlating to the system attack life cycle, such as: +- Reconnaissance/targeting (Cynsys/EternalBlue/Shodan) +- Vulnerability assessment (Sniper/Ettercap) +- Attack/penetration (Metasploit, Gleg Agora, Nessus Scripts, Immunity Canvas) + +Adversary and Research Capabilities + +- Now let's look at adversary trends as the global interest in ICS security increases. +- There has been an increase in ICS-specific presentations at conferences worldwide. There has also been an increase in collaboration within news groups specific to the cyber underground, along with more research and publication relating to ICS vulnerabilities. +- The interest in ICS cybersecurity has grown tremendously due to several factors; including Stuxnet, an increase in open-source incident reporting, and the number of vulnerabilities being disclosed for coordinated research efforts. Overall, ICS cybersecurity is still fairly immature and is an attractive domain for researchers of all types. +- Interest in ICS cybersecurity is driven by: + + - New independent research + - Increasing number of disclosed vulnerabilities + - Asset owner requirements + - Vendor market differentiators + - More understanding about influence of ICS on critical infrastructure + - Increase in incident reports + - Increase in easy-to-use attack tools + +Control System Vulnerabilities + +- Because we are dealing with industrial automation, control system vulnerability discussions cannot take place without considering the consequences and impact on critical infrastructure. This makes ICS targets appealing to a broad audience and will attract interest from adversaries in all threat actor groups. +- Finally, there is a notable increase in the interest in ICS cybersecurity because asset owners are introducing training and compliance efforts to their personnel. This, in turn, drives demand for briefings, conferences, and academic activities—all of which create literature that is available to the community at large. + +Vulnerability +-------------- + +- A vulnerability is any weakness that can be exploited by an adversary or caused through an accident. In our conversation, we're mainly concerned about intentional attacks. For example, a hacker may use phishing scams to gain login credentials. They may possibly exploit an older or unpatched vulnerability in a system that you use. From there, they can pivot into different networks, including the control systems, and potentially cause great harm. Mitigating these vulnerabilities can be challenging. + +- What are some challenges when mitigating vulnerabilities? In ideal situations, asset owners will have a program in place that provides timely information about ICS vulnerabilities. Even with accurate vulnerability information, verifying the applicability of the vulnerability to an ICS can be difficult. Mitigating these vulnerabilities can be even more complex because: + + - Extensive testing needs to be performed prior to the application of a mitigation (such as applying a patch) to ensure it does not affect critical system functions; and + - If a patch or update is considered viable, strategic planning and downtime are required to implement it. In high availability control system environments, finding downtime can be challenging. + - Even after testing, the system must be monitored to ensure the mitigation is working as intended. + +Consequences +------------- -- Embedded Systems is computer system consisting of hardware and software specifically defined for a specific purpose or dedicated task. (Workstations, laptops and servers are not embedded system). -- Embedded system used in ICS +- Financial loss and damage to our systems can have terrible results! +- Historically, consequences have been measured in terms of financial loss and has been easy to calculate as it relates to IT systems. The calculations have included factors such as lost revenue, asset replacement cost, cost of system repair, etc. +- The consequences with ICS are similar, but in many cases, other factors can contribute to the overall consequences. Margaret: For example, a bridge operator uses a control system to raise a lower a bridge for passing ships. Imagine being locked of out the control system. Failure to raise and lower the bridge for passing ships could result in not only an accident, but a loss of life and confidence. +- Some threats are beyond our control, like a hurricane. However, knowing a hurricane could hit can help business owners assess weak points and come up with a plan to minimize the impact. - - Programmable Logic Controller, Remote Terminal Unit, DCS controllers, Intelligent Electronic Devices, field devics (HART, Foundation Fieldbus, Profibus, Devicenet) - - Network/communication equipment (Routers, switches, modems, radios, terminal servers, gateways, firewall and other security appliances) - - Others (GPS, time synchronziation, network printers, hand-held configuration devices, test equipment) +Elevated Risk +------------- -Field Controllers ------------------- +- The cyber risk, measured in threat, vulnerability, and consequence, was limited since intrusion would most likely originate from an insider accessing the control system. +- While there were vulnerabilities in the ICS, the risk was perceived as acceptable because of physical controls, such as door locks, were used to prevent unauthorized access. -- Processors (X86, PowerPC, ARM, MIPS) +- What elements have contributed to past ICS incidents? +- All sorts of things! People, processes, systems, components. Typically, we put those things in one of two groups: Cultural and Technical factors. The highest concentration of factors is technically-based. +- Cultural - Cultural factors include any of the people or processes involved with designing, building, operating, and maintaining ICS. Today's businesses require formerly isolated ICS to be connected with their corporate and customer networks and the Internet. +- Technical - Technical factors have to do with the actual systems and components of which ICS are composed. -Memory -^^^^^^ +Cultural Factors +^^^^^^^^^^^^^^^^ -- Non-volatile Memory +Cultural - People (Owner, IT, etc.) +"""""""""""""""""""""""""""""""""""" - - Flash memory, EEPROM, EPROM, ROM - - Firmware (boot code, real time operating system (RTOS), application program) -- Volatile Memory (lost after power; much less susceptible to being able to manipulate or take items from) +While process or policy might prevent adequate cyber security,it is important to note that people created those processes with a lack of knowledge and awareness of cyber security risk decisions get made that can introduce technical vulnerabilities. Owners and ICS engineers haven't always perceived that there were credible cyber security threats that justified the added expense of securing their control systems. This was true when these systems were isolated or air-gapped and running on proprietary hardware. However, as people gain a better understanding of the vulnerabiltiies created by an interconnected ICS there is an increased awareness of the cybersecurity threats to their systems which can lead to a lower, overall risk. - - RAM - - Variables, stack, buffers +Cultural - Policies & Procedures +"""""""""""""""""""""""""""""""" -Input/Output -^^^^^^^^^^^^ +Many subject matter experts consider culture to be the most important factor in developing and maintaining an effective control system cybersecurity system. Previously, processes and policies didn't allow for threats to be considered, or vulnerabilities to be protected, or for consequences to be mitigated. Working under old assumptions and paradigms created opportunities for someone to access control systems. -- Discrete, Analog, Fieldbus (4 to 10 milliAmps or 0-10 Volts) +Remember: -Communication Ports -^^^^^^^^^^^^^^^^^^^ +- Be mindful of outdated processes and policies that don't account for cybersecurity. +- Culture allows for technical factors to increase in quantity. -- Serial - RS232, RS422/485, USB, modems, radios -- Network - Ethernet radio, ControlNet, LonWorks +Technical Factors +^^^^^^^^^^^^^^^^^ -User interface -^^^^^^^^^^^^^^ +Technical - Vendors +"""""""""""""""""""" -Internal -"""""""" -- Status lights, small LCD screens (HMIs), keypads, jumpers, dip switches, switches +When using vendors, it is important to be mindful of the vulnerabilities that can be introduced. Although the vendor and research community do an excellent job uncovering system-specific vulnerabilities, the implementation of countermeasures required to mitigate the vulnerability may result in the control system operating in an undesirable or unexpected manner. For example, an antivirus program can have between a 2 to 19 percent slowdown in passive discovery and a 6 to 57 percent slowdown in Full-scan mode. In time-critical processing, this is not acceptable. -External -"""""""" -- Browers (allows to see the status, working of the devices), Applications (always check if the applications can be shutdown, is there a business use-case for them?). Remember the smaller the attack surface area the better! +- Be mindful of system-specific vulnerabilities +- Keep in mind that solutions may hinder required function of the ICS (example, an antivirus program that locks up a control system or another tool that requires an ICS to be shut down while running an update). -Programs -^^^^^^^^ +Technical - Cybersecurity +"""""""""""""""""""""""""" -- RTOS (Neutrino & RTOS (QNX), VxWorks, Windows CE) -- IEC 61131 program languages - - Workbences (CoDeSys (allows the ability to program in anyone of the below languages), ISaGRAF) - - Languages +As technologies have developed over time there has been a gap growing in ICS. Originally, ICS designers didn't factor in cybersecurity as being an issue when control systems, such as those found in water, electrical, and other locations were put in place. As a result, there are exploitable, technical vulnerabilities at the network and device level. These vulnerabilities are found in both legacy systems and some current designs. - - Ladder Logic - - Function Block Diagram (FBD) - - Sequential Function Chart (SFC) - - Structured Text (ST) - - Instruction List (IL) +Vulnerabilities in Cybersecurity -- Device Drivers and Device Managers +- Legacy devices (old modems, computers, ICS, etc.) +- Current devices (holes in security between ICS and networks) - - Ethernet/IP Stacks - - RS232/RS-485 - - Memory Managers - - User interfaces -- Services (Web server, FTP server, SNMP) (Any business case for these running? If not, turn them off) -- Debuggers (data for troubleshooting, are we turning it off after debugging? Often, debuggers are turned-on exposing data and possible vulnerablities) +Technical - Interconnected Networks +"""""""""""""""""""""""""""""""""""" -Programmable Logic Controller ------------------------------ +As we've learned more and seen consequences from other cyber security incidents there has been a shift in perspective. Asset owners and operators are beginning to understand that interconnected IT and ICS networks can create opportutnities for an adversary to gain access to control systems. This can include remote access capabilities peer-to-peer networking direct internet connectivitiy or network modifications that enhance business performance. When networks are linked, and there is no protection between them, it creates a vulnerabilitiy. -Program Execution -^^^^^^^^^^^^^^^^^ +Security issues created by integrating IT systems with ICS -- A line of code in a PLC program is called a rung. -- PLC program execute from left to right and top to bottom. -- Each completion of the program is called a scan. -- A PLC will complete many scans in a single second (Scan rate: 50-60 milli-seconds/scan; SCADA system scan rate is approx 2 mins; metering at home (water/energy) is approx 15-30 mins). +- Being more aware and knowledgeable will help. However, cybersecurity is always being balanced against the business perspective. Merging IT and ICS networks have done things like optimizing the workflow, making access easier and more universal-these all increase revenue. But it increases our vulnerabilities, which in turn increases risk! In order to counter threats, we need to understand how an adversary thinks. Will it be a targeted attack against a specific system? Or a broad set of systems within a larger corporate enclave? Understanding the intentions of the attack is important since it helps to know how an ICS could be compromised and why. -Programming Concepts -^^^^^^^^^^^^^^^^^^^^ -- Each rung executes on an "IF-Then" principle -- IF the instruction(s) on the left are true then execute the instructions on the right. -- Direct/Normal Open Contact -- Direct/Normal Open Output Coil -- Reverse/Normally Closed Contact -- Placing multiple rungs (branch) on a single rung = OR -- Placing multiple inputs on the same rung = AND +Technical - Increasing Threats +""""""""""""""""""""""""""""""" -Data Flow -========= +Here is an alarming factor, the interest and number of malicious activity groups is on the rise. A recent 2020 report showed that there has been an increase from 11 malicious activity groups to 15. These new ICS activity groups are primarily targeting energy and manufacturing. -- ICS collect information about some process or function using a communications infrastructure to send the data back to an operator. The operator reviews the data, typically in a graphical format, assesses the operational status of the process, and tunes the system for optimal performance. -- Field Devices are the instruments and sensors that measure process parameters and the actuators that control the process. This is the interface between the ICS and the physical process. These sensors or measuring instruments are often referred to as input devices because they “input” data into the ICS. -- Field Controllers are responsible for collecting and processing input and output information, sometimes referred to as I/O. They also send the process data to the human machine interface (HMI) and process control commands from the operators. They are often located close to the field devices. -- Servers, HMIs, and engineering workstations take the information from field controllers and display the data in a manner that depicts what is happening in the process. The user interface, usually referred to as the HMI, allows the operator to have a real‐time, or near real‐time, operational view of the process. These three components are linked using networks or communication channels. - - Field Devices (Meters, Sensors, Valves, Switches) <-------> Field Controllers (PLC, IED, RTU, Controller, PAC) <-----------> HMI (SCADA Server, HMI, Workstations, EMS) - - Direct connection or Device level protocols (HART, Foundation Fieldbus, Profibus) <----------> Command and Control Protocols (DNP3, Modbus, Ethernet/IP) - - Field Controllers --> Primary Historian --> Secondary Historian - |---> Configuration Database ---> HMI - ----> HMI +One of the most important technological issues relating to cybersecurity and ICS is the fact that some vendors create their control system solutions to run on contemporary standard operating systems, such as Microsoft Windows. This means a vulnerability within an ICS may not be in the ICS application itself but in the operating system on which the application is dependent. Do you remember our bridge controller from earlier? His system was running an outdated OS that he hadn't patched or updated. When an attacker can compromise an operating system, the attacker has compromised every application run on that system since they have control like a regular user. -- Protocols (ANSI X3.28, BBC 7200, CDC Type 1/2, Contitel, DCP, DNP, Gedac 7020, ICCP, Landis, Modbus, OPC, ControlNet, DeviceNet, DH+, Profibus, Tejas 3/5, TRW 9550, UCA) +Security Mitigations +-------------------- +Few things to consider when implementing security mitigations to ICS: -- Indusoft (HMI Software?) -- Connected Components Workbench +- One, communication speeds. IT solutions like cryptography and firewalls can cause latency issues. You don't want that in most ICS svstems +- Two, detection. Anomaly detection that looks for irregularities works better than intrusion detection systems that relies on signatures to work when there may be no ICS-specific signatures to monitor. +- Three, intrusion prevention isn't always favored by ICS. This is because of their active response need, which could interrupt critical ICS operations, and the impact on data availability and integrity. +- Four, resources. Antivirus solutions, while great, can consume a CPU's capacity, locking an operator out during a system scan for long periods of time. +- Five, methods and tools that work in IT environments may not transfer well to ICS. -https://www.rockwellautomation.com/en-us/products/hardware/allen-bradley/programmable-controllers/micro-controllers/micro800-family/micro850-controllers.html +There can be adverse and irreversible effects on equipment and services. -https://www.plcfiddle.com/ +Although many security mitigation techniques are useful and effective in IT domains, requirements for data availability and integrity force us to revisit how we implement them within an ICS. Network Discovery and Mapping ***************************** -Discovery Process in both, Passive is much more stealthy and Active is aggressive in trying to learn things. In both cases, we are mapping out the environment. Often is the case, when we are presented with a case of understading -in-production environment, with no-prior person to enquire from, documentation is little, suggestions to how to handle certain performance issue. +Discovery Process in both, Passive is much more stealthy and Active is aggressive in trying to learn things. In both cases, we are mapping out the environment. Often is the case, when we are presented with a case of understading in-production environment, with no-prior person to enquire from, documentation is little, suggestions to how to handle certain performance issue. Passive Discovery ================= @@ -190,12 +1836,16 @@ Why perform passive network discovery? - Examples and Effects - Neglect to disable name resolution in commands + - resolution queries could alert and IDS unnecessarily. - Scanning your own host, from the same host (to know what it is running?). + - Self inflicted scans will preoccupy a host's network resources and may alert a host-based IDS. - Restarting services without planning (often we try turning off and on again without planning). For example, if a watchdog timer checks for a open-port and restarting doesn't start the service and the port remain closed. + - Watchdog timers (checking for a particular state or change in state) could generate timeout signals, and trigger alarms to an operator. Meaningless errors can appear in logs. - Clearing Cache + - Clearing cache will cause bursts of packets to repopulate tables. Artifacts @@ -744,27 +2394,28 @@ An asset inventory is necessary to understand and manage ICS risk and determine defenses. The asset inventory is critical for understanding the potential impact of an intrusion Know your environment +^^^^^^^^^^^^^^^^^^^^^ What? -^^^^^ +""""" - Needs to be protected (PLC, pump, valves, non-electronics still something physical - how it is protected?) - Protection levels are available (What is available by vendors to protect the systems). How data is gathered from the ground-up? - Inter-connections and dependencies are required (what talks to what?, pump talking to PLC (controlling pump speed or flow) if not it might cause something to fail?) Why? -^^^^ +""""" - Are systems critical (any special use, any special vendor?) - Are assets valuable ($$ and information)(produce gas or oil, electricity?)(Does the information provide insights to business to make decisions?) Who? -^^^^ +""""" - Has responsibility for the asset (Who's responsible System Admin, SPOC (single point of contact)) How? -^^^^ +""""" - Are worst-case scenarios identified if compromised (Do we have any plans in place in terms of outside/inside attacker?) - Are methods available for user access to the asset (Does the person have to visit the control room to access the devices or can be access remotely or via VPN?) @@ -865,13 +2516,107 @@ OPSEC - Are vendors using your company for free advertising? - Are your IP address ranges showing up in `Shodan ICS `_? If you give data to vendors, do you know how they are storing it? - The OPSEC process is categorized into 5 questions/steps. One of the first questions is, who would want access to the data in question, what needs protected? -- The OPSEC process - - What needs to be protected? - - Who is the threat? - - What are my vulnerablities? - - What is the threat level? - - How should we combat the threats? +The OPSEC process +^^^^^^^^^^^^^^^^^ + +- Cybersecurity practices can prevent the disclosure of critical information to threat actors. A primary security goal is to control information about your organization's capabilities and intentions in order to prevent such information from being exploited. The longer it takes an adversary to obtain critical information, the more time you have to discover problems and block access to the information and your assets. In addition, most of us already use cybersecurity practices in our personal lives without even realizing it. +- Cybersecurity practices include: identifying critical information, analyzing the threat, analyzing the vulnerabilities, assessing risk, and applying countermeasures. In all steps, view the situation from both friendly and adversarial points of view. +- Practicing cybersecurity is a continuous process, not one that "ends" when you complete the fifth step. In fact, the steps do not necessarily have to be followed in a particular order. + +Identify Critical Information +""""""""""""""""""""""""""""" + +- What needs to be protected? +- What adversaries might want to do? / What information will the adversaries need to accomplish their goal? (Be sure to analyse the from both friendly and adversial point of view.). It is the aggregation of information that can be gathered on a target that poses the threat. +- A company critical information could include + - Network Diagrams + - Employee Data - email addresses and work schedule + - List of usernames +- Social media profiles are often analysed to aggregate information. Profiles are gold mines of information for attackers. They provide an idea of + - What people do? + - Where they work? + - What type of software are used? + - Any issues that can be replicated in corporate environments. + - Profile pictures are also useful when gathering information. + - Before you post comments or share content on support forums and social media. Ask yourself "Does this give an attacker any information they could use to build a profile (or further build) on me or my company?" + +Analyse the Threat +"""""""""""""""""" + +Who is the threat? + +- A threat is a potential danger. It is often defined as any person, circumstance, or event with the potential to cause loss or damage. Threat requires both intent and capability. If one of these isn't present, there is no threat. +- To analyse a threat, we need to identify + + - Who are the potential adversaries (e.g., competitors, insiders, terrorists)? + - What is the adversary's intent and what capabilities do they have? For example, a disgruntled employee might have different capabilities than a competitor. + - What does the adversary already know? For example, what might they know from researching information published on the Internet or in trade journals. + - What does the adversary need to know to succeed (e.g., control system commands, how to gain remote or physical access)? + - Where is the adversary likely to look to obtain the information (remember, an adversary is apt to go to more than one source)? + +- Thinking from the adversary’s point of view will help you analyze the threats in your work environment. + + +Analyse the vulnerablities +"""""""""""""""""""""""""""" + +What are my vulnerablities? + +- Determine the weaknesses (that is, vulnerabilities) that may be exploited by an adversary to gain critical information. Vulnerabilities include: + + - Inadequate training of employees + - Use of unsecured communications + - Publishing the control system manufacturer or vendor used + - Systems designed without security in mind. + +- It is important to think like the adversary in this step. One way to discover vulnerabilities is to look for indicators. + + - Indicators are observable or detectable activities or information that, when looked at by themselves or in conjunction with something else, point to a vulnerability regarding your organization's operations. For an adversary, indicators are clues that a vulnerability exists and can be exploited. + - For example, a fence suddenly put up where one did not exist before could tip off an adversary that something valuable is inside the fence. Other examples of indicators include: people in unusual places, unfamiliar cars in an employee parking lot, and late-night meetings. Although indicators are not vulnerabilities by themselves, they can point to or reveal vulnerabilities. + + +Access Risk +"""""""""""" + +What is the threat level? + +**Assessing risk incorporates using the risk formula and conducting risk assessments** + +- Risk is the liklihood that an adversary will gather and exploit your critical information, thereby having a negative impact on your organisation. +- Risk is the product of threat x Vulnerablity x Consequence + + - Threat: Any person, circumstance or event with the potential to cause loss or damage. + - Vulnerablity: Any weakness that can be exploited by and adversary or by accident. + - Consequence: The negative impact (loss or damage) your organisation would incur if an attack were successful. +- Risk increases when any factor increases. If a factor is missing, risk doesn't exist because zero multipled by anything is always zero. + + - For example, if we are certain that no person or organisation is interested in causing your company harm, then there is no threat and therefore no risk (this situation is higly unlikely, because there are always people who act maliciously just because they can). + - Similarly, if your network and protection devices (e.g. firewalls) are properly patched with all the latest updates, the vulnerability (and the associated risk) in this area maybe greatly reduced. + - Finally, if a threat and a vulnerability exist but the consequences are nonexistent or minimal, then the risk is also nonexistent or minimal. + +- Risk assessment is a process in which you decide if a countermeasure needs to be assigned to a vulnerability based on the level of risk this vulnerability poses to your organization. +- When you assess a vulnerability, also consider the adversary's intent and capability—is the adversary willing to exploit your vulnerability, and does he or she have the means to do so? Next, determine the consequences if the vulnerability were successfully exploited. This determines the level of risk. You then decide if the level of risk warrants the application of one or more countermeasures. +- Looking at risk as a function of consequence (as opposed to asset value) may allow for easier calculations applicable to control system environments. Elements critical to the control domain, such as loss of life, time to recover, and environmental impact, can help in these calculations. +- Keep in mind that consequences aren't always something that have an immediate financial impact. The failure of a control system could result in negative media attention. + +Apply countermeasures +"""""""""""""""""""""" + +How should we combat the threats? + +- A countermeasure can be anything that reduces an adversary's ability to exploit vulnerabilities. Countermeasures don't need to be complicated or expensive. For example, locking your car door and removing the keys from the ignition are simple, smart ways to make it harder for someone to steal your car. +- Countermeasures are implemented in an order of priority directly proportionate to the risk posed by different weaknesses (the most significant consequences to your mission, operation, or activity). Often implementing several low-cost countermeasures provides the best overall protection. +- Consider all possible countermeasures, and then assess the potential effectiveness of each one against a specific vulnerability or multiple vulnerabilities. + +Few countermeasures: + +- Controlling Distribution: Limiting sharing of information to those who need it. +- Cyber Protection Tools: Implementing anti-virus software, firewalls, and intrusion detection systems can greatly reduce an adversary's ability to cause damage. +- Speed of Execution: Accelerating the schedule can limit the ability of an adversary to act on the information they have obtained. +- Awareness Training: Educating employees about all aspects of cybersecurity practices is one of the most effective countermeasures. +- Physical Security: While it may be wise to employ security guard patrols, an organization must also ensure that patrol schedules are somewhat randomized, and shift changes are kept secret in order to prevent an intruder from determining a pattern. + Secure Passwords ---------------- @@ -890,6 +2635,21 @@ Secure Passwords - NERC CIP standards (CIP-007-5) - NIST-800-53 +- Base password + - Think of three of your favorite things. + + - For example: Let's say we love icecream, tacos, and vinyl records so that give us MintChipVinylTacos + - Now separate each word with your favorite character. Let's say we love money so separate it with dollar or pound. ``$Mint$Chip$Vinyl$Tacos$``. + - Now, add a familar number like your postal code or reverse birth year like ``$Mint$Chip$Vinyl$Tacos$90277`` + - Now, the above password meets all requirements like upper, lowercase, numbers, special characters etc. + - The above can be your base password and that's a pretty strong password. + - Now, humans a lot of the time we want path of least resistance, so it will be tempting just to use this new, awesome, password for all of your accounts. Don't do this! + - Make them special! + + - Know you can make them unique with a special identifier for each sensitive site. + - Maybe for Facebook: FB add it at the beginning, end or even split it up. + - Although that's a risk if hacker get your password or understand your pattern but mostly it is a great way to have long unique passwords. + Vendor Access ------------- @@ -923,8 +2683,12 @@ Secure Authentication Multi-factor Authentication """""""""""""""""""""""""""" +- An increasing number or organizations are implementing multi-factor authentication to add a layer of protection (defense-in-depth) to security. By requiring a second authentication method in addition to the standard user name/password method, organizations implement a powerful countermeasure. +- Definition: + + - What the user knows (password), what the user has (security token), and/or what the user is (biometric validation). + - Something you know (password or PIN) + something you have (such as access token or security token) + something you are (such as fingerprints or retinal scan) -- Definition: What the user knows (password), what the user has (security token), and/or what the user is (biometric validation). - Single factor authentication increases the attack surface. - Use multi-factor authentication for remote access and critical administrative access. - Can be used with VPN, network device access, administrator access to systems. @@ -935,7 +2699,9 @@ Secure VPN access - Limit VPN access to business requirements - vendors, technicians, integrators (who has access to what? If providing access to vendor, terminate VPN as close to edge as possible and provide access to only required systems/segmented network/DMZ. Good idea to define that in vendor contract agreements) - Require company issued and configured systems be used without Admin access (No admin access provided until and unless really required). + - If they require admin access or access to a particular resource, work with them to figure out how we can provide that securely. Otherwise, technical users will always figure out a way to achieve it which might result in undocumented access. + - VPN security policy should check for patches, a personal firewall, and an antivirus product. - Utilise a jump-box, or a virtual desktop for further network access. - Utilise a second domain controller (Have a separate IT/OT domain controller) @@ -1045,10 +2811,7 @@ Data Diode ---------- - A data diode is a unidirectional gateway intended to move data from a more secure network to a less secure network. -- A data diode creates a physically se cure, one-way communication channel from -the control system network to the corporate network. Data diodes can be implemented in hardware, -software, or a combination of both. The hardware implementation is the most secure because it is -physically impossible to send any messages in the reverse direction. +- A data diode creates a physically se cure, one-way communication channel from the control system network to the corporate network. Data diodes can be implemented in hardware, software, or a combination of both. The hardware implementation is the most secure because it is physically impossible to send any messages in the reverse direction. Data Diode vs. Firewalls @@ -1073,8 +2836,7 @@ Firewalls Patch Management ---------------- -- BEFORE PATCHING ANY ICS\OT SYSTEM (PLC/RTU/HMI) ENSURE YOU HAVE A GOOD BAREMETAL BACKUP OR ABILITY -TO RESTORE THE SYSTEM TO THE CURRENT STATE! +- BEFORE PATCHING ANY ICS\OT SYSTEM (PLC/RTU/HMI) ENSURE YOU HAVE A GOOD BAREMETAL BACKUP OR ABILITY TO RESTORE THE SYSTEM TO THE CURRENT STATE! - Patches are intended to: @@ -1152,11 +2914,14 @@ Intrusion Detection System - ICS environments provide a unique opportunity. Compared to a corporate environment, an ICS environment is a steady state. Once again, you must know your environment. Ask and answer the following questions: - WHAT is normal? (Is this documented?) + - You know that host “A” talks to host “B,” but not host “C”… - WHEN does “normal” become abnormal? (indicators that something might be going on?) + - Host “A” is now talking to host “C”…WHY? - WHOSE applications and services are on your critical networks? - WHICH protocols are used? + - Known IT protocols (DNS traffic, HTTP traffic) - Vendor (Proprietary traffic) @@ -1494,6 +3259,7 @@ Logging Architecture - Correlating with other logs can sometimes make the difference between recognizing an event for what it is (true or false) and then acting accordingly. The same data can provide valuable information (such as an IDS) to the security analyst. There are some considerations in centralizing logs: + - Properly prioritize the function of log management. Define requirements and goals for log performance and monitoring based on applicable laws, regulations, and existing organizational policies. Then, prioritize goals based on balancing the need to reduce risk with the time and resources necessary to perform log management functions. - Create and maintain a secure log management infrastructure. Identify the needed components and determine how they will interact (e.g., firewall rules, diodes). With the various types of information in one place, the log server becomes a valuable system to target a critical system to protect. It should only run the logging service and be in a highly protected area of your network. - Provide appropriate support for staff with log management responsibilities. All efforts to implement log management will be for naught if the staff members who are tasked with log management responsibilities do not receive adequate training, proper tools, or support to do their jobs effectively. The staff members need to understand what situations are normal, bad, and weird. Providing log management tools, documentation, and technical guidance are all critical for the success of log management staff. @@ -1501,7 +3267,7 @@ There are some considerations in centralizing logs: Log sources ^^^^^^^^^^^ -- firewalls +- Firewalls - VPN Servers (maybe part of firewall logs) - Operating Systems (e.g Windows, \*nix, Mac) - Proxy Server @@ -1521,17 +3287,17 @@ syslog - Encryption can be used - Third-party tools maybe necessary for some OS or applications. - - Operating System Logs ^^^^^^^^^^^^^^^^^^^^^^ - Operating system logs can be used to monitor the health of the system and detect malicious activity - Windows OS + - Security Log - System Log - Third-party agent to send logs to a remote server. - Linux/Unix OS + - Syslog transport part of OS - auth.log, messages @@ -1585,6 +3351,7 @@ Execute activities taken during and after a cybersecurity event. - The Respond Function supports the ability to contain the impact of a potential cybersecurity event. Examples of outcome Categories within this Function include: Response Planning; Communications; Analysis; Mitigation; and Improvements. - The Recover Function supports timely recovery to normal operations to reduce the impact from a cybersecurity event. Examples of outcome Categories within this Function include: Recovery Planning; Improvements; and Communications. - Incident Respond Phases + - Preparation --> Identification --> Containment --> Clean-up and Recovery --> Follow-up Preparation @@ -1592,8 +3359,10 @@ Preparation - Build your team - Plan your response + - Secure and alternate methods of communication. - Scribe(s) for each group within the team. + - Securable room where you can keep accurate and complete information - access to ALL of the logs and data. - Known, certified clean computer systems to do forensics. @@ -1601,8 +3370,10 @@ Preparation - Define your strategy. - Create documentation - Train your teams and users + - A practiced plan - Gather threat intelligence + - Feeds & threat reports - Yara rules and indicators of known malware (know whats going on in the world) - Use a checklist for starting point @@ -1615,6 +3386,7 @@ Incident Response Team - Lead and Forensics Analysts - Scribe(s) - Stakeholders from: + - Corporate IT - Control Systems - Subject Matter Experts @@ -1650,6 +3422,7 @@ Follow-up - Incident report - Lessons Learned + - Update incident response plan - update threat intelligence - Implement new security initiatives @@ -1659,10 +3432,12 @@ Network Forensics - Main purpose: Incident response and Law Enforcement - Items to analyse in packet Captures + - Pattern matching - match specific values - Conversations - identify all sessions of interest - Exports: export sessions of interest - Tools used in network forensics + - Wireshark, Network Miner, Tcpdump/windump, tcpflow, tcpxtract, argus, YARA, others. YARA @@ -1670,22 +3445,303 @@ YARA - Main purposes: to help identify and classify malware samples - Yara Rules + - consists of a set of strings and boolean expressions - can be found in security alerts and bulletins - can be used by different security tools +Cybersecurity Practices +*********************** -Protocols -********* +- Incorporating cybersecurity practices into your daily life can prevent the disclosure of critical information (CI) to potential adversaries. If you're thinking, "But I work in a control system environment; control systems don't store CI," then consider our definition of CI: +- Information that if disclosed would have a negative impact on an organization. It includes not only trade secrets and technical specifications, but also sensitive information such as the processes used by systems (e.g ., commands and access points), financial data, personnel records, and medical information. +- CI also refers to the information that protects assets, such as passwords to access systems or passcodes to enter a building or room. Recipes, formulas, and strategies are usually CI. Even information such as your name, phone number, and email address—especially when all three of these information pieces are together—may be considered sensitive, because it helps an adversary launch a social engineering or phishing attack. In control system environments, the result of CI disclosure may be severe economic impact or loss of life. -Modbus -====== -- Modbus protocol is a master/slave protocol: the master reads and writes slaves' registers. -- Modbus RTU is usually used via RS-485 (serial network): one master is present with one or more slaves. Each slave has an unique 8-bit address. -- Modbus data is used to read and write "registers" which are 16-bit long. - - - Holding register: 16-bit; readable and writable - - Input register: 16-bit; readable - - Coil (Discrete Output): 1-bit long; readable and writeable - - Discrete input (Status Input): 1-bit long; readable +Why Do It? + +- You probably incorporate cybersecurity practices in your personal life without even realizing it. For example, when you have prepared to go on a trip, have you ever done any of the following? + + - Stopped newspaper deliveries so newspapers wouldn't pile up outside, letting people know you aren't home? + - Had your mail held by the post office or asked your neighbor to pick up your mail so the mailbox would not fill up? + - Connected your porch lights and inside lights to a timer or light sensor so they would go on and off to make it look like someone is home? + - Left a car parked in the driveway? + - Had someone keep the lawn trimmed? + - Asked a friend or neighbor to periodically open and close blinds or curtains? + +- The CI here is obvious - we do not want a burglar or other "bad guy" to know the house is unoccupied. The more clues we provide to an adversary that the house is unoccupied, the more likely it is the house will be robbed. The same holds true at work. We must reduce or obscure indicators to protect our critical information. + +Information collection techniques +================================= + +- Who are these adversaries? + + - They may be competitors, criminals, spies, unhappy employees, terrorists, or troublemakers. They may be motivated by money, revenge, or political beliefs, to name a few. + - There are numerous ways adversaries collect information. Some of the more common methods include social engineering, phishing, accidental disclosure, googling, and dumpster diving. + +Social Engineering +------------------ + +- Social engineering is a collection of techniques used to manipulate people into revealing sensitive or other critical information. Those who engage in social engineering rely on the humans' natural tendency to trust. In fact, it's often easier for an adversary to obtain information by simply asking the right questions than using technical hacking methods. +- Social engineering is sometimes conducted by phone. The caller may pretend to be someone in a position of authority or a telephone or computer technician, gradually pulling information out of the targeted person. Often the adversary will call several employees and piece together enough information to launch an attack. Help desk employees are often targeted by an adversary because they're trained to be friendly and provide information. +- Social engineering can also occur through online social forums, at professional conferences, and at non-work social events, to name a few examples. +- The first objective of an adversary attempting social engineering is to convince you that they are in fact a person that you can trust with critical information. + +Thoughts: What your employees do on their personal social media poses little to no risk to your organization. + + - Social media is a place where people let their guard down. It's what your employees check on their lunch break; it's what they do when they arrive home from work and before they go to sleep at night. On social media sites, where the atmosphere is casual, the tendency to let certain information slip is greater, which brings risk. + - The information your employees freely post to social media can (and probably will) be used against them. Many times, attackers will use social media as a reconnaissance tool to socially engineer their targets. Suddenly, the fact you publicly tweeted that you went to a leadership conference can be used to craft a targeted phishing email containing a malicious link. While the Nigerian princes of yesteryear might instantly raise eyebrows, if an email is customized to the recipient, the likelihood of the intended response increases. + - Solving the problem: First, be pragmatic and realize that social media will always be attractive to attackers. But there are ways you can reduce the attack surface. Educate your employees on how much they should expose on social media as well as how to make the best use of available privacy settings. + +Thoughts: It's best to have one person tasked with maintaining, monitoring, and acting as an administrator for your various social media accounts. + +- In theory, this is a best practice – especially for smaller organizations that may lack a dedicated social staff. However, there are security risks with having one person with all the social media tribal knowledge. This risk is amplified when the social media manager mixes personal with professional. +- For example, if your sole administrator has their personal account attached to your corporate accounts, and their personal account is hacked, you will land in some hot water by extension. Not only does this threaten security, but it also has the potential to threaten your brand image as well. If even a few incendiary tweets come from your corporate account, it could push clients away and lead to negative media attention. +- Solving the Problem: Designate one person as the "main administrator," but make sure that other employees – key executives, human resources, or the marketing department – have access to the social media information available. Furthermore, store the passwords to all your corporate accounts in a shared password manager. No employee should be able to easily rattle off any password, and none of your corporate social media passwords should be simple. A password manager can keep your passwords secure as well as help generate stronger ones. + +Thoughts: Social media is keeping pace with advancements in security. + +- It is, but don't let this lull you into a false sense of safety. The responsibility for security does not rest with the social media sites. At the end of the day it's your problem to own. The controls only work as well as they are used. +- Solving the Problem: You can stay ahead of the threat by implementing (and enforcing) a social media policy at your organization. While social media policies traditionally are often concerned with how employees should conduct themselves and how they should associate themselves with the organization, security needs to be part of the equation as well. A robust social media policy will incorporate security concerns – password guidelines as well as who can access the account – alongside more guidelines that are geared toward brand standards + + +Phishing +-------- + + +- Phishing scams may be the most common types of social engineering attacks used today. Most phishing scams demonstrate the following characteristics: + + - Seek to obtain personal information, such as names, addresses, and social security numbers. + - Use link shorteners or embed links that redirect users to suspicious websites in URLs that appear legitimate. + - Incorporate threats, fear, and a sense of urgency in an attempt to manipulate the user into acting promptly. +- Some phishing emails are more poorly crafted than others, to the extent that their messages often exhibit spelling and grammar errors; but these emails are no less focused on directing victims to a fake website or form where attackers can steal user login credentials and other personal information. +- If you receive a suspicious email, normally the best defense is to ignore and delete the message. Your organization may have specific procedures to deal with suspicious email and web pop-ups. +- Do + + - Report impersonated or suspect email. + - Be cautious about opening attachments, even from trusted senders. + - Take your time. Resist any urge to "act now" despite the offer and the terms. + - Restrict who can send mail to email distribution lists. + - Check financial statements and credit reports regularly. +- Don't + + - Send passwords or any sensitive information over email. + - Click on "verify your account" or "login links" in any email. + - Reply to, click on links or open attachments in spam or suspicious email. + - Call the number in an unsolicited email or give sensitive data to a caller. + - Put critical information on a website, ftp server, social media etc. + +Dumpster Driving +---------------- + +- Dumpster diving is the act of rummaging through commercial or residential trash and recycle bins to find useful items (including information) that have been discarded. +- At your workplace, adversaries may search for proposal drafts, financial data, architectural designs, and personnel data, both on paper and media such as thumb drives. Bear in mind that dumpster divers aren't just looking for formal documents—Post-it® Notes, and scraps of notebook paper often contain phone numbers, passwords, and other critical information. +- Take care with information that is no longer valuable to you because it may have tremendous value to someone else. Follow your organization's policies and procedures on proper disposal of information and equipment when they are no longer needed. The following are some common practices: + + - Shred paper documents, using a cross-shredder if possible. + - Whenever possible, sanitize or physically destroy hard drives and other electronic devices that store information (this is discussed in more detail in the "Information Protection" lesson). + - For devices that cannot be sanitized, physically destroy them. + + +Wireless Security +----------------- + +Devices such as refrigerators, TVs, coffee makers, etc. now have the ability to connect to the Internet, play music, send pictures, alert you of problems, etc. With the inception of these devices, life has never been more convenient. However, these modern-day conveniences can pose some security issues if left unprotected. + +Incorporating wireless security practices such as password protection and Wi-Fi encryption can prevent unauthorized access or damage to devices through wireless networks. Examples of encryption types include: + +- WPS: Wi-Fi Protected Setup uses an 8-digit code to protect the passing of a secret key between two parties (usually the access point and the connecting device such as a laptop, smart phone, or tablet). +- WEP: Wireless Encryption Protocol (WEP) was developed many years ago and has proven to be weak and easily breakable. +- WPA: Wi-Fi Protected Access (WPA) was developed as a second-generation to WEP. Additional encryption was applied to the same algorithms. Unfortunately, it is not much stronger than WEP. +- WPA2: Wi-Fi Protected Access version 2 (WPA2) is a complete rewrite of the algorithm. The current version has the most encryption and is most implemented. + + +Best Practices for using public Wi-Fi +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +- Think before you connect. Before you connect to any public wireless hotspot – like on an airplane or in an airport, hotel, or café – be sure to confirm the name of the network and login procedures with appropriate staff to ensure that the network is legitimate. Cybercriminals can easily create a similarly named network hoping thatusers will overlook which network is the legitimate one. Additionally, most hotspots are not secure and do not encrypt the information you send over the Internet, leaving it vulnerable to cybercriminals. +- Use your mobile network connection. Your own mobile network connection, also known as your wireless hotspot, is generally more secure than using a public wireless network. Use this feature if you have it included in your mobile plan. +- Avoid conducting sensitive activities through public networks. Avoid online shopping, banking, and sensitive work that requires passwords or credit card information while using public Wi-Fi. +- Keep software up to date. Install updates for apps and your device’s operating system as soon as they are available. Keeping the software on your mobile device up to date will prevent cybercriminals from being able to take advantage of knownvulnerabilities. +- Use strong passwords. Use different passwords for different accounts and devices. Do not choose options that allow your device to remember your passwords. Although it’s convenient to store the password, that potentially allows cybercriminals into your accounts if your device is lost or stolen. +- Disable auto-connect features and always log out. Turn off features on your computer or mobile devices that allow you to connect automatically to Wi-Fi. Once you’ve finished using a network or account, be sure to log out. +- Ensure your websites are encrypted. When entering personal information over the Internet, make sure the website is encrypted. Encrypted websites use https://. Look for https:// on every page, not just the login or welcome page. Where an encrypted option is available, you can add an “s” to the “http” address prefix and force the website to display the encrypted version. + +Information Protection +====================== + +Identify several methods to protect critical information. + +- Refer Passwords +- Refer MFA + +Remote Access +------------- + +Any device that remotely connects to the corporate or control system network provides an opportunity for an adversary to gain access to the device and attack your network. + +- One preferred defensive method is the use of security tokens. The security token displays a number consisting of six or more alphanumeric characters (sometimes numbers, sometimes combinations of letters and numbers, depending on vendor and model). This number normally changes at pre-determined intervals, usually every 60 seconds. When it is combined with a password, the resulting passcode is considered to be multi-factor authentication. +- To ensure this countermeasure is effective, you should never share your security token with anyone else. You should keep it locked away or on your person at all times. +- Other examples of "something you have" are smart cards and USB tokens. "Something you have" methods use readers or scanners installed on a device such as a computer. They are effective because they use a unique trait (such as fingerprint) to identify an individual. + +Internet and Intranet Access +---------------------------- + +- Your organization probably has policies about what can and cannot be put on public Internet websites. It may even have a review process to ensure sensitive data are not publicly available. However, sometimes seemingly benign information can reveal more information about your organization than it should. + - For example, do your job postings mention the control systems and other equipment used? If so, this may be a piece of information an adversary can use in planning an attack. +- Also consider information about your organization on other companies' websites. Do your vendors' press releases list where they have deployed their products? Do they publish their products' manuals (which include control commands) on the Internet? A diligent adversary will gather information in as many ways from as many different sources as possible. A simple web search may reveal far more than you might think. +- Do not forget about internal Internet sites. Remember that threats often come from within an organization. Critical information such as network diagrams and proprietary software code should not be made available to anyone without a need-to-know. Think twice before you publish anything on the Internet or Intranet—and if in doubt, leave it out! + +Sanitation, Destruction, and Reuse +---------------------------------- + +- Sanitization permanently removes all data from equipment (such as a computer's hard drive) by overwriting the data to make it unreadable. +- Destruction means physically demolishing media to prevent recovery of any of its information. +- Reuse refers to transferring equipment to another employee or an outside entity. +- Organizations vary widely in requirements for sanitization. At one extreme, some organizations require all equipment with memory or storage devices must be sanitized before being transferred (even to another staff member) or disposed of. At the other extreme, some organizations have no policy in effect at all. +- If your organization does not have a specific policy—or has a lax policy—at least, you should consider the criticality and sensitivity of the information on the device, and determine if it should be sanitized or destroyed before transferring or disposing of it + +Device Candidates for Sanitization +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +Any equipment with a storage device needs to be sanitized in certain circumstances. Such devices include: + +- Desktop and laptop computers +- Personally owned equipment that has processed company information +- Smartphones +- Desk phones that store telephone numbers +- Programmable logic controllers (PLCs) +- Copiers +- Fax machines +- Many scientific instruments +- Media such as USBs and removable hard drives + +How to Sanitize your Data +^^^^^^^^^^^^^^^^^^^^^^^^^ + +- When you “permanently” delete files, the operating system makes the space available for future use. New data will eventually overwrite the old data (the “deleted” files), but until those data are overwritten, they can be recovered by someone with the right tools and know-how. Similarly, when you reformat a hard drive, the original data are still there in raw form and can be recovered. +- Deleting files, emptying the Recycle Bin, and reformatting the hard drive are not enough! +- Sanitization makes the data unrecoverable by overwriting the data. Fortunately, there are tools available to make this fairly easy, at least for standard desktop and laptop computers. + +Protecting Critical Assets +========================== + +State ways to physically protect critical assets at work, home, and while traveling. + +- The traditional physical security measures of “guns, guards, and gates” are no longer enough for today’s organizations. Many control system environments have effective physical security measures in place in addition to the traditional “three Gs” listed above. +- For example, additional measures could be the use of camera monitoring, electronic entryways that deny access to anyone without the proper credentials, and keypad locks. However, physical protection and control are also the responsibility of individual employees. +- This section covers protection measures you can take at work, when traveling, and at home. + +Protection Measures At Work +--------------------------- + +Being vigilant is key to physically protecting information assets. Some of your responsibilities may include: + +- Know your environment and take appropriate action when something is out of the ordinary. +- Be aware of who is behind you (and who may try to “piggyback”) when you are entering a restricted area. +- Limit access to systems you are responsible for to those who have a need-to-know. +- When appropriate, use a password-protected screensaver or some other lockout method when leaving a system unattended. +- Close and lock your office door when you leave for extended periods. +- Supervise the use and maintenance of your systems. +- Do not leave critical documents or systems (including systems that store critical information) unattended in a publicly accessible area (such as a conference room or building lobby). + +Protection Measures When Travelling +----------------------------------- + +When you’re traveling, your information and computer systems (e.g., laptop, smartphone, etc.) are at even greater risk of theft or unauthorized access. Take the following precautions when traveling: + +- Do not leave systems unattended during travel. If possible, transport your systems in your carry-on bags instead of checked bags. +- Pay attention when going through airport security. Thieves may be able to steal your laptop while you are focusing on getting through the security checkpoint. +- Whenever possible, don't leave systems in an unattended hotel room. If you are unable to take your system with you, use the hotel safe if one is available. +- Avoid accessing critical information on your laptop or other device on the airplane or other public places. If you must access critical information, use screen filters to prevent the information from being read by others. + +Protection Measures At Home +--------------------------- + +If you use or store work computer systems or information at your home, provide the same level of physical protection that you would at work. + +- Do not allow others without a need to know to access or use your system or information. +- Ensure your home is secure when leaving systems and data. If possible, store the system and data in a locked room or locked storage container when unattended. +- Do not leave systems or storage media in your vehicle. +- Report the theft of company property from your home in accordance with your organization's policies. + +Defense-in-Depth Approach +------------------------- + +- Defense-in-depth refers to the use of multiple techniques to help mitigate the risk of one security measure being compromised or circumvented. These techniques are often a combination of information protection and physical protection measures. +- One example is a building with an electronic card reader to permit and deny access, and a receptionist in the same building who checks credentials before allowing access. An additional defensive measure would be training all employees to verify building occupants are authorized to be there. With every measure that is added, security becomes “deeper” and risk is lessened. + +Maintaining integrity +===================== + +Identify specific ways to maintain integrity in secured areas. + +- What is and is not allowed in a secured area, such as a control system environment, varies from organization to organization. This section will cover some of the most common equipment do's and don'ts. + +Computers +--------- + +- In many control system environments, computers that are not needed for control system operations are not allowed in the control room. One reason for this is that email, websites, and files from home are common sources of malware (viruses, Trojan horses, spyware). +- Some organizations do not have Internet connections within the control rooms and may allow limited use of computers not related to control room operations within them. When an Internet connection is allowed, it should be on a separate computer for an explicit purpose. +- If a laptop is brought into the control center (for example, to install an upgrade), it should be scanned for malware before being connected to a control system device. +- Know your organization's restrictions and adhere to them. + +Corporate Security Hole: Employees Forwarding Email to Personal Accounts +------------------------------------------------------------------------ + +- Employees forwarding their work email to web-accessible personal accounts is a growing problem. When away from the corporate network, accessing email from these accounts is usually faster and easier than going through the corporate remote email solution. +- Only software related to control systems should exist on computers on the control system network. Operating system extras, such as games and any other unneeded software, should be removed. +- Many word processing and spreadsheet programs have the ability to run macros, which makes it possible for malicious code (Trojans and other malware) to run and infect a system and any systems connected to it. Do not run macros unless the file comes from a trusted source. Similarly, malicious websites can install malware on a computer without your knowledge + +Additional guidance for applications in the control room +-------------------------------------------------------- + +- If Internet access is needed to run the control system environment, then it should be accessed from a different network from the control system network. +- If Internet traffic is allowed into the control system network (for example, to download software and firmware upgrades), it should be restricted to a single dedicated system, not to control systems. Any downloads should be scanned for malware before installation on a control system device. +- Internet traffic should never be allowed out of the control system network. + +Removable Media +---------------- + +- USB flash drives are a wonderful invention. You can transport large files to a customer's office and access the data without worrying about compatibility. You can take work home, and you can travel with just the flash drive instead of lugging a laptop around. However, flash drives also present many risks. + + - Malware. Organizations can greatly reduce the spread of malware on their network by installing antivirus software on email servers and prohibiting certain websites, but the use of flash drives can bypass these safeguards. + - Data theft. Any unattended and unlocked computer with a USB port is an easy target for an adversary with a flash drive. + - Data Loss. The portability of flash drives also increases the potential for lost data falling into the wrong hands. Most of these devices have little or no security features. If you happen to lose your flash drive, anyone who finds the device may be able to access its data. + +- Removable media need to be treated with great care. These devices can be inserted into a control system or other system, and either accidentally or intentionally transmit malware or interfere with the system’s function. To prevent malware, the following precautions should be taken: + + - Media should come from a reputable source such as an employee or trusted vendor. + - Media should be scanned for malware before being connected to any device in the control system environment. + - Media contents should be reviewed before connection to a control system device. + +- Removable media include the following: + + - USB flash drives + - MP3 players + - digital cameras + - removable hard drives + - magnetic tapes + +Vistors +-------- + +- If you are hosting or otherwise responsible for a visitor, you should ensure the visitor complies with your organization's policies. For example, it is rarely appropriate for a visitor to be taking pictures of your control center with his or her smartphone. +- Take care with what information you disclose to visitors, both verbally and through what is visible in your office or the control center. Although it's natural to want to be helpful and talk about your work to an inquisitive visitor, never reveal critical information. + +Recommended Practices +--------------------- + +CISA has provided various documents detailing a wide variety of industrial control systems (ICS) topics associated with cyber vulnerabilities and their mitigation. + +- `Recommended Practice: Updating Antivirus in an Industrial Control System `_ +- `Recommended Practice: Improving Industrial Control System Cybersecurity with Defense-in-Depth Strategies `_ +- `Recommended Practice: Creating Cyber Forensics Plans for Control Systems `_ +- `Recommended Practice: Developing an Industrial Control Systems Cybersecurity Incident Response Capability `_ +- `Recommended Practice Case Study: Cross-Site Scripting `_ +- `Recommended Practice for Patch Management of Control Systems `_ +- `Recommended Practice for Securing Control System Modems `_ +- `Configuring and Managing Remote Access for Industrial Control Systems `_ +- `Department of Homeland Security: Cyber Security Procurement Language for Control Systems `_ +- `Mitigations for Security Vulnerabilities Found in Control System Networks `_ + diff --git a/_sources/Series_Home_Lab/LFF-HLSC-Applications.rst.txt b/_sources/Series_Home_Lab/LFF-HLSC-Applications.rst.txt new file mode 100644 index 0000000..d0ff26f --- /dev/null +++ b/_sources/Series_Home_Lab/LFF-HLSC-Applications.rst.txt @@ -0,0 +1,368 @@ +Appendix - Installation of Applications +======================================= + +When intial UMA architecture is deployed there can be multiple +applications that we might want to install on the Kubernetes such as + +- GitLab +- JupyterHub +- InfluxDB +- Grafana +- ArgoCD +- Mattermost +- Others + +Keycloak +~~~~~~~~ + +We would use `Keycloak +Operator `__ to install +keycloak on to the Kubernetes. + +Refer `Install Keycloak Operator on +Kubernetes `__ + +Once keycloak is installed, + +1. we need to install the Realm such as ``bitvijays.local`` or + ``projectname.local``. Refer `Configuring + realms `__ + +2. We need to install User Federation, as we are using FreeIPA for our + Users database. + +3. We need to install clients for the applications required such as + +- Gitlab +- Grafana +- JupyterHub +- ArgoCD +- Mattermost + +GitLab +~~~~~~ + +Refer `GitLab +Operator `__ +and install the pre-req such as `Metric +Server `__ + +1. Check `latest version of + operator `__ + +2. `Install Gitlab + Operator `__ + +3. For GitLab, it requires ``cert-manager`` and ``ingress-controller``. + As we are already using ``CertManager`` and ``ingress-controller``. + We would configure GitLab to use those. Please refer `TLS options + (FREE + SELF) `__. + Our case is External cert-manager and Issuer (External) and `Option + 3: Use individual certificate per + service `__. + Also, please refer `External NGINX Ingress + Controller `__ + +We specify the above using the below settings: + +.. code:: yaml + + nginx-ingress: + enabled: false + ingress: + tls: + enabled: true + configureCertmanager: false + class: nginx + provider: nginx + annotations: + kubernetes.io/tls-acme: true + cert-manager.io/cluster-issuer: vault-issuer-4 + +Currently, a issue is going on that doesn’t allow +`self-certs `__ + +4. Further, we are integrating Gitlab with keycloak, we need to add the + CA cert of our domain to the gitlab. refer `Custom Certificate + Authorities `__ + +:: + + kubectl create secret generic custom-ca --from-file=bitvijays-local=CA_cert.pem -n gitlab-system + +5. We need to add Keycloak configuration. Refer + ``provider_openid_connect.yaml`` + +:: + + kubectl create secret generic -n gitlab-system gitlab-sso-oidc --from-file=provider=provider_openid_connect.yaml + +Refer +`Omniauth `__, +`OpenID Connect OmniAuth +provider `__ +and `GitLab SSO (OIDC) with +Keycloak `__ + +.. code:: yaml + + appConfig: + omniauth: + enabled: true + blockAutoCreatedUsers: true + allowSingleSignOn: ['openid_connect'] + providers: + - secret: gitlab-sso-oidc + +We are using ``OpenID_Connect`` method to connect with Keycloak, there +are blogs that use SAML also such as `GitLab Use Keycloak as SAML 2.0 +OmniAuth +Provider `__, +`Gitlab SAML to Keycloak +Setup `__ + +6. Install Gitlab Runner + +ToDo +^^^^ + +- How to do backup? +- How to perform DevOps + +JupyterHub +~~~~~~~~~~ + +We will install JupyterHub using Helm and by following `Setup +JupyterHub `__ + +1. Get the helm values using + +:: + + helm show values jupyterhub/jupyterhub > jupyter_values_default.yaml + +2. Go through the ``influxdb_values_default.yaml`` carefully to + understand what values needs to be changed + +3. Mainly we want to setup the security, ingress and authentication for + JupyterHub + +- `Setup Authenciation - + Keycloak `__ +- `Setup + Security `__ +- `Limiting network access from Pods + (Egress) `__ +- We could find the issue of TLS issue as TLS is not verified. +- A Good read `Deploying JupyterHub at your + Institution `__ + +.. _todo-1: + +ToDo +^^^^ + +- Figure out why Ingress Controller is not giving proper certificate + same as InfluxDB + +InfluxDB +~~~~~~~~ + +We will install InfluxDB from `Bitnami Helm +chart `__ + +- Influxdb2 provides to install buckets that provide API token and + read/write permissions + +1. Get the helm values using + +:: + + helm show values bitnami/influxdb > influxdb_values_default.yaml + +2. Go through the ``influxdb_values_default.yaml`` carefully to + understand what values needs to be changed. + +3. Mainly, we want to enable ingress and setup the TLS certname. Refer + ``influxdb_values_default.yaml`` and ``influxdb_values_custom.yaml``, + perform the diff and you would know what to change. + +Install InfluxDB using + +:: + + helm install influxdb-bit -f influxdb_values_custom.yaml bitnami/influxdb -n influxdb --create-namespace + +ToDo + +- Explore why influxdb is deployed using HTTP instead of HTTPS. + +Grafana +~~~~~~~ + +We will use Bitnami Grafana Operator to install and manage Grafana + +Refer `Manage Multiple Grafana Instances and Dashboards on Kubernetes +with the Grafana +Operator `__ + +Install it from +`ArtifactHUB `__ +or directly from `Grafana Operator packaged by +Bitnami `__ + +We need to specify custom values for our Grafana such Ingress, OAuth and +other settings. + +1. Get the helm values using + +:: + + helm show values bitnami/grafana-operator > grafana_values_default.yaml + +2. Go through the ``grafana_values_default.yaml`` carefully to + understand what values needs to be changed. + +3. Mainly, we want to change whether we want Ingress, OIDC + configuration, persistence, persistence volume size, annotations for + the Ingress TLS certificate and Website name. Refer + ``grafana_values_default.yaml`` and ``grafana_values_custom.yaml``, + perform the diff and you would know what to change. + +- Refer `Grafana Generic OAuth + authentication `__ + to configure OAuth + +Install Grafana using + +:: + + helm install -f grafana_values_custom.yaml bitnami/grafana-operator -n --create-namespace + + Example: + + helm install grafana-bit -f grafana_values_custom.yaml bitnami/grafana-operator -n grafana --create-namespace + +We can see our deployment using + +:: + + helm list -n grafana + NAME NAMESPACE REVISION UPDATED STATUS CHART APP VERSION + grafana-bit grafana 1 2022-04-01 18:34:08.52360103 +0000 UTC deployed grafana-operator-2.3.2 4.2.0 + +ArgoCD +~~~~~~ + +We would use `ArgoCD +Operator `__ to +install ArgoCD by following instructions `Argo +CD `__ - We will use +`Ingress `__ +to expose the ArgoCD Ingress. - `Integrating Keycloak and +ArgoCD `__ +and `OIDC +Config `__ + +Mattermost +~~~~~~~~~~ + +Install Mattermost on Kubernetes by following `Install Mattermost on +Kubernetes `__ + +MM doesn’t allow SSO for free-version so the only way to setup is using +email/password and setting up a SMTP server. + +Appendix - Removal of Applications +---------------------------------- + +When UMA is fully deployed, it contain multiple applications such as + +- GitLab +- JupyterHub +- InfluxDB +- Grafana +- ArgoCD +- Others + +There might be a time where we want to remove the applications +installed. Mainly, it depends on how the applications are installed such +as using Helm or using Operator. + +.. _grafana-1: + +Grafana +~~~~~~~ + +We have installed Grafana from `Bitnami Grafana +Operator `__ + +Referring `Uninstalling the +Chart `__ + +``helm list`` will provide the name and version installed. + +:: + + debian@cloudcore:~$ helm list + NAME NAMESPACE REVISION UPDATED STATUS CHART APP VERSION + my-grafana-operator default 6 2022-04-01 17:38:24.511111318 +0000 UTC deployed grafana-operator-2.3.2 4.2.0 + +Grafana can be uninstalled using + +:: + + helm uninstall + +InfluxDB2 +~~~~~~~~~ + +As we install influxDB2 from helm, we can uninstall it using Helm + +:: + + helm uninstall + +For instance, + +:: + + helm list + NAME NAMESPACE REVISION UPDATED STATUS CHART APP VERSION + influxdb-bit default 3 2022-01-27 17:22:25.37972376 +0000 UTC deployed influxdb-3.0.2 2.1.1 + +To uninstall + +:: + + helm uninstall influxdb-bit + release "influxdb-bit" uninstalled + +.. _jupyterhub-1: + +JupyterHub +~~~~~~~~~~ + +As we have install jupyterhub from helm, we can uninstall it using Helm + +:: + + helm list -n jupyterhub + NAME NAMESPACE REVISION UPDATED STATUS CHART APP VERSION + jupyter-test jupyterhub 7 2022-01-26 17:42:13.245425793 +0000 UTC deployed jupyterhub-1.2.0 1.5.0 + +To uninstall + +:: + + helm uninstall -n jupyterhub jupyter-test + release "jupyter-test" uninstalled + +.. _gitlab-1: + +GitLab +~~~~~~ + +Refer `Unintall the GitLab +Operator `__ diff --git a/_sources/Series_Home_Lab/LFF-HLSC-Cloud-Tier.rst.txt b/_sources/Series_Home_Lab/LFF-HLSC-Cloud-Tier.rst.txt new file mode 100644 index 0000000..38b091e --- /dev/null +++ b/_sources/Series_Home_Lab/LFF-HLSC-Cloud-Tier.rst.txt @@ -0,0 +1,1470 @@ +Cloud Tier +========== + +We need five servers to support Urban Monitoring Architecture (UMA) + +1. Puppet Server: Automatic provisining and configuration of cloud and + edge device. +2. FreeIPA Server: To provide authentication to the nodes. Local + accounts for citizens can be created to admin Edge device. +3. Teleport Server: Administrative access using Teleport (ssh access + behind Home Firewall). However, if VPN is provided, this kind of can + be avoided. +4. Cloudcore Server: Kubernetes + Kubeedge. Applications such as Face + Recognition/ ANPR/ Air Quality can be deployed. +5. Kafka Server: Kafka + InfluxDB Time series information database + stored at Cloud. (Could be stored at Edge too). + +S1: Create the Virtual Machines +-------------------------------- + +We can create servers either in the Cloud (AWS/Azure/GCP/OpenStack) or +local server with the public IP Address. + +Local Virtualization +~~~~~~~~~~~~~~~~~~~~ + +We have setup the Virtual Machines locally using KVM Virtualization. We +start with five servers created using `Terraform +Example `__. + +Cloud (AWS/Azure/OpenStack) +~~~~~~~~~~~~~~~~~~~~~~~~~~~ + +Use the cloud services to create Virtual Machines + +S2: Virtual Machines: Initial Configuration +------------------------------------------- + +S2A: Hostname +~~~~~~~~~~~~~ + +Virtual Machines created using cloud +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +.. code:: console + + hostnamectl set-hostname + + e.g hostnamectl set-hostname puppet.xxxxx.local + +Virtual Machines created using Terraform +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +If we have used terraform-example, hostname are already defined + +S2B: Install Puppet Repo +~~~~~~~~~~~~~~~~~~~~~~~~ + +If we have used terraform-example, cloud-init used in terraform should +install the latest version of puppet, however, that doesn’t happen yet. +Have raised a Puppet Issue for the same, So, we use bolt to run +individual commands. + +*Update* : Puppet Ticket has been resolved and now, cloud-init does +contain the code to install puppet by default. However, as what +``cloud-init`` package version would be installed on the OS, depends on +how soon OS get updates, we still have to manually install/update the +puppet. + +By using, bolt, we are assuming that your user ``debian`` has access to +the machines. + +We need to install the Puppet Repo and install the package. + +For Debian-based OS, we use +^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +.. code:: console + + wget https://apt.puppetlabs.com/puppet6-release-buster.deb + sudo dpkg -i puppet6-release-buster.deb + +For Redhat/CentOS, we use +^^^^^^^^^^^^^^^^^^^^^^^^^ + +We might want to convert CentOS 8 to Cent OS 8 Stream using `convert to centos 8 stream _` + +.. code:: console + + wget https://yum.puppetlabs.com/puppet6/puppet6-release-el-7.noarch.rpm + wget https://yum.puppetlabs.com/puppet6/puppet6-release-el-8.noarch.rpm + +and install it + +.. code:: console + + sudo rpm -ivh puppet-release-el-7.noarch.rpm + sudo rpm -ivh puppet6-release-el-8.noarch.rpm + +and install ``puppet-agent`` + +.. code:: console + + apt-get install puppet-agent + +The above can be manually by logging to each machine or by using bolt +and execute them at once on all the servers. + +.. code:: console + + bolt command run 'whoami' --targets kafka,puppet,teleport,cloudcore --user debian --no-host-key-check + +where + +.. code:: console + + --targets represents the Virtual Machine domain name + --user represent the username + +Commands to install puppet-agent in all Debian machines + +.. code:: console + + bolt command run 'wget https://apt.puppetlabs.com/puppet6-release-buster.deb;sudo dpkg -i puppet6-release-buster.deb;rm puppet6-release-buster.deb; sudo apt-get update; sudo apt-get install puppet-agent' --targets kafka,puppet,teleport,cloudcore --user debian --no-host-key-check + +Bullseye + +.. code:: console + + bolt command run 'wget https://apt.puppetlabs.com/puppet7-release-bullseye.deb;sudo dpkg -i puppet7-release-bullseye.deb;rm puppet7-release-bullseye.deb; sudo apt-get update; sudo apt-get install puppet-agent' --targets puppet,rancher,cloudcore,nuc1 --user debian --no-host-key-check + +Commands to install puppet-agent on Centos machine + +CentOS-8 + +.. code:: console + + bolt command run 'sudo yum install wget -y; wget https://yum.puppetlabs.com/puppet6/puppet6-release-el-8.noarch.rpm;sudo sudo rpm -ivh puppet6-release-el-8.noarch.rpm;rm puppet6-release-el-8.noarch.rpm; sudo yum update -y; sudo yum install puppet-agent -y' --targets ipa --user centos --no-host-key-check + + +CentOS-9 + +.. code:: console + + bolt command run 'sudo yum install wget -y; wget https://yum.puppetlabs.com/puppet6/puppet6-release-el-9.noarch.rpm;sudo sudo rpm -ivh puppet6-release-el-9.noarch.rpm;rm puppet6-release-el-9.noarch.rpm; sudo yum update -y; sudo yum install puppet-agent -y' --targets ipa --user centos --no-host-key-check + +Fedora 34 + +.. code:: console + + bolt command run 'sudo yum install wget -y; wget http://yum.puppetlabs.com/puppet6-release-fedora-34.noarch.rpm;sudo sudo rpm -ivh puppet6-release-fedora-34.noarch.rpm;rm puppet6-release-fedora-34.noarch.rpm; sudo yum update -y; sudo yum install puppet-agent -y' --targets ipa,cephserver1 --user centos --no-host-key-check + +Running puppet-agent on all the machines (Run after configuring PuppetServer) + +.. code:: console + + bolt command run 'sudo /opt/puppetlabs/bin/puppet agent -t' --targets k3sserver,k3sworker1,k3sworker2 --user debian --no-host-key-check + +S3: Configure the Virtual Machines +---------------------------------- + + +We would configure + +- Puppet Server +- FreeIPA Server + +VM1: PuppetServer +~~~~~~~~~~~~~~~~~ + +Following the `Puppet +Docs `__ + +There are two ways to install puppetserver + +- With Foreman (would be easier) +- Without Foreman + +Install Puppet +^^^^^^^^^^^^^^ + +With Foreman +'''''''''''' + +Foreman is now supported on Debian 11 (Bullseye) but we are not sure about FreeIPA supported on Debian 11 yet + +Install `Foreman `__ + +If you get locale error refer `Locale Issue `__ + +- Ensure that `ping $(hostname -f)`` shows the real IP address, not 127.0.1.1. Change or remove this entry from `/etc/hosts` if present. + +Click on Getting Started, has very clear instructions to install +foreman. It will automatically install puppet. + +Without Foreman +''''''''''''''' + +Install PuppetServer + +.. code:: shell + + apt-get install puppetserver + +Enable and start the puppetserver + +.. code:: shell + + sudo systemctl enable puppetserver.service + sudo systemctl start puppetserver + +Check if started correctly + +.. code:: shell + + puppetserver -v + +PuppetServer IPV4 + + +The puppet server might be only listening to IPv6, to run it in IPv4. + +Add ``-Djava.net.preferIPv4Stack=true`` to +``JAVA_ARGS="-Xms2G -Xmx2G -Djruby.logger.class=com.puppetlabs.jruby_utils.jruby.Slf4jLogger`` +in ``/etc/default/puppetserver`` + +Configuring PuppetServer +^^^^^^^^^^^^^^^^^^^^^^^^ + +Install the puppet modules + +.. code:: shell + + puppet module install puppet-epel + puppet module install puppetlabs-stdlib + puppet module install puppet-augeasproviders_core + puppet module install hardening-os_hardening + puppet module install puppet-archive + puppet module install puppetlabs-apt + puppet module install puppetlabs-ntp + puppet module install puppetlabs-motd + puppet module install puppetlabs-kubernetes + puppet module install puppetlabs-docker + puppet module install puppet-kmod + + puppet module install puppetlabs-powershell + +.. note:: Double check the versions installed with the latest versions by doing ``puppet module list`` on puppet server + +We also need `puppet-freeipa `_ and `puppet teleport`, install it in the +modules + +Currently, we would + +.. code:: console + + git clone https://github.com/bitvijays/conf_files.git + +and then link the ``site.pp`` file to the Puppet + +Link site.pp to puppet site.pp. `site.pp` helps us to configure the machines as per our requirements. + +.. code:: console + + ln -s /home/debian/conf_files/Puppet/site.pp /etc/puppetlabs/code/environments/production/manifests/site.pp + +Accepting Client certificates +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +.. code:: console + + puppetserver ca list + puppetserver ca --sing cert1,cert2 + +After signing the certificates, start in the following order + +- Run ``puppet agent -t`` on IPA server +- Run ``puppet agent -t`` on Puppet server + +VM2: FreeIPA Server +~~~~~~~~~~~~~~~~~~~ + +Use CentOS for FreeIPA Server. The default user for centos is +``centos``. + +Installing IPA server would be a pain. Even automated installation as it +installs multiple services that are dependent on each other. There’s a +high probabably, something would not work. Refer `FreeIPA +Issues `__ if you are doing everything +right and still facing some issue. Have patience. IPA is required for +authentication and node host key verification. Refer `FreeIPA +Workshop `__ + +Initial Configuration +^^^^^^^^^^^^^^^^^^^^^ + +By default, FreeIPA package is not available in the CentOS standard +repository. So we will need to enable ``idm:DL1`` repo in our system. + +Enable it: + +.. code:: console + + dnf module enable idm:DL1 + +Next, sync the repository: + +.. code:: console + + dnf distro-sync + +Bolt command + +.. code:: console + + bolt command run 'sudo dnf module enable idm:DL1 -y; sudo dnf distro-sync' --targets ipa --user centos --no-host-key-check + +Install puppet-agent + +.. code:: console + + yum install puppet-agent + +Install ``avahi`` for DNS resolution + +.. code:: console + + sudo yum install avahi + sudo service avahi-daemon start + +Installing IPA Server requires + +- `IPv6 `__ + should be enabled. + +This could be a difficult setup. + +It is best if ipa is installed on ``CentOS`` and then installed via +``puppet-freeipa``. + +Automatic installation using Puppet-FreeIPA +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +Puppet ``site.pp`` manifest contains + +.. code:: ruby + + node 'ipa.bitvijays.local' { + include profile::base + include profile::ipa_server + } + +where ``profile::ipa_server`` contains + +.. code:: ruby + + class profile::ipa_server{ + + class {'freeipa': + ipa_role => 'master', + domain => 'bitvijays.local', + ipa_server_fqdn => 'ipa.bitvijays.local', + ipa_master_fqdn => 'ipa.bitvijays.local', + puppet_admin_password => 'puppet_admin', + directory_services_password => 'directory_service', + install_ipa_server => true, + ip_address => $::ipaddress, + enable_ip_address => true, + enable_hostname => true, + manage_host_entry => true, + install_epel => true, + idstart => 60001 + } + } + +Manual installation +^^^^^^^^^^^^^^^^^^^ + +If the automatic installation using puppet-freeipa fails, try the manual +installation using + +.. code:: console + + ipa-server-install + ipa-server-install --uninstall : To uninstall the FreeIPA + +Service User for FreeIPA +^^^^^^^^^^^^^^^^^^^^^^^^ + +Refer +https://bgstack15.wordpress.com/2020/01/15/freeipa-service-account-to-join-systems-unattended/ + +We want to have systems join, or enroll in, FreeIPA, unattended, and +need a few configurations. Run these on an ipa master. + +Establish a service account. I will use “domainjoin.” + +.. code:: console + + echo "thisisdapassword" | ipa user-add --first="domain" --last="join" --cn="domainjoin" --password --displayname="domainjoin" domainjoin + +Remove the user from the default group of ipausers. We will add it to a +new service accounts group. + +.. code:: console + + ipa group-remove-member --users=domainjoin ipausers + ipa group-add service-accounts + ipa group-add-member --users=domainjoin service-accounts + + +VM4: Cloudcore Server +~~~~~~~~~~~~~~~~~~~~~ + +We would be installing Kubernetes and KubeEdge on the Cloudcore Server. + +VM4A: Kubernetes Server +^^^^^^^^^^^^^^^^^^^^^^^ + +Ideally, this should be installed using +`Puppet-Kubernetes `__ + +- First, check the `containerd` version available on the `cloudcore` machine using `apt-cache policy containerd` and then check the `Containerd Kubernetes Support `_ +- Ensure that the kubernetes version we want to install is supported using `containerd`. If not, update `containerd` +- Check which `kubernetes version _ we want to install. + + +Puppet-Kubernetes +''''''''''''''''' + +While installing from puppetlabs-kubernetes, we need to create a Hiera +file containing the data. Refer `Generating Module +Configuration `__ + +Login to the `puppet` server and cd to the `/etc/puppetlabs/code/environments/production/modules/kubernetes` + +Download the +`env `__, +populate the values and run the docker command + +Sample values: + +.. code:: console + + OS=debian + VERSION=1.25.6 + CONTAINER_RUNTIME=cri_containerd + CNI_PROVIDER=flannel + ETCD_INITIAL_CLUSTER=cloudcore:192.168.1.211 + ETCD_IP=192.168.1.211 + KUBE_API_ADVERTISE_ADDRESS=192.168.1.211 + INSTALL_DASHBOARD=true + +.. code:: console + + docker run --rm -v $(pwd):/mnt --env-file env puppet/kubetool:{$module_version} + +This would create ``OS.yaml`` such as ``Debian.yaml`` and +``hostname.yaml`` such as ``cloudcore.bitvijays.local``. The +``module_version`` can be found `Puppet +Kubetool `__ + +Move the ``Debian.yaml`` and ``cloudcore.bitvijays.local`` to ``data`` +folder in the modules folder of ``kubernetes``. + +.. code:: console + + root@puppet:/etc/puppetlabs/code/environments/production/modules/kubernetes# ls + CHANGELOG.md CONTRIBUTING.md env hiera.yaml HISTORY.md LICENSE metadata.json provision.yaml REFERENCE.md templates + CODEOWNERS data examples hiera.yaml.backup lib manifests plans README.md tasks tooling + +Login to the Cloudcore machine and run + +.. code:: console + + puppet agent -t + +We might get some error regarding etcd service, otherwise should be +running fine. Refer `couldn’t find local name “$HOSTNAME” in the initial +cluster configuration `__ + +Check + +.. code:: console + + kubectl get nodes + +In ``site.pp``, we have defined a class ``profile::kubernetes_server`` + +.. code:: puppet + + # Class for installing the Kubernetes Server + class profile::kubernetes_server{ + + class {'kubernetes': + controller => true, + } + } + +- Also, remember to set `ttl_duration `_ for the Join token timeout. + +and added this in + +.. code:: puppet + + node 'cloudcore.bitvijays.local'{ + include profile::base + include profile::ipa_client + include profile::kubernetes_server + } + +When finished, you should get something like + +.. code:: puppet + + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: To start using your cluster, you need to run the following as a regular user: + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: mkdir -p $HOME/.kube + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: sudo chown $(id -u):$(id -g) $HOME/.kube/config + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: Alternatively, if you are the root user, you can run: + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: export KUBECONFIG=/etc/kubernetes/admin.conf + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: You should now deploy a pod network to the cluster. + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: Run "kubectl apply -f [podnetwork].yaml" with one of the options listed at: + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: https://kubernetes.io/docs/concepts/cluster-administration/addons/ + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: You can now join any number of control-plane nodes by copying certificate authorities + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: and service account keys on each node and then running the following as root: + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: kubeadm join 192.168.1.202:6443 --token b6008d.201b8248ebf062ec \ + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: --discovery-token-ca-cert-hash sha256:6a6c8d9d2a5ba871a04c2556d7453b7f2b2aef8579abde201233fa93512ccc0b \ + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: --control-plane + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: Then you can join any number of worker nodes by running the following on each as root: + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: kubeadm join 192.168.1.202:6443 --token b6008d.201b8248ebf062ec \ + Notice: /Stage[main]/Kubernetes::Cluster_roles/Kubernetes::Kubeadm_init[cloudcore]/Exec[kubeadm init]/returns: --discovery-token-ca-cert-hash sha256:6a6c8d9d2a5ba871a04c2556d7453b7f2b2aef8579abde201233fa93512ccc0b + +We can also download `Lens `__ to +perform Kubernetes administration. + +Adding Worker nodes +''''''''''''''''''' + +We do have to ensure that `containerd` version is same as on the worker and master nodes. + +Adding worker node is easy just by adding the class ``kubernetes`` with +``worker => true``. + +.. code:: ruby + + node 'k8sworker1.bitvijays.local', 'k8sworker2.bitvijays.local', 'cephserver1.bitvijays.local', 'cephserver2.bitvijays.local', 'cephserver3.bitvijays.local' { + include profile::base + include profile::ipa_client + class {'kubernetes': + worker => true, + } + } + +Kubeadm Token +''''''''''''' + +Node joining requires a token which is valid for 24 hours. If we are +joining the nodes after the token as expired we have to create a new +token using ``kubeadm token create`` or create a token which will never +expire. + +The new token needs to be stored in the data directory of the kubernetes +module. + +.. _manual-installation-1: + +Manual Installation +''''''''''''''''''' + +If that is not working, install it from `Install +Kubeadm `__ + +We are using ``flannel`` network, so follow `Flannel +Kubernetes `__ +and pass ``--pod-network-cidr=10.244.0.0/16`` to ``kubeadm init``. + +Services on Kubernetes Server? +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +We have to install different applications on the Kubernetes cluster: + +arkade +'''''' + +`arkade `__ + +Helm +'''' + +.. code:: console + + ark get helm + +cert-manager +'''''''''''' + +`cert-manager installation `__ + +We are currently using `helm3 +method `__ + +Show helm configuration values: + +.. code:: console + + helm show values jetstack/cert-manager + +Install `cert-manager` using `helm` + +.. code:: console + + helm install cert-manager jetstack/cert-manager --namespace cert-manager --create-namespace --set installCRDs=true + +Configure the CertManager using `Issuer +Configuration `__ + +Test Example + + +Nginx Ingress Controller +'''''''''''''''''''''''' + +We also have to install a `Ingress-Nginx `__ controller from `ingress-nginx Installation Guide `_ + +.. code:: console + + helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx + +MetalLB LoadBalancer (If the infrastructure is deployed on Bare Metal) +'''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''' + +`MetalLB `__ + +Install it with + +- `Helm `_ (Preferred as of now. Tried MetalLB Operator didn't worked) + + .. code:: console + + helm install metallb metallb/metallb --namespace metallb-system --create-namespace + +- `MetalLB Operator `_ + + +Configure it by providing a IPAddressPool and L2advertisement. Refer `A pure software solution: MetalLB `_ and +`MetalLB Configuration `_ + + +Install Starboard Security Tool +''''''''''''''''''''''''''''''' + +`Starboard `__ + +and Install the `Starboard extension on +Lens `__. + +VM2A: Rancher Server +~~~~~~~~~~~~~~~~~~~~ + +Install +`Rancher `__ + +In future, install the `certificate signed by the +CA `__ + +Run it with `Persistent +Volume `__ + +VM3: Teleport Server +~~~~~~~~~~~~~~~~~~~~ + +Puppet ``site.pp`` contains + +.. code:: ruby + + node 'teleport.bitvijays.local'{ + include profile::base + include profile::ipa_client + class { '::teleport': + version => '5.1.0', + auth_enable => true, + proxy_enable => true, + auth_listen_addr => '0.0.0.0', + proxy_web_listen_addr => '0.0.0.0', + auth_service_tokens => [ 'node:pNVNrTIupUieGWGR0vz5LNOxUaNbgIgjsEZaIAjo3AfkwVHcIedLlwkOScbXWFfyqiSOtz5kFHWnUDZnPSZtZ0KzJKiUuOHMGkHlz'] + } + } + + +VM4B: KubeEdge +^^^^^^^^^^^^^^ + +Install using Puppet-KubeEdge + +.. code:: puppet + + class {'::kubeedge': + controller => true, + } + +The puppet-kubeedge module will install the keadm package and install +cloudcore executable and run it as a service. + + + +VM5 Vault Server +~~~~~~~~~~~~~~~~ + +Start with deploying a `vault +server `__ + +We can install the Vault server either by using - (Install +Vault)[https://www.vaultproject.io/docs/install#install-vault] - +`Helm `__ - `Banzai +Vault Operator `__ + +Refer +`PKI-Engine `__ +to create a PKI to generate and revoke the certificates Refer `Vault +Agent with +Kubernetes `__ +and `Configure Vault as a Certificate Manager in Kubernetes with +Helm `__ + +`How to add the cert in +OS `__ + +VM6: CEPH Server +~~~~~~~~~~~~~~~~ + +Turn off firewall on CEPHServer (CentOS) by + +:: + + firewall-cmd --state + systemctl stop firewalld + systemctl disable firewalld + +Ceph requires package ``lvm2`` to be installed, otherwise, ceph will +`fail after rebooting `__ the +host. + +Follow `CEPH +QuickStart `__ + +We want to deploy a rook cluster with 10 GB HDD that we create using + +:: + + qemu-img create -f raw cephserver3 10G + +or + +:: + + dd if=/dev/zero of=cephdisk2.img bs=1024k seek=10600 count=0 + +and as we are using KVM/libvirt to manage the machines, we can attach +the hard-disk using + +:: + + virsh attach-disk --persistent + virsh attach-disk ceph_server1 /var/lib/libvirt/images/ceph_disk/cephserver1 vdb --persistent + +^ Always do check by using ``dmesg`` whether the disk as been attached +to the correct device or not. + +:: + +We probably want to apply + +- `Block + Storage `__ + +When we apply ``storageclass``, we might also have to set it a `default +storage +class `__ + +If you are facing issues, start by reading `CEPH Common +Issues `__ + +If you have deployed the Loadbalancer and Ingress Controller, Deploy the +`Ceph +Dashboard `__ + +Tearing down the cluster +^^^^^^^^^^^^^^^^^^^^^^^^ + +Many times, we would struggle with setting the cluster and need to tear +it down, follow +`CEPH-Teardown `__ + +Upgrading the Rook and Ceph cluster +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +Refer `Rook and Ceph +Upgrade `__ + +VM7 Keycloak server +~~~~~~~~~~~~~~~~~~~ + +Tried to create a keycloak instance using keycloak operator, however, +instance is not created. Raised a github discussion + +https://github.com/keycloak/keycloak/discussions/9179 + +As of now, installed keycloak without Kubernetes using `Getting started +ZIP `__ + +https://keycloak.discourse.group/t/create-user-federation-provider-for-freeipa-with-keycloak-operator/8999 + +Create keycloak using the `Keycloak +operator `__ + +VM5: Kafka Server +~~~~~~~~~~~~~~~~~ + +Remove Nodes +------------ + +From Puppet +~~~~~~~~~~~ + +puppet-agent +^^^^^^^^^^^^ + +When installing on the server, would suggest to manually run the +``puppet agent -t`` at the start. Once, all the nodes are configured +correctly, then start the puppet service + +.. code:: shell + + sudo /opt/puppetlabs/bin/puppet resource service puppet ensure=running enable=true + +First, we should setup up the Servers (IPA, Teleport) and then Clients +(Kafka, Cloudcore, Puppet) + +Configuring puppet agent on host machine. + +Run ``puppet agent -t`` . This would generate a request for the +certificate. + +Sign the cert for host machine ``agent.puppet.vm`` at ``puppetserver`` + +.. code:: shell + + puppetserver ca sign --certname agent.puppet.vm + +From PuppetServer +^^^^^^^^^^^^^^^^^ + +We can list all the nodes registered in Puppet by + +.. code:: shell + + puppetserver ca list --all + +.. code:: shell + + puppetserver ca clean --certname node-0003.replicate.local,node-0004.replicate.local + +From Puppet Node +^^^^^^^^^^^^^^^^ + +.. code:: shell + + service puppet stop + +Locate Puppet’s SSL directory and delete its contents. The SSL directory +can be determined by running +``puppet config print ssldir --section agent`` + +From FreeIPA +~~~~~~~~~~~~ + +On Node +^^^^^^^ + +.. code:: shell + + ipa-client-install --uninstall + +On IPA Server +^^^^^^^^^^^^^ + +.. code:: console + + ipa host-del + + ipa host-del cloudcore.bitvijays.local --updatedns + + --updatedns Remove A, AAAA, SSHFP and PTR records of the host(s) managed by IPA DNS + +Yum +--- + +- yum update updates all the presently installed packages to their + latest versions that are available in the repositories and +- yum upgrade performs the same action as “yum update”, but once + finished it also removes all of the obsolete packages from the + system. + +Mosquitto server +~~~~~~~~~~~~~~~~ + +:: + + cat mosquitto.acl + topic write device/sck/# + + user bitvijays + topic device/sck/# + +:: + + cat mosquitto.conf + listener 8140 + allow_anonymous true + acl_file mosquitto.acl + password_file mosquitto.passwd + +:: + + cat mosquitto.passwd + bitvijays:$6$9GIlXjmneLKYoE61$7nxEXwa0UitW2qbK6fkLK/2uf2NdM+plTpOdkCv9GGvCkZYeRTD2k0WkfNzMVCPFWZnxn7hJC8e+Bj4Czox4BQ== + +Appendix - I : FreeIPA +---------------------- + +- Start by having a look at `FreeIPA + Documentation `__ +- Read `Linux Domain Identity, Authentication and Policy Guide for RHEL + 7 `__ +- Read `FreeIPA + Workshop `__ + +Red Hat Identity Management (IdM) provides a centralized and unified way +to manage identity stores, authentication, policies, and authorization +policies in a Linux-based domain. + +Benefits of IDM +~~~~~~~~~~~~~~~ + +- Managing identities and policies with several Linux servers + + - Without IdM: Each server is administered separately. All passwords + are saved on the local machines. The IT administrator manages + users on every machine, sets authentication and authorization + policies separately, and maintains local passwords. + - With IdM: The IT administrator can: + + - Maintain the identities in one central place: the IdM server + - Apply policies uniformly to multiples of machines at the same + time + - Set different access levels for users by using host-based + access control, delegation, and other rules. + - Centrally manage privilege escalation rules + - Define how home directories are mounted + +- Enterprise single sign-on + + - Without IdM: Users log in to the system and are prompted for a + password every single time they access a service or application. + These passwords might be different, and the users have to remember + which credential to use for which application. + - With IdM: After users log in to the system, they can access + multiple services and applications without being repeatedly asked + for their credentials. This helps: + + - Improve usability + - Reduce the security risk of passwords being written down or + stored insecurely + - Boost user productivity + +- Managing a mixed Linux and Windows environment + + - Without IdM: Windows systems are managed in an Active Directory + forest, but development, production, and other teams have many + Linux systems. The Linux systems are excluded from the Active + Directory environment. + - With IdM: The IT administrator can: + + - Manage the Linux systems using native Linux tools + - Integrate the Linux systems with the Windows systems, thus + preserving a centralized user store + - Expand the Linux base easily + - Separate management of Linux and Active Directory machines and + enable Linux and Windows admins to control their environment + directly + +Identity management domain +~~~~~~~~~~~~~~~~~~~~~~~~~~ + +The Identity Management (IdM) domain consists of a group of machines +that share the same configuration, policies, and identity stores. The +shared properties allow the machines within the domain to be aware of +each other and operate together. + +From the perspective of IdM, the domain includes the following types of +machines: + +- IdM servers, which work as domain controllers +- IdM clients, which are enrolled with the servers + +IdM servers are also IdM clients enrolled with themselves: server +machines provide the same functionality as clients. + +Identity Management Servers +^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +The IdM servers act as central repositories for identity and policy +information. They also host the services used by domain members. IdM +provides a set of management tools to manage all the IdM-associated +services centrally: the IdM web UI and command-line utilities. + +Services hosted by idM Servers +'''''''''''''''''''''''''''''' + +- Kerberos: krb5kdc and kadmin: IdM uses the Kerberos protocol to + support single sign-on. With Kerberos, users only need to present the + correct username and password once and can access IdM services + without the system prompting for credentials again. Kerberos is + divided into two parts: + + - The krb5kdc service is the Kerberos Authentication service and Key + Distribution Center (KDC) daemon. + - The kadmin service is the Kerberos database administration program + +- LDAP directory server: dirsrv: The IdM internal LDAP directory server + instance stores all IdM information, such as information related to + Kerberos, user accounts, host entries, services, policies, DNS, and + others. +- The integrated Certificate Authority (CA) is based on the same + technology as `Red Hat Certificate + System `__. + pki is the Command-Line Interface for accessing Certificate System + services. +- Domain Name System (DNS): named: IdM uses DNS for dynamic service + discovery. The IdM client installation utility can use information + from DNS to automatically configure the client machine. After the + client is enrolled in the IdM domain, it uses DNS to locate IdM + servers and services within the domain. +- Network Time Protocol: ntpd: Many services require that servers and + clients have the same system time, within a certain variance. +- Apache HTTP Server: httpd: The Apache HTTP web server provides the + IdM Web UI, and also manages communication between the Certificate + Authority and other IdM services. +- Samba / Winbind: smb, winbind: Samba implements the Server Message + Block (SMB) protocol, also known as the Common Internet File System + (CIFS) protocol), in Red Hat Enterprise Linux. Via the smb service, + the SMB protocol enables you to access resources on a server, such as + file shares and shared printers. +- One-time password (OTP) authentication: ipa-otpd: One-time passwords + (OTP) are passwords that are generated by an authentication token for + only one session, as part of two-factor authentication +- Custodia: ipa-custodia: Custodia is a Secrets Services provider, it + stores and shares access to secret material such as passwords, keys, + tokens, certificates. +- OpenDNSSEC: ipa-dnskeysyncd: OpenDNSSEC is a DNS manager that + automates the process of keeping track of DNS security extensions + (DNSSEC) keys and the signing of zones. + +Identity Management Clients +^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +IdM clients are machines configured to operate within the IdM domain. +They interact with the IdM servers to access domain resources. For +example, they belong to the Kerberos domains configured on the servers, +receive certificates and tickets issued by the servers, and use other +centralized services for authentication and authorization. An IdM client +does not require dedicated client software to interact as a part of the +domain. It only requires proper system configuration of certain services +and libraries, such as Kerberos or DNS. This configuration directs the +client machine to use IdM services + +Services Hosted by IdM Clients +'''''''''''''''''''''''''''''' + +- System Security Services Daemon: sssd: The System Security Services + Daemon (SSSD) is the client-side application that manages user + authentication and caching credentials. Caching enables the local + system to continue normal authentication operations if the IdM server + becomes unavailable or if the client goes offline. +- certmonger: The certmonger service monitors and renews the + certificates on the client. It can request new certificates for the + services on the system. + +Operations +~~~~~~~~~~ + +User +^^^^ + +Adding user +''''''''''' + +:: + + $ ipa user-add + First name: first_name + Last name: last_name + User login [default_login]: custom_login + +Uploading a user ssh key from stdin + +:: + + ipa user-mod user --sshpubkey="ssh-rsa AAAAB3Nza...SNc5dv== client.example.com" + +Uploading a user ssh key from a file + +:: + + ipa user-mod user --sshpubkey="$(cat ~/.ssh/id_rsa.pub)" --sshpubkey="$(cat ~/.ssh/id_rsa2.pub)" + +Finding User +'''''''''''' + +:: + + ipa user-find + ipa user-find user + +Displaying user info +'''''''''''''''''''' + +:: + + ipa user-show user_login + +Deleteing a user +'''''''''''''''' + +:: + + ipa user-del user_login + +Modifying a user +'''''''''''''''' + +:: + + ipa user-mod user_login --title=new_title + +Disabling/ Enabling a user +'''''''''''''''''''''''''' + +:: + + ipa user-disable user_login + ipa user-enable user_login + +Unlocking a user account +'''''''''''''''''''''''' + +:: + + ipa user-unlock user + +Checking the status of user +''''''''''''''''''''''''''' + +:: + + ipa user-status user + +Host +^^^^ + +Removing host from IPA domain + +:: + + ipa-client-install --uninstall + +The above will unenroll the client from the IPA domain, however, you +might still need to remove the clients from IPA webserver? + +Sudo +^^^^ + +Refer `Sudo +Rule `__ + +Hosts, Services, Machine Identity and Authentication +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + +The basic function of an enrollment process is to create a host entry +for the client machine in the IdM directory. This host entry is used to +establish relationships between other hosts and even services within the +domain. + +A host entry contains all of the information about the client within +IdM: + +- Service entries associated with the host +- The host and service principal +- Access control rules +- Machine information, such as its physical location and operating + system + +An IdM domain provides three main services specifically for machines: - +DNS - Kerberos - Certificate management + +From the machine perspective, there are several tasks that can be +performed that access these domain services: + +- Joining the DNS domain (machine enrollment) +- Managing DNS entries and zones +- Managing machine authentication + +Authentication in IdM includes machines as well as users. Machine +authentication is required for the IdM server to trust the machine and +to accept IdM connections from the client software installed on that +machine. After authenticating the client, the IdM server can respond to +its requests. IdM supports three different approaches to machine +authentication: + +- SSH keys. The SSH public key for the host is created and uploaded to + the host entry. +- Key tables (or keytabs, a symmetric key resembling to some extent a + user password) and machine certificates. Kerberos tickets are + generated as part of the Kerberos services and policies defined by + the server. Initially granting a Kerberos ticket, renewing the + Kerberos credentials, and even destroying the Kerberos session are + all handled by the IdM services. +- Machine certificates. In this case, the machine uses an SSL + certificate that is issued by the IdM server’s certificate authority + and then stored in IdM’s Directory Server. The certificate is then + sent to the machine to present when it authenticates to the server. + On the client, certificates are managed by a service called + certmonger. + +Managing Public SSH Keys for Hosts +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + +OpenSSH uses public keys to authenticate hosts. One machine attempts to +access another machine and presents its key pair. The first time the +host authenticates, the administrator on the target machine has to +approve the request manually. The machine then stores the host’s public +key in a known_hosts file. Any time that the remote machine attempts to +access the target machine again, the target machine simply checks its +known_hosts file and then grants access automatically to approved hosts. + +There are a few problems with this system: + +- The known_hosts file stores host entries in a triplet of the host IP + address, host name, and key. This file can rapidly become out of date + if the IP address changes (which is common in virtual environments + and data centers) or if the key is updated. +- SSH keys have to be distributed manually and separately to all + machines in an environment. +- Administrators have to approve host keys to add them to the + configuration, but it is difficult to verify either the host or key + issuer properly, which can create security problems. + +On Red Hat Enterprise Linux, the System Security Services Daemon (SSSD) +can be configured to cache and retrieve host SSH keys so that +applications and services only have to look in one location for host +keys. Because SSSD can use Identity Management as one of its identity +information providers, Identity Management provides a universal and +centralized repository of keys. Administrators do not need to worry +about distributing, updating, or verifying host SSH keys. + +ipa-client-install and OpenSSh +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +The ipa-client-install script, by default, configures an OpenSSH server +and client on the IdM client machine. It also configures SSSD to perform +host and user key caching. Essentially, simply configuring the client +does all of the configuration necessary for the host to use SSSD, +OpenSSH, and Identity Management for key caching and retrieval. + +A user group is a set of users with common privileges, password +policies, and other characteristics. A host group is a set of IdM hosts +with common access control rules and other characteristics. + +Managing services +~~~~~~~~~~~~~~~~~ + +Some services that run on a host can also belong to the IdM domain. Any +service that can store a Kerberos principal or an SSL certificate (or +both) can be configured as an IdM service. Adding a service to the IdM +domain allows the service to request an SSL certificate or keytab from +the domain. (Only the public key for the certificate is stored in the +service record. The private key is local to the service.) + +An IdM domain establishes a commonality between machines, with common +identity information, common policies, and shared services. Any machine +which belongs to a domain functions as a client of the domain, which +means it uses the services that the domain provides. + +An IdM domain provides three main services specifically for machines: + +- DNS +- Kerberos +- Certificate management + +SSSD +~~~~ + +The System Security Services Daemon (SSSD) provides interfaces towards +several system services, including OpenSSH. + +SSSD can serve as a credentials cache for SSH public keys for machines +and users. In this setup: + +- OpenSSH is configured to reference SSSD to check for cached keys. +- SSSD uses an Identity Management (IdM) domain, and IdM stores the + public keys and host information. + +How SSSD Manages Host Keys +^^^^^^^^^^^^^^^^^^^^^^^^^^ + +To manage host keys, SSSD performs the following: - Retrieves the public +host key from the host system. - Stores the host key in the +``/var/lib/sss/pubconf/known_hosts`` file. - Establishes a connection +with the host machine. + +How SSSD Manages User Keys +^^^^^^^^^^^^^^^^^^^^^^^^^^ + +To manage user keys, SSSD performs the following: + +- Retrieves the user’s public key from the user entries in the IdM + domain. +- Stores the user key in the ``.ssh/sss_authorized_keys`` file in the + standard authorized keys format. + +sudo user +~~~~~~~~~ + +sudo Rules in Identity Management +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +Using sudo rules, you can define who can do what, where, and as whom. + +- Who are the users allowed to use sudo. +- What are the commands that can be used with sudo. +- Where are the target hosts on which the users are allowed to use + sudo. +- As whom is the system or other user identity which the users assume + to perform tasks. + +Appendix - II K3S Server and Agents +----------------------------------- + +Server +~~~~~~ + +:: + + bolt command run 'sudo curl -sfL https://get.k3s.io | sh -' --targets k3sserver --user debian --no-host-key-check + +``K3S_TOKEN`` is stored at ``/var/lib/rancher/k3s/server/node-token`` on +your server node. + +Agents +~~~~~~ + +:: + + bolt command run 'sudo curl -sfL https://get.k3s.io | K3S_URL=https://k3sserver:6443 K3S_TOKEN=K10905620f642071f1f6dbbd34b381f9e3e89494380fbee8b84fec80e6df5d82d56::server:0983a29cb2faaed59fa466afc5e04deb sh -' --targets k3sworker1,k3sworker2 --user debian --no-host-key-check + +Kubectl +~~~~~~~ + +Running as normal user + +:: + + sudo cp /etc/rancher/k3s/k3s.yaml config + mkdir .kube/ + mv config .kube/ + sudo chown debian.debian .kube/config + export KUBECONFIG=/home/debian/.kube/config + kubectl get nodes -o wide + +Appendix - III OpenFaaS Serverless +---------------------------------- + +Install `arkade - The Open Source Kubernetes +Marketplace `__ : The tools can be +downloaded and installed using the above. + +Install `Kubernetes +Dashboard `__ +using ``arkade`` + +Deploy +`OpenFaaS `__. +If deploying on K3S, follow `Error: Kubernetes cluster +unreachable `__. We may +follow `OpenFaaS - Deployment guide for +Kubernetes `__ + +Install ``faas-cli`` using ``arkade``. + +Appendix - IV Securing Kubernetes +--------------------------------- + +- We can start with running + `Kubescape `__. Kubescape will + scan your Kubernetes cluster and check for any weak points. +- To ensure that our Kubernetes YAML files are secure, we can use + `datree `__ +- Follow `Kubernetes Hardening + Guideline `__ + +Kubernetes Additional Features +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + +Node Feature Discovery +^^^^^^^^^^^^^^^^^^^^^^ + +Install NFD either by using +`OperatorHub `__ (Failed, +have raised a issue for it) or directly from `Node Feature +Discovery `__ + +Puppet server +^^^^^^^^^^^^^ + +Appendix - X PXE Boot +--------------------- + +Appendix - Extra +---------------- + +lvm2 package to be installed on Ceph Server + +tmux and jq to be installed on vault and cloudcore + +- If you have enabled conditional forwarding in your pi-hole DNS and + the (forwarded DNS server is not online), PiHole will be delayed. + +Appendix - Installation of Cluster Applications +----------------------------------------------- + +Metrics Server +~~~~~~~~~~~~~~ + +Metrics Server is a scalable, efficient source of container resource +metrics for Kubernetes built-in autoscaling pipelines + +Refer `Metric +Server `__ for +installation of Metric server. It is required for installation of +GitLab. + +It can be installed either by `applying a YAML file or a Helm +Chart `__ +and also require a bit of configuration. Refer +`Requirements `__ + +Falco +~~~~~ + +Appendix - Removal of Cluster Applications +------------------------------------------ diff --git a/_sources/Series_Home_Lab/LFF-HLSC-Edge-Tier.rst.txt b/_sources/Series_Home_Lab/LFF-HLSC-Edge-Tier.rst.txt new file mode 100644 index 0000000..241b608 --- /dev/null +++ b/_sources/Series_Home_Lab/LFF-HLSC-Edge-Tier.rst.txt @@ -0,0 +1,155 @@ +Urban Monitoring Architecture - Edge Side +========================================= + +Raspberry Pi +------------ + +Remove systemd resolv.conf +~~~~~~~~~~~~~~~~~~~~~~~~~~ + +Currently, we are using Ubuntu 20.04 for Raspberry Pi + +.. code:: console + + vi /etc/systemd/resolved.conf + + Set + +Add Cgroup +~~~~~~~~~~ + +Standard Raspbian Buster installations do not start with cgroups +enabled. K3S needs cgroups to start the systemd service. cgroupscan be +enabled by appending ``cgroup_memory=1 cgroup_enable=memory`` to +``/boot/cmdline.txt`` or ``/boot/system/cmdline.txt`` + +.. code:: console + + console=serial0,115200 console=tty1 root=PARTUUID=58b06195-02 rootfstype=ext4 elevator=deadline fsck.repair=yes rootwait cgroup_memory=1 cgroup_enable=memory + +Add Wifi +~~~~~~~~ + +First step is to identify the name of your wireless network interface. +To do so execute: + +.. code:: console + + $ ls /sys/class/net + enp0s25 lo wlp3s0 + +Depending on your Ubuntu 20.04 system the wireless network interface +name would be something like: ``wlan0`` or like in this case it is +``wlp3s0``. + +Next, navigate to the ``/etc/netplan directory`` and locate the +appropriate Netplan configuration files. The configuration file might +have a name such as ``01-network-manager-all.yaml`` or +``50-cloud-init.yaml``. + +.. code:: console + + ls /etc/netplan/ + +Edit the Netplan configuration file: + +.. code:: yaml + + $ sudoedit /etc/netplan/50-cloud-init.yaml + and insert the following configuration stanza while replacing the SSID-NAME-HERE and PASSWORD-HERE with your SSID network name and password: + wifis: + wlan0: + optional: true + access-points: + "SSID-NAME-HERE": + password: "PASSWORD-HERE" + dhcp4: true + +Make sure that the wifis block is aligned with the above ethernets or +version block if present. The entire configuration file may look similar +to the one below: + +.. code:: yaml + + # This file is generated from information provided by the datasource. Changes + # to it will not persist across an instance reboot. To disable cloud-init's + # network configuration capabilities, write a file + # /etc/cloud/cloud.cfg.d/99-disable-network-config.cfg with the following: + # network: {config: disabled} + network: + ethernets: + eth0: + dhcp4: true + optional: true + version: 2 + wifis: + wlp3s0: + optional: true + access-points: + "SSID-NAME-HERE": + password: "PASSWORD-HERE" + dhcp4: true + +Alternatively, you may also wish to configure a static IP address to +your wireless interface. Once ready, apply the changes and connect to +your wireless interface by executing the bellow command: + +.. code:: console + + sudo netplan apply + +Alternatively, if you run into some issues execute: + +.. code:: console + + sudo netplan --debug apply + +If all went well you would be able to see your wireless adapter +connected to the wireless network by executing the ip command: + +.. code:: console + + ip a + +Change Hostname +~~~~~~~~~~~~~~~ + +We need to provide a hostname to the machine + +.. code:: console + + hostnamectl set-hostname + + e.g hostnamectl set-hostname puppet.xxxxx.local + +Install Puppet Agent +~~~~~~~~~~~~~~~~~~~~ + +Add Puppet Repo by downloading `Puppet package for your +OS `__ + +Currently, we are using Ubuntu 20.04 Focal, so we use the +``puppet6-release-focal.deb``. + +.. code:: console + + dpkg -i puppet6-release-focal.deb + apt-get update + apt-get install puppet-agent + +Add puppet host entry to /etc/hosts +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + +.. code:: console + + X.X.X.X puppet puppet.bitvijays.local + +Puppet agent +~~~~~~~~~~~~ + +.. code:: console + + puppet agent -t + +The above would generate the certificate which can be Signed using +``PuppetServer`` or ``Foreman``. diff --git a/_sources/Series_The_Essentials/LFF-ESS-P0B-LinuxEssentials.rst.txt b/_sources/Series_The_Essentials/LFF-ESS-P0B-LinuxEssentials.rst.txt index 2023635..b8adce0 100644 --- a/_sources/Series_The_Essentials/LFF-ESS-P0B-LinuxEssentials.rst.txt +++ b/_sources/Series_The_Essentials/LFF-ESS-P0B-LinuxEssentials.rst.txt @@ -2812,9 +2812,10 @@ ifupdown ifupdown's configuration file ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ -There are two main directives: -- auto network-device, which tells ifupdown to automatically configure the network interface once it is available, and -- iface network-device inet/inet6 type to configure a given interface. +There are two main directives: + +- ``auto network-device``, which tells ifupdown to automatically configure the network interface once it is available, and +- ``iface network-device inet/inet6 type`` to configure a given interface. For example, For example, a plain DHCP configuration looks like this: @@ -2826,7 +2827,7 @@ For example, For example, a plain DHCP configuration looks like this: auto eth0 iface eth0 inet dhcp -Note that the special configuration for the loopback device should always be present in this file. For a fixed IP address configuration, you have to provide more details such as the IP address, the network, and the IP of the gateway: +Note that the special configuration for the loopback device should always be present in this file. For a fixed IP address configuration, we have to provide more details such as the IP address, the network, and the IP of the gateway: .. code:: console @@ -2838,12 +2839,12 @@ Note that the special configuration for the loopback device should always be pre network 192.168.0.0 gateway 192.168.0.1 -For wireless interfaces, we must have the wpasupplicant package, which provides many wpa-* options that can be used in ``/etc/network/interfaces``. Have a look at /usr/share/doc/wpasupplicant/README.Debian.gz for examples and explanations. +For wireless interfaces, we must have the ``wpasupplicant`` package, which provides many wpa-* options that can be used in ``/etc/network/interfaces``. Have a look at ``/usr/share/doc/wpasupplicant/README.Debian.gz`` for examples and explanations. The most common options are -- wpa-ssid (which defines the name of the wireless network to join) and -- wpa-psk (which defines the passphrase or the key protecting the network). +- ``wpa-ssid`` (which defines the name of the wireless network to join) and +- ``wpa-psk`` (which defines the passphrase or the key protecting the network). .. code:: console @@ -2859,8 +2860,8 @@ systemd-networkd - Alternatively, we can use ``/lib/systemd/network/`` for packaged files or ``/run/systemd/network/`` for files generated at run-time. - The format of those files is documented in systemd.network(5). - - The [Match] section indicates the network interfaces the configuration applies to. We can specify the interface in many ways, including by media access control (MAC) address or device type. - - The [Network] section defines the network configuration. + - The ``[Match]`` section indicates the network interfaces the configuration applies to. We can specify the interface in many ways, including by media access control (MAC) address or device type. + - The ``[Network]`` section defines the network configuration. Static Configuration in ``/etc/systemd/network/50-static.network`` @@ -2886,7 +2887,7 @@ DHCP-based Configuration in ``/etc/systemd/network/80-dhcp.network`` .. Note :: - ``System-networkd`` is disabled by default. We should should enable it. It also depends on systemd-resolved for proper integration of DNS resolution, which in turn requires to replace ``/etc/resolv.conf`` with a symlink to ``/run/systemd/resolve/resolv.conf``, which is managed by ``systemd-resolved``. + ``System-networkd`` is disabled by default. We should enable it. It also depends on systemd-resolved for proper integration of DNS resolution, which in turn requires to replace ``/etc/resolv.conf`` with a symlink to ``/run/systemd/resolve/resolv.conf``, which is managed by ``systemd-resolved``. .. code:: console @@ -2902,6 +2903,32 @@ ip netplan ------- +ifconfig +-------- + +Ping IP Address +=============== + +Sometimes, we might be in strange situations where we need to ping some IP address + +Windows +------- + +Powershell +^^^^^^^^^^ + +.. console:: powershell + + for ($i = 1; $i -lt 255; $i++) { Test-Connection 192.168.2.$i -Count 1 -ErrorAction SilentlyContinue } + + +CMD +^^^ + +.. console:: cmd + + For /L %a in (1 1 254) do ping -n 1 192.268.1.%a + Important concepts ****************** diff --git a/_static/basic.css b/_static/basic.css index 30fee9d..f316efc 100644 --- a/_static/basic.css +++ b/_static/basic.css @@ -4,7 +4,7 @@ * * Sphinx stylesheet -- basic theme. * - * :copyright: Copyright 2007-2023 by the Sphinx team, see AUTHORS. + * :copyright: Copyright 2007-2024 by the Sphinx team, see AUTHORS. * :license: BSD, see LICENSE for details. * */ diff --git a/_static/doctools.js b/_static/doctools.js index d06a71d..4d67807 100644 --- a/_static/doctools.js +++ b/_static/doctools.js @@ -4,7 +4,7 @@ * * Base JavaScript utilities for all Sphinx HTML documentation. * - * :copyright: Copyright 2007-2023 by the Sphinx team, see AUTHORS. + * :copyright: Copyright 2007-2024 by the Sphinx team, see AUTHORS. * :license: BSD, see LICENSE for details. * */ diff --git a/_static/language_data.js b/_static/language_data.js index 250f566..367b8ed 100644 --- a/_static/language_data.js +++ b/_static/language_data.js @@ -5,7 +5,7 @@ * This script contains the language-specific data used by searchtools.js, * namely the list of stopwords, stemmer, scorer and splitter. * - * :copyright: Copyright 2007-2023 by the Sphinx team, see AUTHORS. + * :copyright: Copyright 2007-2024 by the Sphinx team, see AUTHORS. * :license: BSD, see LICENSE for details. * */ @@ -13,7 +13,7 @@ var stopwords = ["a", "and", "are", "as", "at", "be", "but", "by", "for", "if", "in", "into", "is", "it", "near", "no", "not", "of", "on", "or", "such", "that", "the", "their", "then", "there", "these", "they", "this", "to", "was", "will", "with"]; -/* Non-minified version is copied as a separate JS file, is available */ +/* Non-minified version is copied as a separate JS file, if available */ /** * Porter Stemmer diff --git a/_static/searchtools.js b/_static/searchtools.js index 7918c3f..92da3f8 100644 --- a/_static/searchtools.js +++ b/_static/searchtools.js @@ -4,7 +4,7 @@ * * Sphinx JavaScript utilities for the full-text search. * - * :copyright: Copyright 2007-2023 by the Sphinx team, see AUTHORS. + * :copyright: Copyright 2007-2024 by the Sphinx team, see AUTHORS. * :license: BSD, see LICENSE for details. * */ @@ -99,7 +99,7 @@ const _displayItem = (item, searchTerms, highlightTerms) => { .then((data) => { if (data) listItem.appendChild( - Search.makeSearchSummary(data, searchTerms) + Search.makeSearchSummary(data, searchTerms, anchor) ); // highlight search terms in the summary if (SPHINX_HIGHLIGHT_ENABLED) // set in sphinx_highlight.js @@ -116,8 +116,8 @@ const _finishSearch = (resultCount) => { ); else Search.status.innerText = _( - `Search finished, found ${resultCount} page(s) matching the search query.` - ); + "Search finished, found ${resultCount} page(s) matching the search query." + ).replace('${resultCount}', resultCount); }; const _displayNextItem = ( results, @@ -137,6 +137,22 @@ const _displayNextItem = ( // search finished, update title and status message else _finishSearch(resultCount); }; +// Helper function used by query() to order search results. +// Each input is an array of [docname, title, anchor, descr, score, filename]. +// Order the results by score (in opposite order of appearance, since the +// `_displayNextItem` function uses pop() to retrieve items) and then alphabetically. +const _orderResultsByScoreThenName = (a, b) => { + const leftScore = a[4]; + const rightScore = b[4]; + if (leftScore === rightScore) { + // same score: sort alphabetically + const leftTitle = a[1].toLowerCase(); + const rightTitle = b[1].toLowerCase(); + if (leftTitle === rightTitle) return 0; + return leftTitle > rightTitle ? -1 : 1; // inverted is intentional + } + return leftScore > rightScore ? 1 : -1; +}; /** * Default splitQuery function. Can be overridden in ``sphinx.search`` with a @@ -160,13 +176,26 @@ const Search = { _queued_query: null, _pulse_status: -1, - htmlToText: (htmlString) => { + htmlToText: (htmlString, anchor) => { const htmlElement = new DOMParser().parseFromString(htmlString, 'text/html'); - htmlElement.querySelectorAll(".headerlink").forEach((el) => { el.remove() }); + for (const removalQuery of [".headerlinks", "script", "style"]) { + htmlElement.querySelectorAll(removalQuery).forEach((el) => { el.remove() }); + } + if (anchor) { + const anchorContent = htmlElement.querySelector(`[role="main"] ${anchor}`); + if (anchorContent) return anchorContent.textContent; + + console.warn( + `Anchored content block not found. Sphinx search tries to obtain it via DOM query '[role=main] ${anchor}'. Check your theme or template.` + ); + } + + // if anchor not specified or not found, fall back to main content const docContent = htmlElement.querySelector('[role="main"]'); - if (docContent !== undefined) return docContent.textContent; + if (docContent) return docContent.textContent; + console.warn( - "Content block not found. Sphinx search tries to obtain it via '[role=main]'. Could you check your theme or template." + "Content block not found. Sphinx search tries to obtain it via DOM query '[role=main]'. Check your theme or template." ); return ""; }, @@ -239,16 +268,7 @@ const Search = { else Search.deferQuery(query); }, - /** - * execute search (requires search index to be loaded) - */ - query: (query) => { - const filenames = Search._index.filenames; - const docNames = Search._index.docnames; - const titles = Search._index.titles; - const allTitles = Search._index.alltitles; - const indexEntries = Search._index.indexentries; - + _parseQuery: (query) => { // stem the search terms and add them to the correct list const stemmer = new Stemmer(); const searchTerms = new Set(); @@ -284,16 +304,32 @@ const Search = { // console.info("required: ", [...searchTerms]); // console.info("excluded: ", [...excludedTerms]); - // array of [docname, title, anchor, descr, score, filename] - let results = []; + return [query, searchTerms, excludedTerms, highlightTerms, objectTerms]; + }, + + /** + * execute search (requires search index to be loaded) + */ + _performSearch: (query, searchTerms, excludedTerms, highlightTerms, objectTerms) => { + const filenames = Search._index.filenames; + const docNames = Search._index.docnames; + const titles = Search._index.titles; + const allTitles = Search._index.alltitles; + const indexEntries = Search._index.indexentries; + + // Collect multiple result groups to be sorted separately and then ordered. + // Each is an array of [docname, title, anchor, descr, score, filename]. + const normalResults = []; + const nonMainIndexResults = []; + _removeChildren(document.getElementById("search-progress")); - const queryLower = query.toLowerCase(); + const queryLower = query.toLowerCase().trim(); for (const [title, foundTitles] of Object.entries(allTitles)) { - if (title.toLowerCase().includes(queryLower) && (queryLower.length >= title.length/2)) { + if (title.toLowerCase().trim().includes(queryLower) && (queryLower.length >= title.length/2)) { for (const [file, id] of foundTitles) { let score = Math.round(100 * queryLower.length / title.length) - results.push([ + normalResults.push([ docNames[file], titles[file] !== title ? `${titles[file]} > ${title}` : title, id !== null ? "#" + id : "", @@ -308,46 +344,47 @@ const Search = { // search for explicit entries in index directives for (const [entry, foundEntries] of Object.entries(indexEntries)) { if (entry.includes(queryLower) && (queryLower.length >= entry.length/2)) { - for (const [file, id] of foundEntries) { - let score = Math.round(100 * queryLower.length / entry.length) - results.push([ + for (const [file, id, isMain] of foundEntries) { + const score = Math.round(100 * queryLower.length / entry.length); + const result = [ docNames[file], titles[file], id ? "#" + id : "", null, score, filenames[file], - ]); + ]; + if (isMain) { + normalResults.push(result); + } else { + nonMainIndexResults.push(result); + } } } } // lookup as object objectTerms.forEach((term) => - results.push(...Search.performObjectSearch(term, objectTerms)) + normalResults.push(...Search.performObjectSearch(term, objectTerms)) ); // lookup as search terms in fulltext - results.push(...Search.performTermsSearch(searchTerms, excludedTerms)); + normalResults.push(...Search.performTermsSearch(searchTerms, excludedTerms)); // let the scorer override scores with a custom scoring function - if (Scorer.score) results.forEach((item) => (item[4] = Scorer.score(item))); - - // now sort the results by score (in opposite order of appearance, since the - // display function below uses pop() to retrieve items) and then - // alphabetically - results.sort((a, b) => { - const leftScore = a[4]; - const rightScore = b[4]; - if (leftScore === rightScore) { - // same score: sort alphabetically - const leftTitle = a[1].toLowerCase(); - const rightTitle = b[1].toLowerCase(); - if (leftTitle === rightTitle) return 0; - return leftTitle > rightTitle ? -1 : 1; // inverted is intentional - } - return leftScore > rightScore ? 1 : -1; - }); + if (Scorer.score) { + normalResults.forEach((item) => (item[4] = Scorer.score(item))); + nonMainIndexResults.forEach((item) => (item[4] = Scorer.score(item))); + } + + // Sort each group of results by score and then alphabetically by name. + normalResults.sort(_orderResultsByScoreThenName); + nonMainIndexResults.sort(_orderResultsByScoreThenName); + + // Combine the result groups in (reverse) order. + // Non-main index entries are typically arbitrary cross-references, + // so display them after other results. + let results = [...nonMainIndexResults, ...normalResults]; // remove duplicate search results // note the reversing of results, so that in the case of duplicates, the highest-scoring entry is kept @@ -361,7 +398,12 @@ const Search = { return acc; }, []); - results = results.reverse(); + return results.reverse(); + }, + + query: (query) => { + const [searchQuery, searchTerms, excludedTerms, highlightTerms, objectTerms] = Search._parseQuery(query); + const results = Search._performSearch(searchQuery, searchTerms, excludedTerms, highlightTerms, objectTerms); // for debugging //Search.lastresults = results.slice(); // a copy @@ -466,14 +508,18 @@ const Search = { // add support for partial matches if (word.length > 2) { const escapedWord = _escapeRegExp(word); - Object.keys(terms).forEach((term) => { - if (term.match(escapedWord) && !terms[word]) - arr.push({ files: terms[term], score: Scorer.partialTerm }); - }); - Object.keys(titleTerms).forEach((term) => { - if (term.match(escapedWord) && !titleTerms[word]) - arr.push({ files: titleTerms[word], score: Scorer.partialTitle }); - }); + if (!terms.hasOwnProperty(word)) { + Object.keys(terms).forEach((term) => { + if (term.match(escapedWord)) + arr.push({ files: terms[term], score: Scorer.partialTerm }); + }); + } + if (!titleTerms.hasOwnProperty(word)) { + Object.keys(titleTerms).forEach((term) => { + if (term.match(escapedWord)) + arr.push({ files: titleTerms[term], score: Scorer.partialTitle }); + }); + } } // no match but word was a required one @@ -496,9 +542,8 @@ const Search = { // create the mapping files.forEach((file) => { - if (fileMap.has(file) && fileMap.get(file).indexOf(word) === -1) - fileMap.get(file).push(word); - else fileMap.set(file, [word]); + if (!fileMap.has(file)) fileMap.set(file, [word]); + else if (fileMap.get(file).indexOf(word) === -1) fileMap.get(file).push(word); }); }); @@ -549,8 +594,8 @@ const Search = { * search summary for a given text. keywords is a list * of stemmed words. */ - makeSearchSummary: (htmlText, keywords) => { - const text = Search.htmlToText(htmlText); + makeSearchSummary: (htmlText, keywords, anchor) => { + const text = Search.htmlToText(htmlText, anchor); if (text === "") return null; const textLower = text.toLowerCase(); diff --git a/genindex.html b/genindex.html index 8a98f11..dcd4baf 100644 --- a/genindex.html +++ b/genindex.html @@ -24,7 +24,7 @@ - + diff --git a/index.html b/index.html index 0c2775b..150a0b4 100644 --- a/index.html +++ b/index.html @@ -25,7 +25,7 @@ - + diff --git a/objects.inv b/objects.inv index 02040cee613529daa5af83345855aaab1b3c145c..3dc5a8fbd06b412e72fc1b6d3eb627134281a9d7 100644 GIT binary patch delta 3330 zcmV+d4gK=e8tEF4hksjh;y4<8*RN33%tKGrXcHhwr{`rW;nJZubTctY?>?o3EkGS( zc_cdtRa^Vp_xmK-Kmv)O@yyEvSvu$F_FW`(AhZnN$fiS@cJwLdqI6*s0||X4yQZuAHuZAaCKcRevOt>7Tg_A8y2?D*JjX z$Lz|eEu>H?v`9knHo0D;nVM>z&K8xaSK4^um6A8so=X9@3W*{G;`e7g6jnPFwtsGvzegnQIGyXp>pL# zwx6EE$Wh5ePJeT43-1R!;ZrdeNd^SHK!iDtWk-x9->9l`<89(5Qp6F+D{9k)$~ARu zDoDI$?cQe=bYX5}5~(M%o5)wqi;e19pdOw?OK}bnN7J))lSiplf^el;Ei)PN_`aV^ zG&h;fL!3Dr64veqtb5n)Z&F#InN!z|MVM(B(mOGeVSfx0JmY$b^46PH7Uc1G{8`Ir zA8Bg<>mqqfv9PL^eiG$SDtQcZkZBbM3zLbt*+bPfD5r1vmHN-rf3GTapvE#5Uq$w$ z^us;^*8!X?*xs~j3@j&5R!X^2b8&yo$F}L!bHf)%_;J-xPmur|3pgQJtZz?Fer57>w3HB{EZX z_g?65CNp7Y0eX$qX&|F=qx6&ep$0c8jIp47HQKKbix~bM z!VC+OZFYU{wt3H(7A@$q$x_eiTDuz_T@xJY=sFw*QHato3Zx%P<`->Qmiv3FehZUEk_Zt±heCc zGTBdxc@5$OVd-9~P9c~}mCp8CTq~`M2+;qm%74bz;sS^urFhyy$wr*@Fv5+w`%+cj zr+-f@xEQi`?8J^3#Zb*vCTK5DLMyBdrr*#HH@)_6zf)*HKi~F$w{Z{JlurNRGX-;$ zsZhmB^^bsvQI9za;L8JqRr*0>8%1ue>a^Gr>PiamZ)gp$b4t(c&>i)Jh{hZ$zJ}jk z*=HpF*LH9|RypXagzf8k2Z}%FKx~H&A%C)fj#q;Ab(dklfKMUD18-c|`L}tr99QOn zy5$PRA2~S4(yn2Ku?#`%YU&2CnvO46dodQ;1;g2*3wm{`rP(xeyMuT^_|f=}=t{wZ zFYCN3@seH3B!6Ch+eO-|#@@|hA-&|QY3)`FALi^Q;8o+*Kxuum(~$^giHg+}5P#oQ z)nRtLMW80x6W2RU*vqzl-`X--0(Kw)k5!7>91Tmv@voH#b}M|BeS}LinpMO%*=oCy8vc~_ zchG!b|4Jx!V7Q0)7NiTQxk#cBq^cW}xE)%1(+x$|dAhF9jdzZ8< zFN${|e${wAT8`0mxetUlSgargW)qkhCX+DEO%Z>_d@SPq`F{De>@Mp=&VO@_JhTTq zumL>}@;|wg8Ww61t=i<5^m_)tD8up>CqnHd58+Lqh2R6W7@Ki36E#rxfzeUWD@%c_ zcDQq>&!dBnHFnkx^R2}vyaf{r9@>SN%wV!zOGo=QYxF!AIU**~XPPGyp>3}X!)%zv z=(Jg;is?W6DD+{2^TYtJ&3}(^M2ySCUBCbqsaO&pQs@;EE8Y5y@Ds0bs#Tt{xtL?% zGm|Nk#^mDgg73Vp&&UT+Yr#kRmXGjL7TWs>7V~79^C=8vwzP@|lyX;Ggj^Ryg{|a} zkUR<&Ni9N{-UZX>LK6-{!V@1K?7F5lWYH+bGSN=Koq@nm4FQ`XHlr84A^m`d zgD4Ial!+lM=pQH#=3KBJM(D>E;?9qcKh>trf`hy-Rvv1gUjY7bRi2X;a-85ubEoQ4 zzFnfO%N15zz_gGtR*d;cpS3^*vk}CiiI1T z=GjSYV}sa?wowKYNX!~Q#&;`&j=T&Ksyv)UW52vVo!6(wf`cF=>|By?Ee+j7y2qUe zaIK}cBub3$TC2W}wV+#_uK|JJ?g4ycV}sjCz)T=%|?9|w}HJM4awAoAb&$%p{a9d@Lzo{ z4Z#_`8g_tuSdi13c9+buEUkn0Y6Kex!HW<#Q*)S@I;ecOII;weQ%X|@Q@*nMVUe24MAbodjrb7#SbSuR9Pi^C&%v26&$15MyMaAs z?*{*tj(_h-j6p&jRNpPKWidsl)nbskuygpM#)zwRWC@tvZ2^(!Eu4Txqds25X0(rF zWa$z7QRs>@*nA}?-OCyHQ;WHJg#YI$n0XsQ!A5?t$0&!25BnwA(T!(2x-IA+igR?; zG&TQjO%Prt)@$$>Qe9Y1Tt}unBrpeb{QXrfNPl@f*HL*I0CG%dq+469W{pPx793Vr z&<^_K2Y=*D&pmJB_)~qMt_5fG3oz1~0Z`}Z0tRK4|6CmN#lc+VV*<$^q_WCei1Yd~ zv2#qr{^i+79C05ix6bPuKE!79x^poku{4>mQL4>|aA{5WmZQksvx94kUc{#*I+^n% zhktz{SKj4Sp12q9?0{up(biu1k-32Q0wWo3V4ICbjV2b+86G-YPGXbIZ3n9RZTf+S zBy&7leihiK3s!t^=6s-{++G!7h(A}!R2An;&5y^8kJjInKkHlFmh8xJFnp^xRh>&R zH_ZIy4^A6(I^D)e3%%bUV8Nf)WWFd_TYs(Nv--9df&=RUNfVKcrK%+`{3^0bfJO>@ zV#_dDVe|6+_lpzi#xeX?qeVt^Mw4is(hvU8FU1UoE?=atoL46kZ(5tjC-oUR3(n}* zUO<%QVO*Gl(;5#VEI6azEFV$!Fd|fQn3w2qp^|;~Lc?$>zz9jp)?(ve7y%Zs%&D9>@^Fel^L;W8|A* z8?hf{2&?zM-eR>*?USoz?X_C!5qtq2DirlWEOtRA6IGbgI-_57cOVE~;eQfsX2o39 zc$?Y4%gmeL3g{MzpQ`hZ^(_v>20|nwIx}f;3Vhe}x^h%gC0 z%Mcp>VGssfX>Ok#9O^z^QeLkWv{|3KZKAggz?wo>1$()q=c~_}Hqn@l zEEmaSYV1-z=v%y(kCZbNsh>I-9I1{X_%>tA!*YmDKAs=f_(a2^GkV(@(#wlBq}1f~ zEj}LH)pWC8@fCV*#3aWf?|d>jU>tgDVQGM{1NWES+;COZP)k0->ca_idi#g%pzG0T&fx^lYwg1m*(R)3L9r+*eQe7F^pZP`~_ zIc8TzZ6SqHp+y>sx5@Q9%hgo#Y&PGTdZ~>kUMhK$uBSkfk)hd^t7_ngs>e53ZpEX} zMs(AuOa;_~G1-#tbxX(V%jwdKHx+yr<9(*oi)N1dMsS^CA0}EQG@l9D9`)!S6e@2$ z$@bH87&$7P$bV^}ZQ=cZr+g|Bk>)_q3q)ApSa!r%^0lhAZoEm{M2a{9d1Y-nSB0jo z%@z`GSiAR$1zq?yGL6)e*-hlD=H)_lEl>|nqlGw!h@5FxOb)la|psy*mLo#fvhEg@4;>>8DWvrIN?cfJW)S--LcT{Kzf zS)R@JzJlw>Fkr(5th`*rv7BNs@reVh-lTFbq{}71LUUMxFas`A z9?y+5dx+eC+jKW@wak*zp#2>GOV+C#}&oK?T?#@xNxR^G)03oeK39XqijMmbc8$_4Ee zX@6*iwZTmo`r)?M{_S@P4d|!4{_i$WL7UR)Uw)!sj&c>Mc%l9g5HU`*mgB8?pl&ro@u2_*S=lvA2^K+&olV^U zX4CN{YtP3*yXZBacR{btv^496Zg&tb2wxii5?v{H@I{?>C0?-`nHJBBce_Y?)!4gP zETmU_IS<{4;e((31iWgz96qfsb~+N_ELE|Z0^+->I?Rr@2-GBh;(DhK_Oh*Cw|};b zR)8JIm}8aUGDpJ_as0Iu18;=yvab-b29TwNJIPvZ=Op1X^*}JMLy_ebed)<#0oDhC zz*HEUfqxqS6vQbK;crE_)-`V5xQuOV3AIJrC}^-AL~vhJ4#m@vx=UfQKSFXb6;UvQ zFlk3k@4zudxUFL(%V0xbj|u*BGmo0+JAx(|$wf?it+WVORxKz$w^e5|pvc9`!hKH)9+ zu;8Ixh{+5l+qHDGZ?i_vgOMX*B7LrTIuY9T+Az$9S&UAb<*NMrhaZJLEO4G0;I;WN zj)-xYxC-vOz5Ve+k zv~T$cKV_jkP+&1nrv;zFQ05D(ct9!N%9D$mlBl$m91@a8!6KX%ifTFz>P!{hYG615GM2wln38jupdU~ z#~0$xkB={EQ)j_J-e)ThHPFuh|F|sANeelC;7D_)>Z0-SxHeT598@_$?UEU!_=O-3 zW;i!Ya_gAZ8BGurK7YUv06)wnEuMHBvj*793{#4^8=U6HliJ1xu^DZn3@DJ8HGquo zRt6n;86;FiIE%)9dS9H^r^kYWASCQuk#HpqT}QgdsS0qdq_-qWjqh5kzK*q^Tb(Zf zf#B`|d}L!S(~c=AfOjk$5x$#;9j5LAl?XJLsmQ@I=3&N)D1UQfc5-swsL$RxbVj?L zy+355_K@9mhD1E`1S}xSxP~k@-+fHi?=xVx9r7P^SVGg^*U&ZVqx&BLS7d_#=r@BQ z=TU^m5C;kYdJf#~EB1%fgA?ce+-E(j&r6)4k8nSm)pi+|g|-j9Z4YD18}Aun>V&f3HXVjvLW((061Jd>%+;r)h1zT5dMs**WWCsWNQJmm*Nb#P=Rr!yuKh&Xcg zD(N`z=e-6l+P7S*2SBqd;yK6g&&JkFL%{0X9Q>=#(SIR0qu0X@kPl08dfV=jS)ONg z@LrE#IU#r%_~t5s4^sz~4R{^k1Bd@(tV}HopRWMebBOdoruDEmXvY() zyf7?MiA+@;WH*QpF_Fbb#>nwLCb&D!gn5>A(0&`(&G&BbZ|V4+#26&hLG|4tTNYCW zU@Zm-4Szd_A2r5dts_go>}m^$L?7Y=G#d5sA~vIaBqIwy;WtQ^T*Uf=I_d7-z)vj_ z^$7nL8CZN9SiwSmu$wD~iW>VB+0m_MJGv|BAhvUK+i7b4-I^fiOs&`8F(kk+ow$xn zwRK<)7!LH8xgZhtTu0R&0mw0-k#26anl)|=SbuPsT|qnOlOOz%Go5(e#_>gc0k8#U z^fNHh+W}A)*&GICRvaw4`Rov{i!p)h5OQ7Rjm3F=soFW_Y5($UB#yX`rCaCqjU-|- zdegZal31Et*f7?nOgPIXe8XPl?&-sgMK1%`3Y{c8EnvyWrAvPMe8U$v^?-0-fmd!1 zl7B=%)PeDhH@nS7qejDv=nOZgEhn*w>88!s{Y=5YLy`pdpsIbRM zm<}W=ovLzAs(E(YII~``daQ4vTe2g^!SG(=RCTUMVwm~qH(48Xy5h!33w`1sV8Nd^ zB$-#Nt=93!`c@i(1M3_~Q<0CQswG_fB7gELfJO?u(91A|VM%ql`^9c{;~4(cXr~dK z(KJdj`oUi@rkK~z#dY(gz3p`3t!(r7q&}Nx!5RJ13y9J@j7xKHTH~gL1!wfDGG{XtAM8l_)u(0711R66H9rFCmUw^c10}t(%JQ#f-52%15Kam?X&f^A7V@pOf-WNVN#KzR7{u zK!{{S=O!!nhELpX68xxfkND)s5&-`w7!m`yqEpTuPR2?IOES)R`idh8l_Xv*nm z^dEoBYD#a+zb=ijOn!G;z$L+kDE(C0OdA%@VQsAC=F_|1N rB)zk+G(cGLSi1YuiyCuM3(n}bFKzPNX!uyartK4(Y?J>3C9pO - + diff --git a/searchindex.js b/searchindex.js index e331bf9..56f7b7b 100644 --- a/searchindex.js +++ b/searchindex.js @@ -1 +1 @@ -Search.setIndex({"docnames": ["Series_Capture_The_Flag/LFC-BinaryExploitation", "Series_Capture_The_Flag/LFC-CodingQuickRef", "Series_Capture_The_Flag/LFC-Cryptography", "Series_Capture_The_Flag/LFC-Forensics", "Series_Capture_The_Flag/LFC-ReverseEngineering", "Series_Capture_The_Flag/LFC-WebExploitation", "Series_Capture_The_Flag/LFCWebExploitation", "Series_Configuration_Management/LFFSecuringDebian", "Series_Configuration_Management/LFL-CFG-SEC-Windows", "Series_Critical_Infrastructure/LFF-CIS-ElectricalGrid", "Series_Critical_Infrastructure/LFF-CIS-IndustrialControlSystems", "Series_Critical_Infrastructure/LFF-CIS-MobileNetworks", "Series_Home_Lab_Smart_City/LFF-HLSC-Applications", "Series_Home_Lab_Smart_City/LFF-HLSC-Cloud-Tier", "Series_Home_Lab_Smart_City/LFF-HLSC-Edge-Tier", "Series_In_Progress/LFF-IoT", "Series_In_Progress/LFFWirelessPentesting", "Series_Infrastructure_Pentest/LFF-IPS-P1-IntelligenceGathering", "Series_Infrastructure_Pentest/LFF-IPS-P2-VulnerabilityAnalysis", "Series_Infrastructure_Pentest/LFF-IPS-P3-Exploitation", "Series_Infrastructure_Pentest/LFF-IPS-P4-PostExploitation", "Series_Infrastructure_Pentest/LFF-IPS-P5-Reporting", "Series_Infrastructure_Pentest/LFF-IPS-P6-ConfigurationReview", "Series_Infrastructure_Pentest/LFF-IPS-P99-SAP-Pentesting", "Series_Investments/Stock_Market", "Series_Other_Information/Feedback", "Series_Other_Information/aboutme", "Series_Other_Information/content", "Series_Other_Information/contrib", "Series_The_Essentials/LFF-ESS-P0A-CyberSecurityEnterprise", "Series_The_Essentials/LFF-ESS-P0B-LinuxEssentials", "Series_The_Essentials/LFF-ESS-P0C-CloudEssentials", "Series_The_Essentials/LFF-ESS-P0D-SecureSoftware", "Series_The_Essentials/LFF-ESS-P0E-OpenSource", "Series_Vulnerable_Machines/LFC-VM-P0-InitialRecon", "Series_Vulnerable_Machines/LFC-VM-P1-FromNothingToUnprivilegedShell", "Series_Vulnerable_Machines/LFC-VM-P2-UnprivilegedToPrivilegedShell", "Series_Vulnerable_Machines/LFC-VM-P3-TipsAndTricks", "Series_Vulnerable_Machines/LFC-VM-P4-Appendix", "Series_Vulnerable_Machines/LFC-VulnerableMachines", "index"], "filenames": ["Series_Capture_The_Flag/LFC-BinaryExploitation.rst", "Series_Capture_The_Flag/LFC-CodingQuickRef.rst", "Series_Capture_The_Flag/LFC-Cryptography.rst", "Series_Capture_The_Flag/LFC-Forensics.rst", "Series_Capture_The_Flag/LFC-ReverseEngineering.rst", "Series_Capture_The_Flag/LFC-WebExploitation.rst", "Series_Capture_The_Flag/LFCWebExploitation.rst", "Series_Configuration_Management/LFFSecuringDebian.rst", "Series_Configuration_Management/LFL-CFG-SEC-Windows.rst", "Series_Critical_Infrastructure/LFF-CIS-ElectricalGrid.rst", "Series_Critical_Infrastructure/LFF-CIS-IndustrialControlSystems.rst", "Series_Critical_Infrastructure/LFF-CIS-MobileNetworks.rst", "Series_Home_Lab_Smart_City/LFF-HLSC-Applications.rst", "Series_Home_Lab_Smart_City/LFF-HLSC-Cloud-Tier.rst", "Series_Home_Lab_Smart_City/LFF-HLSC-Edge-Tier.rst", "Series_In_Progress/LFF-IoT.rst", "Series_In_Progress/LFFWirelessPentesting.rst", "Series_Infrastructure_Pentest/LFF-IPS-P1-IntelligenceGathering.rst", "Series_Infrastructure_Pentest/LFF-IPS-P2-VulnerabilityAnalysis.rst", "Series_Infrastructure_Pentest/LFF-IPS-P3-Exploitation.rst", "Series_Infrastructure_Pentest/LFF-IPS-P4-PostExploitation.rst", "Series_Infrastructure_Pentest/LFF-IPS-P5-Reporting.rst", "Series_Infrastructure_Pentest/LFF-IPS-P6-ConfigurationReview.rst", "Series_Infrastructure_Pentest/LFF-IPS-P99-SAP-Pentesting.rst", "Series_Investments/Stock_Market.rst", "Series_Other_Information/Feedback.rst", "Series_Other_Information/aboutme.rst", "Series_Other_Information/content.rst", "Series_Other_Information/contrib.rst", "Series_The_Essentials/LFF-ESS-P0A-CyberSecurityEnterprise.rst", "Series_The_Essentials/LFF-ESS-P0B-LinuxEssentials.rst", "Series_The_Essentials/LFF-ESS-P0C-CloudEssentials.rst", "Series_The_Essentials/LFF-ESS-P0D-SecureSoftware.rst", "Series_The_Essentials/LFF-ESS-P0E-OpenSource.rst", "Series_Vulnerable_Machines/LFC-VM-P0-InitialRecon.rst", "Series_Vulnerable_Machines/LFC-VM-P1-FromNothingToUnprivilegedShell.rst", "Series_Vulnerable_Machines/LFC-VM-P2-UnprivilegedToPrivilegedShell.rst", "Series_Vulnerable_Machines/LFC-VM-P3-TipsAndTricks.rst", "Series_Vulnerable_Machines/LFC-VM-P4-Appendix.rst", "Series_Vulnerable_Machines/LFC-VulnerableMachines.rst", "index.rst"], "titles": ["Binary Exploitation", "Coding Quick Reference", "Cryptography", "Forensics", "Reverse Engineering", "Learning from the CTF : Web Exploitation", "Learning from the CTF : Web Exploitation", "Learning from the field : Securing your Debian", "Configuring and Securing Series : Windows Environment", "Electrical Grid", "Industrial Control Systems", "The Essentials", "Appendix - Installation of Applications", "Cloud Tier", "Urban Monitoring Architecture - Edge Side", "Layers in IoT", "Learning from the field : Wireless Pentesting", "Intelligence Gathering", "Vulnerability Analysis", "Exploitation", "Post Exploitation", "Reporting", "Configuration Review", "Remote Function Calls (RFC), SAP GUI, and the DIAG Protocol", "Stock Market", "Feedback", "About Me", "The Magic of Learning", "Contributors", "Cybersecurity in an Enterprise", "Linux Basics", "Cloud Infrastructure Technologies", "Secure Software Development Fundamentals", "Open Source Concepts", "Initial Recon", "From Nothing to a Unprivileged Shell", "Unprivileged Shell to Privileged Shell", "Tips and Tricks", "Appendix", "Vulnerable Machines", "The Magic of Learning"], "terms": {"thi": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 26, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "post": [0, 2, 3, 4, 5, 6, 10, 16, 17, 19, 22, 30, 31, 33, 34, 36, 37, 40], "work": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 13, 17, 18, 20, 22, 24, 29, 31, 32, 34, 35, 36, 37, 38, 39], "progress": [0, 2, 3, 5, 6, 17, 18, 24, 30, 33, 34, 36, 38, 39], "list": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 15, 16, 17, 19, 22, 23, 24, 29, 31, 32, 33, 34, 36, 37], "while": [0, 1, 2, 3, 4, 5, 6, 8, 9, 10, 11, 13, 14, 15, 17, 18, 19, 22, 24, 31, 32, 33, 34, 35, 36, 37, 38, 39], "do": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 34, 35, 36, 37, 38, 39, 40], "challeng": [0, 2, 4, 5, 6, 9, 15, 17, 18, 20, 29, 31, 32, 33, 34, 36, 37, 39], "dure": [0, 2, 3, 5, 6, 8, 9, 10, 11, 15, 17, 18, 19, 20, 21, 22, 24, 30, 31, 32, 33, 37, 39, 40], "variou": [0, 2, 3, 4, 5, 6, 9, 10, 11, 15, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 35, 37, 39], "ctf": [0, 1, 2, 3, 4, 17, 18, 35, 36, 38], "": [0, 1, 2, 3, 4, 6, 7, 8, 9, 10, 11, 13, 14, 15, 17, 18, 19, 21, 22, 23, 24, 29, 31, 32, 34, 35, 36, 37, 38, 39], "over": [0, 1, 3, 5, 9, 11, 19, 20, 22, 23, 24, 26, 29, 30, 31, 32, 33, 35, 36, 37], "The": [0, 1, 2, 3, 4, 6, 7, 8, 9, 10, 13, 14, 15, 16, 18, 19, 21, 22, 24, 26, 29, 31, 32, 33, 34, 35, 36, 37, 38, 39], "wire": [0, 10, 11, 15, 16, 18, 26, 29, 31], "wargam": 0, "thank": [0, 16, 17, 18, 19, 28, 30, 32, 34, 37, 39], "superkojiman": [0, 34, 35, 37, 39], "barreba": 0, "et0x": 0, "who": [0, 5, 6, 7, 8, 9, 11, 13, 17, 20, 26, 28, 29, 30, 31, 32, 34, 36, 38, 39, 40], "me": [0, 1, 17, 18, 19, 27, 30, 33, 35, 37, 39], "learn": [0, 4, 17, 18, 19, 20, 22, 24, 26, 29, 30, 31, 32, 33, 34, 39], "let": [0, 1, 3, 4, 5, 8, 9, 10, 11, 17, 18, 19, 20, 22, 23, 25, 29, 31, 32, 33, 35, 36, 37, 38, 39], "start": [0, 1, 3, 4, 5, 9, 10, 13, 14, 15, 16, 17, 18, 20, 22, 24, 26, 29, 31, 32, 33, 34, 35, 36, 38, 40], "some": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 14, 15, 16, 17, 18, 19, 20, 22, 26, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "we": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 12, 14, 15, 16, 17, 18, 19, 20, 22, 24, 25, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "would": [0, 1, 2, 3, 4, 5, 8, 9, 10, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 25, 26, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "see": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14, 15, 17, 18, 19, 20, 22, 29, 31, 32, 33, 35, 36, 37, 38, 39], "which": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "clear": [0, 9, 10, 13, 15, 20, 26, 29, 30, 32, 33, 35, 37, 39], "big": [0, 9, 17, 23, 24, 35, 38, 39], "endian": [0, 3, 20, 23], "store": [0, 1, 3, 4, 5, 6, 8, 9, 10, 11, 13, 15, 17, 19, 20, 22, 29, 30, 33, 35, 36, 37, 38, 39], "most": [0, 1, 3, 5, 6, 7, 8, 9, 10, 11, 15, 17, 18, 19, 20, 23, 24, 29, 31, 32, 33, 35, 36, 37, 38, 39], "signific": [0, 3, 5, 15, 18, 32, 33], "word": [0, 1, 2, 4, 5, 7, 9, 17, 20, 24, 33, 35, 36, 37, 39], "smallest": 0, "address": [0, 1, 3, 5, 6, 7, 9, 11, 13, 14, 15, 16, 18, 19, 20, 22, 23, 29, 31, 32, 33, 35, 36, 37, 38], "least": [0, 3, 7, 9, 11, 15, 18, 20, 22, 30, 31, 32, 33, 35, 39], "i": [0, 1, 2, 3, 5, 6, 7, 8, 10, 11, 12, 14, 16, 18, 21, 22, 23, 24, 26, 29, 31, 32, 34, 35, 36, 37, 38, 40], "largest": [0, 17, 18, 30], "littl": [0, 3, 5, 9, 10, 17, 20, 23, 24, 32, 33, 35, 38, 39], "contrast": [0, 30, 31, 32], "img": [0, 3, 7, 13, 38, 39], "left": [0, 3, 5, 10, 18, 22, 24, 30, 31, 35, 37, 39], "imag": [0, 1, 5, 7, 11, 13, 15, 17, 18, 20, 26, 30, 33, 35, 37], "png": [0, 1, 5, 6, 7, 38, 39], "250": [0, 18, 29], "right": [0, 3, 5, 6, 9, 10, 13, 18, 20, 24, 30, 31, 32, 33, 35, 36, 37, 39], "when": [0, 1, 2, 3, 5, 6, 7, 8, 9, 10, 11, 12, 13, 15, 17, 18, 19, 20, 21, 22, 23, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "you": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 24, 25, 26, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "need": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 12, 13, 14, 15, 16, 17, 18, 19, 20, 22, 23, 24, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "whether": [0, 3, 4, 5, 6, 7, 10, 12, 13, 15, 17, 18, 22, 29, 30, 32, 33, 36, 37, 39], "32": [0, 1, 3, 4, 5, 6, 7, 8, 9, 17, 18, 19, 20, 30, 31, 34, 36, 39], "bit": [0, 1, 3, 4, 5, 9, 10, 12, 13, 15, 18, 19, 20, 22, 30, 33, 36, 37, 39], "64": [0, 1, 3, 4, 5, 7, 9, 17, 18, 19, 20, 30, 31, 36, 39], "elf": [0, 3, 4, 20, 30], "platform": [0, 3, 5, 9, 10, 11, 15, 17, 18, 19, 20, 21, 22, 23, 29, 30, 32, 36, 37, 39], "run": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 13, 14, 17, 18, 19, 20, 22, 23, 24, 29, 30, 31, 32, 33, 34, 35, 36, 38], "prevent": [0, 5, 7, 9, 10, 11, 17, 18, 19, 29, 30, 31, 32, 36, 39], "techniqu": [0, 3, 5, 10, 15, 17, 18, 19, 20, 30, 31, 32, 33, 34, 35, 36, 37, 39], "ha": [0, 1, 3, 4, 5, 7, 8, 9, 10, 11, 13, 15, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "been": [0, 1, 3, 5, 6, 7, 8, 9, 10, 11, 13, 15, 17, 18, 19, 20, 24, 30, 31, 32, 33, 35, 36, 37, 38, 39, 40], "what": [0, 3, 4, 5, 7, 8, 11, 12, 13, 17, 18, 19, 20, 24, 29, 30, 31, 34, 35, 37, 38, 40], "x86": [0, 4, 10, 19, 20, 31, 35, 36, 39], "unam": [0, 30], "compil": [0, 4, 5, 9, 15, 18, 19, 31, 33, 35, 36, 37, 38, 39], "binary_fil": 0, "probabl": [0, 2, 3, 5, 6, 7, 8, 9, 10, 13, 17, 18, 19, 20, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "good": [0, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 15, 17, 18, 19, 20, 21, 22, 24, 29, 31, 33, 35, 36, 37, 38, 39], "idea": [0, 3, 5, 9, 10, 17, 18, 19, 24, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "just": [0, 1, 2, 3, 4, 5, 6, 8, 9, 10, 13, 15, 17, 18, 19, 20, 22, 23, 30, 31, 32, 33, 35, 36, 37, 38, 39], "h": [0, 3, 5, 6, 17, 18, 19, 20, 22, 30, 35, 36, 37, 38, 39], "flag": [0, 1, 2, 3, 4, 5, 6, 9, 10, 17, 19, 20, 30, 31, 33, 34, 35, 36, 37, 38, 39, 40], "document": [0, 1, 3, 5, 8, 9, 10, 13, 15, 17, 19, 20, 21, 22, 23, 26, 29, 31, 32, 33, 37, 38, 39, 40], "provid": [0, 1, 2, 3, 4, 5, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 22, 23, 24, 29, 32, 33, 34, 35, 36, 37, 38, 39, 40], "flagxx": [0, 36, 39], "usag": [0, 3, 4, 9, 10, 15, 17, 18, 20, 22, 31, 32, 33, 35, 36, 37, 38, 39], "php": [0, 18, 20, 29, 30, 31, 36, 37], "option": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 11, 12, 13, 14, 15, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 34, 36, 37, 38, 39], "f": [0, 2, 3, 5, 6, 7, 9, 10, 12, 13, 15, 16, 17, 19, 20, 22, 24, 30, 35, 36, 37, 38, 39], "arg": [0, 17, 18, 30, 35, 39], "r": [0, 1, 3, 4, 5, 7, 8, 9, 10, 15, 16, 17, 18, 19, 20, 22, 24, 30, 34, 35, 36, 37, 38, 39], "code": [0, 4, 9, 10, 11, 13, 15, 17, 20, 22, 23, 30, 31, 32, 34, 35, 36, 40], "relro": 0, "noexecut": 0, "nx": 0, "canari": 0, "space": [0, 1, 3, 4, 5, 6, 7, 10, 19, 31, 33, 35, 37, 39], "layout": [0, 30, 31, 37, 39], "random": [0, 2, 5, 6, 17, 29, 34, 37, 38, 39], "posit": [0, 2, 3, 5, 9, 10, 19, 22, 24, 31, 32, 36, 37, 38, 39], "independ": [0, 9, 24, 30, 31, 32], "kernel": [0, 3, 4, 15, 20, 22, 23, 31, 32, 33, 35, 37, 38], "smash": [0, 31], "fortifi": 0, "sourc": [0, 3, 4, 5, 6, 7, 13, 15, 17, 18, 19, 20, 22, 29, 30, 31, 32, 36, 37, 38, 39, 40], "protector": [0, 18], "ar": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 29, 30, 31, 34, 35, 37, 38, 40], "can": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 17, 18, 19, 20, 21, 22, 23, 24, 29, 30, 31, 32, 33, 34, 35, 37, 38, 40], "found": [0, 1, 3, 5, 7, 8, 10, 13, 15, 17, 18, 19, 20, 22, 24, 30, 31, 32, 33, 35, 36, 37, 38, 39, 40], "checksec": 0, "script": [0, 1, 3, 6, 7, 8, 10, 13, 15, 18, 19, 20, 22, 29, 31, 33, 34, 35, 37, 38], "present": [0, 3, 5, 9, 10, 11, 13, 14, 15, 17, 18, 19, 20, 22, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "peda": 0, "readelf": 0, "tool": [0, 1, 2, 5, 6, 7, 8, 11, 18, 24, 34, 35, 36, 37], "If": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 14, 15, 16, 17, 18, 19, 20, 22, 24, 25, 26, 29, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "header": [0, 9, 10, 17, 18, 30, 31, 32, 33, 35, 36, 37, 38, 39], "gnu_stack": 0, "rwe": 0, "e": [0, 3, 5, 6, 7, 9, 10, 11, 13, 14, 15, 18, 19, 20, 21, 22, 24, 26, 31, 32, 33, 34, 36, 38], "narnia8": 0, "melinda": [0, 4], "l": [0, 3, 4, 5, 6, 7, 10, 13, 14, 17, 19, 20, 29, 31, 32, 34, 35, 37, 38], "narnia": [0, 26], "grep": [0, 3, 7, 16, 17, 18, 20, 35], "0x000000": 0, "0x00000000": [0, 3, 19], "0x00000": 0, "0x10": [0, 3, 7], "In": [0, 1, 3, 5, 6, 7, 8, 9, 10, 11, 13, 15, 16, 17, 18, 19, 22, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "order": [0, 1, 3, 5, 7, 8, 9, 10, 11, 13, 17, 18, 19, 22, 23, 24, 30, 31, 33, 34, 36, 37, 38, 39], "make": [0, 1, 3, 5, 7, 8, 9, 10, 11, 14, 15, 17, 18, 19, 20, 21, 22, 24, 26, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "z": [0, 2, 3, 4, 5, 10, 17, 18, 19, 22, 24, 30, 34, 35, 36, 39], "execstack": 0, "fno": [0, 18], "should": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39], "gcc": [0, 7, 30, 31, 33, 36, 39], "ggdb": [0, 18], "m32": 0, "o": [0, 1, 3, 6, 7, 9, 11, 14, 15, 17, 18, 19, 20, 22, 29, 32, 33, 34, 35, 36, 37, 38, 39], "buffer1": 0, "c": [0, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 15, 17, 18, 19, 29, 31, 32, 33, 35, 36, 37, 38, 39], "proc": [0, 7, 10, 18, 36], "sy": [0, 1, 7, 10, 14, 18, 20, 30, 31, 36, 38, 39], "randomize_va_spac": 0, "three": [0, 3, 4, 5, 7, 9, 11, 13, 15, 17, 18, 19, 22, 29, 30, 31, 32, 34, 35, 37, 39], "valu": [0, 3, 4, 5, 6, 8, 9, 10, 11, 12, 13, 15, 17, 19, 20, 23, 24, 29, 32, 33, 35, 36], "0": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 12, 13, 15, 16, 17, 18, 19, 20, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "appli": [0, 3, 5, 7, 8, 9, 10, 11, 13, 14, 15, 17, 18, 19, 24, 29, 30, 31, 32, 33, 35, 37, 38, 39], "boot": [0, 3, 5, 7, 10, 14, 15, 18, 19, 20, 22, 31, 35, 36, 38, 39], "norandmap": 0, "1": [0, 1, 2, 4, 5, 6, 7, 8, 9, 10, 12, 13, 14, 15, 16, 17, 20, 22, 23, 32, 33, 34, 36, 37, 38, 39], "virtual": [0, 3, 5, 9, 10, 15, 17, 18, 21, 24, 29, 34, 36, 37, 38, 39], "dynam": [0, 1, 2, 3, 4, 5, 9, 10, 11, 13, 17, 22, 29, 30, 31, 35, 36, 37, 38, 39], "object": [0, 1, 3, 5, 10, 18, 20, 22, 24, 29, 30, 31, 32, 35, 36, 37, 38, 39], "vdso": [0, 30], "page": [0, 2, 5, 6, 15, 17, 18, 19, 20, 22, 29, 30, 31, 32, 33, 35, 36, 40], "region": [0, 4, 31, 33], "base": [0, 1, 3, 6, 7, 8, 10, 11, 15, 17, 18, 19, 20, 21, 22, 24, 29, 31, 32, 33, 35, 36, 37, 39], "segment": [0, 9, 18, 24, 30, 31, 38, 39], "immedi": [0, 5, 9, 19, 24, 30], "end": [0, 1, 3, 5, 6, 9, 10, 11, 15, 17, 18, 19, 20, 29, 31, 32, 33, 35, 37, 39], "2": [0, 1, 2, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14, 15, 17, 20, 22, 24, 32, 33, 34, 36, 37, 38, 39], "default": [0, 1, 3, 5, 6, 7, 8, 9, 10, 12, 13, 16, 17, 19, 20, 21, 22, 24, 29, 30, 31, 32, 34, 35, 36, 37, 38, 39], "chang": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 12, 13, 15, 16, 17, 18, 20, 22, 24, 29, 31, 32, 33, 35, 36, 37, 38, 39], "temporarili": [0, 5, 30], "new": [0, 1, 5, 7, 9, 10, 11, 13, 15, 17, 22, 24, 31, 32, 33, 35, 36, 37, 38, 39], "echo": [0, 1, 3, 5, 6, 10, 13, 17, 18, 19, 20, 31, 35, 36, 37, 38, 39], "To": [0, 3, 5, 7, 8, 9, 10, 12, 13, 14, 15, 17, 18, 19, 20, 22, 23, 24, 30, 31, 32, 33, 35, 36, 38], "perman": [0, 5, 9, 18, 30, 32], "add": [0, 1, 3, 4, 5, 7, 10, 12, 13, 17, 18, 20, 21, 22, 25, 26, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "etc": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 15, 17, 18, 20, 21, 22, 24, 29, 31, 33, 34, 35, 37, 38], "sysctl": 0, "conf": [0, 7, 10, 13, 17, 18, 20, 22, 31, 35, 36, 37, 39], "p": [0, 3, 5, 6, 8, 9, 10, 11, 13, 17, 18, 20, 22, 31, 34, 35, 36, 38], "command": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 14, 17, 20, 22, 29, 31, 32, 33, 35], "test": [0, 1, 5, 7, 10, 11, 12, 13, 16, 17, 18, 20, 21, 22, 26, 31, 33, 35, 37, 38, 39, 40], "your": [0, 3, 6, 8, 9, 10, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 24, 26, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "applic": [0, 1, 3, 8, 11, 17, 18, 20, 21, 23, 24, 33, 35, 36, 37, 38], "ensur": [0, 3, 5, 6, 9, 10, 11, 13, 19, 22, 29, 30, 31, 32, 33, 36, 39], "compat": [0, 1, 3, 7, 18, 30, 31, 33, 35, 36, 39], "necessari": [0, 5, 9, 10, 13, 15, 17, 18, 22, 29, 30, 31, 32, 33], "specif": [0, 3, 5, 7, 10, 13, 15, 17, 18, 20, 29, 31, 32, 33, 34, 35, 36, 37, 38, 39], "its": [0, 1, 2, 3, 4, 5, 7, 8, 9, 10, 11, 13, 17, 18, 19, 21, 22, 23, 24, 29, 31, 32, 33, 34, 35, 36, 37, 38, 39], "child": [0, 1, 4, 30], "process": [0, 3, 4, 5, 7, 8, 9, 10, 11, 13, 17, 18, 19, 20, 21, 22, 23, 24, 26, 29, 31, 33, 35], "follow": [0, 1, 2, 3, 4, 5, 7, 8, 9, 11, 12, 13, 14, 15, 17, 18, 19, 20, 22, 24, 30, 31, 32, 33, 34, 35, 36, 37, 39], "setarch": 0, "m": [0, 1, 3, 6, 8, 9, 10, 11, 16, 17, 19, 20, 24, 26, 29, 30, 31, 34, 35, 36, 37, 38, 39], "won": [0, 3, 5, 17, 19, 30, 32, 35, 36, 39], "t": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 16, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "abl": [0, 1, 3, 5, 7, 9, 10, 14, 15, 17, 18, 19, 20, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "until": [0, 1, 5, 10, 19, 20, 24, 32, 33], "so": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 17, 18, 19, 20, 22, 26, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39, 40], "one": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 14, 15, 17, 18, 19, 20, 21, 22, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "wai": [0, 1, 3, 5, 8, 9, 11, 12, 13, 15, 17, 18, 19, 20, 22, 23, 24, 29, 31, 32, 33, 35, 36, 37, 38, 39, 40], "linux": [0, 3, 4, 7, 9, 13, 15, 17, 18, 20, 29, 32, 33, 34, 37, 40], "alwai": [0, 1, 3, 5, 6, 9, 10, 13, 17, 18, 20, 22, 30, 31, 32, 33, 34, 35, 36, 37, 39], "same": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 15, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "analysi": [0, 2, 5, 9, 15, 17, 19, 22, 29, 30, 31, 33, 37, 39, 40], "load": [0, 1, 3, 4, 5, 6, 7, 9, 11, 15, 17, 18, 19, 20, 31, 35, 38, 39], "break": [0, 5, 10, 24, 30, 31, 32, 33, 35, 37, 39], "_start": [0, 4], "vmmap": 0, "pwndbg": 0, "want": [0, 1, 3, 4, 5, 6, 7, 8, 10, 12, 13, 15, 17, 18, 19, 20, 22, 24, 26, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39, 40], "legend": [0, 5, 18], "rwx": [0, 30], "rodata": 0, "0x555555554000": 0, "0x555555556000": 0, "xp": [0, 18, 20, 36, 37, 39], "2000": [0, 3, 5, 6, 10, 18, 36, 37, 38, 39], "root": [0, 3, 5, 7, 10, 11, 13, 14, 15, 17, 18, 19, 20, 31, 32, 34, 35, 36, 37], "lucki": [0, 3, 35, 39], "0x555555756000": 0, "0x555555757000": 0, "1000": [0, 3, 5, 8, 17, 18, 19, 20, 24, 29, 30, 31, 35, 36, 37, 38, 39], "0x555555758000": 0, "rwxp": 0, "3000": [0, 5, 18, 24], "here": [0, 1, 3, 5, 6, 7, 8, 9, 10, 14, 15, 17, 18, 19, 20, 22, 25, 30, 32, 33, 35, 36, 37, 38, 39], "breakpoint": [0, 5, 15], "ad": [0, 3, 5, 9, 10, 11, 15, 17, 18, 20, 21, 22, 24, 29, 32, 33, 35, 36, 37, 38, 39], "ida": 0, "go": [0, 3, 4, 5, 8, 9, 10, 12, 15, 17, 18, 19, 20, 24, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "gener": [0, 3, 4, 5, 7, 8, 10, 11, 12, 13, 14, 15, 17, 19, 20, 21, 22, 29, 31, 33, 34, 35, 36, 37, 38, 39], "line": [0, 1, 2, 3, 4, 6, 7, 9, 10, 11, 13, 15, 17, 19, 20, 22, 24, 31, 32, 33, 35, 36, 37, 38, 39], "prefix": [0, 18, 30, 37, 39], "now": [0, 1, 3, 5, 7, 8, 9, 10, 13, 15, 17, 18, 19, 20, 22, 30, 31, 32, 33, 35, 36, 37, 38, 39], "eg": [0, 4, 30, 35, 39], "strcpy": 0, "0x123": 0, "br": [0, 5, 30, 38, 39], "know": [0, 3, 5, 9, 10, 12, 17, 18, 20, 24, 25, 30, 32, 33, 35, 36, 37, 38, 39], "cyclic": [0, 3, 9, 36, 39], "pattern": [0, 5, 7, 9, 10, 11, 15, 20, 31, 32, 35, 36, 38, 39], "pattern_cr": 0, "rb": [0, 1, 3, 11, 18, 38, 39], "creat": [0, 1, 2, 3, 4, 5, 6, 7, 9, 10, 12, 15, 17, 18, 21, 22, 29, 33, 34, 35, 36, 37], "pattern_offset": 0, "exact": [0, 1, 3, 5, 15, 30, 31], "usr": [0, 1, 3, 7, 17, 20, 30, 31, 35, 36, 37, 38, 39], "metasploit": 0, "framework": [0, 1, 3, 5, 9, 18, 19, 20, 21, 31, 32, 33, 37, 38, 39], "200": [0, 1, 5, 9, 18, 30, 35, 38, 39], "aa0aa1aa2aa3aa4aa5aa6aa7aa8aa9ab0ab1ab2ab3ab4ab5ab6ab7ab8ab9ac0ac1ac2ac3ac4ac5ac6ac7ac8ac9ad0ad1ad2ad3ad4ad5ad6ad7ad8ad9ae0ae1ae2ae3ae4ae5ae6ae7ae8ae9af0af1af2af3af4af5af6af7af8af9ag0ag1ag2ag3ag4ag5ag": 0, "q": [0, 3, 9, 17, 18, 19, 20, 30, 35, 38], "0x37654136": 0, "match": [0, 1, 3, 5, 7, 9, 10, 15, 16, 17, 18, 19, 29, 30, 33, 34, 35, 37, 39], "140": [0, 18, 20], "all": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 14, 15, 16, 17, 18, 20, 22, 23, 24, 26, 29, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "user": [0, 1, 3, 6, 11, 12, 15, 17, 21, 22, 23, 32, 33, 38], "printf": [0, 3, 36, 37, 39], "statement": [0, 1, 5, 6, 18, 20, 32, 33, 35, 36, 37, 38, 39], "exist": [0, 5, 8, 9, 10, 15, 18, 19, 20, 22, 30, 33, 35, 36, 38, 39], "directli": [0, 1, 5, 6, 9, 10, 11, 12, 13, 17, 18, 19, 20, 22, 29, 30, 31, 32, 33, 36, 37, 38, 39], "print": [0, 1, 2, 3, 4, 7, 10, 13, 15, 17, 18, 20, 33, 35, 36, 37, 38, 39], "possibl": [0, 3, 5, 7, 9, 10, 11, 15, 16, 17, 18, 19, 25, 29, 30, 31, 32, 33, 34, 36, 37, 38], "how": [0, 1, 3, 5, 6, 7, 8, 9, 12, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "read": [0, 2, 3, 4, 5, 6, 7, 8, 10, 12, 13, 17, 19, 20, 22, 26, 29, 31, 32, 33, 35, 36, 37, 38, 39, 40], "alloc": [0, 9, 10, 11, 15, 18, 30, 31, 35, 39], "malloc": 0, "A": [0, 1, 3, 4, 5, 8, 9, 10, 11, 12, 13, 15, 18, 22, 23, 24, 29, 30, 31, 33, 34, 35, 36, 37, 38, 39], "sign": [0, 3, 4, 5, 7, 9, 13, 14, 17, 18, 24, 30, 32, 33, 35, 39], "integ": [0, 2, 3, 4, 7, 9, 23, 32, 37, 39], "rang": [0, 1, 2, 3, 4, 5, 7, 8, 9, 10, 15, 16, 18, 19, 20, 22, 24, 30, 31, 32, 33, 34, 38, 39], "between": [0, 1, 4, 5, 7, 10, 11, 13, 15, 17, 18, 19, 20, 22, 24, 29, 31, 32, 33, 35, 36, 37, 39], "147": [0, 18], "483": 0, "648": 0, "647": [0, 18], "first": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 13, 14, 15, 17, 18, 19, 20, 22, 24, 31, 33, 35, 36, 38], "neg": [0, 3, 9, 10, 32], "indic": [0, 1, 3, 4, 5, 7, 8, 9, 10, 15, 18, 19, 24, 29, 30, 32, 33, 35, 39], "happen": [0, 3, 5, 9, 10, 11, 13, 15, 17, 18, 24, 29, 30, 31, 32, 35, 36, 37, 38, 39], "result": [0, 1, 3, 5, 6, 9, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 34, 35, 36, 38, 39], "well": [0, 1, 3, 5, 6, 7, 9, 10, 11, 13, 14, 15, 17, 18, 19, 20, 21, 22, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "goe": [0, 1, 10, 11, 13, 15, 17, 22, 32, 36, 39], "mean": [0, 1, 2, 3, 5, 6, 7, 9, 10, 11, 13, 15, 18, 19, 20, 24, 30, 31, 32, 33, 35, 36, 38, 39], "number": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 15, 18, 19, 20, 22, 24, 29, 31, 33, 34, 35, 36, 37, 38, 39], "fact": [0, 5, 7, 30, 36, 39], "due": [0, 3, 5, 9, 10, 18, 19, 24, 30, 31, 32, 33, 36, 38, 39], "complement": [0, 3, 30, 31], "method": [0, 1, 2, 4, 8, 11, 12, 13, 17, 20, 22, 23, 24, 29, 31, 32, 33, 36, 37, 38], "repres": [0, 1, 3, 5, 9, 10, 13, 15, 24, 29, 30, 31, 32, 33], "actual": [0, 3, 4, 5, 9, 10, 11, 15, 18, 30, 31, 32, 33, 36, 38, 39], "wrap": [0, 1, 5, 19, 20, 31, 37, 39], "around": [0, 3, 4, 10, 11, 15, 17, 18, 19, 20, 30, 31, 35, 37, 39], "auction_choic": 0, "These": [0, 3, 4, 5, 7, 9, 10, 11, 13, 15, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 37, 38, 39], "knockoff": 0, "cost": [0, 9, 10, 11, 17, 24, 31, 32, 33], "900": 0, "each": [0, 1, 2, 3, 4, 5, 6, 7, 9, 10, 11, 13, 15, 17, 18, 19, 20, 22, 29, 31, 32, 33, 34, 35, 36, 38, 39], "enter": [0, 1, 3, 4, 5, 6, 7, 8, 9, 15, 18, 19, 20, 22, 24, 30, 33, 35, 37, 38, 39, 40], "desir": [0, 11, 20, 22, 29, 30, 31, 33], "quantiti": [0, 3, 4, 5, 9, 31, 33], "n": [0, 1, 3, 5, 8, 9, 10, 11, 12, 16, 17, 18, 19, 22, 30, 34, 35, 36, 37, 38, 39], "int": [0, 1, 3, 5, 11, 18, 30, 36, 37, 39], "number_flag": 0, "fflush": 0, "scanf": 0, "d": [0, 1, 2, 3, 4, 5, 7, 8, 9, 11, 14, 16, 17, 18, 19, 20, 22, 31, 35, 37, 38], "total_cost": 0, "nthe": 0, "final": [0, 1, 5, 7, 9, 15, 17, 30, 31, 33, 34, 35, 39], "account_bal": 0, "nyour": 0, "current": [0, 1, 3, 5, 7, 8, 9, 10, 11, 12, 13, 14, 17, 18, 20, 22, 24, 26, 31, 32, 33, 35, 36, 37, 38, 39, 40], "balanc": [0, 10, 11, 31, 33], "transact": [0, 5, 9, 18, 23, 24, 31], "els": [0, 1, 3, 5, 6, 7, 24, 30, 31, 32, 33, 36, 37, 38, 39], "Not": [0, 5, 9, 10, 18, 19, 24, 29, 30, 32, 33], "enough": [0, 1, 8, 9, 10, 17, 20, 21, 30, 31, 32, 33, 35, 36, 37, 39], "fund": [0, 30, 32, 33], "complet": [0, 1, 5, 6, 7, 9, 10, 11, 15, 17, 18, 19, 20, 23, 24, 30, 31, 32, 33, 35, 38, 39], "purchas": [0, 5, 24, 31], "1337": [0, 1, 5, 6, 35, 39], "100000": [0, 18], "dollar": [0, 30], "onli": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 15, 16, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 34, 35, 36, 38], "have": [0, 1, 2, 3, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 22, 23, 24, 26, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "stock": 0, "bid": 0, "xxx": [0, 17, 18, 19, 34, 35, 38, 39], "nnot": 0, "abov": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 17, 18, 19, 20, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39], "our": [0, 2, 4, 5, 6, 7, 8, 9, 10, 12, 13, 15, 17, 18, 19, 20, 22, 24, 30, 31, 32, 33, 35, 36, 38, 39, 40], "greater": [0, 3, 4, 5, 9, 29, 30, 32, 34, 35, 39], "than": [0, 3, 5, 7, 8, 9, 10, 11, 17, 18, 19, 20, 22, 23, 24, 29, 30, 31, 32, 33, 35, 37], "init": [0, 7, 13, 14, 15, 18, 31, 37, 38, 39], "As": [0, 1, 3, 5, 7, 8, 9, 10, 12, 13, 15, 17, 18, 19, 20, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "roughli": [0, 5, 30], "calcul": [0, 3, 9, 20, 24, 31, 32], "totalcost": 0, "divid": [0, 2, 3, 4, 5, 9, 13, 15, 18, 30, 31, 32], "either": [0, 1, 3, 4, 5, 9, 10, 11, 13, 15, 17, 18, 19, 20, 22, 28, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39], "put": [0, 5, 9, 18, 19, 21, 24, 30, 31, 32, 33, 36, 37, 38], "shellcod": [0, 19, 35, 37, 38, 39], "redirect": [0, 5, 7, 11, 18, 19, 20, 35], "nop": [0, 18, 19, 20, 34, 35, 39], "sled": 0, "correct": [0, 3, 5, 7, 9, 11, 13, 15, 17, 18, 19, 20, 22, 26, 29, 30, 32, 33, 35, 37, 39], "howev": [0, 1, 5, 7, 8, 9, 10, 11, 13, 15, 16, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "sometim": [0, 3, 5, 6, 10, 11, 17, 18, 19, 20, 22, 30, 31, 32, 33, 35, 36, 37, 38, 39], "env": [0, 1, 3, 13, 23, 30, 31, 35, 36, 37, 38, 39], "util": [0, 3, 5, 7, 9, 10, 13, 15, 17, 19, 20, 21, 22, 24, 29, 31, 33, 34, 35, 36, 38], "getenvaddr": 0, "includ": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 15, 17, 18, 19, 20, 21, 22, 23, 24, 29, 31, 33, 34, 35, 36, 37, 38, 39], "stdio": 0, "stdlib": [0, 13], "main": [0, 3, 5, 9, 10, 11, 13, 15, 18, 22, 29, 30, 31, 32, 33, 35, 36, 37, 39], "argc": 0, "ptr": [0, 4, 13, 18], "3": [0, 1, 2, 3, 4, 5, 6, 8, 9, 10, 12, 15, 16, 17, 22, 24, 30, 31, 32, 33, 34, 36, 37, 38, 39], "var": [0, 4, 7, 9, 10, 13, 18, 22, 31, 35, 36, 37, 38, 39], "name": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 20, 21, 22, 23, 24, 30, 32, 33, 34, 36, 37, 38], "getenv": [0, 36, 39], "strlen": [0, 38, 39], "adjust": [0, 3, 7, 10, 17, 37, 39], "shell": [0, 7, 10, 15, 17, 19, 20, 22, 31, 32, 34, 38, 40], "type": [0, 1, 2, 4, 7, 8, 9, 13, 17, 18, 20, 22, 23, 24, 29, 34, 35, 36, 37], "rop": [0, 19], "retlib": 0, "debug": [0, 3, 5, 7, 10, 14, 17, 18, 19, 33, 35, 36, 37, 38, 39], "symbol": [0, 1, 2, 3, 5, 6, 15, 30, 33, 36, 37, 38, 39], "b": [0, 1, 3, 5, 9, 10, 11, 13, 15, 17, 18, 24, 30, 31, 35, 36, 37, 38, 39], "0x804859e": 0, "home": [0, 3, 5, 7, 9, 10, 13, 18, 19, 22, 31, 32, 33, 35, 36, 38], "c0ntex": 0, "0x0804859e": 0, "text": [0, 1, 2, 3, 4, 5, 6, 9, 10, 11, 15, 17, 18, 19, 20, 22, 29, 31, 33, 35, 36, 37], "info": [0, 3, 4, 9, 10, 17, 20, 23, 34, 35, 36, 37, 38, 39], "0x28085260": 0, "like": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 14, 15, 17, 18, 19, 20, 22, 24, 25, 29, 30, 31, 32, 34, 36, 37, 38], "It": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 15, 16, 17, 18, 19, 20, 21, 22, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "addrofsystem": 0, "4arbitrarybyt": 0, "argument": [0, 1, 3, 4, 5, 17, 18, 19, 31, 32, 35, 36, 37, 38, 39], "4arbitrari": 0, "could": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 15, 16, 17, 18, 19, 20, 22, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "junk": 0, "xcc": 0, "becaus": [0, 2, 3, 5, 7, 9, 10, 11, 13, 15, 17, 18, 19, 20, 22, 24, 30, 32, 33, 35, 36, 37, 38, 39], "form": [0, 1, 3, 7, 9, 11, 15, 17, 18, 19, 20, 24, 30, 31, 32, 33, 37], "push": [0, 3, 19, 20, 30, 31, 34, 37, 39], "onto": [0, 9, 15, 19, 30], "previou": [0, 15, 17, 19, 20, 22, 31, 32, 33, 35, 36, 37, 39], "along": [0, 1, 4, 5, 9, 10, 11, 17, 19, 30, 31, 33, 36, 39], "ebp": [0, 4], "esp": 0, "being": [0, 3, 5, 8, 9, 10, 11, 13, 15, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "top": [0, 3, 5, 9, 10, 15, 17, 18, 30, 31, 33, 35, 37, 39], "lower": [0, 1, 4, 5, 7, 9, 17, 22, 30, 31, 32, 33, 35, 37, 39], "save": [0, 1, 3, 5, 9, 10, 13, 17, 18, 19, 20, 22, 30, 31, 32, 33, 35, 36, 37, 38, 39], "arguement": [0, 19], "bottom": [0, 3, 5, 10, 18, 22, 30], "higher": [0, 5, 9, 10, 15, 17, 18, 19, 20, 30, 31, 36, 39], "tri": [0, 5, 6, 7, 10, 13, 17, 18, 20, 22, 29, 32, 36, 38, 39], "0xcccccccc": 0, "re": [0, 1, 4, 5, 10, 17, 19, 20, 22, 29, 30, 32, 35, 39], "jump": [0, 9, 10, 22, 30], "onc": [0, 3, 8, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 22, 30, 31, 32, 33, 34, 35, 36, 37, 39], "ve": [0, 3, 5, 24, 31, 36, 39], "verifi": [0, 3, 5, 9, 12, 13, 15, 16, 17, 18, 20, 22, 29, 31, 32, 33, 35], "remov": [0, 5, 7, 8, 9, 12, 17, 18, 22, 31, 33, 35, 37, 38, 39], "ret": 0, "expect": [0, 1, 3, 5, 7, 10, 17, 18, 24, 29, 30, 31, 32, 33], "an": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 14, 15, 16, 17, 18, 20, 22, 23, 24, 31, 33, 34, 35, 36, 37, 40], "payload": [0, 1, 5, 10, 11, 18, 19, 20, 35, 36, 37, 38, 39], "xccxccxccxcc": 0, "alreadi": [0, 5, 6, 8, 9, 10, 12, 13, 17, 18, 19, 20, 29, 30, 31, 32, 33, 35, 38, 39], "segfault": 0, "proper": [0, 7, 10, 11, 12, 13, 22, 30, 31, 33, 35, 39, 40], "cleanli": [0, 30], "better": [0, 3, 5, 9, 10, 16, 17, 18, 20, 24, 29, 30, 31, 32, 33, 35, 36, 38, 39], "instead": [0, 1, 3, 5, 6, 10, 12, 15, 17, 18, 19, 20, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "bash": [0, 18, 31, 33, 36, 37, 38], "sinc": [0, 1, 5, 7, 8, 9, 11, 17, 18, 19, 20, 30, 32, 36, 37, 38, 39], "drop": [0, 1, 5, 7, 10, 17, 19, 20, 30, 31, 36, 37, 39], "priv": [0, 18, 36, 37, 39], "launch": [0, 1, 15, 17, 18, 19, 20, 23, 30, 31, 35, 36, 38, 39], "ll": [0, 3, 5, 9, 20, 35, 36, 38, 39], "haven": [0, 17, 18, 22, 30], "elev": [0, 7, 14, 19], "privileg": [0, 5, 7, 9, 13, 17, 22, 24, 32, 34, 35, 38, 40], "confus": [0, 32], "anoth": [0, 3, 5, 7, 9, 10, 11, 13, 15, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39, 40], "point": [0, 1, 4, 8, 9, 10, 11, 13, 14, 15, 16, 17, 19, 20, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "own": [0, 5, 9, 10, 15, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 34, 35, 37, 38], "dash": [0, 5, 30, 32, 36, 39], "paper": [0, 10, 18, 30, 38, 39], "review": [0, 5, 10, 28, 30, 31, 32, 33, 40], "bypass": [0, 1, 10, 15, 18, 19, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39], "perform": [0, 3, 5, 7, 8, 9, 11, 12, 13, 15, 16, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 34, 35, 37, 38, 39], "ret2libc": 0, "attack": [0, 6, 7, 8, 9, 10, 19, 20, 21, 22, 29, 30, 32, 35, 36, 37], "cat": [0, 1, 3, 4, 10, 13, 16, 18, 20, 35, 36, 37, 38, 39], "aliv": [0, 5], "send": [0, 3, 5, 7, 9, 10, 11, 15, 17, 18, 19, 29, 30, 31, 33, 34, 35, 36, 37, 38, 39, 40], "msfelfscan": 0, "interest": [0, 5, 9, 10, 18, 22, 24, 32, 33, 35, 37, 39], "within": [0, 3, 5, 9, 10, 11, 13, 17, 18, 19, 23, 24, 29, 30, 31, 32, 33, 35, 37, 39], "linkabl": 0, "mai": [0, 1, 2, 3, 4, 5, 6, 7, 9, 10, 11, 13, 14, 15, 16, 17, 18, 19, 20, 22, 24, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "prove": [0, 5, 32, 33], "develop": [0, 1, 3, 5, 6, 8, 9, 10, 13, 15, 17, 18, 19, 20, 21, 29, 31, 38, 39, 40], "framework2": 0, "stack7": 0, "mode": [0, 3, 5, 6, 7, 9, 10, 11, 15, 16, 17, 19, 22, 32, 34, 36, 38], "j": [0, 3, 4, 15, 18, 20, 30, 31, 32, 33, 35, 37, 38, 39], "reg": [0, 19, 20, 36, 39], "search": [0, 1, 3, 4, 5, 7, 8, 10, 19, 29, 31, 33, 35, 36, 37, 38, 39], "equival": [0, 4, 5, 10, 16, 18, 20, 24, 29, 30, 31, 32, 38, 39], "instruct": [0, 4, 5, 10, 12, 13, 30, 31, 32], "pop": [0, 3, 4, 20], "combin": [0, 1, 2, 3, 5, 6, 9, 10, 11, 17, 18, 20, 22, 29, 30, 31, 32, 33, 35, 37, 39], "x": [0, 1, 2, 3, 4, 5, 6, 7, 9, 14, 18, 19, 20, 22, 24, 31, 32, 33, 34, 35, 36, 37, 38, 39], "regex": [0, 1, 3, 7, 16, 19], "show": [0, 3, 5, 7, 8, 10, 12, 13, 16, 17, 18, 20, 22, 32, 33, 35, 36, 37, 38, 39], "specifi": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 12, 15, 16, 17, 18, 19, 20, 22, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "count": [0, 1, 3, 5, 9, 13, 15, 30, 32, 38, 39], "befor": [0, 1, 3, 5, 7, 9, 10, 11, 17, 18, 19, 20, 22, 24, 30, 31, 32, 33, 34, 35, 36, 37, 39], "altern": [0, 5, 9, 10, 13, 14, 17, 19, 30, 31, 32, 34, 36, 38], "disassembli": 0, "retun": 0, "choos": [0, 5, 7, 9, 17, 20, 29, 30, 31, 32, 38, 39], "addr": [0, 3, 10, 17, 18, 30, 37, 39], "8": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 13, 15, 17, 18, 19, 29, 30, 31, 34, 35, 36, 37, 38, 39], "where": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 15, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 35, 37, 38, 40], "everytim": [0, 8], "seq": [0, 17, 34, 37, 39], "5": [0, 2, 3, 5, 6, 8, 10, 12, 13, 15, 17, 18, 19, 20, 22, 30, 31, 34, 35, 36, 37, 38, 39], "ldd": [0, 30], "ovrflw": 0, "done": [0, 1, 5, 7, 9, 10, 11, 15, 17, 18, 19, 20, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "6": [0, 3, 4, 5, 8, 9, 11, 12, 13, 15, 16, 17, 18, 19, 20, 22, 30, 34, 35, 36, 37, 38, 39], "lib": [0, 1, 4, 13, 18, 31, 38, 39], "i386": [0, 30], "gnu": [0, 4, 7, 31, 33, 35, 39], "0xb762f000": 0, "0xb758f000": 0, "0xb75ae000": 0, "notic": [0, 1, 3, 5, 10, 13, 30, 32], "much": [0, 1, 3, 5, 9, 10, 17, 18, 19, 24, 30, 31, 32, 33], "charact": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 19, 20, 23, 33, 35, 36, 37, 38, 39], "last": [0, 3, 5, 7, 9, 11, 13, 17, 18, 19, 20, 22, 24, 30, 32, 35, 37, 38, 39], "remain": [0, 1, 5, 9, 10, 11, 15, 20, 29, 30, 31, 32, 33, 38, 39], "machin": [0, 3, 4, 5, 7, 8, 9, 10, 11, 14, 15, 16, 17, 18, 22, 23, 24, 26, 29, 30, 33, 34, 35, 36, 37, 38], "brute": [0, 5, 6, 7, 17, 19, 30, 37], "forc": [0, 5, 6, 7, 8, 9, 17, 19, 30, 36, 37], "suggest": [0, 5, 8, 9, 10, 13, 16, 17, 20, 25, 26, 29, 30, 31, 32, 33, 35, 36, 39], "figur": [0, 3, 5, 9, 10, 12, 15, 17, 18, 19, 20, 30, 32, 33, 34, 35, 36, 37, 38, 39], "out": [0, 2, 3, 4, 5, 7, 9, 10, 11, 12, 13, 15, 17, 18, 19, 22, 24, 29, 30, 31, 32, 33, 34, 36, 38], "rememb": [0, 3, 5, 6, 10, 13, 15, 17, 18, 19, 22, 30, 32, 35, 36, 37, 38, 39], "246": 0, "00113d70": 0, "68": [0, 18, 35, 36, 39], "func": 0, "13": [0, 3, 5, 8, 9, 12, 17, 18, 19, 20, 30, 36, 37, 38, 39], "svcerr_systemerr": 0, "glibc_2": 0, "628": 0, "0003ab40": 0, "55": [0, 3, 7, 8, 18, 19, 30, 38, 39], "__libc_system": 0, "glibc_priv": 0, "1461": 0, "weak": [0, 5, 10, 13, 18, 22, 24, 32, 33, 37, 38, 39], "112": [0, 5, 9], "0002ec00": 0, "39": [0, 3, 4, 5, 17, 18, 30], "__cxa_at_quick_exit": 0, "10": [0, 1, 2, 3, 4, 5, 6, 8, 9, 10, 13, 15, 16, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 34, 35, 36, 37, 38, 39], "141": [0, 38, 39], "0002e7f0": 0, "33": [0, 3, 17, 18, 19, 34, 36, 39], "451": 0, "0002ec30": 0, "181": 0, "__cxa_thread_atexit_impl": 0, "18": [0, 3, 4, 5, 8, 12, 17, 18, 19, 30, 34, 36, 37, 38, 39], "559": 0, "000b1645": 0, "24": [0, 3, 4, 5, 6, 7, 8, 9, 10, 12, 13, 15, 16, 17, 18, 19, 24, 30, 31, 34, 35, 36, 37, 39], "_exit": 0, "617": 0, "00116de0": 0, "56": [0, 3, 8, 17, 18, 19, 30, 34, 35, 36, 37, 39], "svc_exit": 0, "652": 0, "00120b60": 0, "quick_exit": 0, "654": 0, "0002ebd0": 0, "878": 0, "0002ea20": 0, "85": [0, 3, 17, 18], "__cxa_atexit": 0, "1048": 0, "00120b20": 0, "52": [0, 3, 17, 18, 19, 30, 36, 37, 38, 39], "atexit": 0, "1398": 0, "001b3204": 0, "4": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 12, 15, 17, 19, 20, 22, 23, 24, 29, 30, 31, 34, 35, 36, 37, 38, 39], "argp_err_exit_statu": 0, "1510": 0, "000f4130": 0, "58": [0, 3, 8, 9, 18, 19], "pthread_exit": 0, "2112": 0, "001b3150": 0, "obstack_exit_failur": 0, "2267": 0, "0002e820": 0, "78": [0, 4, 8, 17], "on_exit": 0, "2410": 0, "000f54f0": 0, "__cyg_profile_func_exit": 0, "15cdc8": 0, "take": [0, 1, 3, 5, 7, 9, 10, 11, 15, 17, 18, 19, 20, 21, 22, 24, 29, 30, 31, 32, 33, 36, 37, 38], "sampl": [0, 3, 5, 9, 10, 13, 15, 30, 31, 34, 36, 39], "subprocess": [0, 35, 39], "struct": 0, "libc_base_addr": 0, "0xb75e6000": 0, "system_offset": 0, "0x0003ab40": 0, "exit_offset": 0, "0x0002e7f0": 0, "binsh_offset": 0, "0x0015cdc8": 0, "binsh": 0, "system_addr": 0, "pack": [0, 1, 8, 18, 19, 31, 37, 39], "exit_addr": 0, "binsh_addr": 0, "buf": 0, "512": [0, 3, 30, 36, 38, 39], "try": [0, 1, 3, 5, 6, 7, 8, 10, 13, 16, 17, 18, 19, 20, 22, 24, 25, 26, 30, 32, 33, 34, 35, 36, 37, 38, 39], "local": [0, 1, 3, 5, 7, 9, 10, 11, 12, 14, 15, 16, 17, 18, 22, 29, 30, 31, 32, 33, 34, 37], "introduct": [0, 9, 26, 30, 31], "inform": [0, 1, 5, 6, 7, 8, 11, 13, 14, 15, 21, 22, 23, 24, 29, 31, 32, 33, 34, 38, 40], "about": [0, 1, 3, 4, 5, 9, 10, 11, 13, 15, 17, 18, 20, 22, 24, 27, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "eax": [0, 4], "small": [0, 3, 9, 10, 15, 18, 22, 24, 30, 31, 32, 33, 35, 37, 39], "move": [0, 3, 4, 5, 9, 10, 13, 15, 17, 18, 24, 31, 35, 37, 39], "contain": [0, 1, 3, 4, 5, 6, 7, 8, 9, 11, 12, 13, 15, 17, 18, 19, 20, 22, 29, 30, 32, 33, 35, 37, 38, 39], "asm": 0, "section": [0, 3, 4, 5, 9, 11, 13, 15, 17, 18, 20, 22, 24, 31, 34, 35, 37, 38, 39], "mov": [0, 4], "0xffffd8bc": 0, "jmp": 0, "nasm": 0, "mark": [0, 5, 8, 19, 20, 30, 32], "linker": [0, 30], "ld": [0, 4, 7, 19, 30, 36, 39], "entri": [0, 3, 4, 6, 8, 10, 13, 15, 16, 17, 18, 22, 29, 30, 31, 32, 34, 35, 36, 39, 40], "output": [0, 1, 2, 3, 5, 6, 9, 15, 18, 19, 20, 22, 31, 32, 33, 34, 35, 36, 37, 38, 39], "miss": [0, 1, 2, 3, 5, 7, 15, 17, 18, 19, 22, 29, 30, 32, 35, 36, 39], "place": [0, 4, 5, 6, 7, 9, 10, 11, 13, 15, 17, 18, 19, 30, 32, 33, 35, 36, 37, 38, 39], "link": [0, 1, 3, 4, 5, 8, 9, 10, 11, 13, 15, 18, 19, 20, 29, 31, 32, 33, 36, 37, 38, 39], "below": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14, 15, 16, 17, 18, 19, 20, 22, 23, 24, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "error": [0, 1, 10, 13, 15, 17, 18, 19, 20, 29, 31, 32, 35, 36, 38, 40], "incompat": [0, 3, 30], "loader": [0, 1, 18, 22], "elf64": 0, "composit": [0, 9, 33], "elf_i386": 0, "objdump": 0, "mostli": [0, 9, 10, 17, 18, 19, 20, 30, 31, 32, 34, 35, 36, 37, 38, 39], "also": [0, 1, 2, 3, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 17, 18, 19, 20, 22, 26, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "particularli": [0, 19, 29, 30, 32, 33], "kind": [0, 3, 5, 9, 10, 13, 15, 18, 30, 31, 33, 35, 37, 38, 39], "suppos": [0, 1, 5, 17, 18, 20, 24, 30, 31, 32, 33], "80": [0, 1, 3, 10, 17, 18, 19, 24, 30, 31, 32, 34, 35, 36, 37, 39], "usual": [0, 1, 3, 5, 9, 10, 11, 15, 18, 19, 30, 31, 32, 33, 34, 35, 38, 39], "python": [0, 2, 3, 5, 17, 20, 22, 29, 30, 31, 37], "x90": 0, "50": [0, 3, 5, 9, 10, 14, 18, 20, 24, 29, 30, 32, 35, 37, 38, 39], "30": [0, 1, 3, 9, 10, 16, 17, 18, 19, 20, 22, 24, 30, 37, 38, 39], "somekind": 0, "alphanumer": [0, 29], "those": [0, 3, 5, 9, 10, 12, 17, 18, 19, 20, 29, 30, 31, 32, 33, 34, 36, 38, 39], "At": [0, 3, 5, 8, 9, 17, 18, 19, 20, 24, 29, 30, 31, 32, 35, 38, 39, 40], "For": [0, 1, 3, 4, 5, 6, 8, 10, 11, 12, 17, 18, 19, 20, 22, 31, 32, 33, 34, 35, 36, 37, 38, 39], "ansi": [0, 5, 10, 18], "part": [0, 3, 4, 5, 6, 7, 9, 10, 11, 13, 17, 19, 20, 21, 30, 31, 32, 33, 35, 36, 38, 40], "whole": [0, 9, 20, 30, 31, 32, 33, 35, 37, 39], "By": [0, 3, 5, 6, 7, 8, 9, 10, 13, 15, 17, 18, 19, 20, 24, 30, 31, 32, 33, 34, 35, 36, 37, 39], "asciiz": 0, "magic": [0, 7, 20, 30, 37], "1911": 0, "retriev": [0, 5, 7, 8, 9, 13, 17, 18, 19, 22, 30, 31, 37, 39], "request": [0, 3, 6, 8, 9, 10, 11, 13, 17, 18, 19, 20, 26, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "08x": 0, "look": [0, 2, 3, 5, 8, 10, 13, 14, 15, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 35, 37, 38, 39], "easili": [0, 5, 7, 8, 9, 10, 13, 17, 19, 20, 22, 24, 29, 30, 31, 32, 33, 37, 39], "trigger": [0, 10, 19, 30, 31, 36, 39], "invalid": [0, 5, 6, 8, 16, 18, 35, 39], "suppli": [0, 5, 6, 10, 15, 18, 20, 23, 30, 32, 35, 36, 37, 38, 39], "displai": [0, 3, 4, 5, 6, 7, 9, 10, 15, 17, 18, 19, 20, 22, 30, 31, 35, 36, 37, 38, 39], "lot": [0, 3, 5, 7, 17, 18, 19, 20, 22, 30, 31, 32, 33, 35, 39], "too": [0, 5, 7, 9, 13, 15, 17, 19, 30, 31, 32, 33, 35, 37, 38, 39], "chanc": [0, 5, 16, 18, 30, 32, 38, 39], "high": [0, 9, 10, 11, 13, 15, 17, 18, 19, 24, 29, 31, 32, 33], "illeg": [0, 5, 6, 30, 37, 39, 40], "map": [0, 1, 2, 3, 9, 11, 18, 19, 22, 30, 31, 33, 34, 35, 37, 39], "five": [0, 5, 9, 10, 13, 15, 29, 30, 32, 40], "them": [0, 3, 5, 7, 9, 10, 11, 13, 15, 16, 17, 18, 19, 20, 21, 22, 24, 25, 29, 30, 31, 32, 33, 34, 35, 37, 38, 39], "digit": [0, 3, 5, 7, 8, 9, 10, 11, 15, 18, 19, 29, 30, 31, 38, 39], "pad": [0, 15, 18, 30, 37, 39], "hexadecim": [0, 1, 3, 5, 30, 37, 39], "40012980": 0, "080628c4": 0, "bffff7a4": 0, "00000005": 0, "08059c04": 0, "partial": [0, 1, 3, 11, 18, 20, 30, 32, 37, 39], "dump": [0, 7, 9, 15, 17, 19, 30, 33, 36, 37], "upward": [0, 36, 39], "assum": [0, 1, 3, 5, 7, 13, 15, 18, 19, 29, 30, 31, 32, 35, 36, 39], "grow": [0, 24, 29, 30, 33], "toward": [0, 1, 3, 11, 13, 19, 31], "low": [0, 3, 5, 9, 11, 15, 20, 24, 32], "differ": [0, 1, 3, 5, 7, 10, 11, 13, 15, 17, 18, 19, 20, 21, 22, 24, 29, 31, 32, 35, 36, 37, 38, 39], "itself": [0, 3, 4, 5, 9, 18, 19, 29, 30, 31, 32, 33, 35, 36, 39], "full": [0, 1, 3, 5, 8, 9, 11, 15, 17, 18, 19, 22, 23, 24, 31, 32, 33, 35, 37, 38, 39], "li": [0, 30, 31, 35, 39], "intern": [0, 2, 3, 5, 11, 13, 18, 22, 23, 29, 30, 31, 32, 33, 35, 37, 39], "maintain": [0, 5, 9, 10, 11, 13, 15, 18, 22, 24, 29, 30, 31, 32, 33, 34, 35, 39], "modifi": [0, 1, 3, 5, 6, 7, 8, 10, 15, 18, 19, 20, 22, 26, 31, 32, 33, 35, 37], "simpli": [0, 5, 7, 9, 10, 13, 15, 17, 18, 19, 20, 22, 30, 31, 32, 34, 35, 39], "dummi": [0, 9, 19, 36, 39], "dig": [0, 19, 20, 30], "up": [0, 1, 3, 4, 5, 9, 11, 12, 13, 17, 18, 19, 20, 21, 22, 24, 29, 31, 32, 33, 34, 35, 36, 37, 40], "aaa0aaa1_": 0, "increas": [0, 9, 10, 19, 24, 30, 31, 32, 33, 34, 39], "more": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 15, 17, 18, 19, 20, 21, 22, 24, 29, 30, 32, 33, 34, 35, 37, 38], "less": [0, 3, 4, 9, 10, 11, 17, 18, 20, 24, 31, 32, 33, 35, 38, 39], "lowest": [0, 3, 9, 10, 24, 30, 36, 39], "sure": [0, 3, 7, 9, 10, 11, 13, 14, 20, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39], "correctli": [0, 3, 5, 13, 15, 17, 18, 20, 30, 32, 33, 36, 39], "append": [0, 2, 5, 6, 14, 17, 30, 35, 36, 39], "case": [0, 1, 3, 4, 5, 7, 9, 10, 11, 12, 13, 14, 15, 17, 18, 20, 22, 29, 32, 33, 34, 35, 36, 37, 38, 39], "aaa0": 0, "replac": [0, 1, 3, 5, 7, 8, 9, 10, 14, 17, 19, 31, 32, 33, 35, 37, 38, 39], "real": [0, 3, 5, 7, 8, 9, 10, 11, 13, 15, 18, 20, 24, 29, 30, 31, 33, 35, 36, 39], "0x08480110": 0, "encod": [0, 3, 6, 9, 18, 19, 32, 34, 35, 37, 38, 39], "le": [0, 5, 30], "x10": [0, 38, 39], "x01": [0, 38, 39], "x48": 0, "x08": [0, 38, 39], "x08_": 0, "Will": [0, 5, 32, 33], "nul": [0, 36, 39], "reach": [0, 1, 5, 9, 10, 11, 19, 22, 30, 31, 36, 37, 39], "cannot": [0, 2, 5, 6, 10, 11, 17, 19, 20, 24, 30, 31, 32, 33, 37, 39], "boundari": [0, 1, 10, 30, 32], "prepend": 0, "analog": [0, 9, 10, 15, 35, 39], "align": [0, 14, 29, 30], "There": [0, 1, 2, 3, 5, 7, 9, 10, 11, 12, 13, 15, 17, 18, 19, 22, 23, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "choic": [0, 9, 23, 24, 30, 31, 33, 35, 36, 39], "given": [0, 1, 3, 4, 5, 6, 7, 9, 10, 11, 15, 16, 17, 18, 19, 20, 22, 29, 30, 31, 32, 33, 34, 35, 36, 38], "But": [0, 3, 9, 17, 22, 32], "writeabl": [0, 10, 18, 30, 35, 36, 39], "sizeof": [0, 36, 39], "xc0": 0, "xc8": 0, "xff": [0, 38, 39], "xbf_": 0, "0xbfffc8c0": 0, "goal": [0, 5, 10, 17, 18, 21, 22, 24, 29, 31, 32, 33, 35, 39], "nu": 0, "counter": [0, 9, 16, 32], "written": [0, 3, 5, 8, 9, 13, 15, 17, 18, 19, 20, 22, 29, 30, 31, 32, 33, 34, 35, 37, 38], "qualifi": [0, 9, 19, 31, 33], "raw": [0, 5, 6, 9, 13, 17, 19, 20, 24, 30, 35, 36, 38, 39], "latex": [0, 33], "explicitli": [0, 9, 10, 19, 30, 33, 37, 39], "6th": [0, 9], "taken": [0, 3, 5, 7, 9, 10, 17, 18, 19, 20, 24, 30, 31, 32, 35, 36, 37, 38, 39], "hn": 0, "hhn": 0, "0x8048706": 0, "0xffffd64c": 0, "hob": 0, "0x0804": 0, "lob": 0, "0x8706": 0, "x4e": 0, "xd": 0, "x4c": 0, "0x804": 0, "7fc": 0, "2044": 0, "2044x": 0, "7f02": 0, "32514": 0, "32514x": 0, "7": [0, 1, 2, 3, 5, 6, 7, 8, 9, 12, 13, 15, 17, 18, 19, 20, 30, 35, 36, 37, 38, 39], "xd6": 0, "whose": [0, 1, 2, 5, 6, 10, 17, 30, 33, 35, 36, 37, 39], "among": [0, 5, 11, 30, 31, 36, 37, 39], "uniqu": [0, 1, 3, 5, 9, 10, 11, 19, 30, 31, 32, 33], "therebi": [0, 18, 30], "huge": [0, 22, 35, 39], "amount": [0, 3, 7, 9, 10, 17, 18, 19, 20, 21, 22, 24, 30, 32, 34, 35, 39], "ram": [0, 10, 31, 32, 37, 39], "disk": [0, 7, 9, 13, 19, 20, 31, 36, 37], "dso": 0, "dll": [0, 1, 3, 5, 18, 19, 29, 30, 35, 38, 39], "window": [0, 1, 3, 4, 5, 9, 13, 15, 17, 23, 31, 34], "absolut": [0, 18, 32, 35, 37], "got": [0, 3, 5, 7, 16, 17, 18, 19, 20, 25, 35, 36, 37, 38, 39], "instanc": [0, 5, 9, 12, 13, 14, 17, 18, 19, 20, 30, 34, 39], "rtld": 0, "reloc": 0, "allow": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 15, 17, 18, 19, 20, 21, 22, 23, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "via": [0, 6, 7, 8, 10, 11, 13, 15, 17, 22, 23, 29, 30, 31, 32, 33, 35, 36, 38], "procedur": [0, 5, 8, 9, 10, 29, 30, 31, 32, 33], "linkag": 0, "disassembl": [0, 1, 3, 4, 5], "0x080484b9": 0, "60": [0, 3, 5, 6, 8, 9, 10, 17, 18, 24, 30, 35, 39], "0x8048330": 0, "further": [0, 3, 5, 9, 10, 12, 15, 18, 19, 29, 30, 31, 32, 33], "pdisass": 0, "assembl": [0, 1, 3, 4, 10, 15, 31], "0x08048330": 0, "dword": [0, 4], "0x8049788": 0, "0x08048336": 0, "0x0": [0, 3, 18, 19], "0x0804833b": 0, "11": [0, 3, 4, 5, 7, 9, 13, 17, 18, 19, 20, 22, 30, 31, 35, 36, 37, 38, 39], "0x8048320": 0, "0x80497a8": 0, "0x08049788": 0, "ss": [0, 3, 9, 10, 15, 17, 30, 34], "ecx": [0, 4], "0x46": 0, "0x0804978d": 0, "fget": 0, "0x56": 0, "0x08049791": 0, "0x66": [0, 5], "0x08049795": 0, "__gmon_start__": 0, "0x76": 0, "0x08049799": 0, "__libc_start_main": [0, 4], "0x0804979d": 0, "data_start": 0, "al": [0, 36, 39], "0x0804979f": 0, "0x080497a1": 0, "__dso_handl": 0, "0x080497a3": 0, "0x080497a5": 0, "0x080497a7": 0, "reflect": [0, 11, 33], "behemoth3": 0, "elf32": 0, "record": [0, 3, 5, 7, 9, 10, 11, 13, 24, 31, 32, 33, 34, 36, 38, 39], "08049778": 0, "r_386_glob_dat": 0, "080497a4": 0, "r_386_copi": 0, "08049788": 0, "r_386_jump_slot": 0, "0804978c": 0, "08049790": 0, "08049794": 0, "08049798": 0, "quick": [0, 7, 8, 18, 19, 30, 31, 32, 37, 40], "diagram": [0, 9, 10, 15, 17, 19, 22, 30, 31], "d_r_resolv": 0, "socket": [0, 10, 18, 30, 35, 37, 38, 39], "attach": [0, 5, 9, 10, 11, 13, 17, 18, 20, 29, 30, 31, 33, 37, 39], "might": [0, 1, 2, 3, 5, 6, 7, 9, 10, 11, 12, 13, 14, 15, 17, 18, 19, 20, 22, 24, 26, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "fork": [0, 30, 31, 32, 33, 35, 39], "parent": [0, 1, 5, 17, 18, 19, 30, 31, 36, 39], "kill": [0, 7, 16, 35, 39], "children": [0, 19], "becom": [0, 5, 7, 9, 10, 13, 17, 18, 24, 29, 30, 31, 32, 33, 35, 36], "id": [0, 1, 3, 5, 7, 8, 9, 13, 15, 17, 18, 19, 20, 23, 29, 31, 32, 35, 36, 37, 38, 39], "period": [0, 1, 3, 9, 10, 17, 18, 19, 24, 30, 31, 32], "thei": [0, 3, 5, 7, 9, 10, 11, 13, 15, 17, 18, 19, 20, 24, 29, 30, 31, 32, 33, 34, 35, 36, 37, 39, 40], "thu": [0, 3, 5, 9, 11, 13, 18, 19, 30, 32, 33, 35, 36, 37, 39], "free": [0, 7, 10, 12, 18, 22, 24, 29, 30, 31, 32, 33, 36, 37, 38, 39, 40], "resourc": [0, 3, 5, 9, 10, 11, 13, 15, 17, 18, 20, 23, 24, 30, 31, 32, 37, 38, 39], "manag": [0, 1, 5, 7, 9, 12, 14, 15, 17, 19, 24, 33, 35, 37, 38], "xef": 0, "xbe": 0, "xad": 0, "xde": 0, "pass": [0, 1, 4, 5, 6, 8, 10, 11, 13, 15, 17, 20, 30, 31, 32, 34, 35, 36, 37, 38, 39], "through": [0, 3, 5, 9, 10, 11, 12, 15, 17, 18, 19, 20, 21, 22, 23, 29, 30, 31, 32, 33, 34, 35, 36, 37, 39], "myfil": [0, 30], "txt": [0, 1, 2, 3, 5, 6, 14, 18, 20, 22, 30, 32, 35, 36, 37, 38, 39], "And": [0, 1, 5, 7, 9, 19, 22, 30, 31, 33, 36, 39], "Then": [0, 1, 3, 5, 10, 13, 19, 30, 32, 35, 38, 39], "outsid": [0, 5, 9, 10, 23, 30, 31, 32, 36, 38], "rewrit": [0, 5], "content": [0, 1, 3, 4, 9, 10, 13, 15, 17, 18, 19, 20, 22, 26, 28, 30, 31, 33, 35, 36, 37], "again": [0, 9, 10, 13, 17, 30, 31, 32, 35, 36, 37, 38, 39], "achiev": [0, 3, 5, 9, 10, 17, 18, 19, 30, 31, 33, 34, 36, 39], "wide": [0, 3, 5, 7, 9, 10, 13, 17, 30, 31, 32, 33], "varieti": [0, 9, 20, 30, 31, 32, 38, 39], "getlin": 0, "rais": [0, 9, 13, 24, 30, 31], "few": [0, 1, 2, 3, 5, 8, 9, 10, 13, 15, 16, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39, 40], "problem": [0, 1, 5, 7, 9, 10, 13, 18, 20, 29, 30, 31, 32, 33, 35], "stop": [0, 1, 9, 10, 13, 15, 16, 17, 18, 19, 20, 22, 24, 30, 31, 32, 35, 39, 40], "wait": [0, 1, 5, 10, 11, 17, 18, 20, 30, 33, 35, 37, 39], "fed": [0, 30, 32], "deal": [0, 5, 10, 20, 30, 34, 39], "sever": [0, 5, 6, 9, 10, 11, 13, 18, 19, 20, 22, 24, 29, 31, 32, 33, 35, 39], "login": [0, 3, 6, 9, 10, 13, 19, 22, 32, 35, 38], "password": [0, 1, 3, 4, 5, 6, 9, 12, 13, 14, 15, 17, 22, 29, 31, 38], "separ": [0, 5, 6, 8, 9, 10, 11, 13, 17, 20, 22, 29, 30, 31, 32, 33, 34, 35, 37, 39], "newlin": [0, 1, 3, 5, 6, 30, 35, 39], "depend": [0, 3, 5, 6, 7, 9, 10, 12, 13, 14, 15, 18, 20, 30, 31, 33, 36, 39], "feed": [0, 10, 17, 18, 20, 30, 33], "mycommand": 0, "requir": [0, 3, 5, 7, 8, 10, 11, 12, 13, 15, 17, 18, 19, 20, 22, 24, 29, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "said": [0, 32], "pipe": [0, 3, 18, 19, 31, 32], "substitut": [0, 4], "cmd": [0, 3, 5, 10, 13, 18, 19, 20, 30, 31, 35, 36, 37, 38, 39], "quicker": [0, 36, 39], "effect": [0, 1, 3, 4, 5, 7, 8, 9, 10, 15, 20, 29, 30, 31, 32, 33, 34, 35, 36, 37, 39], "branch": [0, 9, 10, 30, 31, 32], "unnecessari": [0, 22, 30, 35, 39], "step": [0, 1, 4, 7, 8, 9, 10, 14, 15, 17, 18, 19, 20, 21, 22, 30, 31, 32, 33, 34, 35, 36, 39], "instantli": [0, 9, 37, 39], "peopl": [0, 5, 7, 10, 17, 18, 19, 26, 28, 29, 30, 32, 33, 35, 37, 39, 40], "seem": [0, 9, 17, 24, 33, 37, 39], "filter": [0, 1, 8, 9, 10, 15, 16, 17, 18, 19, 22, 36, 37], "null": [0, 1, 3, 4, 5, 9, 17, 18, 19, 29, 34, 35, 36, 37, 38, 39], "whatev": [0, 5, 7, 21, 29, 30, 32, 33, 38, 39], "reason": [0, 3, 5, 9, 10, 17, 18, 19, 20, 24, 30, 32, 35, 36, 38, 39], "prefer": [0, 1, 3, 11, 13, 18, 19, 24, 29, 30, 32, 33], "especi": [0, 5, 7, 10, 17, 18, 30, 32, 34, 37, 39], "netcat": [0, 17, 37], "nc": [0, 1, 17, 34, 36, 38], "listen": [0, 1, 10, 13, 15, 17, 18, 19, 20, 33, 35, 36, 37, 38], "localhost": [0, 5, 6, 17, 18, 30, 31, 35, 38, 39], "666": 0, "vv": [0, 3, 17, 18, 34, 39], "connect": [0, 1, 3, 5, 6, 8, 9, 11, 12, 13, 14, 16, 17, 20, 22, 23, 29, 30, 31, 32, 34, 35, 37, 38, 39], "termin": [0, 3, 7, 10, 11, 18, 19, 22, 31, 35, 37, 39], "shortli": 0, "mainli": [0, 3, 5, 7, 9, 12, 15, 20, 30, 31, 32, 36, 37, 38, 39], "close": [0, 1, 5, 6, 9, 10, 15, 18, 19, 24, 30, 31, 35, 36, 37, 38, 39], "reopen": 0, "best": [0, 2, 7, 8, 10, 13, 15, 17, 18, 22, 24, 29, 30, 31, 32, 33, 34, 37, 39], "afterward": [0, 18, 30, 38, 39], "activ": [0, 5, 8, 9, 11, 13, 15, 18, 22, 24, 30, 31, 32, 33, 34, 35, 38], "though": [0, 1, 5, 11, 22, 30, 32, 33], "Or": [0, 5, 18, 30, 33], "dislai": 0, "defin": [0, 1, 3, 5, 7, 9, 10, 13, 17, 18, 22, 24, 29, 30, 32, 33, 35, 36, 37, 39], "0x00000000000005a0": 0, "_init": 0, "0x00000000000005d0": 0, "setresgid": 0, "0x00000000000005e0": 0, "0x00000000000005f0": 0, "0x0000000000000600": 0, "getegid": 0, "0x0000000000000620": 0, "0x0000000000000650": 0, "deregister_tm_clon": 0, "0x0000000000000690": 0, "register_tm_clon": 0, "0x00000000000006e0": 0, "__do_global_dtors_aux": 0, "0x0000000000000720": 0, "frame_dummi": 0, "0x000000000000072a": 0, "vuln": [0, 3, 36], "0x0000000000000765": 0, "0x00000000000007c0": 0, "__libc_csu_init": 0, "0x0000000000000830": 0, "__libc_csu_fini": 0, "0x0000000000000834": 0, "_fini": 0, "otherwis": [0, 2, 5, 7, 10, 13, 15, 17, 18, 30, 31, 32, 33, 35, 36, 37, 38, 39], "shown": [0, 3, 5, 18, 23, 30, 32, 36, 37, 39], "nfu": 0, "u": [0, 1, 3, 4, 5, 6, 7, 9, 10, 11, 13, 15, 17, 18, 19, 20, 22, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "express": [0, 4, 5, 9, 10, 16, 18, 19, 22, 29, 31, 33, 35, 36, 39], "give": [0, 1, 3, 5, 6, 9, 10, 12, 15, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 36, 37, 38, 39], "repeat": [0, 1, 5, 8, 22, 30], "decim": [0, 1, 3, 5, 30, 37, 39], "unit": [0, 3, 8, 10, 18, 19, 30, 31, 32, 33, 36, 39], "size": [0, 1, 3, 4, 12, 15, 17, 18, 20, 29, 30, 31, 33, 35, 36, 37, 38, 39], "halfword": 0, "w": [0, 3, 5, 6, 7, 9, 17, 18, 19, 20, 29, 30, 35, 36, 37, 38, 39], "g": [0, 3, 5, 7, 9, 10, 11, 13, 14, 15, 18, 19, 20, 22, 24, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "giant": 0, "eight": [0, 3, 9, 33], "inord": 0, "arbitari": 0, "variablenam": 0, "variable_nam": 0, "static": [0, 4, 5, 10, 14, 17, 18, 29, 31, 35, 37, 38, 39], "storag": [0, 5, 7, 9, 13, 18, 29, 32, 37, 39], "0x903278": 0, "930": 0, "objfil": 0, "0x400000": 0, "0x401000": 0, "0x1000": 0, "myapp": [0, 31], "0x600000": 0, "0x601000": 0, "0x602000": 0, "0x7ffff7a1c000": 0, "0x7ffff7bd2000": 0, "0x1b6000": 0, "lib64": [0, 30, 38, 39], "17": [0, 3, 5, 6, 7, 12, 18, 19, 30, 31, 35, 36, 37, 38, 39], "0x7ffff7dd2000": 0, "0x200000": 0, "0x7ffff7dd6000": 0, "0x4000": 0, "0x7ffff7dd8000": 0, "0x2000": 0, "0x1ba000": 0, "0x7ffff7b98489": 0, "xg": 0, "0x0068732f6e69622f": 0, "interpret": [0, 1, 5, 9, 30, 35, 37, 38, 39], "level": [0, 3, 4, 5, 6, 7, 10, 11, 13, 15, 17, 18, 19, 22, 24, 29, 31, 32, 33, 34, 35, 36, 37, 39], "0xb75f7390": 0, "0x804877f": 0, "cpp": [0, 30], "16": [0, 1, 3, 4, 5, 6, 7, 9, 10, 13, 15, 17, 18, 19, 30, 31, 34, 35, 36, 37, 38, 39], "0x804869a": 0, "0xb75f73b0": 0, "languag": [0, 4, 5, 10, 11, 15, 18, 20, 21, 22, 29, 31, 32, 33, 34, 35], "arglist": 0, "0xb75f7388": 0, "sp": [0, 9, 10, 11, 18, 19, 34, 39], "0xb75f738c": 0, "num": [0, 18, 19, 30, 36, 39], "backtrac": 0, "downward": 0, "consist": [0, 3, 4, 5, 7, 9, 10, 11, 13, 15, 17, 18, 22, 24, 29, 30, 31, 33, 35, 39], "next": [0, 3, 4, 5, 7, 9, 10, 11, 13, 14, 15, 17, 18, 19, 20, 21, 22, 24, 26, 30, 31, 32, 35, 37, 39], "moment": [0, 10, 17], "resum": [0, 4, 17, 30], "caller": [0, 37, 39], "calle": 0, "upon": [0, 7, 18, 22, 24, 30, 31, 36, 39], "pleas": [0, 5, 6, 9, 12, 17, 18, 19, 26, 29, 33, 35, 38, 39], "correspond": [0, 3, 5, 9, 11, 15, 17, 18, 19, 20, 22, 30, 31, 32], "consid": [0, 4, 5, 7, 9, 10, 11, 15, 18, 20, 24, 30, 31, 32, 35, 36, 37, 38, 39], "oper": [0, 1, 3, 4, 7, 8, 11, 12, 15, 18, 19, 23, 24, 31, 32, 33, 36, 37, 38], "someth": [0, 1, 2, 3, 5, 8, 10, 13, 14, 17, 18, 19, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "0x4": [0, 7], "mention": [0, 3, 5, 8, 9, 10, 17, 18, 19, 20, 30, 31, 34, 35, 36, 37, 39], "except": [0, 3, 5, 9, 19, 32, 35, 39], "float": [0, 1, 9, 23, 35, 39], "select": [0, 3, 4, 5, 6, 9, 10, 11, 15, 18, 19, 20, 22, 30, 31, 32, 33, 35, 36, 37, 38, 39], "regnam": 0, "relativ": 0, "discuss": [0, 5, 10, 13, 15, 20, 22, 24, 31, 32, 33], "detail": [0, 3, 5, 6, 7, 8, 9, 10, 11, 15, 17, 18, 19, 22, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39], "normal": [0, 5, 7, 9, 10, 11, 13, 15, 17, 18, 19, 21, 31, 32, 33, 34, 35, 36, 37, 38, 39], "rel": [0, 9, 18, 20, 24, 32, 33, 34], "valid": [0, 1, 3, 6, 7, 9, 10, 11, 13, 15, 16, 17, 18, 19, 20, 29, 32, 33, 35, 37, 38, 39], "without": [0, 1, 2, 3, 9, 10, 11, 15, 17, 18, 20, 21, 23, 24, 30, 31, 32, 33, 34, 36, 37, 38, 39], "updat": [0, 1, 3, 5, 7, 9, 10, 12, 13, 14, 15, 18, 19, 20, 22, 31, 33, 35, 36, 39], "writabl": [0, 10, 19, 20, 22, 31, 35], "0x83040": 0, "r2": [0, 5, 8, 18, 19, 36, 39], "crackme0x01": 0, "analyz": [0, 3, 8, 9, 10, 17, 18, 29, 30, 31, 32], "afll": 0, "sym": 0, "seek": [0, 3, 7, 13, 24, 30, 38, 39], "prompt": [0, 3, 5, 6, 7, 8, 13, 19, 20, 33, 37, 38, 39], "pdf": [0, 5, 17, 18, 22], "iz": 0, "One": [0, 1, 9, 10, 11, 13, 15, 17, 18, 29, 30, 32, 33, 34, 35, 36, 37, 39], "izz": 0, "entir": [0, 5, 9, 10, 14, 15, 17, 18, 22, 30, 31, 32, 33, 35, 38, 39], "db": [0, 4, 5, 10, 17, 18, 30, 36, 39], "0x12345678": 0, "dc": [0, 8, 10, 18, 20, 37, 39], "hit": [0, 5, 7, 15, 22, 34, 35, 37, 39], "dr": [0, 5, 8, 15, 18, 19, 33], "afvd": 0, "pf": [0, 4, 30], "avail": [0, 1, 3, 5, 7, 10, 11, 13, 18, 19, 20, 22, 23, 24, 29, 31, 32, 34, 35, 36, 37, 38, 39], "convert": [0, 1, 2, 3, 4, 5, 9, 10, 13, 17, 19, 20, 24, 26, 29, 31, 35, 37, 38, 39], "common": [0, 3, 4, 6, 7, 9, 10, 13, 15, 17, 19, 20, 22, 23, 24, 29, 30, 31, 33, 34, 35, 36, 37, 39], "sai": [0, 3, 5, 8, 9, 10, 17, 18, 20, 29, 31, 32, 33, 35, 36, 37, 38, 39], "getrand": 0, "path": [0, 3, 5, 7, 8, 9, 10, 15, 19, 20, 31, 32, 35, 36, 37, 38, 39], "tmp": [0, 4, 5, 7, 18, 22, 30, 35, 36, 37, 38, 39], "pid": [0, 7, 18, 20, 30, 35, 39], "fd": [0, 24, 35, 36], "srandom": 0, "temp": [0, 19, 20, 36, 38, 39], "getpid": 0, "asprintf": [0, 36, 39], "26": [0, 1, 3, 5, 6, 7, 8, 12, 18, 19, 31, 36, 38, 39], "o_creat": 0, "o_rdwr": 0, "0600": 0, "unlink": [0, 5, 19], "delet": [0, 3, 5, 8, 10, 18, 20, 29, 31, 32, 35, 36], "setuid": [0, 4, 7, 18, 36, 37, 39], "lsb": [0, 4, 15, 35, 39], "intel": [0, 3, 8, 31, 36, 39], "80386": 0, "15": [0, 1, 2, 3, 8, 9, 10, 13, 15, 18, 19, 20, 24, 30, 35, 36, 37, 38, 39], "strip": [0, 4], "overrid": [0, 5, 17, 18, 30, 33, 36, 39], "hacking_randomfil": 0, "const": 0, "pathnam": [0, 15], "report": [0, 5, 7, 9, 10, 17, 18, 29, 30, 31, 33, 35, 39, 40], "fpic": [0, 18], "addit": [0, 1, 3, 5, 6, 9, 11, 15, 18, 19, 24, 30, 31, 32, 35, 36, 37, 38, 39], "built": [0, 1, 5, 13, 17, 18, 19, 21, 29, 31, 32, 33, 35], "pwd": [0, 13, 30, 35, 36, 38, 39], "hacking_randomtim": 0, "main_targetfil": 0, "san": [0, 3, 35, 39], "blog": [0, 5, 8, 12, 17, 19, 20, 21, 25, 26, 28, 29, 34, 35, 37], "head": [0, 3, 5, 35, 37, 39], "Of": [0, 5, 7, 10, 30, 32], "class": [0, 1, 3, 5, 7, 10, 12, 13, 14, 17, 18, 24, 30, 31, 33, 37, 38, 39], "win": [0, 8, 17, 18, 20, 30, 34], "funtion": [0, 20], "dan": [0, 20], "rosenberg": 0, "stuff": [0, 3, 8, 9, 15, 18, 20, 35, 36, 37, 38, 39], "exercis": [0, 5, 24, 26, 30, 31], "degre": [0, 30, 33], "handl": [0, 9, 10, 11, 13, 15, 18, 20, 30, 31, 33, 34, 36, 39], "preload": [0, 15], "particular": [0, 1, 3, 5, 9, 10, 11, 16, 17, 20, 29, 30, 31, 32, 33, 34, 35, 36, 37, 39], "regardless": [0, 5, 7, 9, 31, 35, 39], "runtim": [0, 4, 15, 18, 30, 32, 35, 37, 39], "copi": [0, 1, 3, 5, 8, 10, 13, 15, 18, 19, 20, 31, 32, 33, 35, 36], "prior": [0, 10, 18, 30, 32, 36, 38, 39], "doesn": [0, 3, 4, 5, 7, 8, 9, 10, 12, 13, 17, 18, 19, 22, 33, 35, 36, 37, 38, 39], "clean": [0, 1, 13, 17, 19, 22, 29, 30, 31, 36, 39], "veri": [0, 3, 4, 5, 9, 10, 13, 17, 18, 20, 22, 30, 31, 32, 33, 35, 36, 37, 38, 39], "long": [0, 5, 7, 9, 10, 11, 17, 18, 20, 24, 30, 31, 32, 33, 35, 36, 37], "portion": [0, 5, 22, 30, 32], "overwritten": [0, 32, 38, 39], "stai": [0, 9, 30, 31], "begin": [0, 3, 4, 5, 10, 18, 22, 23, 30, 32, 33, 35, 36, 38, 39], "even": [0, 3, 4, 5, 9, 10, 11, 13, 15, 17, 18, 19, 20, 23, 24, 29, 30, 31, 32, 33, 35, 36, 37, 39, 40], "initialis": 0, "under": [0, 5, 8, 9, 10, 11, 15, 17, 18, 19, 22, 23, 24, 30, 31, 32, 33, 36, 37, 38, 39], "getflag": 0, "x0a": [0, 18], "fill": [0, 3, 30, 32], "thousand": 0, "length": [0, 1, 2, 3, 7, 9, 11, 17, 18, 19, 20, 32, 34, 35, 37, 38, 39], "almost": [0, 3, 4, 5, 8, 9, 10, 18, 22, 29, 30, 32, 35, 38, 39], "certainli": [0, 5, 30, 32], "ne": [0, 30, 37, 39], "account": [0, 1, 3, 5, 6, 7, 8, 9, 10, 11, 17, 24, 29, 30, 31, 32, 35], "74": [0, 3, 4, 18, 30], "getfl": 0, "qm": 0, "No": [0, 3, 4, 5, 7, 9, 10, 17, 19, 22, 24, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39], "directori": [0, 3, 4, 5, 6, 8, 9, 10, 13, 14, 18, 22, 32, 35, 38], "cours": [0, 5, 20, 30, 31, 32, 33], "ignor": [0, 5, 19, 20, 22, 30, 32, 33, 37, 39], "trivial": [0, 1, 31, 32, 33, 35, 39], "suid": [0, 18, 37, 38], "design": [0, 2, 3, 9, 10, 11, 17, 18, 19, 20, 21, 22, 29, 30, 31, 33, 35, 36, 37, 38, 39], "hard": [0, 2, 3, 5, 9, 13, 31, 32, 33, 37, 38, 39], "standard": [0, 3, 5, 8, 10, 11, 13, 14, 15, 17, 18, 19, 22, 30, 32, 33, 34, 35, 38, 40], "supplement": [0, 10], "wont": 0, "ldpreload": 0, "glibc2": 0, "hook": [0, 19, 36, 37, 39], "0xf20": 0, "21": [0, 1, 3, 5, 6, 8, 17, 19, 20, 34, 37, 38, 39], "tag": [0, 1, 3, 5, 9, 10, 17, 30, 31, 33, 35, 38], "0x00000001": 0, "0x0000000f": 0, "0x0000000c": 0, "0x80482c0": 0, "08049ff0": 0, "0804a000": 0, "0804a004": 0, "0804a008": 0, "possibli": [0, 5, 6, 9, 17, 20, 30, 31, 33, 35, 37, 38, 39], "fake": [0, 3, 5, 6, 35, 37, 38, 39], "heck": 0, "understand": [0, 3, 5, 9, 10, 12, 15, 17, 18, 19, 20, 24, 29, 31, 32, 33, 35, 37, 38, 39], "linuxbas": 0, "_libcstart_main": 0, "shall": [0, 9, 33], "appropri": [0, 1, 3, 5, 7, 9, 10, 14, 18, 20, 30, 31, 32, 33], "ubp_av": 0, "void": [0, 1, 18, 36, 39], "fini": 0, "rtld_fini": 0, "stack_end": 0, "call_gmon_start": 0, "gmon": 0, "profil": [0, 3, 7, 9, 13, 17, 19, 20, 30, 35, 36, 37, 39], "pg": 0, "gprof": 0, "scenario": [0, 3, 5, 8, 10, 18, 29, 31, 35, 36, 39], "situat": [0, 5, 9, 10, 17, 18, 20, 30, 31, 32, 33], "proceed": [0, 5], "known": [0, 2, 3, 5, 7, 9, 10, 11, 13, 15, 17, 18, 19, 22, 29, 30, 31, 32, 33, 35, 37, 39], "element": [0, 1, 3, 6, 11, 17, 30, 32, 33, 35, 37, 38, 39], "cleanup": [0, 3, 36, 39], "glib": 0, "primarili": [0, 5, 32], "configur": [0, 3, 5, 11, 12, 14, 15, 17, 19, 29, 32, 37, 38, 40], "build": [0, 1, 5, 9, 10, 15, 17, 18, 19, 21, 22, 24, 29, 30, 32, 33, 36], "0x0d696910": 0, "0x00": [0, 3, 4, 15], "02": [0, 3, 5, 14, 17, 18, 19, 30, 31, 34, 36, 39], "00000000": [0, 3, 18, 19], "df": [0, 19, 30], "und": 0, "080484cc": 0, "00000004": 0, "_io_stdin_us": 0, "debian": [0, 1, 12, 29, 31, 33, 35, 36, 37, 38, 39], "glibc": [0, 31, 33], "libgcc": 0, "wl": [0, 18], "bstatic": 0, "resolv": [0, 8, 10, 13, 17, 18, 24, 25, 29, 30, 31, 32, 33, 37, 39], "quickli": [0, 5, 9, 10, 17, 18, 19, 20, 22, 29, 31, 32, 33, 34, 36, 39], "bind": [0, 18, 31, 35, 36, 37, 38, 39], "statist": [0, 3, 17, 30, 31, 32], "unus": [0, 10, 18, 22, 29, 30, 31], "determin": [0, 1, 3, 5, 9, 10, 11, 13, 15, 17, 20, 22, 30, 31, 32, 33, 34, 35, 39], "messag": [0, 2, 3, 4, 5, 7, 10, 11, 13, 15, 17, 19, 20, 23, 24, 30, 31, 32, 34, 35, 36, 37, 38, 39], "d_debug": 0, "4796": 0, "tl": [0, 9, 12, 30, 31, 32, 33], "i686": 0, "sse2": [0, 20], "cmov": 0, "limit": [0, 6, 7, 9, 12, 15, 17, 19, 20, 22, 24, 31, 33, 35, 36, 39], "syntax": [0, 1, 3, 4, 5, 6, 10, 19, 20, 29, 31, 33, 35, 37], "acdfhlmnpsstuv": 0, "soft": [0, 18], "associ": [0, 3, 5, 9, 10, 11, 13, 16, 18, 19, 20, 22, 23, 24, 30, 32, 33, 38, 39], "maximum": [0, 1, 3, 5, 9, 18, 20, 24, 30, 32, 36, 39], "core": [0, 5, 7, 8, 9, 11, 18, 19, 20, 21, 24, 30, 32, 33, 36, 37, 38, 39], "lock": [0, 1, 7, 9, 10, 18, 22, 30, 31, 32, 33, 35, 39], "resid": [0, 9, 10, 11, 15, 18, 19, 30, 38, 39], "descriptor": [0, 3, 9, 30, 35, 36, 39], "cpu": [0, 3, 5, 9, 10, 18, 30, 31, 35, 39], "second": [0, 1, 2, 3, 4, 5, 9, 10, 15, 17, 18, 20, 22, 23, 29, 31, 32, 35, 36, 39], "singl": [0, 1, 3, 4, 5, 6, 8, 9, 10, 13, 15, 17, 18, 19, 20, 22, 32, 33, 35, 39], "v": [0, 3, 5, 6, 9, 11, 13, 15, 16, 17, 18, 19, 20, 22, 32, 34, 35, 36, 37, 38], "enforc": [0, 7, 8, 9, 10, 11, 18, 29, 31, 33, 36, 38, 39], "act": [0, 9, 10, 13, 15, 17, 30, 31, 32, 33, 35, 37, 38, 39, 40], "ceil": [0, 2], "ctf101": 0, "comput": [0, 2, 4, 5, 9, 10, 11, 17, 18, 20, 22, 26, 29, 30, 33, 35, 37, 39, 40], "face": [0, 5, 11, 13, 15, 24, 29, 31, 35, 39], "occasion": [0, 32, 33], "broad": [0, 5, 10, 24, 32, 33], "topic": [0, 13, 30, 32], "cyber": [0, 9, 10, 26, 29, 30, 32, 37], "secur": [0, 3, 5, 6, 11, 12, 17, 18, 19, 21, 22, 24, 26, 31, 34, 36, 38, 40], "realli": [0, 10, 17, 18, 30, 32, 35, 36, 39], "come": [0, 1, 5, 7, 8, 9, 15, 18, 19, 20, 21, 22, 29, 30, 31, 32, 33, 36, 37, 39], "down": [0, 3, 5, 9, 10, 11, 15, 17, 19, 20, 21, 22, 24, 30, 31, 32, 33, 35, 37, 39, 40], "gain": [0, 9, 10, 15, 17, 18, 19, 20, 23, 24, 30, 31, 32, 33, 35, 36, 37, 39, 40], "processor": [0, 4, 9, 10, 30, 31, 36, 39], "hold": [0, 5, 9, 10, 15, 17, 18, 19, 20, 24, 30, 32, 33], "mathemat": [0, 20, 32], "reserv": [0, 3, 5, 6, 9, 10, 20, 30, 31, 35, 39], "special": [0, 1, 4, 5, 7, 8, 9, 10, 24, 31, 32, 35, 36, 37, 38, 39], "purpos": [0, 4, 5, 6, 8, 9, 15, 17, 19, 20, 22, 30, 31, 32, 33, 37, 39, 40], "gpr": [0, 9, 11], "On": [0, 1, 9, 15, 19, 20, 22, 30, 31, 35, 36, 39], "rip": [0, 37, 39], "rsp": 0, "respect": [0, 4, 5, 7, 9, 10, 11, 17, 24, 30, 31, 32], "backward": [0, 30, 32, 36, 39], "rax": 0, "ax": 0, "ah": 0, "hardwar": [0, 3, 9, 10, 20, 22, 29, 31, 32, 33, 38, 39], "manifest": [0, 13, 31], "structur": [0, 3, 10, 19, 21, 24, 29, 30, 31, 33, 35, 37, 39], "queue": [0, 30], "decrement": [0, 5], "wa": [0, 1, 2, 3, 5, 7, 9, 10, 17, 18, 19, 20, 21, 24, 26, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "likewis": [0, 30], "dereferenc": 0, "increment": [0, 5, 30, 33], "convention": 0, "rbp": 0, "referenc": [0, 5, 35, 39], "rather": [0, 3, 5, 7, 9, 15, 19, 20, 22, 30, 31, 33, 36, 37, 39], "essenti": [0, 1, 5, 9, 13, 15, 18, 22, 29, 30, 31, 32, 33, 37, 39], "state": [0, 5, 6, 7, 9, 10, 11, 13, 15, 17, 18, 19, 22, 29, 31, 32, 33, 36, 37, 39], "simpl": [0, 1, 2, 3, 4, 5, 7, 9, 10, 11, 15, 17, 18, 19, 20, 21, 22, 24, 29, 31, 32, 33, 35, 36, 37], "say_hi": 0, "hello": [0, 1, 3, 4, 18, 26, 30, 31, 36, 37, 39], "destin": [0, 3, 4, 9, 10, 22, 23, 30, 31, 35, 36, 37, 39], "doe": [0, 1, 3, 5, 7, 9, 10, 13, 17, 18, 19, 20, 23, 29, 30, 31, 32, 35, 36, 37, 38, 39], "back": [0, 1, 3, 5, 6, 8, 9, 10, 11, 15, 18, 19, 20, 29, 31, 33, 35, 37, 39, 40], "agre": [0, 24, 33, 40], "commonli": [0, 5, 9, 15, 18, 30, 31, 32, 33], "revers": [0, 1, 2, 7, 9, 10, 19, 20, 30, 34, 36, 37, 38, 40], "invok": [0, 3, 4, 7, 18, 20, 23, 30, 31, 35, 36, 37, 39], "certain": [0, 3, 5, 9, 10, 13, 15, 17, 20, 24, 29, 30, 31, 32, 33, 35, 37, 39], "rdi": 0, "rsi": [0, 24], "rdx": 0, "rcx": 0, "r8": 0, "r9": 0, "leftov": [0, 3], "insid": [0, 1, 3, 5, 9, 10, 11, 15, 18, 30, 33, 35, 37, 38, 39], "reus": [0, 5, 20, 29, 30, 31, 37, 39], "everi": [0, 1, 2, 3, 5, 8, 9, 10, 11, 13, 15, 17, 18, 19, 20, 21, 22, 29, 30, 31, 32, 33, 34, 36, 37, 39], "unless": [0, 7, 10, 18, 30, 31, 32, 33, 37, 39], "resolut": [0, 8, 10, 13, 17, 18, 29, 38, 39], "lazili": 0, "snippet": [0, 30], "hi": [0, 2, 3, 7, 9, 17, 18, 19, 20, 29, 30, 36, 39], "ok": [0, 1, 3, 5, 18, 19, 30, 31, 33, 35, 38, 39], "bye": [0, 4, 11, 38, 39], "avoid": [0, 5, 9, 10, 11, 13, 17, 18, 24, 30, 31, 32, 33, 35, 36, 39], "lookup": [0, 15, 19, 22, 31, 34, 39], "futur": [0, 5, 13, 20, 24, 30, 31, 32, 33], "short": [0, 3, 5, 9, 11, 17, 24, 29, 30, 32, 33, 34, 36, 37, 39], "circuit": [0, 9, 11, 31, 32], "straight": [0, 37, 39], "implement": [0, 1, 2, 3, 5, 11, 13, 15, 18, 20, 29, 30, 32, 33, 35, 37, 39], "implic": [0, 31, 32], "stub": [0, 17, 21], "respons": [0, 3, 9, 11, 15, 17, 18, 22, 23, 29, 30, 31, 33, 35, 37, 38, 39, 40], "often": [0, 5, 8, 10, 11, 18, 19, 20, 22, 29, 30, 31, 32, 33, 35, 37, 39], "63": [0, 3, 4, 9, 18], "code_snippet": 0, "memset": 0, "narnia0": 0, "val": [0, 1, 4, 34, 39], "0x41414141": 0, "20": [0, 3, 4, 5, 6, 7, 10, 14, 17, 18, 19, 20, 23, 24, 30, 32, 35, 37, 38, 39], "0xdeadbeef": 0, "0x": [0, 3, 5], "off": [0, 5, 8, 9, 10, 13, 15, 17, 18, 19, 22, 24, 31, 33, 35, 37, 39], "observ": [0, 5, 29, 31, 32], "scan": [0, 5, 6, 7, 13, 16, 18, 22, 23, 29, 31, 32, 33, 35, 36, 37], "narnia1": 0, "egg": 0, "previous": [0, 5, 9, 10, 18, 19, 20, 30, 31, 35, 36, 39], "x6a": 0, "x0b": [0, 38, 39], "x58": 0, "x99": [0, 37, 39], "x52": 0, "x68": 0, "x2f": 0, "x73": 0, "x62": 0, "x69": [0, 38, 39], "x6e": 0, "x89": 0, "xe3": 0, "x31": 0, "xc9": 0, "xcd": 0, "x80": [0, 1, 38, 39], "were": [0, 3, 5, 8, 9, 10, 17, 18, 19, 20, 22, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39], "shellstorm": 0, "websit": [0, 2, 5, 6, 10, 12, 15, 18, 20, 24, 29, 30, 31, 32, 33, 35, 37, 38, 39, 40], "both": [0, 3, 5, 7, 9, 10, 11, 13, 15, 17, 18, 19, 20, 22, 23, 24, 30, 31, 32, 33, 38, 39], "fail": [0, 5, 6, 7, 9, 10, 11, 13, 17, 18, 19, 20, 24, 32, 34, 35, 36, 37, 38, 39], "fault": [0, 9, 11, 30, 31], "told": [0, 10, 30], "sigtrap": [0, 30], "softwar": [0, 3, 5, 7, 10, 13, 17, 18, 19, 20, 21, 22, 29, 30, 34, 35, 36, 37, 39, 40], "int3": 0, "tell": [0, 4, 5, 10, 15, 17, 18, 19, 20, 24, 29, 30, 34, 35, 37, 38, 39], "properli": [0, 3, 9, 10, 13, 15, 17, 18, 22, 30, 32, 33, 38, 39], "receiv": [0, 2, 3, 5, 9, 10, 11, 13, 15, 17, 18, 19, 20, 22, 24, 26, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "anywher": [0, 30, 31, 37, 38, 39], "bad": [0, 5, 7, 10, 18, 19, 29, 30, 32, 33, 36, 39], "charm": 0, "narnia2": 0, "128": [0, 3, 7, 9, 18, 19, 20, 30, 31, 35, 37, 39], "easi": [0, 1, 3, 5, 6, 8, 9, 10, 11, 13, 17, 18, 20, 22, 29, 30, 31, 32, 37, 39], "unlimit": [0, 7, 30], "snip": [0, 18, 20, 35, 39], "0x080484a0": 0, "67": [0, 4, 18, 19], "0x080484a3": 0, "70": [0, 3, 9, 18], "0x80484a3": 0, "bbbb": 0, "game": [0, 3, 18, 26, 30], "0x42424242": 0, "80xw": 0, "400": [0, 5], "0xffffd7e0": 0, "0xffffd80b": 0, "0xffffd7f0": 0, "0x1d000000": 0, "0xa9c79d1b": 0, "0xffffd800": 0, "0xe1a67367": 0, "0xc19fc850": 0, "0x6996cde4": 0, "0x00363836": 0, "0xffffd810": 0, "0x2f000000": 0, "0x656d6167": 0, "0x616e2f73": 0, "0x61696e72": 0, "0xffffd820": 0, "0x72616e2f": 0, "0x3261696e": 0, "0x41414100": 0, "0xffffd830": 0, "0xffffd840": 0, "0xffffd850": 0, "0xffffd860": 0, "0xffffd870": 0, "0xffffd880": 0, "0xffffd890": 0, "0xffffd8a0": 0, "0xffffd8b0": 0, "0x42424241": 0, "0x44580042": 0, "0x45535f47": 0, "0xffffd8c0": 0, "0x4f495353": 0, "0x44495f4e": 0, "0x3939383d": 0, "0x53003733": 0, "pick": [0, 10, 31, 33, 38, 39], "execuv": 0, "len": [0, 2, 3, 5, 13, 30, 37, 39], "x50": 0, "x53": 0, "xe1": [0, 38, 39], "xb0": 0, "23": [0, 3, 5, 6, 8, 15, 17, 19, 30, 34, 35, 37, 38, 39], "bc": [0, 3, 11, 16], "117": [0, 3, 9, 18, 36, 37, 39], "xd8": [0, 37, 38, 39], "narnia_pass": 0, "narnia3": 0, "stat": [0, 18, 30, 31], "fcntl": 0, "unistd": 0, "ifd": 0, "ofd": 0, "ofil": [0, 35, 39], "dev": [0, 1, 3, 13, 15, 18, 19, 20, 23, 32, 36, 37, 38], "ifil": 0, "o_rdonli": 0, "file1": [0, 30, 36], "file2": [0, 30, 38, 39], "safer": [0, 10, 31], "em": [0, 10], "explain": [0, 8, 10, 17, 19, 20, 22, 30, 31, 32, 35, 37, 39], "permiss": [0, 8, 9, 12, 18, 19, 20, 31, 37, 38, 40], "melissa": 0, "motd": [0, 7, 13, 22, 30], "narnia4": 0, "laid": 0, "past": [0, 1, 5, 9, 10, 15, 17, 18, 32, 33, 35, 37, 39], "sfp": 0, "arrai": [0, 1, 3, 4, 9, 18, 32], "norelro": 0, "disa": [0, 22], "100": [0, 1, 3, 4, 5, 9, 17, 18, 19, 23, 24, 29, 30, 31, 38, 39], "0x08048551": 0, "93": [0, 3, 18, 38, 39], "lea": [0, 4], "0x38": 0, "0x08048555": 0, "97": [0, 1, 3, 5, 8, 20, 37, 39], "0x08048558": 0, "0x8048400": 0, "0x0804855d": 0, "105": [0, 5, 18, 35, 37, 39], "movl": 0, "0x2": [0, 7], "0x08048565": 0, "113": [0, 9, 17, 30], "0x58": 0, "0x08048569": 0, "hack": [0, 1, 7, 17, 30, 34, 37, 39, 40], "0xbffff954": 0, "37": [0, 3, 8, 18, 30, 36, 39], "134514299": 0, "1208180748": 0, "000": [0, 3, 9, 10, 17, 18, 19, 30, 32, 35, 36, 39], "370": 0, "377": 0, "277": 0, "234": 0, "203": [0, 18, 37, 39], "004": [0, 7], "020": 0, "267": 0, "214": [0, 17], "230": [0, 3, 9, 17, 18, 38, 39], "211": [0, 13], "206": [0, 18], "243": [0, 18], "374": 0, "364": 0, "237": 0, "incomplet": [0, 5, 15, 32], "sequenc": [0, 1, 3, 5, 9, 15, 18, 19, 30, 32, 37, 39], "371": 0, "367": 0, "245b": 0, "352": 0, "267h": 0, "277\u0579": 0, "350": 0, "38": [0, 3, 8, 12, 18, 19, 35, 36, 39], "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa": 0, "symlink": [0, 4, 30, 37], "skojiman3": 0, "mkdir": [0, 4, 13, 18, 30, 31, 38, 39], "ln": [0, 3, 4, 13, 18, 30, 36, 37, 39], "touch": [0, 4, 24, 30, 31, 36, 38, 39], "chmod": [0, 7, 18, 22, 31, 35, 37, 38], "rw": [0, 18, 30, 36, 38, 39], "2012": [0, 8, 17, 18, 19, 20, 30, 32], "22": [0, 3, 5, 6, 12, 17, 19, 30, 35, 36, 37, 38, 39], "thaenohtai": 0, "narnia6": 0, "extern": [0, 5, 6, 9, 11, 12, 15, 16, 18, 22, 23, 29, 31, 32, 35, 38, 39], "tire": 0, "fix": [0, 5, 9, 10, 11, 18, 24, 30, 31, 32, 33], "morla": 0, "unsign": [0, 1, 3, 4], "get_sp": 0, "__asm__": 0, "0xff000000": 0, "b1": [0, 3, 35, 39], "b2": [0, 3, 18, 37, 39], "fp": [0, 32], "argz": 0, "subroutin": [0, 30], "render": [0, 3, 5, 9], "featur": [0, 3, 5, 9, 10, 17, 18, 20, 22, 29, 30, 32, 33, 35, 36, 37, 38, 39], "useless": 0, "rid": [0, 5, 18, 20, 30], "bitvijai": [0, 4, 8, 12, 13, 14, 19, 26, 30, 35, 36, 37, 38, 39], "wall": [0, 9, 18, 30], "narnia61": 0, "carefulli": [0, 9, 12, 22, 30, 32, 33], "dddd": 0, "0x080486d2": 0, "330": 0, "0x8048450": 0, "0x080486d7": 0, "335": 0, "0x20": [0, 3, 5, 7, 15, 18, 19], "0x080486db": 0, "339": 0, "0x080486de": 0, "342": 0, "0x28": [0, 3], "0x080486e2": 0, "346": 0, "0x080486e4": 0, "348": [0, 30], "0x1": [0, 3, 19], "0x080486eb": 0, "355": 0, "0x80486e2": 0, "48": [0, 3, 9, 18, 19, 34, 35, 37, 39], "0x80486d7": 0, "0x80486db": 0, "0x80486de": 0, "0x80486e4": 0, "0x80486eb": 0, "0x80486f0": 0, "0x80486f1": 0, "guess": [0, 5, 6, 10, 19, 24, 32, 37, 39], "0xffffd380": 0, "0x3": 0, "0xffffd444": 0, "000aaa": 0, "cccccccc": 0, "0xf7eb3360": 0, "0xf7e8bc30": 0, "50xw": 0, "0xffffd350": 0, "0xffffd360": 0, "0xffffd5df": 0, "0x0000003b": 0, "0x0804874b": 0, "0xffffd370": 0, "0x00000003": 0, "0x43434343": 0, "0x44444444": 0, "0xffffd390": 0, "0x08048700": 0, "0xf7fb0ff4": 0, "0xffffd418": 0, "0xf7e66e46": 0, "0xffffd3a0": 0, "0xffffd454": 0, "0xf7fde860": 0, "0xffffd388": 0, "0xffffd398": 0, "0xffffd3888": 0, "notexecut": 0, "aaaa": [0, 13, 18, 34, 35, 39], "x40": 0, "x1c": [0, 38, 39], "xe6": 0, "xf7": 0, "narnia7": 0, "reorder": [0, 30], "fuck": 0, "old": [0, 5, 18, 20, 22, 30, 32, 33, 35, 36, 38, 39], "style": [0, 3, 5, 7, 19, 22, 23, 29, 31, 33, 37, 38, 39], "am": [0, 8, 17, 18, 24, 26, 30, 38, 39], "unti": 0, "blah": 0, "bok": 0, "loop": [0, 3, 9, 18, 32, 36, 39], "confirm": [0, 5, 9, 15, 18, 19, 30], "0xffffd670": 0, "0x08048580": 0, "0xffffd688": 0, "0x00000014": 0, "0xf7e54f53": 0, "0xffffd680": 0, "0x00ca0000": 0, "0xffffd690": 0, "0x00414141": 0, "0xffffd8b1": 0, "0xffffd6a0": 0, "0x00000002": 0, "0xffffd764": 0, "0xffffd6c8": 0, "0x080484cd": 0, "0xffffd6b0": 0, "0xf7ffd000": 0, "0x080484fb": 0, "0xf7fca000": 0, "0xffffd689": 0, "19": [0, 3, 7, 8, 18, 19, 20, 23, 30, 35, 36, 38, 39], "0x41": 0, "12": [0, 3, 5, 7, 8, 10, 17, 18, 19, 30, 32, 35, 36, 37, 38, 39], "0x80484cd": 0, "31": [0, 3, 4, 5, 8, 9, 10, 17, 18, 19, 30, 36, 39], "353": 0, "025": 0, "213e": 0, "213": 0, "20wx": 0, "0xffffd8c1": 0, "0x5f474458": 0, "0x53534553": 0, "0x5f4e4f49": 0, "aaaaaaaaaaaaaaaaaaaa": 0, "hexdump": [0, 3, 4, 15, 18, 37, 38, 39], "0000000": [0, 3], "4141": 0, "0000010": [0, 3], "d8bf": 0, "ffff": 0, "0a02": 0, "000001a": 0, "garbag": [0, 18, 31, 32], "0xffffd8bf": 0, "0xffff4190": 0, "20xw": 0, "0xffffd660": 0, "0xffffd678": 0, "0xffffd754": 0, "0xffffd6b8": 0, "0xffffd89c": 0, "10xw": 0, "0x2f61696e": 0, "0x6e72616": 0, "0x00386169": 0, "0x90909090": 0, "0xffff41a0": 0, "0xffff41b0": 0, "somehow": [0, 3, 17, 30, 36, 38, 39], "origin": [0, 1, 3, 5, 9, 18, 20, 24, 30, 32, 36, 38, 39], "30xw": 0, "0xffffd8ac": 0, "0x47445800": 0, "0x5345535f": 0, "x9c": 0, "flow": [0, 22, 30, 31, 32, 33, 35, 39], "identif": [0, 11, 19, 29, 32, 33, 35, 37, 39], "plu": [0, 1, 5, 6, 18, 30, 32, 35, 36, 39], "reachabl": [0, 7, 29], "90": [0, 3, 8, 9, 17, 18, 19, 24, 30, 32], "0xffffd8d4": 0, "100xw": 0, "500": [0, 5, 18, 19, 20, 30], "0xffffd7e4": 0, "0xffffd7f4": 0, "0xde000000": 0, "0x1a2a5992": 0, "0xf11444ea": 0, "0xffffd804": 0, "0x11433cf3": 0, "0x694a71a2": 0, "0x672f0000": 0, "0xffffd814": 0, "0x73656d61": 0, "0xffffd824": 0, "0xffffd834": 0, "0xffffd828": 0, "0xffffd844": 0, "0xffffd854": 0, "0x4e4f4953": 0, "0x3d44495f": 0, "0x35343239": 0, "0xffffd864": 0, "0x45485300": 0, "0x2f3d4c4c": 0, "0x2f6e6962": 0, "0x68736162": 0, "0xffffd874": 0, "0x52455400": 0, "0x74783d4d": 0, "0x006d7265": 0, "0x5f485353": 0, "0xffffd884": 0, "0x45494c43": 0, "0x353d544e": 0, "0x34392e39": 0, "0x2e31362": 0, "0xffffd894": 0, "0x20343731": 0, "0x37373835": 0, "0x32322032": 0, "0x48535300": 0, "0xffffd8a4": 0, "0x5954545f": 0, "0x65642f3d": 0, "0x74702f76": 0, "0x31312f73": 0, "0xffffd8b4": 0, "0x5f434c00": 0, "0x3d4c4c41": 0, "0x47450043": 0, "0x90903d47": 0, "0xffffd8c4": 0, "0xffffd8e4": 0, "0xffffd8f4": 0, "0xffffd904": 0, "0xffffd914": 0, "0x99580b6a": 0, "0x2f2f6852": 0, "0xffffd924": 0, "0x2f686873": 0, "0x896e6962": 0, "0xcdc931e3": 0, "0x53550080": 0, "0xffffd934": 0, "0x6e3d5245": 0, "0x696e7261": 0, "0x4c003861": 0, "0x4f435f53": 0, "0xffffd944": 0, "0x53524f4c": 0, "0x3d73723d": 0, "0x69643a30": 0, "0x3b31303d": 0, "x28": 0, "xd4": [0, 37, 39], "y": [0, 1, 2, 3, 4, 5, 13, 18, 30, 31, 32, 35, 37, 39], "0x080484a7": 0, "continu": [0, 3, 5, 9, 10, 13, 15, 30, 31, 32, 33, 36, 37, 39], "aaaaaaaaaaaa": [0, 37, 39], "19900": 0, "context": [0, 1, 5, 11, 17, 19, 30, 33, 36, 38, 39], "didn": [0, 5, 13, 18, 33, 36, 39, 40], "4128": 0, "28": [0, 3, 5, 6, 8, 10, 17, 18, 19, 30, 34, 35, 36, 38, 39], "0a": [0, 3, 5, 6, 18], "gave": 0, "d837": 0, "0a03": 0, "x37": 0, "aaaaaaaaaaaaaaaaaaaa7": 0, "bbbbbbbbbbbb": 0, "secret": [0, 2, 3, 5, 6, 12, 13, 18, 19, 20, 31, 32, 33, 36, 37, 38, 39], "0x1337beef": 0, "kei": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 11, 15, 16, 17, 18, 19, 20, 23, 24, 29, 33, 36, 38], "welcom": [0, 8, 11, 18, 35, 37, 39], "grant": [0, 5, 13, 18, 19, 30, 31, 32, 33, 38, 39], "okai": [0, 38, 39], "woah": 0, "my": [0, 3, 8, 10, 12, 17, 18, 19, 29, 30, 31, 35, 36, 38, 39], "fopen": 0, "fclose": 0, "still": [0, 5, 10, 13, 16, 17, 18, 19, 20, 30, 31, 32, 33, 35, 36, 37, 38, 39], "safe": [0, 5, 7, 10, 18, 20, 30, 32, 38, 39], "sorri": 0, "seen": [0, 3, 10, 15, 18, 24, 30, 31, 33, 38, 39, 40], "0xc0defac": 0, "ascii": [0, 4, 5, 6, 7, 18, 19, 20, 30, 35, 37, 38, 39], "xfa": [0, 37, 39], "xce": 0, "endia": 0, "give_shel": 0, "gid": [0, 18, 30, 35, 36, 38, 39], "_t": 0, "nearli": [0, 3, 9, 20, 30, 31], "outputfil": [0, 20, 30], "_shell": 0, "hex": [0, 4, 15, 17, 19, 30, 37, 39], "never": [0, 10, 13, 30, 32, 33, 37, 38, 39], "gid_t": 0, "group": [0, 5, 7, 8, 9, 10, 11, 13, 15, 18, 22, 24, 29, 31, 32, 34, 35, 36, 37], "setresuid": 0, "function_ptf": 0, "anyth": [0, 3, 7, 10, 15, 17, 29, 30, 32, 33, 34, 35, 36, 39], "fit": [0, 10, 32, 33], "plenti": 0, "storm": 0, "token": [0, 1, 5, 10, 12, 15, 17, 18, 19, 29, 31], "typedef": 0, "function_ptr": 0, "be_nice_to_peopl": 0, "rop1": 0, "involv": [0, 5, 6, 9, 10, 15, 20, 30, 31, 32, 33, 37, 38, 39], "cylic": 0, "76": [0, 3, 4, 5, 18, 36, 37, 39], "leav": [0, 9, 10, 18, 20, 30, 33, 37, 39, 40], "0x424242": 0, "accomplish": [0, 3, 30], "linux_x86": 0, "kernelpan": 0, "51": [0, 3, 5, 8, 9, 17, 18, 19, 30, 31], "x51": 0, "jmpeax": 0, "0x080483e7": 0, "vulnerabilti": 0, "narnia5": 0, "snprintf": [0, 4], "hint": [0, 2, 3, 5, 37, 39], "f7eb6de6": 0, "ffffffff": [0, 19], "ffffd6ae": 0, "f7e2ebf8": 0, "62653766": 0, "36656436": 0, "6666662e": 0, "0xffffd6cc": 0, "aaaaf7eb6de6": 0, "41414141": 0, "36656": 0, "ffffd6cc": 0, "08n": 0, "6666": 0, "40": [0, 3, 5, 6, 9, 17, 18, 19, 20, 24, 30, 31, 36, 38, 39], "468x": 0, "goodfunct": 0, "hackedfunct": 0, "ptrf": 0, "sleep": [0, 1, 5, 20, 35, 39], "fprintf": 0, "stderr": [0, 30, 35, 37, 39], "stdout": [0, 3, 30, 35, 37, 38, 39], "assign": [0, 5, 6, 9, 17, 30, 31, 32, 38, 39], "badfunct": 0, "narnia71": 0, "0x804871f": 0, "0x8048745": 0, "0xffb4450c": 0, "0x80486e0": 0, "0x1f": [0, 3, 18], "0x45": [0, 5, 18], "0x86e0": 0, "formula": [0, 8, 9, 24], "000008a2": 0, "f7fdeb58": 0, "f7fde860": 0, "0804835c": 0, "0804871f": 0, "3030302e": 0, "61383030": 0, "ltrace": [0, 4], "0x804868f": 0, "0x8048740": 0, "unfinish": [0, 4], "0xffffd620": 0, "0x80486e0goodfunct": 0, "27": [0, 1, 3, 5, 6, 8, 12, 17, 18, 19, 30, 36, 37, 39], "0xffffd61cbefor": 0, "0xffffd61c": 0, "41": [0, 3, 9, 18, 19, 30, 35, 36, 39], "0x8048706hackedfunct": 0, "08048238": 0, "ffffd678": 0, "f7ffda94": 0, "0x8048238": 0, "0xf7ffda94": 0, "0x3038302e": 0, "61": [0, 3, 18, 30], "0xf7fcaac0": 0, "statu": [0, 3, 4, 7, 8, 9, 10, 12, 18, 19, 23, 29, 30, 31, 35, 36, 37, 39], "0xffffd2ec": 0, "10xb": 0, "0xfffd3ea": 0, "0xffffd3ea": 0, "0x3f": 0, "0x77": 0, "0xffffd3f2": 0, "0xffffd2ea": 0, "0x04": [0, 3], "0x08": [0, 3], "0x87": 0, "0xffffd2f2": 0, "hasmntopt": 0, "0xffffd2fc": 0, "xfc": 0, "xd2": [0, 37, 39], "0x8048731": 0, "0xffffd2fa": 0, "0x31": 0, "0xfc": 0, "0xd2": 0, "0xffffd302": 0, "0xff": [0, 3, 4], "assembli": [0, 9, 31], "0x0804847d": 0, "0x0804847e": 0, "0x08048480": 0, "0xfffffff0": 0, "0x08048483": 0, "sub": [0, 1, 5, 8, 9, 17, 22, 30, 37, 39], "0xe0": 0, "0x08048489": 0, "0x8048570": 0, "0x08048490": 0, "0x08048495": 0, "0x80497a4": 0, "0x0804849a": 0, "29": [0, 3, 4, 5, 6, 7, 8, 17, 18, 19, 30, 32, 35, 36, 38, 39], "0x8": [0, 7, 19], "0x0804849e": 0, "0xc8": 0, "0x080484a6": 0, "0x18": [0, 3, 19], "0x080484aa": 0, "45": [0, 3, 9, 17, 18, 29, 30, 34, 36, 39], "0x080484ad": 0, "0x8048340": 0, "0x080484b2": 0, "53": [0, 1, 3, 10, 17, 19, 34, 38, 39], "0x8048584": 0, "0x080484be": 0, "65": [0, 3, 4, 8, 18, 19, 34, 39], "0x080484c2": 0, "69": [0, 3, 37, 38, 39], "0x080484c5": 0, "72": [0, 3, 4, 18, 36, 39], "0x080484ca": 0, "77": [0, 3, 5, 18], "0x804858e": 0, "0x080484d1": 0, "84": [0, 3, 18], "0x8048350": 0, "0x080484d6": 0, "89": [0, 3, 5], "0x080484db": 0, "94": [0, 3, 17, 18, 36, 39], "0x080484dc": 0, "95": [0, 5, 18, 37, 38, 39], "behavior": [0, 5, 7, 9, 10, 11, 22, 29, 31, 33, 35, 36, 38, 39], "rahul3": 0, "identifi": [0, 1, 3, 6, 8, 9, 11, 14, 18, 20, 22, 24, 29, 33, 34, 35, 36, 37, 39], "yourself": [0, 5, 18, 32, 33], "hellocheck123": 0, "aaaand": 0, "goodby": 0, "larg": [0, 3, 5, 9, 10, 15, 17, 18, 20, 24, 31, 32, 33, 34, 35, 37, 39], "000000c8": 0, "f7fcac20": 0, "f7ffd000": 0, "3830252e": 0, "0xffffd8f0": 0, "valuei": 0, "0xf7e3ba63": 0, "overwrriten": 0, "0xffffd65c": 0, "0xffffd66c": 0, "x5e": 0, "x5c": 0, "65527x": 0, "55503x": 0, "input98": 0, "tricki": [0, 32, 38, 39], "0x08049790": 0, "x92": 0, "x97": 0, "x04": [0, 38, 39], "pico83515": 0, "0x804a030": 0, "ffffd774": 0, "ffffd780": 0, "f7e4f39d": 0, "f7fc83c4": 0, "0804852b": 0, "0804a030": 0, "08048520": 0, "seventh": [0, 30], "256": [0, 3, 7, 10, 19, 35, 36, 39], "extract": [0, 1, 5, 10, 15, 17, 18, 19, 20, 22, 30, 32, 33, 35, 36, 37, 39], "dma": 0, "ahead": [0, 32], "1333": 0, "1333u": 0, "103": [0, 9, 18, 19], "aaaa41410074": 0, "104": [0, 1, 5], "aaaa31254141": 0, "aren": [0, 19, 30], "1333uaa": 0, "aaaa41414141": 0, "0x0804a030": 0, "That": [0, 5, 7, 10, 15, 32, 33, 36, 39], "total": [0, 5, 9, 15, 17, 18, 19, 30, 32, 36, 38, 39], "far": [0, 5, 22, 31, 32, 33, 36, 39], "pico1139": 0, "x30": 0, "xa0": 0, "naa": 0, "uid": [0, 18, 20, 30, 35, 36, 38, 39], "11066": 0, "1008": 0, "1017": 0, "picogroup": 0, "makefil": 0, "_thought": 0, "_": [0, 1, 3, 4, 5, 6, 7, 8, 13, 15, 17, 18, 19, 30, 32, 35, 36, 37, 39], "_wa": 0, "_a": 0, "_good": 0, "_idea": 0, "plain": [0, 17, 18, 30, 37], "1337u": 0, "7th": 0, "1292u": 0, "did": [0, 5, 10, 17, 19, 20, 30, 32, 36, 38, 39], "9": [0, 2, 3, 5, 7, 8, 9, 13, 15, 17, 18, 19, 20, 22, 24, 30, 32, 34, 35, 36, 37, 38, 39], "1292": 0, "bufsiz": 0, "greet": 0, "don": [0, 5, 6, 10, 17, 19, 29, 30, 31, 32, 35, 36, 37, 38, 39, 40], "ask": [0, 3, 4, 5, 10, 13, 17, 18, 19, 29, 30, 31, 32, 33, 35, 37, 38, 39, 40], "disregard": [0, 18], "rest": [0, 17, 18, 19, 24, 29, 30, 31, 32, 33, 35, 37, 39], "ouput": 0, "no_overflow": 0, "furthermor": [0, 5, 9, 30, 34, 35, 39], "stick": [0, 15, 19, 24, 30, 32], "268": 0, "xd0": [0, 37, 39], "aaaaaaaaaaaaaaaaaaaaaa": 0, "1007": 0, "what_is_your_sign": 0, "file_nam": [0, 30], "not_the_flag": 0, "0x08048777": 0, "0x8048460": 0, "what_the_flag": 0, "0xf7e81ee0": 0, "0x8048777": 0, "0x08048778": 0, "0x8048778": 0, "ot_the_flag": 0, "0x08048770": 0, "0x8048770": 0, "0x0804877c": 0, "0x804877c": 0, "he_flag": 0, "0x0804877d": 0, "0x804877d": 0, "e_flag": 0, "0x0804877e": 0, "0x804877e": 0, "_flag": 0, "0x0804877f": 0, "message_data": 0, "read_fil": 0, "file_path": 0, "size_t": 0, "sprintf": [0, 35, 39], "strcmp": 0, "1337_p455w0rd": 0, "incorrect": [0, 5, 15, 18, 30, 32, 35, 39], "ovewrit": 0, "manual": [0, 5, 7, 8, 9, 10, 16, 17, 18, 19, 20, 22, 29, 30, 31, 32, 35, 36, 37, 39], "eof": [0, 30, 35, 39], "overrun": [0, 31], "bug": [0, 5, 7, 18, 29, 30, 31, 33, 35, 36, 37, 38, 39], "0aa": 0, "x7f": 0, "x87": 0, "aa": [0, 3], "0bb": 0, "congratul": 0, "who_needs_": 0, "awai": [0, 9, 30, 31, 33], "behemoth2": 0, "behemoth": [0, 26], "13373": 0, "deni": [0, 7, 10, 18, 19, 22, 30, 32, 36, 37, 39], "0x804856d": 0, "0xffffd794": 0, "0x8048640": 0, "14118": 0, "__lxstat": 0, "sigchld": [0, 4, 30], "truncat": [0, 18, 37, 39], "lstat": 0, "thefil": 0, "0x08048588": 0, "0x8048410": 0, "0x080485b3": 0, "0x080485c7": 0, "0x80486c0": 0, "0x080485df": 0, "114": [0, 5], "0x080485eb": 0, "126": [0, 9, 35, 39], "0x8048420": 0, "0x080485f7": 0, "138": [0, 18, 20, 38, 39], "0x80483e0": 0, "0x08048616": 0, "169": [0, 18], "0x08048635": 0, "0x08048636": 0, "201": [0, 5, 18, 30, 36, 39], "advantag": [0, 9, 18, 20, 24, 30, 32], "behemoth_pass": 0, "primari": [0, 3, 5, 9, 10, 11, 15, 18, 19, 22, 30, 31, 32, 33, 36, 39], "rahul2": 0, "histori": [0, 5, 9, 13, 17, 19, 20, 32, 33, 37], "packet": [1, 3, 7, 10, 11, 17, 22, 29, 30, 31, 34, 36, 37, 39], "rdpcap": 1, "spare": 1, "captur": [1, 3, 10, 15, 18, 19, 20, 24, 30, 36, 37, 38, 39, 40], "isakmp": 1, "cap": [1, 17, 19, 32], "offset": [1, 3, 18, 20, 30], "skip": [1, 17, 18, 30, 34, 39], "byte": [1, 3, 4, 5, 9, 10, 18, 19, 30, 31, 35, 36], "open": [1, 2, 3, 4, 5, 7, 9, 10, 13, 15, 16, 17, 19, 20, 22, 23, 24, 29, 31, 32, 34, 35, 36, 37, 38, 39, 40], "wb": [1, 3], "bmp": 1, "hdr": [1, 35, 39], "0x8a": 1, "keep": [1, 4, 5, 6, 7, 9, 10, 11, 13, 15, 17, 18, 19, 30, 31, 32, 33, 36, 37, 39], "binari": [1, 3, 4, 5, 6, 7, 9, 10, 17, 18, 20, 31, 37, 38, 40], "pwnutil": 1, "us": [1, 2, 4, 6, 8, 9, 10, 11, 12, 14, 16, 21, 22, 23, 24, 26, 29, 32, 34, 35, 40], "import": [1, 2, 3, 5, 6, 7, 8, 9, 10, 11, 15, 17, 18, 19, 20, 22, 24, 29, 32, 33, 35, 36, 37, 38, 39], "whitepag": 1, "bin_fil": 1, "bytearrai": 1, "xe2": 1, "x83": 1, "x20": 1, "decod": [1, 2, 3, 5, 15, 18, 19, 35, 37, 38, 39], "unbit": [1, 3], "find": [1, 2, 5, 6, 7, 9, 10, 12, 15, 16, 20, 21, 22, 24, 26, 29, 31, 33, 35, 37, 38], "ndarrai": 1, "astyp": 1, "cast": [1, 5], "argmax": 1, "axi": [1, 18], "pseudorandom": 1, "time": [1, 3, 4, 6, 7, 9, 11, 12, 13, 15, 17, 18, 19, 20, 21, 22, 24, 29, 30, 31, 33, 34, 35, 37, 38, 40], "arriv": [1, 20, 30], "approxim": [1, 9], "get": [1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 17, 18, 20, 22, 23, 24, 29, 31, 33, 34, 36, 38], "subtract": [1, 3], "string": [1, 2, 4, 6, 8, 10, 15, 17, 19, 20, 33, 34, 35, 36, 37, 38, 39], "slice": [1, 30], "notat": [1, 3, 17, 34, 39], "tupl": 1, "exampl": [1, 3, 7, 8, 11, 12, 13, 15, 16, 18, 20, 22, 24, 29, 32, 34, 35, 37], "1232": 1, "2321": 1, "binascii": [1, 37, 39], "unhexlifi": [1, 37, 39], "hexstr": [1, 37, 39], "base64": [1, 3, 18, 19, 34, 35, 37], "decodestr": [1, 37, 39], "str": [1, 3, 4, 37, 39], "0xf": [1, 37, 39], "6a48f82d8e828ce82b82": [1, 37, 39], "regexp": [1, 30], "findal": [1, 19], "42": [1, 3, 8, 12, 18, 19, 20, 30, 31, 38, 39], "bla42bla": 1, "delimit": [1, 30], "comma": [1, 8, 17, 19, 30], "he33llo": 1, "quot": [1, 19, 30, 35, 37, 38, 39], "muc": 1, "ec": [1, 5, 31], "099_sc": 1, "memori": [1, 14, 15, 18, 19, 30, 31, 32, 33, 36, 37, 38, 39], "01_tc": 1, "25": [1, 2, 3, 4, 5, 6, 9, 12, 13, 17, 19, 23, 24, 30, 31, 32, 34, 38, 39], "dotal": 1, "ord": [1, 3], "char": [1, 4, 5, 8, 15, 19, 35, 39], "after": [1, 2, 3, 5, 6, 7, 9, 10, 13, 15, 17, 18, 19, 20, 24, 29, 30, 31, 32, 35, 36, 37, 38, 39], "plai": [1, 3, 5, 6, 18, 37, 39], "chr": [1, 2, 5], "trick": [1, 2, 3, 4, 5, 6, 32, 34, 35, 40], "solv": [1, 2, 10, 15, 20, 29, 30, 32, 33, 34, 39, 40], "algebra": 1, "equat": [1, 32], "sympi": 1, "equal": [1, 3, 4, 5, 7, 9, 32], "translat": [1, 3, 17, 30], "solver": 1, "zero": [1, 3, 4, 5, 13, 17, 18, 30, 31, 32, 34, 39], "avl": 1, "tree": [1, 3, 5, 9, 15, 17, 18, 23, 32, 37, 39], "py2": 1, "py3": 1, "rgb": [1, 3, 38, 39], "pixel": [1, 3, 5, 6, 18, 30], "pil": 1, "im": [1, 11], "dead_parrot": 1, "jpg": [1, 3, 30, 37, 38, 39], "mani": [1, 3, 5, 7, 9, 10, 11, 13, 15, 17, 19, 20, 22, 23, 24, 29, 30, 31, 32, 34, 35, 36, 37, 39], "format": [1, 4, 5, 6, 7, 8, 10, 13, 15, 17, 18, 19, 20, 21, 22, 23, 29, 31, 32, 33, 34, 35, 37, 38, 39], "pix": 1, "width": [1, 3, 18, 30, 38, 39], "hight": 1, "iter": [1, 5, 19, 30, 32], "rgba": [1, 3, 38, 39], "set": [1, 3, 5, 9, 10, 11, 12, 13, 14, 16, 17, 18, 19, 20, 22, 23, 29, 31, 32, 33, 35, 36, 37], "alive_parrot": 1, "bin": [1, 3, 4, 5, 7, 13, 15, 18, 19, 31, 35, 36, 38], "hexlifi": 1, "0b110100001100101011011000110110001101111": 1, "0000": [1, 3, 10, 12, 18, 20], "9999": [1, 8], "xrang": [1, 3], "04": [1, 3, 12, 14, 17, 18, 20, 30, 31, 34, 35, 36, 37, 38, 39], "0001": [1, 30], "insert": [1, 5, 7, 11, 14, 18, 32, 35, 37, 39], "0123456789": 1, "paramet": [1, 4, 8, 10, 18, 19, 24, 29, 31, 36, 37, 38], "onlin": [1, 3, 9, 13, 15, 18, 29, 30, 33, 34, 39], "webform": 1, "definit": [1, 7, 17, 30, 32], "def": [1, 2, 7, 18, 19, 36, 37, 38, 39], "fun": [1, 18, 19, 37, 38, 39], "two": [1, 3, 4, 5, 6, 7, 8, 9, 10, 13, 15, 17, 18, 19, 20, 23, 24, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39], "user_input": 1, "dir": [1, 3, 5, 18, 19, 20, 30, 36, 37, 38, 39], "exec": [1, 5, 6, 7, 13, 18, 19, 20, 22, 30, 35, 36, 37, 38, 39], "eval": [1, 35, 38, 39], "listdir": 1, "__import__": 1, "system": [1, 2, 3, 4, 5, 6, 7, 8, 11, 12, 13, 14, 15, 17, 19, 21, 29, 31, 32, 33, 34, 40], "fine": [1, 5, 13, 15, 31, 32, 33], "till": [1, 9, 24, 31], "blacklist": [1, 5, 7], "craft": [1, 5, 32, 37, 39], "dict": 1, "__class__": 1, "__base__": 1, "__mro__": 1, "access": [1, 3, 4, 5, 6, 8, 11, 12, 13, 14, 16, 17, 22, 30, 31, 32, 33, 35, 36, 37], "__subclasses__": 1, "weakref": 1, "weakcallableproxi": 1, "weakproxi": 1, "nonetyp": 1, "notimplementedtyp": 1, "traceback": 1, "super": [1, 3, 18, 29, 30, 37, 39], "dict_kei": 1, "dict_valu": 1, "dict_item": 1, "odict_iter": 1, "staticmethod": 1, "complex": [1, 5, 7, 8, 9, 10, 11, 15, 20, 22, 29, 31, 32, 33], "frozenset": 1, "properti": [1, 3, 5, 8, 11, 13, 15, 18, 20, 24, 29, 30, 31, 32, 36, 39], "managedbuff": 1, "memoryview": 1, "enumer": [1, 2, 3, 5, 9, 20, 29, 30, 32, 34], "stderrprint": 1, "frame": [1, 3, 5, 9, 11, 22, 31, 34, 35, 37, 38, 39], "builtin_function_or_method": 1, "mappingproxi": 1, "getset_descriptor": 1, "wrapper_descriptor": 1, "wrapper": [1, 17, 19, 37], "ellipsi": 1, "member_descriptor": 1, "simplenamespac": 1, "pycapsul": 1, "longrange_iter": 1, "cell": [1, 5, 10, 11, 15, 18, 31], "instancemethod": 1, "classmethod_descriptor": 1, "method_descriptor": 1, "callable_iter": 1, "coroutin": 1, "coroutine_wrapp": 1, "moduledef": 1, "modul": [1, 3, 5, 6, 7, 8, 9, 10, 11, 13, 15, 17, 20, 22, 23, 29, 31, 32, 36, 37], "encodingmap": 1, "fieldnameiter": 1, "formatteriter": 1, "zip": [1, 5, 8, 13, 15, 18, 20], "baseexcept": 1, "hamt": 1, "hamt_array_nod": 1, "hamt_bitmap_nod": 1, "hamt_collision_nod": 1, "item": [1, 3, 5, 10, 11, 19, 20, 24, 30, 31, 32, 33, 37, 38, 39], "contextvar": 1, "_frozen_importlib": 1, "_modulelock": 1, "_dummymodulelock": 1, "_modulelockmanag": 1, "_installed_saf": 1, "modulespec": 1, "builtinimport": 1, "classmethod": 1, "frozenimport": 1, "_importlockcontext": 1, "_thread": 1, "_localdummi": 1, "_local": 1, "rlock": 1, "zipimport": 1, "_frozen_importlib_extern": 1, "windowsregistryfind": 1, "_loaderbas": 1, "fileload": 1, "_namespacepath": 1, "_namespaceload": 1, "pathfind": 1, "filefind": 1, "_io": 1, "_iobas": 1, "_bytesiobuff": 1, "incrementalnewlinedecod": 1, "posix": [1, 22, 30], "scandiriter": 1, "direntri": 1, "codec": 1, "incrementalencod": 1, "incrementaldecod": 1, "streamreaderwrit": 1, "streamrecod": 1, "_abc_data": 1, "abc": [1, 19, 33], "dict_itemiter": 1, "collect": [1, 5, 7, 9, 10, 15, 17, 18, 29, 31, 32, 33, 37, 39], "hashabl": 1, "await": [1, 30], "asynciter": 1, "async_gener": 1, "bytes_iter": 1, "bytearray_iter": 1, "dict_keyiter": 1, "dict_valueiter": 1, "list_iter": 1, "list_reverseiter": 1, "range_iter": 1, "set_iter": 1, "str_iter": 1, "tuple_iter": 1, "callabl": 1, "_wrap_clos": 1, "_sitebuiltin": 1, "quitter": 1, "_printer": 1, "_helper": 1, "dynamicclassattribut": 1, "_generatorwrapp": 1, "warn": [1, 5, 6, 9, 10, 18, 19, 22, 30, 35, 37, 38, 39], "warningmessag": 1, "catch_warn": 1, "importlib": 1, "finder": [1, 18, 32], "resourceread": 1, "itemgett": 1, "attrgett": 1, "methodcal": 1, "itertool": 1, "accumul": [1, 9], "combinations_with_replac": 1, "cycl": [1, 5, 9, 10, 15, 19, 29, 30, 31], "dropwhil": 1, "takewhil": 1, "islic": 1, "starmap": 1, "chain": [1, 3, 9, 10, 15, 18, 19, 23, 29, 32, 33, 36, 37, 39], "compress": [1, 3, 5, 11, 15, 18, 19, 22, 35, 36, 37, 39], "filterfals": 1, "zip_longest": 1, "permut": [1, 5], "product": [1, 5, 9, 10, 13, 17, 18, 20, 22, 23, 24, 29, 31, 32, 33, 36, 39], "groupbi": 1, "_grouper": 1, "_tee": 1, "_tee_dataobject": 1, "reprlib": 1, "repr": 1, "dequ": 1, "_collect": 1, "_deque_iter": 1, "_deque_reverse_iter": 1, "_link": 1, "functool": 1, "_lru_cache_wrapp": 1, "partialmethod": 1, "contextlib": 1, "contextdecor": 1, "_generatorcontextmanagerbas": 1, "_baseexitstack": 1, "rlcomplet": 1, "suitabl": [1, 5, 9, 18, 30, 31, 33], "subclass": 1, "index": [1, 3, 5, 7, 18, 20, 24, 30, 31, 36, 37, 38, 39], "__init__": 1, "initi": [1, 4, 7, 9, 10, 11, 15, 18, 20, 24, 32, 33, 36, 37, 39, 40], "__globals__": 1, "global": [1, 4, 9, 11, 15, 18, 22, 29, 31, 32, 33, 36, 37, 39], "namespac": [1, 12, 13, 19], "pyjail": 1, "wu": [1, 18], "call": [1, 4, 5, 7, 9, 10, 11, 13, 15, 17, 18, 19, 20, 24, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39], "python3": [1, 35, 36, 39], "py": [1, 2, 5, 15, 18, 19, 20, 35, 36, 37, 38, 39], "__": [1, 10], "getattr": 1, "__name__": [1, 2, 37, 39], "true": [1, 5, 6, 7, 8, 9, 10, 12, 13, 14, 18, 20, 30, 31, 32, 33, 35, 36, 38, 39], "_modul": 1, "__builtins__": 1, "sh": [1, 3, 4, 7, 13, 18, 30, 31, 32, 36, 37, 38], "subcl": 1, "ass": 1, "catch": [1, 7, 16, 32, 35, 36, 39], "builtin": [1, 18, 19], "imp": [1, 17, 18, 37, 39], "ort": 1, "stem": [1, 5], "ani": [1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 15, 17, 18, 19, 20, 22, 23, 24, 26, 29, 30, 31, 32, 33, 34, 35, 37, 38, 40], "attribut": [1, 3, 5, 10, 19, 20, 32, 33, 35, 37, 39], "boldest": 1, "treat": [1, 5, 30, 31, 33, 34, 37, 39], "dictionari": [1, 3, 5, 6, 7, 9, 10, 17, 18, 20, 30, 32, 35, 37, 39], "attr": [1, 15, 19], "form_product_pag": 1, "form_1362737440": 1, "action": [1, 5, 9, 10, 13, 15, 17, 18, 19, 20, 21, 22, 24, 31, 32, 36, 37, 38, 39], "download": [1, 3, 5, 8, 9, 13, 14, 15, 18, 19, 20, 22, 29, 30, 31, 34, 35, 36, 37, 38, 39], "791055": 1, "164084": 1, "input": [1, 6, 9, 15, 17, 18, 19, 20, 22, 32, 33, 35, 36], "nojssubmit": 1, "submit": [1, 5, 18, 26, 30, 31, 33, 38, 39], "soup": [1, 32], "exploit": [1, 3, 7, 10, 17, 21, 26, 29, 30, 32, 33, 34, 35, 37, 40], "ubuntu": [1, 7, 14, 18, 35, 37, 38, 39], "apt": [1, 3, 7, 13, 14, 15, 18, 31, 35, 38], "pip": [1, 39], "git": [1, 13, 20, 32, 33], "libssl": 1, "libffi": 1, "upgrad": [1, 7, 15, 22, 24, 31, 32, 35, 38], "check": [1, 2, 3, 4, 5, 6, 7, 9, 10, 11, 12, 15, 16, 17, 19, 20, 24, 29, 31, 33, 34, 35, 37, 38], "binutil": 1, "remot": [1, 5, 7, 10, 11, 13, 17, 20, 22, 29, 30, 31, 32, 36], "tcp": [1, 3, 5, 9, 17, 19, 29, 30, 31, 36, 37, 38], "udp": [1, 3, 9, 17, 30, 37], "server": [1, 3, 6, 7, 11, 12, 15, 22, 23, 31, 32, 33, 35, 36, 37], "ssh": [1, 5, 6, 7, 10, 19, 22, 31, 32, 34, 36, 38], "recv": [1, 17], "recvlin": 1, "encount": [1, 5, 18, 33, 38, 39], "recvuntil": 1, "delim": [1, 30], "recvregex": 1, "satisfi": [1, 5, 24, 30], "recvrepeat": 1, "timeout": [1, 10, 13, 17, 18, 22, 31], "occur": [1, 5, 9, 15, 17, 19, 20, 22, 30, 31, 32, 33, 38, 39], "discard": [1, 7, 35, 39], "buffer": [1, 3, 4, 5, 10, 18, 30, 35, 36, 38, 39], "sendlin": 1, "sendlineaft": 1, "unpack": [1, 3, 5, 30], "talk": [1, 9, 10, 15, 17, 18, 19, 20, 22, 31, 32, 37, 39], "target": [1, 3, 5, 6, 8, 10, 11, 13, 15, 17, 18, 21, 22, 24, 29, 30, 31, 33, 34, 35, 36, 37, 39], "local_binari": 1, "environ": [1, 5, 9, 10, 13, 15, 17, 18, 20, 21, 29, 31, 32, 37], "myenv": 1, "myval": 1, "isn": [1, 35, 39], "block": [1, 2, 3, 5, 10, 13, 14, 15, 17, 18, 19, 29, 32, 35, 37, 38, 39], "recvn": 1, "ddd": 1, "0xa444444": 1, "pretend": [1, 32], "uber": 1, "land": [1, 11, 24], "interfac": [1, 3, 5, 7, 11, 13, 14, 15, 16, 17, 19, 20, 22, 29, 32, 33, 35, 36, 37, 38], "somewher": [1, 5, 30, 32, 33, 35, 38, 39], "googl": [1, 3, 5, 20, 29, 30, 32, 33, 37, 38], "com": [1, 3, 5, 7, 8, 10, 13, 15, 18, 19, 20, 23, 24, 26, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "http": [1, 3, 4, 6, 7, 9, 10, 12, 13, 15, 19, 20, 22, 23, 24, 29, 30, 31, 32, 33, 34, 36], "protocol": [1, 3, 6, 11, 13, 15, 16, 17, 19, 22, 29, 30, 31, 34, 35, 36, 38, 39], "pretti": [1, 5, 15, 20, 30, 31, 32, 33, 36, 37, 39], "straightforward": [1, 31, 32, 33], "dn": [1, 5, 6, 11, 13, 19, 22, 29, 30, 31, 35, 37], "typ": 1, "tcp6": [1, 35, 39], "fam": 1, "ipv6": [1, 7, 13, 17, 18, 19, 23, 30, 34, 35, 37, 39], "note": [1, 4, 5, 7, 8, 9, 10, 15, 17, 18, 19, 20, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "exactli": [1, 3, 5, 9, 11, 17, 29, 30, 31, 32, 36, 37, 39], "client": [1, 3, 6, 8, 9, 10, 12, 16, 17, 18, 19, 20, 29, 31, 32, 33, 35, 38], "8080": [1, 17, 18, 20, 34, 35, 37, 39], "wait_for_connect": 1, "similarli": [1, 30, 32], "compar": [1, 3, 5, 9, 10, 15, 17, 18, 19, 22, 24, 29, 32, 36, 38, 39], "thing": [1, 3, 5, 9, 10, 11, 15, 17, 18, 19, 20, 24, 26, 29, 30, 32, 35, 36, 38, 40], "forward": [1, 3, 7, 9, 10, 11, 13, 17, 18, 19, 22, 30, 31, 33, 37], "upload": [1, 5, 13, 15, 18, 20, 22, 31, 34, 35, 36, 37], "tutori": [1, 7, 9, 19, 22, 26, 30, 31, 33, 36, 39], "bandit0": 1, "bandit": [1, 26], "lab": [1, 8, 18, 19, 32, 33], "overthewir": 1, "org": [1, 3, 5, 6, 7, 9, 10, 13, 17, 18, 19, 23, 26, 32, 33, 34, 37], "ps1": [1, 8, 18, 19, 20, 35, 36, 37, 39], "world": [1, 5, 7, 10, 17, 19, 23, 30, 31, 33, 37], "event": [1, 3, 5, 9, 13, 18, 19, 20, 30, 31, 32, 33], "serialtub": 1, "ttyusb0": [1, 15], "baudrat": [1, 15], "115200": [1, 14, 15], "conn": [1, 18], "ftp": [1, 3, 10, 11, 17, 22, 29, 35], "anonym": [1, 19, 37, 38, 39], "unhex": 1, "librari": [1, 3, 4, 9, 10, 13, 15, 17, 18, 19, 22, 29, 31, 32, 33, 36, 39], "share": [1, 3, 4, 5, 6, 8, 9, 10, 13, 16, 17, 18, 19, 20, 24, 26, 31, 33, 34, 35, 36, 37, 40], "pure": [1, 13, 18, 20, 30, 40], "export": [1, 3, 7, 8, 9, 10, 13, 18, 19, 22, 29, 30, 31, 33, 35, 36, 39], "cdll": 1, "windll": 1, "oledl": 1, "mysqli_real_escape_str": 1, "escap": [1, 3, 5, 31, 32, 35, 38, 39], "sql": [1, 6, 7, 10, 29, 35, 37, 39], "charset": [1, 5, 6, 18, 35, 39], "filter_var": 1, "variabl": [1, 3, 4, 5, 7, 9, 18, 32, 37, 38], "multipl": [1, 2, 3, 4, 5, 7, 8, 9, 10, 11, 12, 13, 15, 17, 18, 19, 20, 22, 29, 31, 32, 33, 35, 36, 37, 39], "sanit": [1, 32, 38, 39], "tab": [1, 3, 8, 10, 22, 35, 39], "config": [1, 12, 13, 14, 18, 19, 20, 22, 31, 35, 36, 37], "bar": [1, 4, 10, 20, 30, 33, 37, 39], "press": [1, 3, 4, 9, 19, 30, 33, 37, 38, 39], "click": [1, 3, 5, 6, 9, 10, 13, 15, 21, 22, 30], "button": [1, 3, 5, 15, 37, 38, 39], "promis": 1, "care": [1, 5, 9, 10, 11, 19, 30, 31, 33], "box": [1, 9, 10, 17, 18, 19, 20, 29, 34, 35, 36, 40], "captiv": 1, "paus": [1, 18], "doubl": [1, 3, 5, 9, 13, 19, 22, 30, 32, 35, 38, 39], "portal": [1, 9, 18, 34, 39], "servic": [1, 3, 5, 6, 9, 10, 11, 12, 14, 15, 22, 24, 32, 33, 34, 35, 37, 38, 39], "enabl": [1, 3, 5, 7, 8, 9, 10, 11, 12, 14, 15, 16, 17, 18, 20, 22, 23, 29, 31, 32, 33, 34, 35, 36, 37, 38, 39], "switch": [1, 3, 8, 9, 10, 11, 15, 18, 19, 20, 30, 31, 32, 36, 38, 39], "fals": [1, 3, 5, 6, 7, 8, 10, 12, 18, 19, 20, 22, 30, 31, 32, 37, 38, 39], "autoconfig": 1, "user_pref": 1, "pseudo": [1, 4, 30, 35, 39], "integr": [1, 3, 5, 7, 10, 11, 12, 13, 15, 16, 18, 20, 22, 29, 31, 32, 33], "rand_max": 1, "algorithm": [1, 3, 5, 15, 17, 18, 20, 33, 37, 39], "appar": [1, 5, 37, 39], "non": [1, 2, 3, 4, 5, 7, 9, 10, 15, 19, 20, 24, 31, 32, 33, 34, 35, 37, 39], "relat": [1, 3, 5, 10, 13, 17, 18, 19, 22, 23, 24, 29, 30, 31, 32, 33, 34, 39], "seri": [1, 3, 5, 9, 10, 13, 17, 18, 20, 29, 30, 31, 33, 38, 39, 40], "distinct": [1, 5, 9, 31], "typic": [1, 3, 5, 10, 11, 15, 17, 18, 19, 20, 22, 24, 30, 31, 32, 33, 35, 38, 39], "modulo": 1, "span": [1, 10, 11, 31], "v1": [1, 17, 18, 19, 20, 35, 37, 39], "99": [1, 3, 5, 14, 18, 30], "v2": [1, 9, 18, 37, 39], "v3": 1, "1985": 1, "2014": [1, 3, 9, 18, 20, 30, 33, 37, 39], "uniformli": [1, 13], "distribut": [1, 3, 5, 7, 8, 10, 11, 13, 18, 22, 24, 29, 32, 33, 36, 37, 39], "slightli": 1, "success": [1, 5, 6, 10, 11, 15, 17, 18, 19, 20, 22, 24, 30, 31, 32, 33, 35, 36, 37, 38, 39], "subsequ": [1, 5, 11, 30, 31], "reiniti": [1, 30, 35, 39], "produc": [1, 5, 7, 9, 10, 16, 20, 24, 30, 32, 33, 37, 39], "stream": [1, 3, 10, 11, 13, 18, 30, 31, 36], "whichev": [1, 15, 38, 39], "pointer": [1, 4, 7, 22], "unchang": [1, 30], "liner": [1, 19, 35, 36, 37, 39], "hex_str": 1, "aabbccdd": 1, "fromhex": 1, "ddccbbaa": 1, "part_flag": 1, "7069636f": 1, "pico": [1, 3], "tip": [2, 5, 6, 17, 32, 34, 35, 38, 40], "atleast": [2, 9, 32], "paragraph": [2, 30], "poem": 2, "ciphertext": [2, 32, 37, 39], "insecur": [2, 5, 7, 13, 15, 22, 24, 32, 35, 37, 38, 39], "cryptograph": [2, 18, 20, 30], "soe": [2, 9], "commun": [2, 3, 5, 11, 13, 17, 19, 20, 22, 29, 30, 31, 32, 34, 35, 37, 39, 40], "agent": [2, 5, 7, 10, 17, 18, 20, 35, 37, 38, 39], "nazi": 2, "occupi": [2, 30], "europ": [2, 33], "sender": [2, 18, 22, 32, 36, 39], "pre": [2, 3, 5, 6, 9, 10, 12, 16, 17, 18, 29, 30, 31, 32, 35, 36, 38, 39], "arrang": [2, 24, 36, 38, 39], "mayb": [2, 3, 9, 10, 15, 18, 20, 24, 31, 33, 35, 36, 37, 38, 39], "maritim": 2, "signal": [2, 4, 7, 9, 10, 11, 15, 18, 20, 24, 35, 39], "dq": 2, "refer": [2, 3, 4, 8, 10, 11, 12, 13, 15, 17, 19, 20, 22, 24, 29, 30, 31, 32, 34, 35, 38, 40], "picoctf_2017": 2, "weird": [2, 10, 35, 39], "e1": [2, 3, 9, 35, 39], "e2": [2, 5, 9], "c1": [2, 3, 35, 39], "c2": [2, 5, 16, 18, 31], "rsa_e2": 2, "65337": 2, "1025": 2, "9898006990106": 2, "8876427863578": 2, "3874365421971": 2, "fernet": 2, "guarante": [2, 24, 30, 32], "manipul": [2, 5, 10, 15, 22, 36, 37, 38, 39], "authent": [2, 3, 7, 8, 12, 15, 16, 17, 19, 22, 29, 30, 31, 35, 36, 37, 38, 39], "openssl": [2, 3, 37, 39], "aes256": [2, 8, 18], "salt": [2, 18, 20, 29, 30, 32, 36, 39], "enc": [2, 16, 19, 20, 37, 39], "k": [2, 3, 17, 18, 19, 20, 30, 37, 39], "unbreakablepassword1234567": 2, "dracula": 2, "0f3fa17eeacd53a9": 2, "58593a7522257f2a95cce9a68886ff78546784ad7db4473dbd91aecd9eefd508": 2, "iv": [2, 34], "7a12fd4dc1898efcd997a1b9496e7591": 2, "song": 2, "lyric": 2, "heavili": [2, 20], "influenc": [2, 33], "convent": [2, 8, 9, 10, 19, 30, 32, 33], "1980": 2, "rock": 2, "power": [2, 5, 6, 10, 11, 15, 18, 22, 29, 30, 31, 35, 39], "ballad": 2, "rubi": [2, 5, 17, 29, 31, 32, 37], "other": [2, 4, 7, 12, 13, 15, 20, 21, 22, 23, 24, 26, 33, 34, 35, 38, 40], "david": [2, 18, 33], "morgan": 2, "mar": [2, 18, 30, 36, 39], "bitmap": [2, 3, 18], "abstract": [2, 30, 31, 38, 39], "art": [2, 9, 33], "steganographi": 2, "domain": [2, 3, 5, 9, 10, 11, 12, 20, 22, 30, 31, 32, 34, 35, 36, 37, 38, 39], "invent": [2, 33], "ben": 2, "olmstead": 2, "1998": [2, 20, 33], "eighth": 2, "circl": [2, 32], "hell": [2, 5], "dant": 2, "inferno": 2, "malebolg": 2, "caesar": 2, "cryptool": 2, "hash": [2, 3, 5, 7, 13, 17, 18, 30, 35, 36, 38], "quipqiup": 2, "ceaser": 2, "decrypt": [2, 5, 15, 18, 19, 20, 30, 37, 39], "xor": [2, 3, 15], "xortool": 2, "help": [2, 3, 5, 6, 8, 9, 10, 13, 15, 17, 18, 19, 20, 21, 22, 23, 24, 26, 29, 31, 32, 36, 37, 38], "3845281945283805284526053525260547380516453748164748478317454508": 2, "polybiu": 2, "squar": [2, 4, 30, 35, 39], "coordin": [2, 9, 15, 31, 32], "5x5": 2, "examin": [2, 3, 5, 10, 22, 30, 32, 33, 35, 38, 39], "letter": [2, 3, 5, 7, 17, 18, 20, 30, 35, 39], "fall": [2, 5, 9, 24, 33], "interv": [2, 19, 31, 36, 39], "knowledg": [2, 3, 17, 18, 24, 26, 30, 32, 33, 34, 39, 40], "construct": [2, 3, 30, 31, 32, 33, 38, 39], "henc": [2, 3, 5, 11, 20, 30, 31, 35, 39], "sqrt": 2, "abcdefghijklmnopqrstuvwxi": 2, "alphabet": [2, 5, 30, 32, 37, 39], "minu": [2, 30], "numer": [2, 5, 9, 10, 15, 30, 31, 35, 37, 38, 39], "irrat": 2, "61803399": 2, "greek": [2, 36, 39], "\u03c6": 2, "01010010100": 2, "01001001000100": 2, "01001010000100": 2, "00101010010101": 2, "01000100100100": 2, "00100100000100": 2, "01000100000101": 2, "01000100001010": 2, "00000100000001": 2, "00001001010000": 2, "00000100010010": 2, "01000100010010": 2, "01001001001000": 2, "10001001000101": 2, "01001001010000": 2, "00001001000100": 2, "01001001010001": 2, "00000100000010": 2, "01000100010000": 2, "00001001001000": 2, "10000100010100": 2, "01000000010100": 2, "01001010000010": 2, "00101001010000": 2, "00001010101000": 2, "10000100100100": 2, "00101001000100": 2, "01000100010100": 2, "00001001000101": 2, "01000100010001": 2, "00000100001000": 2, "01001001001010": 2, "00000100010100": 2, "01000100000100": 2, "00000100001010": 2, "00000100010001": 2, "01000100000001": 2, "10000100000001": 2, "00000100000100": 2, "10001001010000": 2, "00000100000101": 2, "01000100000010": 2, "00001001001010": 2, "10000100000100": 2, "01001001000101": 2, "10001001000100": 2, "01001001010101": 2, "01001010100010": 2, "00100100100100": 2, "00100100010100": 2, "01000100001000": 2, "10000100001010": 2, "10000100010010": 2, "10000100010000": 2, "00001001010001": 2, "00000000010100": 2, "010": 2, "from": [2, 4, 8, 10, 11, 12, 14, 17, 18, 19, 20, 21, 22, 23, 24, 25, 29, 31, 32, 33, 34, 40], "argeu": 2, "dominguez": 2, "picoctf": [2, 3], "writeup": [2, 3, 17, 37, 39], "phi_decod": 2, "math": [2, 32], "scipi": [2, 3], "constant": [2, 4, 15, 30], "phinary_to_decim": 2, "phigit": 2, "fraction": [2, 5], "split": [2, 3, 5, 24, 35, 38, 39], "return": [2, 3, 4, 5, 6, 9, 13, 15, 17, 18, 19, 22, 24, 31, 33, 35, 36, 37, 38, 39], "__main__": [2, 37, 39], "phi_enc": 2, "rstrip": 2, "15th": [2, 29], "decoded_phi": 2, "join": [2, 3, 8, 13, 19, 29, 33], "wrong": [3, 4, 17, 19, 31, 32, 33, 35, 39], "cheat": [3, 5, 32, 35, 38, 39], "sheet": [3, 5, 32, 35, 38, 39], "gari": 3, "kessler": 3, "signatur": [3, 9, 15, 18, 30, 38, 39], "tabl": [3, 5, 8, 9, 13, 19, 20, 22, 31, 33, 35, 39], "filetyp": [3, 17, 30, 38, 39], "49": [3, 18, 19, 30, 36, 39], "46": [3, 5, 9, 18, 30, 35, 36, 39], "riff": 3, "au": [3, 20], "2e": [3, 5, 6, 18], "73": [3, 4, 35, 37, 38, 39], "6e": [3, 18], "snd": 3, "4d": 3, "f8": 3, "a9": [3, 5, 18], "bm": 3, "62": [3, 30], "03": [3, 5, 18, 30, 38, 39], "bmv": 3, "cab": 3, "43": [3, 8, 18, 19, 30, 36, 37, 38, 39], "mscf": 3, "5a": [3, 9, 16], "00": [3, 4, 5, 8, 9, 17, 18, 19, 23, 29, 30, 31, 36, 37, 38, 39], "mz": 3, "excel": [3, 8, 9, 18, 20, 22, 29, 30, 31, 32, 33], "d0": 3, "cf": [3, 4, 9, 18, 36, 37, 39], "e0": [3, 37, 39], "ex": [3, 5, 9, 10, 17, 18, 29, 33, 34, 35, 36, 37, 38, 39], "mzp": 3, "inno": 3, "flv": 3, "4c": 3, "01": [3, 5, 9, 10, 12, 13, 14, 15, 16, 17, 18, 19, 30, 35, 36, 39], "gif": 3, "47": [3, 8, 9, 18, 19, 30, 35, 36, 38, 39], "gif89a": 3, "gif87a": 3, "gz": [3, 30], "1f": [3, 18], "8b": [3, 8, 37, 39], "08": [3, 8, 12, 18, 19, 30, 34, 38, 39], "ico": 3, "jpeg": [3, 20, 30, 38, 39], "ff": [3, 18, 31, 37, 39], "d8": 3, "jfif": 3, "fe": [3, 30, 37, 39], "7f": 3, "4e": [3, 8, 18], "msi": [3, 19], "mp3": 3, "44": [3, 4, 18, 30, 36, 37, 38, 39], "id3": 3, "oft": 3, "4f": 3, "54": [3, 5, 18, 23, 30, 36, 37, 39], "oft2": 3, "ppt": 3, "rar": [3, 37, 39], "sfw": 3, "57": [3, 18, 19, 30], "06": [3, 18, 19, 30, 37, 38, 39], "cw": [3, 30], "tar": [3, 18, 38], "tgz": [3, 30], "9d": 3, "wmv": 3, "75": [3, 5, 8, 18, 37, 39], "4b": 3, "pk": [3, 7], "wav": [3, 20], "sqlite3": 3, "5351": 3, "4c69": 3, "7465": 3, "2066": [3, 18], "6f72": 3, "6d61": 3, "7420": 3, "3300": [3, 23], "sqlite": 3, "0400": 3, "0101": 3, "0040": 3, "2020": [3, 10, 13, 18, 30, 31], "000b": 3, "0000020": 3, "0002": [3, 18, 30, 36, 39], "0004": [3, 13], "apart": [3, 9, 17, 38, 39], "visual": [3, 4, 5, 9, 10, 18, 22, 29, 30, 31, 35, 39], "ksv": 3, "file_to_pars": 3, "ksy": 3, "kspath": 3, "opaqu": 3, "boolean": [3, 7, 10, 30], "version": [3, 4, 5, 7, 8, 9, 12, 13, 14, 15, 20, 23, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39], "ksc": 3, "tunn3l_v1s10n": 3, "kaitai_struct_format": 3, "8e": 3, "2c": [3, 5, 6, 17, 18, 31], "ba": [3, 37, 39], "file_hdr": 3, "00000010": [3, 18], "file_typ": 3, "00000020": [3, 18, 19], "len_fil": 3, "2893454": 3, "00000030": [3, 18], "1a": 3, "1e": [3, 18], "1b": [3, 18], "1d": 3, "2a": [3, 5, 6], "reserved1": 3, "00000040": [3, 18], "35": [3, 7, 18, 19, 30, 36, 37, 39], "2f": [3, 5, 6, 18, 35, 39], "reserved2": 3, "00000050": [3, 18], "2d": [3, 5, 6, 17, 38, 39], "3b": [3, 5, 6, 17, 18, 38, 39], "ofs_bitmap": 3, "53434": 3, "00000060": [3, 18], "36": [3, 8, 18, 19, 30, 31, 36, 37, 38, 39], "2b": [3, 4, 5, 6, 17, 37, 39], "dib_info": 3, "00000070": [3, 18], "0e": [3, 18, 38, 39], "3d": [3, 5, 6, 9, 38, 39], "len_head": 3, "00000080": [3, 18], "66": [3, 4, 18, 36, 38, 39], "6d": [3, 18], "9e": 3, "6f": [3, 4, 18], "9c": [3, 37, 39], "fr": 3, "mv": [3, 13, 30, 35, 39], "px": 3, "ot": [3, 9, 37, 39], "color_mask_alpha": 3, "00000090": [3, 18], "ab": [3, 30], "7e": [3, 5, 6], "8c": [3, 17, 18], "bd": 3, "8a": 3, "c8": 3, "71": [3, 16, 18], "color_mask_blu": 3, "000000a0": [3, 18], "c0": [3, 4, 18, 36, 39], "8f": 3, "8d": [3, 18, 31], "color_mask_green": 3, "000000b0": [3, 18], "6b": [3, 18], "b7": 3, "6a": [3, 18], "b0": 3, "a0": [3, 5], "a3": 3, "98": [3, 18, 36, 37, 39], "tu": 3, "wz": 3, "ov": 3, "color_mask_r": 3, "000000c0": [3, 18], "3a": [3, 5, 6, 16, 18, 35, 39], "6c": [3, 4], "vr": 3, "qr": 3, "lo": [3, 14, 30, 31, 37, 39], "mrdnsiw": 3, "is_color_mask_her": 3, "000000d0": [3, 18], "5e": [3, 5, 6, 37, 39], "59": [3, 5, 18, 19, 20, 30, 35, 39], "5f": [3, 5, 6, 37, 39], "ts93pxrvays_t": 3, "is_color_mask_given": 3, "000000e0": [3, 18], "86": [3, 37, 39], "7a": 3, "tc": 3, "jyvbpv": 3, "lzbp": 3, "color_mask_given": 3, "000000f0": [3, 18], "87": [3, 18], "5d": [3, 5, 6], "83": [3, 18], "9b": 3, "81": [3, 18], "ii": [3, 5, 7, 10, 16, 19, 29, 32, 34, 37], "sc": [3, 9, 11, 18, 20, 30, 36, 37, 39], "dataoffset": 3, "data": [3, 4, 6, 7, 11, 13, 17, 19, 22, 23, 24, 29, 34, 35, 36], "height": [3, 9, 18, 30, 38, 39], "dimens": [3, 18, 30], "multipli": [3, 9], "dpi": [3, 11], "per": [3, 4, 5, 6, 8, 9, 11, 12, 13, 15, 17, 18, 19, 30, 31, 32, 33, 36, 37, 39], "hidden": [3, 6, 10, 19, 20, 29, 30, 35, 36, 37, 38, 39], "red": [3, 5, 9, 13, 17, 18, 21, 22, 29, 31, 32, 33, 37, 39], "blue": [3, 9, 18, 29, 32, 33], "green": [3, 8, 9, 18, 32, 33], "channel": [3, 5, 9, 10, 11, 15, 16, 18, 29, 32, 35, 39], "renderimag": 3, "files": [3, 30, 38, 39], "0d": [3, 5, 6, 18, 37, 39], "remaind": [3, 30], "ihdr": 3, "iend": 3, "must": [3, 4, 5, 7, 9, 10, 15, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39], "idat": 3, "four": [3, 4, 7, 9, 15, 17, 18, 30, 31, 32, 33, 37, 38, 39], "field": [3, 4, 6, 17, 18, 30, 32, 33, 36, 37, 38, 39, 40], "crc": [3, 15, 18], "conveni": [3, 10, 30, 31, 32, 33], "descript": [3, 4, 5, 6, 7, 8, 9, 15, 18, 19, 20, 30, 32, 33, 35, 36, 38, 39], "restrict": [3, 5, 7, 9, 10, 17, 18, 19, 20, 22, 24, 29, 30, 31, 32, 33, 36, 37, 38], "uppercas": [3, 20, 30], "lowercas": [3, 5, 20, 30, 37, 39], "122": [3, 8, 18, 24, 35, 39], "redund": [3, 5, 22, 29], "preced": [3, 4, 5, 7, 30, 35, 36, 37, 39], "summar": [3, 19, 32, 33], "critic": [3, 5, 7, 9, 10, 15, 18, 30, 32, 33], "appear": [3, 4, 5, 10, 15, 17, 18, 19, 23, 30, 31, 32, 33, 35, 37, 39], "plte": 3, "constraint": [3, 5, 9], "ye": [3, 5, 7, 14, 15, 18, 19, 20, 30, 36, 37, 38, 39], "consecut": [3, 19, 30], "ancillari": 3, "chrm": 3, "gama": 3, "iccp": [3, 10], "sbit": 3, "srgb": 3, "bkgd": 3, "hist": 3, "trn": 3, "phy": [3, 15], "splt": 3, "none": [3, 5, 17, 19, 30, 31, 34, 36, 38, 39], "itxt": 3, "ztxt": 3, "photo": 3, "date": [3, 5, 9, 10, 13, 19, 20, 24, 30, 32, 33, 35, 36, 38, 39], "camera": [3, 10, 18], "gp": [3, 9, 10, 20], "locat": [3, 4, 5, 8, 9, 10, 13, 14, 15, 17, 19, 20, 31, 35, 37, 38], "comment": [3, 4, 6, 8, 9, 19, 30, 31, 33, 35, 36, 37, 38, 39], "music": [3, 33], "titl": [3, 5, 8, 13, 17, 30, 35, 37, 39], "author": [3, 5, 7, 9, 10, 11, 12, 13, 15, 17, 18, 22, 24, 29, 31, 32, 33, 34, 35, 36, 37, 39], "track": [3, 6, 7, 9, 11, 13, 21, 22, 24, 29, 31, 32, 33], "album": 3, "mac": [3, 5, 10, 15, 16, 17, 18, 20, 22, 29, 30, 31], "modif": [3, 5, 15, 18, 19, 31, 32, 33, 37, 39], "creation": [3, 7, 20, 29, 30, 31, 32, 33, 35, 38], "mft": 3, "filenam": [3, 4, 5, 10, 17, 20, 22, 30, 35, 36, 37, 38, 39], "indx": 3, "hide": [3, 5, 10, 30, 32, 35, 36, 37, 39], "embed": [3, 5, 17, 18, 19, 30, 31, 32], "thumbnail": [3, 18], "thumbnailimag": 3, "wow": 3, "rainingblood": 3, "awk": [3, 17, 35, 37, 39], "sort": [3, 7, 17, 18, 26, 32, 36, 37, 39], "srch_string": 3, "sleuthkit": 3, "printabl": [3, 4, 5, 30], "wget": [3, 10, 13, 38], "www": [3, 4, 5, 10, 13, 15, 17, 18, 19, 24, 30, 34, 35, 36, 37, 38, 39], "caesum": 3, "handbook": [3, 33], "jar": [3, 5, 17, 18, 37, 39], "java": [3, 5, 10, 17, 23, 31, 32], "multimedia": [3, 11], "function": [3, 4, 6, 7, 8, 11, 13, 15, 17, 18, 19, 20, 22, 32, 33, 35, 36, 37], "color": [3, 18, 30, 32, 33, 35, 38, 39], "youtub": [3, 18, 35, 39], "video": [3, 9, 11, 18, 20, 30, 33, 36], "passphras": [3, 7, 30, 35, 39], "sf": [3, 4, 30, 34, 36, 39], "hidden_stegosauru": 3, "bruteforc": [3, 5, 19, 35, 39], "wordlist": [3, 5, 18, 20, 35, 37, 39], "stegcrack": 3, "stegseek": 3, "noth": [3, 5, 18, 30, 32, 33, 34, 37, 40], "extra": [3, 5, 6, 7, 17, 18, 19, 20, 30, 32, 35, 39, 40], "7z": 3, "plane": [3, 11, 13, 18, 22], "stegosuit": 3, "zsteg": 3, "stegano": 3, "mediaextract": 3, "media": [3, 11, 15, 18, 19, 20, 31, 38, 39], "avi": 3, "ogg": 3, "wave": [3, 15], "similar": [3, 4, 5, 6, 9, 10, 11, 14, 15, 17, 18, 19, 20, 30, 31, 32, 33, 35, 36, 37, 38, 39], "stego100": 3, "compos": [3, 9, 10, 17, 30, 31], "src": [3, 5, 10, 15, 30, 31, 36, 39], "diff": [3, 12, 23, 35, 39], "arithmet": 3, "divis": [3, 5], "blend": [3, 17], "logic": [3, 5, 9, 11, 15, 18, 22, 29, 30, 31], "AND": [3, 5, 6, 10, 19, 30], "nand": 3, "OR": [3, 5, 6, 10], "nor": [3, 17, 30], "xnor": 3, "invert": [3, 30], "NOT": [3, 15, 18, 30], "bitshift": 3, "gmic": 3, "jstego": 3, "program": [3, 5, 6, 7, 9, 13, 15, 16, 18, 19, 20, 22, 23, 29, 31, 33, 35, 37, 38, 39], "aim": [3, 11, 31, 32, 36, 39], "solut": [3, 7, 13, 15, 18, 19, 22, 29, 30, 32, 37, 39], "jsteg": 3, "f5": [3, 37, 39], "toughest": 3, "packag": [3, 5, 9, 12, 13, 14, 17, 18, 19, 20, 22, 29, 31, 32, 35, 37], "14": [3, 4, 5, 8, 17, 18, 19, 20, 30, 32, 35, 36, 37, 38, 39], "repair": [3, 14, 30, 33], "corrupt": [3, 15, 30, 37, 38, 39], "tiff": 3, "stylesuxx": 3, "github": [3, 13, 15, 18, 20, 29, 30, 32, 33, 35, 37, 39, 40], "io": [3, 9, 10, 12, 13, 15, 18, 22, 30, 31, 36, 37, 38, 39], "made": [3, 5, 9, 10, 15, 18, 19, 22, 24, 29, 30, 31, 32, 33, 35, 37, 38, 39], "10101100": 3, "1st": [3, 9, 30], "172": [3, 9, 10, 18, 23, 31, 35, 37, 39], "10101101": 3, "173": 3, "255": [3, 9, 10, 16, 17, 18, 19, 30, 31, 37, 39], "across": [3, 5, 9, 14, 22, 29, 30, 31, 36, 37, 39], "sight": [3, 10], "insignific": [3, 33], "fffffe": 3, "ffffff": 3, "grab": [3, 5, 17, 18, 19, 20], "gone": [3, 29, 36, 39], "patter": 3, "pwn": 3, "0x2d3": 3, "bin_str": 3, "unicod": 3, "char_str": 3, "sigbit": 3, "stegonlin": 3, "web": [3, 7, 8, 9, 13, 15, 17, 18, 19, 21, 22, 31, 32, 33, 36, 37], "enhanc": [3, 5, 9, 10, 29, 30, 31, 33], "psimag": 3, "onelin": [3, 30, 36, 39], "execut": [3, 4, 5, 6, 7, 9, 11, 13, 14, 17, 23, 29, 32, 33, 35, 40], "decode_ps_stego": 3, "instal": [3, 5, 7, 9, 10, 11, 16, 17, 18, 19, 20, 29, 31, 33, 35, 37], "zbarimg": 3, "zbar": 3, "imagefil": 3, "tspan": 3, "mozilla": [3, 5, 32, 33, 37, 38, 39], "en": [3, 4, 10, 18, 30, 32, 36, 38, 39], "doc": [3, 13, 18, 20, 30, 32, 38, 39], "subtext": 3, "viewbox": 3, "240": [3, 9, 16, 18], "xmln": [3, 23], "w3": 3, "font": [3, 30], "ital": 3, "12px": 3, "serif": 3, "bold": 3, "10px": 3, "banana": 3, "pngcheck": 3, "jng": [3, 4], "mng": 3, "checksum": [3, 5, 30, 37, 39], "decompress": [3, 30, 37, 39], "human": [3, 5, 9, 29, 30, 31, 32], "readabl": [3, 5, 7, 10, 15, 22, 29, 30, 36, 39], "trasmit": 3, "audio": [3, 11, 33, 36, 39], "frequenc": [3, 9, 15, 17], "qsstv": 3, "pactl": 3, "sink": [3, 15], "sink_nam": 3, "cabl": [3, 9, 10, 15, 17], "pavucontrol": 3, "gui": [3, 5, 8, 10, 15, 17, 19, 20, 35, 37, 39], "pulseaudio": 3, "paplai": 3, "unload": [3, 30], "audac": [3, 30], "spectogram": 3, "arrow": [3, 30, 35, 39], "waveform": [3, 15], "logarithm": 3, "spectrogram": 3, "mors": 3, "hz": [3, 9], "menu": [3, 5, 15, 19, 22, 30, 35, 36, 37, 39], "cutoff": 3, "eas": [3, 10, 11, 31, 32], "transcript": 3, "golang": [3, 35, 39], "parser": [3, 5, 17], "zoom": 3, "view": [3, 4, 5, 6, 9, 10, 11, 18, 20, 21, 22, 31, 32, 33, 36, 37, 38, 39], "wavfil": 3, "rate": [3, 9, 10, 17, 24, 31], "sec": [3, 4, 18, 37, 38, 39], "lpcm": 3, "sampler": 3, "mmap": 3, "11111110": 3, "01010110": 3, "00010101": 3, "hierarchi": [3, 30, 31], "tshark": 3, "qz": 3, "ph": 3, "pcapfil": 3, "convers": [3, 5, 10, 29, 30, 38, 39], "endpoint": [3, 19, 31], "insight": [3, 10, 23, 31], "transfer": [3, 5, 9, 10, 11, 15, 20, 29, 30, 32, 33, 34, 35, 37], "destdir": [3, 30], "pcapng": 3, "exported_object": 3, "analys": [3, 10, 15, 17, 24, 29, 35, 39], "prot": 3, "transport": [3, 9, 18, 31, 35, 39], "dccp": 3, "http2": 3, "quic": 3, "ebcdic": [3, 35, 39], "yaml": [3, 12, 13, 14, 18, 31], "ip": [3, 5, 6, 7, 9, 11, 13, 14, 16, 18, 19, 20, 22, 29, 31, 35, 36, 38], "addr0": 3, "port0": 3, "addr1": 3, "port1": 3, "substream": 3, "shark2": 3, "ek": [3, 31], "json": [3, 13, 17, 31, 35, 39], "jsonraw": 3, "pdml": 3, "psml": 3, "nr": [3, 9], "public": [3, 5, 7, 9, 10, 11, 17, 18, 19, 23, 24, 30, 31, 33, 35, 36, 38], "queri": [3, 6, 10, 17, 20, 24, 29, 31, 35, 36, 37, 39], "dst": [3, 10], "217": [3, 18], "qry": 3, "edit": [3, 5, 7, 11, 14, 18, 19, 20, 22, 29, 31, 35, 37, 38, 39], "rsa": [3, 13, 18, 32, 35, 38], "privat": [3, 9, 10, 13, 15, 18, 29, 30, 31, 32, 33], "ssl": [3, 5, 10, 13, 30, 31, 32, 35, 37, 38], "keyfil": [3, 37, 39], "session": [3, 5, 7, 10, 11, 13, 18, 22, 30, 32, 35], "denial": [3, 9, 10, 15, 18], "poison": [3, 8, 17, 18], "flood": 3, "arp": [3, 17, 34, 35, 39], "icmp": [3, 7, 10, 17, 30], "ping": [3, 10, 13, 16, 19, 26, 34, 35, 37, 39], "sweep": [3, 17, 18], "hw_mac": 3, "dstport": 3, "nmap": [3, 16, 37], "sn": [3, 10, 17, 18, 34, 39], "pe": [3, 10, 11, 17, 24], "subnet": [3, 8, 10, 16, 17, 18, 19, 30, 31], "pa": [3, 10, 17, 20], "pu": 3, "syn": [3, 10, 17, 18, 34, 39], "fin": [3, 34, 39], "xmass": 3, "ack": [3, 10, 17, 18, 34, 39], "window_s": [3, 18], "1024": [3, 10, 17, 18, 19, 30, 34, 37, 39], "0x001": 3, "urg": [3, 34, 39], "st": [3, 10, 17, 18, 19, 30, 34, 39], "sx": [3, 34, 39], "su": [3, 17, 18, 19, 33, 34], "ip_address_of_attacked_machin": 3, "vlan": [3, 10, 11, 31], "hope": [3, 5, 6, 29], "unexplain": 3, "loss": [3, 9, 20, 24, 30], "duplic": [3, 4, 9, 30, 33], "dtp": 3, "too_many_tag": 3, "lost_seg": 3, "retransmiss": [3, 17], "arpspoof": 3, "ettercap": [3, 18], "fping": 3, "hping": 3, "frogger": 3, "yersinia": 3, "deauthent": [3, 37, 39], "disassoci": 3, "ap": [3, 16, 35, 39], "beacon": [3, 20], "wlan": 3, "fc": [3, 10], "type_subtyp": 3, "aireplai": 3, "ng": [3, 10, 16, 31], "mdk3": 3, "mdk4": 3, "vulner": [3, 7, 10, 15, 17, 21, 22, 31, 34, 35, 36, 37, 38], "suricata": 3, "etern": 3, "smb": [3, 5, 6, 9, 13, 17, 19, 20, 31, 36], "mid": [3, 35, 39], "82": 3, "doublepulsar": 3, "unconfirm": 3, "opcod": [3, 4], "investig": [3, 5, 10, 29, 30, 31, 33, 37, 39], "incid": [3, 29, 37, 39], "dai": [3, 9, 18, 19, 20, 22, 24, 30, 31, 32, 35, 37, 39], "answer": [3, 5, 6, 10, 17, 29, 32, 33], "concept": [3, 9, 13, 20, 29, 37, 39, 40], "cleartext": [3, 5, 18, 19, 32], "togeth": [3, 4, 5, 9, 10, 13, 30, 31, 32, 33, 35, 37, 39], "spoof": [3, 7], "wouldn": 3, "dicom": 3, "smb2": [3, 38, 39], "visit": [3, 5, 10, 11, 18, 20, 30, 32, 35, 36, 37, 39], "secretci": 3, "master": [3, 9, 10, 13, 15, 19, 36, 37, 39], "uniq": [3, 17, 18], "infil": [3, 30], "support": [3, 5, 6, 7, 9, 10, 11, 13, 15, 17, 18, 19, 20, 21, 22, 23, 24, 29, 31, 32, 33, 35, 36, 37, 38, 39], "gzip": [3, 5, 15, 36, 39], "caus": [3, 5, 7, 9, 10, 11, 24, 30, 31, 32, 35, 37, 38, 39], "displayfilt": 3, "reassambl": 3, "fragment": [3, 10, 37, 39], "dshell": 3, "reassembl": [3, 5, 10], "carv": 3, "quit": [3, 5, 7, 10, 19, 30, 31, 32, 35, 37, 38, 39], "obviou": [3, 17, 20, 33, 35, 39], "sport": [3, 10, 35, 39], "dport": [3, 10, 30], "bt": [3, 30], "dht": 3, "info_hash": 3, "internet": [3, 5, 10, 11, 13, 17, 18, 22, 30, 32, 33, 35, 38, 39], "assumpt": [3, 20, 32], "encrypt": [3, 5, 7, 9, 10, 11, 16, 19, 20, 22, 31, 35], "aircrack": [3, 37, 39], "crack": [3, 5, 6, 10, 17, 18, 19, 30], "wep": [3, 17, 29], "wpa": [3, 16, 29, 30, 37, 39], "handshak": [3, 17, 18, 37, 39], "ing_out": 3, "rockyou": [3, 18, 20, 37], "ieee": [3, 9, 15, 23], "802": [3, 9, 15, 18, 37, 38, 39], "000000": [3, 19], "000306": 3, "idvendor": 3, "idproduct": 3, "blength": 3, "bdescriptortyp": 3, "0x01": 3, "bcdusb": 3, "0x0200": 3, "bdeviceclass": 3, "bdevicesubclass": 3, "bdeviceprotocol": 3, "bmaxpacketsize0": 3, "razer": 3, "usa": 3, "ltd": [3, 24, 34, 36, 39], "0x1532": 3, "blackwidow": 3, "ultim": [3, 30, 31], "2013": [3, 18, 19, 20], "0x011a": 3, "bcddevic": 3, "imanufactur": 3, "iproduct": 3, "iserialnumb": 3, "bnumconfigur": 3, "interrupt": [3, 9, 30], "808610": 3, "urb_interrupt": 3, "159": 3, "280": [3, 17], "urb": 3, "usbpcap": 3, "pseudohead": 3, "irp": 3, "0xffffa5045d1653c0": 3, "usbd_statu": 3, "usbd_status_success": 3, "urb_function_bulk_or_interrupt_transf": 3, "0x0009": 3, "direct": [3, 4, 5, 9, 10, 13, 18, 19, 24, 30, 31, 32, 35, 36, 38, 39], "pdo": 3, "fdo": 3, "bu": [3, 9, 15, 31], "0x81": 3, "IN": [3, 9, 18, 34, 35, 39], "binterfaceclass": 3, "0x03": 3, "0000500000000000": 3, "capdata": 3, "shift": [3, 4, 15, 30], "alt": [3, 19, 30, 34, 39], "ctrl": [3, 19, 30, 35, 37, 39], "six": [3, 9, 30, 33], "mightypork": 3, "gist": 3, "spec": [3, 31], "usb_hid_kei": 3, "whoami": [3, 13, 18, 19, 30, 35, 36, 37, 38, 39], "stroke": [3, 18, 30], "usb_cod": 3, "0x05": 3, "bb": 3, "0x06": 3, "cc": [3, 38, 39], "0x07": 3, "dd": [3, 4, 13, 31, 38, 39], "ee": 3, "0x09": 3, "0x0a": 3, "gg": [3, 30], "0x0b": 3, "hh": 3, "0x0c": 3, "0x0d": 3, "jj": 3, "0x0e": 3, "kk": 3, "0x0f": 3, "mm": [3, 11, 12, 30], "0x11": 3, "nn": [3, 36, 39], "0x12": 3, "oo": [3, 35, 39], "0x13": 3, "pp": [3, 13], "0x14": 3, "qq": 3, "0x15": 3, "rr": 3, "0x16": 3, "0x17": 3, "tt": [3, 35, 39], "uu": 3, "0x19": 3, "0x1a": 3, "ww": 3, "0x1b": 3, "xx": [3, 16, 17, 18, 19, 22, 30, 35, 38, 39], "0x1c": 3, "yy": [3, 30, 34, 39], "0x1d": 3, "zz": 3, "0x1e": 3, "0x21": [3, 18], "0x22": [3, 18], "0x23": 3, "0x24": 3, "0x25": [3, 18], "0x26": 3, "0x27": 3, "0x2c": 3, "0x2d": 3, "0x2e": 3, "0x2f": 3, "0x30": 3, "0x32": 3, "0x33": [3, 19], "0x34": 3, "0x36": 3, "0x37": 3, "0x4f": 3, "0x50": [3, 5], "po": [3, 35, 39], "data1": 3, "readlin": 3, "0x51": 3, "0x52": 3, "bunch": [3, 36, 39], "overflow": [3, 4, 5, 10], "middl": [3, 9, 10, 15, 17, 18, 32, 35, 39], "btn": 3, "delta": [3, 30, 31], "measur": [3, 10, 11, 24, 30, 32, 33], "horizont": [3, 5, 9, 30, 31], "movement": [3, 8, 19, 24, 30], "third": [3, 5, 9, 10, 18, 30, 31, 32, 35, 39], "deltax": 3, "deltai": 3, "perhap": [3, 5, 30, 32, 33, 35, 39], "fast": [3, 5, 9, 15, 17, 18, 29, 30, 31, 32, 36, 39], "eventu": [3, 24, 32], "device_address": 3, "mouse_data": 3, "plot": 3, "gnuplot": 3, "riversid": 3, "comp": 3, "127": [3, 8, 9, 13, 18, 19, 20, 31, 35, 37, 39], "strtonum": 3, "click_coordin": 3, "screen": [3, 4, 9, 10, 15, 18, 19, 20, 22, 35, 37, 38, 39], "zxcvbnm": 3, "asdfghjkl": 3, "qwertyuiop": 3, "urb_bulk": 3, "extanalysi": 3, "chrome": [3, 17, 19, 30], "firefox": [3, 17, 30, 38], "brave": 3, "goaccess": 3, "interact": [3, 5, 9, 10, 13, 15, 17, 20, 21, 30, 31, 32, 33, 36, 37], "viewer": [3, 19, 30], "nix": [3, 10], "shar": 3, "archiv": [3, 5, 13, 20, 30, 33, 36, 37, 38], "mail": [3, 5, 10, 11, 17, 18, 30, 33, 34, 37, 38], "later": [3, 4, 5, 8, 10, 15, 18, 19, 20, 24, 30, 32, 33, 38, 39], "lar": 3, "vipermonkei": 3, "vba": 3, "emul": [3, 9, 18, 22, 31], "engin": [3, 5, 7, 9, 10, 11, 13, 17, 18, 21, 22, 29, 30, 31, 32, 33, 37, 38, 39, 40], "deobfusc": [3, 5], "malici": [3, 5, 7, 10, 15, 17, 18, 19, 22, 29, 32, 36, 37, 38, 39], "microsoft": [3, 5, 8, 9, 10, 17, 22, 29, 31, 35, 36, 37, 39], "offic": [3, 10, 17, 18, 30, 33], "publish": [3, 5, 9, 18, 22, 31, 32, 33, 40], "mask": [3, 18, 19, 30, 34, 39], "eras": [3, 15, 32, 35, 39], "underli": [3, 30, 31, 32], "pdftotext": 3, "imageinfo": [3, 20], "pslist": 3, "cmdscan": 3, "consol": [3, 5, 6, 7, 9, 10, 14, 18, 19, 22, 30, 31], "memdump": 3, "procdump": [3, 18], "filescan": 3, "connscan": 3, "dumpfil": [3, 35, 39], "stackexchang": 3, "question": [3, 5, 10, 17, 29, 31, 32, 33], "256283": 3, "psxview": 3, "msrdp": 3, "mspaint": 3, "renam": [3, 5, 19, 30, 36, 38, 39], "dmp": [3, 18, 20], "gimp": [3, 30, 38, 39], "navig": [3, 5, 14, 19, 29, 33], "img_stat": 3, "dds2": 3, "alpin": 3, "134217728": 3, "sector": [3, 24, 30], "mml": [3, 11], "partit": [3, 31, 38, 39], "volum": [3, 9, 10, 12, 13, 18, 19, 20, 24, 30, 37, 38, 39], "fsstat": 3, "slot": [3, 15], "meta": [3, 30, 37, 38, 39], "0000000000": 3, "0000000001": 3, "001": [3, 18, 36, 39], "0000002047": 3, "0000002048": 3, "unalloc": 3, "002": 3, "0000262143": 3, "0000260096": 3, "0x83": 3, "minimum": [3, 9, 18, 30, 32, 33], "inod": [3, 30], "cluster": [3, 5, 12, 18, 31], "imgoffset": 3, "2048": [3, 18, 35, 39], "ext3": [3, 30], "dc53a3bb0ae739a5164c89db56bbb12f": 3, "2021": [3, 30], "est": 3, "unmount": 3, "mnt": [3, 13, 19, 20, 30, 37, 38, 39], "journal": [3, 9, 20, 30], "ext": [3, 18, 38, 39], "resiz": [3, 30], "spars": 3, "fl": [3, 36, 39], "addflhpruvv": 3, "fstype": 3, "imgtyp": 3, "dev_sector_s": 3, "zone": [3, 10, 13, 31, 34, 36, 39], "recurs": [3, 5, 19, 20, 30, 35, 36, 37, 38, 39], "undelet": [3, 18], "26417": 3, "18290": 3, "16259": 3, "folder": [3, 8, 9, 13, 15, 18, 19, 20, 22, 29, 30, 37, 38], "18291": 3, "icat": 3, "slack": [3, 9], "suspici": [3, 10, 18, 29], "sda1": [3, 30, 38, 39], "1937befc_3": 3, "lm_111t5_3b": 3, "ftcocip": 3, "oni": 3, "sudo": [3, 14, 18, 22, 37], "kpartx": 3, "loop19p1": 3, "253": 3, "204800": 3, "linear": 3, "loop19p2": 3, "264192": 3, "206848": 3, "mapper": [3, 10, 31], "brows": [3, 5, 22, 29, 30, 33, 35, 37, 39], "cd": [3, 4, 12, 13, 18, 19, 32, 33, 35, 37, 38, 39], "umount": 3, "loop19": 3, "mib": [3, 17], "241172480": 3, "471040": 3, "physic": [3, 5, 9, 10, 11, 13, 15, 17, 18, 20, 24, 29, 30, 31, 32, 36, 39], "optim": [3, 9, 10, 11, 18, 22, 24, 31, 37, 39], "disklabel": 3, "0x0b0051d0": 3, "img1": 3, "206847": 3, "100m": [3, 9], "img2": 3, "471039": 3, "129m": 3, "inexpens": 3, "squeez": [3, 30], "offer": [3, 7, 9, 10, 18, 19, 24, 29, 30, 31, 32, 33, 36, 39], "pariti": [3, 4, 15], "rebuild": [3, 30], "potenti": [3, 5, 17, 18, 19, 24, 29, 30, 32, 33, 35, 36, 37, 39], "lost": [3, 10, 31, 38, 39], "protect": [3, 5, 7, 8, 11, 15, 16, 17, 18, 19, 20, 22, 24, 29, 30, 31, 33, 35, 38], "whatsoev": 3, "mirror": [3, 9, 10, 30], "drive": [3, 9, 10, 15, 18, 19, 30, 33, 37, 38, 39], "setup": [3, 8, 10, 12, 13, 15, 18, 19, 30, 31, 36, 38, 39], "raid10": 3, "raid0": 3, "arra": 3, "crash": [3, 32], "recov": [3, 32], "disk0": 3, "mbr": 3, "0x3c": 3, "oem": [3, 9], "mkf": 3, "fat": [3, 15, 30], "lt": [3, 5, 18, 30, 37, 39], "mb": [3, 20, 31, 36, 39], "0xf8": 3, "serial": [3, 9, 10, 11, 15, 18, 29, 30, 35, 38, 39], "0x867314a9": 3, "unlabel": 3, "disk1": 3, "disk2": 3, "lh": 3, "512k": 3, "obtain": [3, 4, 5, 7, 15, 18, 19, 22, 23, 30, 33, 35, 36, 39], "ing": [3, 30, 36, 39], "ed": [3, 5, 6, 19], "f1": [3, 18, 30, 35, 39], "f2": [3, 18, 30], "f3": [3, 8, 30], "write": [3, 5, 7, 8, 9, 10, 12, 13, 14, 17, 18, 19, 21, 29, 30, 31, 32, 34, 35, 36, 37, 40], "na": [3, 18, 29], "had": [3, 5, 8, 10, 30, 31, 32, 33, 40], "minut": [3, 9, 17, 18, 19, 22, 30, 31, 37, 39], "fat12": 3, "bp": 3, "row": [3, 5, 6, 18, 30, 35, 39], "d1": [3, 18, 35, 39], "d2": 3, "b3": 3, "b4": [3, 16], "b5": 3, "b6": 3, "piec": [3, 5, 10, 11, 15, 20, 30, 32, 33], "disk_out": 3, "f_out": 3, "data_block": 3, "issu": [3, 4, 5, 6, 7, 9, 10, 11, 12, 13, 14, 15, 17, 18, 19, 22, 24, 30, 31, 32, 34, 35], "airport": [3, 18], "barcod": 3, "m1ew": 3, "shaun": 3, "e1aaaaa": 3, "sydbneqf": 3, "0524": 3, "106y023a0073": 3, "359": 3, "2180": 3, "qf": [3, 30], "1245678": 3, "m1": [3, 35, 39], "leg": 3, "ew": 3, "electron": [3, 10, 31, 32], "ticket": [3, 11, 13, 20, 22, 37, 39], "book": [3, 5, 9, 17, 18, 32, 33], "fly": 3, "syd": 3, "sydnei": 3, "bne": 3, "brisban": 3, "qanta": 3, "flight": 3, "524": 3, "106": [3, 9, 30], "julian": 3, "april": [3, 9], "cabin": 3, "economi": [3, 24, 32], "busi": [3, 9, 10, 15, 23, 24], "23a": 3, "seat": 3, "0073": 3, "73rd": 3, "person": [3, 5, 7, 9, 10, 11, 17, 18, 19, 20, 29, 32, 33, 38, 39, 40], "passeng": 3, "airlin": 3, "issuer": [3, 12, 13, 18], "verif": [3, 5, 10, 13, 15, 18, 20, 30], "presum": [3, 32], "frequent": [3, 5, 22, 29, 30, 31, 32, 33], "flyer": 3, "securityfest": 3, "coresec": 3, "shx7": 3, "for300": 3, "konami": 3, "although": [3, 5, 7, 18, 19, 22, 30, 33, 36, 39], "player": [3, 30, 31], "control": [3, 6, 11, 12, 15, 17, 18, 20, 22, 24, 32, 35, 36, 37, 40], "a000045": 3, "bring": [3, 22, 30, 31, 33], "fibonacci": 3, "telnet": [3, 17, 22, 38], "usernam": [3, 5, 6, 7, 8, 10, 13, 17, 18, 22, 30, 36, 37, 38], "cred": [3, 9, 18, 19, 20], "0x7f": 3, "backspac": [3, 30], "setgid": [3, 18, 36, 39], "supercow": 3, "cow": 3, "apk": [3, 31], "decompil": [3, 37, 39], "describ": [3, 5, 9, 10, 11, 18, 20, 29, 30, 31, 32, 33, 35, 36, 39, 40], "apktool": 3, "arsc": 3, "xml": [3, 5, 9, 10, 17, 18, 19, 23, 34, 35, 36, 37, 38, 39], "smali": 3, "baksmali": 3, "dex": 3, "dalvik": 3, "android": [3, 33], "vm": [3, 10, 11, 13, 20, 34, 35, 37, 39], "dex2jar": 3, "approx": [3, 9, 10, 11, 17, 20], "unzip": [3, 30, 36], "classes_dex2jar": 3, "xf": [3, 30], "jd": [3, 37, 39], "footer": [3, 32, 35, 36, 39], "dpkg": [3, 13, 14, 37], "deb": [3, 7, 13, 14, 30, 37, 39], "yourcompani": 3, "whyos_4": 3, "28debug_iphoneo": 3, "arm": [3, 10, 15, 30, 31], "app": [3, 5, 12, 15, 18, 19, 22, 29, 31, 33], "aggreg": [3, 5, 9, 10, 11, 17, 18, 21, 31, 33], "stdin": [3, 13, 30, 35, 36, 39], "evil": [3, 18, 35, 39], "comparis": 3, "transat": 3, "wuld": 3, "blank": [3, 4, 5, 18, 30, 35, 36, 37, 39], "lb": 3, "nongraph": 3, "xxd": [3, 35, 37, 39], "ool": 3, "anim": 3, "procset": 3, "imagec": 3, "imagei": 3, "pdf2txt": 3, "untitl": 3, "1_1a110935ec70b63ad09fec68c89dfacb": 3, "pctf": 3, "how_2_pdf_yo": 3, "xm": 3, "autorun": 3, "p0w3rsh3ll": 3, "live": [3, 5, 10, 15, 18, 20, 24, 29, 30, 31, 33, 36, 39], "artifact": [3, 31, 33], "legitim": [3, 10, 19, 30], "malwar": [3, 5, 10, 29], "persist": [3, 5, 12, 13, 14, 18, 20, 35, 39], "hklm": [3, 19, 20, 22, 36, 39], "currentvers": [3, 19, 22, 36, 39], "explor": [3, 5, 9, 10, 12, 18, 20, 21, 31, 33, 34, 39], "startup": [3, 7, 18, 19, 35, 39], "itemnam": 3, "lnk": 3, "launchstr": 3, "programdata": [3, 19], "imagepath": 3, "barri": 3, "20230504": 3, "124939": 3, "firmwar": [3, 9, 10, 18, 20, 22, 30, 31, 33], "squashf": [3, 15, 30], "unsquashf": [3, 15], "uncompress": [3, 30], "filesystem": [3, 15, 18, 19, 36, 37, 38, 39], "boa": [3, 18], "blob": [3, 15, 18, 30], "2640268": 3, "108": [3, 5, 17, 18], "dt": 3, "2639208": 3, "xz": 3, "11550948": 3, "1199": 3, "blocksiz": 3, "262144": [3, 18], "tue": [3, 5, 18, 19], "jan": [3, 5, 18, 19, 30, 38, 39], "2023": 3, "bvi": [4, 30], "editor": [4, 5, 9, 15, 19, 30, 35, 37, 39], "file": [4, 5, 6, 8, 9, 11, 12, 13, 14, 15, 16, 17, 22, 23, 29, 32, 34], "kali": [4, 7, 18, 19, 22, 30, 35, 38, 39], "desktop": [4, 5, 8, 9, 10, 20, 31, 33, 35, 37, 38, 39], "31c3": 4, "cfy": 4, "sysv": [4, 30], "buildid": 4, "sha1": [4, 18, 30], "0x9bc623f046535fba50a2124909fb871e5daf198": 4, "secrf": 4, "et": [4, 19], "love": [4, 19, 25, 28, 29], "e3": [4, 18], "00000540": 4, "c7": [4, 16], "se": [4, 9, 10], "00000550": 4, "c6": [4, 16, 31, 37, 39], "crf": 4, "00000560": 4, "1c": [4, 18], "god": [4, 20, 24], "strace": [4, 31], "trace": [4, 5, 10, 11, 17, 18, 19, 30, 37, 39], "tracer": [4, 31], "gdb": [4, 31, 33, 35, 39], "dj": 4, "matter": [4, 5, 9, 10, 17, 29, 32, 33], "f12": [4, 5, 6, 37, 38, 39], "subview": 4, "toolbar": [4, 35, 39], "var_28": 4, "46h": 4, "var_27": 4, "4ch": 4, "var_26": 4, "41h": 4, "keyboard": [4, 7, 9, 31], "mass": [4, 7, 30], "operand": 4, "upper": [4, 5, 7, 9, 18, 30, 37, 39], "bss": [4, 11], "declar": [4, 5, 9, 18, 20, 29, 30, 31, 36, 39], "semicolon": [4, 5, 17], "ebx": 4, "op": [4, 5, 18, 30, 32, 38, 39], "aspect": [4, 9, 24, 32], "macro": [4, 30], "mechan": [4, 9, 10, 11, 15, 18, 23, 30, 31, 32, 36, 39], "label": [4, 8, 11, 15, 31, 36, 38, 39], "mnemon": 4, "bracket": [4, 30, 35, 36, 38, 39], "guid": [4, 5, 8, 13, 17, 18, 19, 22, 29, 31, 32, 33, 36, 37, 39], "virginia": 4, "edu": [4, 37, 39], "evan": [4, 30, 31], "cs216": 4, "html": [4, 10, 17, 18, 20, 22, 29, 30, 31, 35, 38], "dw": [4, 30], "abid": [4, 33], "rule": [4, 5, 7, 9, 17, 22, 29, 31, 32, 33, 36, 37, 38, 39], "vardb": 4, "var2db": 4, "uniniti": 4, "var2": 4, "Its": [4, 9, 17, 18, 22, 29, 30, 31, 32], "xdw": 4, "ydd": 4, "30000": 4, "dup": 4, "liter": [4, 5, 19, 37, 39], "arr": [4, 30], "esi": 4, "cl": [4, 35, 39], "edx": 4, "serv": [4, 10, 11, 13, 17, 18, 30, 31, 33, 38, 39], "represent": [4, 5, 20, 30, 32], "reg32": 4, "mem": [4, 18, 30], "edi": 4, "signed": 4, "instr": 4, "ness": 4, "jo": 4, "OF": 4, "jno": 4, "jn": 4, "je": 4, "jz": 4, "zf": [4, 31], "jne": 4, "jnz": 4, "jp": 4, "jpe": 4, "jnp": 4, "jpo": 4, "odd": [4, 15, 17, 32], "jcxz": 4, "jecxz": 4, "cx": 4, "Ones": 4, "jb": 4, "jnae": 4, "jc": 4, "carri": [4, 5, 9, 11, 15, 19, 30, 31, 33], "jnb": 4, "jae": 4, "jnc": 4, "jbe": 4, "jna": 4, "ja": [4, 18], "jnbe": 4, "jl": 4, "jnge": 4, "jge": 4, "jnl": 4, "jle": 4, "jg": 4, "jnle": 4, "leviathan2": 4, "printfil": 4, "printer": [4, 10, 13, 17, 19, 29, 35, 37, 39], "la": [4, 17], "sr": [4, 9], "leviathan3": 4, "7498": 4, "nov": [4, 19, 30, 35, 38, 39], "leviathan_pass": 4, "0x804852d": 4, "0xffffd774": 4, "0x8048600": 4, "lev": 4, "511": 4, "ougahzi8ta": 4, "exit": [4, 19, 20, 24, 30, 35, 36, 37, 38, 39], "succe": [4, 20, 30, 33, 37, 39], "foobar": [4, 19], "foo": [4, 18, 20, 30, 31, 35, 36, 37, 39], "leviathanpass": 4, "levi": 4, "ahdiemoo1j": 4, "hypertext": [5, 30], "model": [5, 9, 10, 15, 18, 22, 29, 36, 39], "mandatori": 5, "bodi": [5, 9, 15, 17, 18, 23, 31, 32, 33, 36, 37, 39], "contact_form": 5, "host": [5, 6, 7, 8, 11, 18, 20, 22, 23, 29, 34, 35, 36, 37, 38, 39], "urlencod": [5, 35, 38, 39], "joe": 5, "20user": 5, "20me": 5, "20one": 5, "20of": 5, "20your": 5, "20catalogu": 5, "\ufb01rst": 5, "verb": [5, 9, 18, 35, 38, 39], "speci\ufb01": 5, "hostnam": [5, 8, 10, 17, 19, 23, 30, 31, 35, 36, 38], "sent": [5, 9, 10, 11, 13, 15, 17, 18, 19, 20, 22, 29, 30, 31, 32, 33, 35, 39], "sat": [5, 9, 18, 19], "09": [5, 16, 18, 19, 20, 30, 34, 35, 38, 39], "oct": [5, 18, 19, 30, 36, 39], "2010": [5, 18, 19, 20, 33], "gmt": [5, 19, 35, 38, 39], "apach": [5, 7, 10, 13, 17, 29, 33, 34, 35, 37, 38, 39], "dec": [5, 30, 36, 39], "2009": [5, 18, 19], "pragma": [5, 18], "cach": [5, 11, 13, 17, 19, 20, 29, 30, 35, 37, 39], "etag": 5, "51142bc1": 5, "7449": 5, "479b075b2891b": 5, "expir": [5, 10, 13, 18, 22, 30, 32, 35, 38, 39], "1970": [5, 19, 30], "accept": [5, 7, 18, 19, 30, 32, 33, 35, 36, 37, 38, 39], "29769": 5, "doctyp": 5, "textual": [5, 30], "phrase": [5, 32, 33, 37, 39], "banner": [5, 17, 22], "accur": [5, 9, 10, 19, 20, 21, 32, 33], "therefor": [5, 9, 17, 18, 24, 30, 31, 33, 34, 35, 39, 40], "fresh": [5, 24], "occas": 5, "sensit": [5, 7, 9, 10, 15, 19, 22, 30, 31, 39], "With": [5, 7, 9, 10, 18, 19, 22, 31, 32, 33, 35, 36], "diagnost": [5, 9], "proxi": [5, 10, 18, 19, 20, 30, 31, 37], "attempt": [5, 6, 7, 10, 11, 13, 17, 18, 19, 30, 32, 33, 37, 39], "leverag": [5, 19, 29, 31, 38, 39], "arbitrari": [5, 6, 7, 17, 18, 30, 32, 35, 37], "uniform": 5, "identi\ufb01": 5, "port": [5, 6, 19, 20, 22, 31, 36, 37, 38], "param": 5, "architectur": [5, 12, 13, 15, 18, 20, 29, 30, 32, 35, 36, 39], "themselv": [5, 9, 13, 17, 18, 30, 31, 32, 33], "conform": [5, 30, 33], "term": [5, 7, 9, 10, 17, 19, 24, 29, 30, 31, 32, 33, 35, 37, 39], "signifi": [5, 10, 30], "\ufb01le": 5, "wahh": 5, "ford": 5, "pinto": 5, "transmiss": [5, 10, 11, 15, 30], "faster": [5, 9, 10, 15, 17, 18, 19, 20, 24, 29, 30, 33, 34, 39], "facilit": [5, 11, 15, 29, 30, 31, 33], "chunk": [5, 30, 35, 39], "willing": [5, 9, 30], "of\ufb01c": 5, "credenti": [5, 6, 8, 10, 13, 15, 17, 18, 19, 22, 30, 32, 35, 37], "304": 5, "entitytag": 5, "denot": [5, 30, 33], "entiti": [5, 9, 11, 17, 30, 32, 33, 37, 39], "cross": [5, 7, 16, 19, 20, 29, 31, 37, 39], "ajax": 5, "notifi": [5, 9, 10, 19, 30, 32, 36, 39], "401": [5, 18], "resubmit": 5, "ti8rk7jomx44s2uu85nswc": 5, "automat": [5, 11, 15, 16, 17, 18, 19, 29, 31, 32, 33, 35, 36, 39], "pair": [5, 9, 11, 13, 15, 18, 32, 35, 39], "individu": [5, 9, 10, 11, 12, 13, 15, 22, 29, 30, 31], "httponli": [5, 35, 38, 39], "javascript": [5, 6, 17, 18, 29, 35, 39], "\ufb01ve": 5, "accord": [5, 8, 9, 15, 18, 20, 22, 23, 29, 30, 31, 33, 35, 36, 38, 39], "1xx": 5, "2xx": 5, "3xx": 5, "4xx": 5, "5xx": 5, "ful\ufb01ll": 5, "circumst": [5, 30, 32, 37, 38, 39], "301": [5, 18], "302": [5, 37, 39], "revert": [5, 18, 19, 20, 37, 39], "nonematch": 5, "latest": [5, 9, 10, 12, 13, 29, 30, 31], "modi\ufb01": 5, "unauthor": [5, 7, 10, 29, 32, 38, 39], "403": [5, 18, 37, 39], "forbidden": [5, 33], "404": [5, 35], "405": 5, "413": 5, "probe": [5, 10, 17, 34, 37, 39], "over\ufb02ow": 5, "nativ": [5, 11, 13, 18, 22], "414": 5, "uri": [5, 18, 30, 35], "unexpect": [5, 10, 29, 30, 31, 32, 38, 39], "unhandl": 5, "natur": [5, 9, 24, 29, 30, 33], "503": 5, "unavail": [5, 13, 18], "respond": [5, 7, 8, 9, 13, 18, 19, 20, 29, 30], "basic": [5, 7, 10, 13, 15, 17, 20, 22, 23, 24, 31, 32, 35, 36, 37, 38, 39, 40], "ntlm": [5, 18, 19], "digest": [5, 18, 20, 33], "md5": [5, 18, 20, 30, 36, 38], "nonc": [5, 32], "permit": [5, 9, 10, 18, 30, 33, 37, 38, 39], "0x7e": 5, "inclus": [5, 20, 33, 34, 35, 37], "pre\ufb01x": 5, "awar": [5, 9, 10, 13, 17, 18, 22, 24, 31, 32], "u2215": 5, "u00e9": 5, "\u00e9": 5, "utf": [5, 6, 18, 35, 38, 39], "emploi": [5, 31, 32], "multibyt": 5, "defeat": [5, 10], "\ufb01lter": 5, "compon": [5, 9, 10, 11, 18, 19, 23, 30, 32, 33], "malform": 5, "problemat": [5, 31], "incorpor": [5, 30, 32, 33], "metacharact": 5, "de\ufb01n": 5, "speci\ufb01c": 5, "apo": 5, "amp": [5, 9], "gt": [5, 30], "34": [5, 7, 8, 12, 13, 18, 19, 30, 36, 37, 39], "x22": 5, "x27": 5, "site": [5, 7, 9, 10, 11, 13, 17, 18, 19, 20, 29, 30, 31, 32, 35, 36, 37, 38, 39], "unmodi\ufb01": 5, "wherea": [5, 9, 15, 16, 17, 30], "danger": [5, 10, 18, 22, 24, 30, 32, 35, 36, 38, 39], "nonexist": 5, "custom": [5, 7, 10, 11, 12, 15, 17, 18, 19, 20, 21, 23, 24, 29, 30, 31, 32, 33, 35, 36, 38], "bespok": 5, "robot": [5, 6, 37, 38, 39], "spider": 5, "\ufb01": 5, "seed": [5, 30, 32], "counterproduct": 5, "iewatch": 5, "monitor": [5, 7, 10, 11, 13, 15, 16, 17, 18, 20, 22, 23, 29, 33], "thick": 5, "intercept": [5, 11, 15, 38, 39], "backup": [5, 9, 10, 12, 13, 18, 29, 30, 36, 37, 39], "snapshot": [5, 10, 22, 30, 31, 37, 39], "inde": [5, 23, 30], "deploi": [5, 8, 9, 10, 12, 17, 18, 20, 29, 31, 32, 33], "yet": [5, 13, 18, 19, 22, 30, 32], "shelf": [5, 31], "super\ufb01ci": 5, "\ufb01xed": 5, "con\ufb01gur": 5, "extrem": [5, 10, 15, 18, 22, 29, 32, 38, 39], "strong": [5, 9, 10, 24, 30, 31, 32], "hunt": [5, 9, 24], "advanc": [5, 9, 11, 17, 18, 29, 30, 32, 33], "maxim": [5, 30, 32], "research": [5, 10, 15, 17, 18, 29, 32, 33, 37, 39], "reset": [5, 8, 9, 15, 18, 29, 30, 35, 39], "administr": [5, 7, 9, 10, 11, 13, 18, 22, 29, 31, 33, 36, 37, 39], "intend": [5, 7, 9, 10, 17, 18, 24, 30, 31, 33, 36, 38, 39, 40], "parti": [5, 9, 10, 15, 18, 30, 31, 32, 33], "partner": [5, 11, 18, 33], "irrelev": [5, 32], "materi": [5, 13, 24, 33, 40], "area": [5, 9, 10, 11, 16, 18, 19, 33, 36, 39], "peripher": [5, 15, 30], "registr": [5, 11, 17, 31, 33], "recoveri": [5, 18], "clientsid": 5, "applet": [5, 20, 30], "activex": 5, "flash": [5, 10, 15, 30], "glean": 5, "behind": [5, 11, 13, 31, 32, 35, 39], "scene": [5, 31], "deliv": [5, 9, 11, 18, 31, 32, 33], "visibl": [5, 9, 20, 30, 31, 37, 39], "perspect": [5, 9, 10, 13, 17, 22, 31, 32], "marker": 5, "band": [5, 15], "smtp": [5, 10, 12, 17, 23, 29, 34, 35, 37, 39], "intrus": [5, 17, 22, 29, 30, 32, 37, 39], "gather": [5, 6, 10, 18, 19, 22, 31, 36, 40], "network": [5, 7, 12, 13, 14, 15, 16, 20, 21, 23, 32, 33, 34, 35], "sniffer": [5, 10, 15], "api": [5, 12, 15, 18, 19, 20, 29, 31, 32, 33], "phone": [5, 10, 17, 30, 32], "burp": [5, 37, 38, 39], "intrud": [5, 37, 38, 39], "devic": [5, 11, 13, 17, 18, 19, 20, 29, 31, 32, 35, 36, 38, 39], "anomali": [5, 9], "disclos": [5, 32, 33, 38, 39], "\ufb01ne": 5, "grain": [5, 30, 31], "relev": [5, 9, 11, 17, 29, 30, 31, 33], "aspx": [5, 18, 37, 39], "jsp": [5, 18, 37], "cfm": [5, 37, 39], "cold": [5, 9], "fusion": [5, 31], "d2w": 5, "webspher": 5, "pl": [5, 16, 18, 19, 35, 37, 38, 39], "perl": [5, 6, 18, 30, 37, 38], "nsf": 5, "ntf": [5, 18, 30], "lotu": 5, "domino": 5, "subdirectori": [5, 20, 30, 36, 37, 39], "presenc": [5, 10, 30, 31, 32], "servlet": 5, "gatewai": [5, 9, 10, 11, 15, 16, 18, 19, 23, 30, 31, 34, 39], "cfdoc": 5, "cfide": 5, "silverstream": 5, "webobject": 5, "woa": 5, "appl": 5, "rail": [5, 32], "jsessionid": 5, "aspsessionid": 5, "net_sessionid": [5, 35, 39], "cfid": 5, "cftoken": 5, "phpsessid": [5, 38, 39], "dissect": 5, "calendar": [5, 30, 32], "20applic": 5, "isexpir": 5, "startdat": [5, 19], "2f09": 5, "2f2010": 5, "enddat": [5, 19], "2f03": 5, "2f2011": 5, "orderbi": 5, "BY": 5, "claus": [5, 18, 30, 33], "\ufb01eld": 5, "\ufb02ag": 5, "ordinari": 5, "clue": [5, 34, 39], "workbench": [5, 10, 15], "templat": [5, 8, 10, 13, 17, 18, 19, 21, 30, 31, 35, 37, 39], "newbranch": 5, "tpl": 5, "loc": [5, 18], "ver": [5, 18, 30, 37, 39], "highli": [5, 9, 10, 17, 24, 29, 30, 31, 32], "\ufb01lenam": 5, "con\ufb01rm": 5, "travers": [5, 10, 15, 18, 30, 35, 37, 39], "readili": [5, 30], "guessabl": [5, 9], "feedback": [5, 9, 30, 31, 40], "389": [5, 19], "helpdesk": [5, 19], "subject": [5, 9, 10, 18, 30, 32, 34, 37, 38, 39], "recipi": [5, 18, 30, 33], "stage": [5, 10, 13, 15, 18, 19, 20, 21, 24, 29, 34, 39], "expos": [5, 7, 9, 10, 12, 15, 17, 18, 30, 31, 34, 35, 39], "rough": [5, 9, 24, 32], "abil": [5, 8, 9, 10, 15, 18, 19, 20, 29, 30, 31, 32, 35, 36, 37, 38, 39], "replic": [5, 10, 13, 18, 19, 30, 31], "social": [5, 10, 17, 20], "multistag": 5, "predict": [5, 9, 10, 30, 31, 32], "vertic": [5, 30, 31], "escal": [5, 10, 13, 22, 35], "imperson": [5, 19], "hijack": [5, 7], "leakag": [5, 10, 15, 30], "shortcut": [5, 19], "overfl": 5, "ow": [5, 24, 33], "preset": [5, 30], "catalog": [5, 17, 33], "him": 5, "hyperlink": 5, "mdsec": 5, "shop": [5, 32], "prod": [5, 18, 20], "pricecod": 5, "transpar": [5, 30, 31, 35, 39], "intellig": [5, 10, 11, 18, 22, 30, 31, 40], "obfusc": [5, 32], "anti": [5, 10, 18, 19], "csrf": [5, 37, 39], "eld": 5, "tamper": [5, 9, 18, 30, 37, 39], "preserv": [5, 13, 30, 31, 33], "suit": [5, 9, 11, 18, 20, 30, 31, 32, 37, 39], "price": [5, 9, 24, 33], "interf": 5, "basi": [5, 9, 11, 24, 30], "scanner": [5, 19, 21, 23, 29, 32, 33, 34, 35, 38, 39], "passiv": [5, 8, 18, 32, 34, 35, 38, 39], "simplest": [5, 22, 30, 32, 33, 35, 39], "impos": [5, 33, 35, 39], "variat": [5, 9, 10, 15, 18, 20, 31, 32, 33], "iphon": [5, 37, 39], "449": 5, "maxlength": 5, "bui": [5, 24, 32, 33], "telephon": [5, 11], "onsubmit": 5, "validateform": 5, "submiss": [5, 17, 20, 31, 33], "decid": [5, 7, 9, 10, 11, 19, 29, 30, 31, 32, 33, 40], "grai": 5, "blackberri": 5, "rude": [5, 32], "299": 5, "besid": [5, 7, 30, 31, 33, 35, 36, 39], "lesystem": 5, "registri": [5, 8, 10, 17, 18, 22, 29, 37, 39], "arbitrarili": 5, "silverlight": 5, "compet": [5, 33], "intermedi": [5, 9, 11, 18, 31], "bytecod": 5, "sandbox": [5, 32], "jvm": 5, "polici": [5, 7, 8, 9, 10, 13, 18, 20, 22, 29, 30, 31, 32, 33, 37, 39], "recent": [5, 7, 9, 10, 16, 17, 18, 20, 22, 30, 32, 33, 37, 39], "actionscript": 5, "capabl": [5, 7, 9, 10, 11, 14, 15, 20, 29, 30, 31, 32, 33], "amf": 5, "rich": [5, 24, 30, 31], "scale": [5, 9, 11, 24, 30, 31], "experi": [5, 8, 15, 19, 24, 31, 32, 33], "debugg": [5, 10, 15, 31], "deciph": 5, "inspect": [5, 6, 10, 11, 19, 20, 22, 29, 30, 31, 33, 37, 38, 39], "fulli": [5, 9, 10, 12, 19, 30, 31, 32, 33, 37], "understood": [5, 30, 31, 33], "interfer": [5, 10, 15, 16, 32, 33], "rst": [5, 17, 29, 37, 39], "reseri": 5, "dser": 5, "handi": [5, 22, 30, 35, 37, 39], "plug": [5, 15, 17, 22, 31, 32], "primit": 5, "accordingli": [5, 10, 30, 31, 38, 39], "foundat": [5, 10, 11, 20, 24, 30, 31, 32, 33], "wcf": 5, "soap": [5, 18, 19, 23], "nbf": 5, "msbin1": 5, "xap": 5, "reader": 5, "swf": 5, "jad": 5, "varanecka": 5, "flasm": 5, "nowrap": 5, "de": [5, 16, 17, 18, 24, 30, 31, 36, 37, 38, 39], "flare": 5, "swfscan": 5, "hp": [5, 18, 23], "re\ufb02": 5, "ector": 5, "gate": [5, 18], "dotnet": 5, "reflector": [5, 11], "routin": [5, 9, 10, 30, 32], "unlock": [5, 30, 35, 39], "recompil": 5, "javac": 5, "jdk": 5, "studio": [5, 29], "adob": 5, "javasnoop": 5, "ltern": 5, "jswat": 5, "con\ufb01": 5, "gurabl": 5, "multifactor": 5, "certi\ufb01c": 5, "smartcard": [5, 20], "kerbero": [5, 8, 13, 17, 19, 20], "minim": [5, 10, 20, 30, 31, 33, 37, 39], "qualiti": [5, 11, 13, 20, 24, 30, 31], "regard": [5, 9, 10, 13, 17, 18, 19, 22, 24, 30, 32], "self": [5, 9, 10, 12, 18, 30, 31, 33, 35], "regist": [5, 9, 10, 13, 15, 17, 30, 31, 32, 36, 39], "cntrl": [5, 6], "loggedin": [5, 6], "distinguish": [5, 6, 8, 30], "percent": [5, 6], "3f": [5, 6, 18, 38, 39], "5b": [5, 6, 38, 39], "3c": [5, 6, 38, 39], "3e": [5, 6, 37, 38, 39], "5c": [5, 6, 35, 39], "7b": [5, 6, 18, 31], "7c": [5, 6, 8], "7d": [5, 6], "linearli": [5, 6], "mysqli_num_row": [5, 6], "admin": [5, 6, 8, 9, 10, 13, 17, 18, 20, 29, 30, 34, 35, 36, 37, 38, 39], "con": [5, 6], "mysqli_connect": [5, 6], "sql2": [5, 6], "_post": [5, 6, 38, 39], "mysqli_queri": [5, 6], "logged_in": [5, 6], "mysqli_fetch_arrai": [5, 6], "h1": [5, 6, 35, 37, 39], "user_level": [5, 6], "AS": [5, 6, 10, 17, 18, 20, 31], "hax": [5, 6], "half": [5, 6, 15, 17, 32], "concaten": [5, 6, 30], "forget": [5, 6, 10, 18, 32, 38, 39], "webpag": [5, 6, 10, 34, 35, 37, 39], "excercis": [5, 6, 29], "burpsuit": [5, 6, 37], "unix": [5, 6, 9, 10, 18, 20, 29, 30, 31, 35, 37, 38], "escapeshellarg": [5, 6], "escapeshellcmd": [5, 6], "unlik": [5, 6, 22, 30, 32, 33], "smbmap": [5, 6], "crackmapexec": [5, 6, 37, 39], "v0": [5, 6, 18, 19, 20, 36, 38, 39], "faiz": [5, 6], "ipc": [5, 6, 8, 19, 37, 38, 39], "chosen": [5, 6, 19, 30, 33], "verbos": [5, 6, 10, 17, 18, 19, 20, 30, 34, 35, 38, 39], "backup4idc": [5, 6], "bckp": [5, 6], "123": [5, 6, 9, 18, 19, 20, 35, 39], "192": [5, 6, 8, 10, 13, 17, 18, 19, 20, 30, 31, 34, 35, 36, 37, 39], "168": [5, 6, 8, 10, 13, 17, 18, 19, 20, 30, 31, 34, 35, 36, 37, 39], "administrat0r": [5, 6, 19], "ssw0rd": [5, 6, 19], "rsh": [5, 6, 35, 36, 39], "v8": [5, 6, 18], "2017": [5, 6, 8, 17, 18, 19, 29, 35, 36, 39], "van": [5, 6], "hauser": [5, 6], "thc": [5, 6, 34, 39], "militari": [5, 6, 32], "organ": [5, 6, 9, 10, 17, 18, 19, 20, 21, 22, 29, 30, 31, 32, 33, 36, 39], "nsr": [5, 6, 35, 39], "task": [5, 6, 7, 9, 10, 11, 13, 15, 17, 18, 20, 29, 30, 31, 33, 37, 39], "min": [5, 6, 7, 10, 17, 30, 35, 39], "max": [5, 6, 7, 17, 30, 36, 38, 39], "isouvvd46": [5, 6], "opt": [5, 6, 13, 18, 30, 32, 36, 37, 38, 39], "colon": [5, 6, 30, 33, 35, 39], "parallel": [5, 6, 9, 10, 17, 30, 31, 36, 39], "hosts1": [5, 6], "grace": 5, "netspark": 5, "everyth": [5, 9, 10, 13, 15, 17, 20, 29, 30, 31, 32, 33, 35, 37, 38, 39], "afraid": 5, "websec": 5, "alter": [5, 30, 38, 39], "lead": [5, 7, 10, 17, 18, 30, 32, 36, 38, 39], "confidenti": [5, 9, 18, 20, 23, 32], "theft": [5, 7, 8, 20], "defac": [5, 29], "propag": 5, "compromis": [5, 9, 10, 18, 19, 20, 29, 30, 32, 35, 36, 39], "mssql": [5, 17, 19, 23], "xp_cmdshell": 5, "column": [5, 10, 18, 22, 30, 35, 36, 37, 39], "condit": [5, 9, 13, 15, 31, 32, 35, 36, 39], "input1": 5, "input2": 5, "leak": [5, 7, 10, 32, 33], "successfulli": [5, 9, 15, 18, 19, 20, 24, 30, 31, 32, 33], "pars": [5, 10, 18, 20, 22, 30, 35, 36, 38, 39], "articl": [5, 8, 17, 19, 32, 33, 37, 39], "fictiti": 5, "tblarticl": 5, "react": 5, "101": [5, 9, 17, 19, 33, 34, 35, 36, 38, 39], "evalu": [5, 7, 8, 9, 29, 30, 31, 32, 33, 38, 39], "notabl": [5, 30], "obvious": [5, 17], "benefit": [5, 10, 11, 24, 30, 32], "fingerprint": [5, 10, 18, 30, 35, 37, 38, 39], "exa": 5, "mple": 5, "apostroph": [5, 30], "anywai": [5, 24], "shorter": [5, 15, 32, 37, 39], "whilst": 5, "vendor": [5, 11, 18, 22, 29, 30, 31, 32, 33], "postgresql": [5, 31], "backend": [5, 19], "sm": [5, 11, 34, 39], "anotherus": 5, "doesnt": [5, 30], "fool": [5, 32], "msp": 5, "81dc9bdb52d04dc20036dbd8313ed055": 5, "1234": [5, 35, 36, 37, 39], "80040e14": 5, "unclos": 5, "quotat": [5, 8, 30], "clash": [5, 30], "nvarchar": 5, "2008": [5, 17, 18, 19, 20, 30, 36, 39], "sp1": [5, 18, 20], "2500": 5, "x64": [5, 18, 20, 36, 39], "jun": [5, 18, 19, 30, 35, 39], "2011": [5, 18, 19, 20, 30, 32, 33], "copyright": [5, 18, 19, 20, 30, 36, 38, 39], "corpor": [5, 10, 18, 19, 20, 24, 29, 33, 35, 36, 39], "nt": [5, 17, 18, 19, 23, 36, 37, 38, 39], "9200": 5, "hypervisor": 5, "throw": 5, "reveal": [5, 10, 17, 18, 20, 30, 31, 32], "widgetshop": 5, "widget": 5, "sqlclient": 5, "sqlexcept": 5, "sysobject": 5, "xtype": 5, "sq": [5, 9], "desc": [5, 15], "varchar": 5, "tablenam": 5, "deconstruct": 5, "deepest": 5, "nest": [5, 32], "why": [5, 12, 17, 18, 24, 29, 30, 32, 35, 36, 38, 39], "descend": [5, 30], "ui": [5, 13, 20, 21, 31], "utilis": [5, 10, 22, 38, 39], "unhind": 5, "swap": [5, 31], "datatyp": 5, "ones": [5, 10, 19, 30, 31, 32, 33], "abcd": [5, 19, 30, 37, 38, 39], "BYs": 5, "unrequir": 5, "Be": [5, 30, 32, 33], "situtaion": 5, "sum": [5, 30], "columntofind": 5, "ol": [5, 18], "odbc": 5, "driver": [5, 10, 18, 29, 37, 39], "80040e07": 5, "averag": [5, 7, 24], "table1": 5, "11223344": 5, "other2": 5, "explicit": [5, 32, 33, 35, 39], "abus": [5, 10, 17, 29, 32, 38], "easier": [5, 9, 10, 13, 18, 23, 30, 31, 32, 33, 35, 39], "FOR": [5, 10], "delai": [5, 9, 10, 13, 17, 32, 37, 39], "benchmark": [5, 9, 29], "pg_sleep": 5, "gracefulli": [5, 31], "infer": 5, "earlier": [5, 8, 17, 30, 31], "expand": [5, 9, 13, 18, 22, 24, 30, 33], "depth": [5, 10, 18, 37, 39], "substr": 5, "user_nam": [5, 7, 37, 39], "consum": [5, 9, 30, 31, 32, 33], "intens": [5, 9, 17, 31, 38, 39], "autom": [5, 9, 10, 13, 17, 18, 19, 20, 21, 22, 30, 31, 32, 35, 39], "db_name": [5, 37, 39], "system_us": 5, "owner": [5, 8, 10, 19, 24, 31, 32, 33, 38], "textsiz": 5, "langid": 5, "bounti": 5, "yadayada": 5, "8888": 5, "smallint": 5, "Such": [5, 10, 19, 24, 30, 31, 37, 39], "english": [5, 30, 36, 39], "bigger": [5, 10], "blindli": [5, 30], "IF": [5, 10, 30], "THEN": 5, "dbms_lock": 5, "wehen": 5, "sa": [5, 7, 9, 17, 18, 34, 39], "dbo": 5, "silent": [5, 30], "bo": [5, 9, 20], "om": [5, 11], "firstli": 5, "secondli": 5, "insensit": [5, 20], "collat": [5, 18, 36, 39], "held": [5, 10, 24, 30, 40], "labori": 5, "109": [5, 18], "alpha": 5, "outcom": [5, 9, 10], "consequ": [5, 10, 32, 33], "exhaust": [5, 30], "halv": 5, "115": [5, 18], "bang": [5, 30], "narrow": [5, 10], "queueid": 5, "743994": 5, "regularli": [5, 9], "belong": [5, 7, 9, 13, 19, 20, 30, 36, 38, 39], "empti": [5, 18, 19, 31, 35, 36, 37, 39], "nice": [5, 7, 31, 35, 36, 39], "743995": 5, "background": [5, 7, 18, 20, 35, 38, 39], "provok": 5, "programmat": 5, "rescu": [5, 30], "former": [5, 30, 36, 39], "latter": [5, 30, 37, 39], "deduc": 5, "firewal": [5, 7, 13, 17, 19, 31, 37, 39], "easiest": 5, "tr": [5, 18, 19, 37, 39], "ue": [5, 11], "trxe": 5, "all_sourc": 5, "substringtocharacterconversiontoincrementationordecrementationtocharacterconversiontostringconcaten": 5, "THAT": 5, "dy": 5, "wendi": 5, "emb": [5, 19, 30, 37, 39], "lag": 5, "waitfor": [5, 35, 39], "productid": 5, "howmanytim": 5, "woot": 5, "1000000000": 5, "1000000": 5, "dbms_pipe": 5, "receive_messag": 5, "nvl": 5, "xyz": 5, "dual": [5, 9, 10, 15], "nap": 5, "syscolumn": 5, "tablenameforcolumnnam": 5, "table_nam": 5, "information_schema": 5, "table_schema": 5, "databasenam": [5, 18], "column_nam": 5, "all_tabl": 5, "database_nam": 5, "all_col_com": 5, "samplet": 5, "member": [5, 7, 10, 13, 19, 29, 30, 31, 33, 36, 38, 39], "perfect": [5, 31, 32], "32302": 5, "classic": [5, 9, 11, 18], "divison": 5, "than3": 5, "magic_quot": 5, "waf": [5, 7, 29, 35, 37, 39], "0xhexnumb": 5, "0x5045": 5, "black": [5, 17, 18, 30, 32], "mo": [5, 19], "concat": 5, "str1": 5, "str2": 5, "str3": 5, "0x457578": 5, "ini": [5, 36, 38, 39], "klm": 5, "load_fil": [5, 20, 35, 39], "0x633a5c626f6f742e696e69": 5, "smp": [5, 18], "leftmost": 5, "scott": [5, 18, 19], "sutherland": [5, 18, 19], "death": [5, 30], "xp_cmd": 5, "xmldata": 5, "zxhlyybtyxn0zxiulnhwx2ntzhnozwxsicdkaxin": 5, "varbinari": 5, "120": [5, 9, 18, 37, 39], "116": [5, 18, 19, 35, 39], "nchar": 5, "ncast": 5, "0x78705f636d647368656c6c202764697227": 5, "sp_sqlexec": 5, "evad": [5, 10, 17, 20], "3e2": 5, "253e2": 5, "u003e2": 5, "reformat": 5, "webscarab": 5, "chapter": [5, 30], "unsur": 5, "multistep": 5, "establish": [5, 9, 10, 13, 18, 19, 20, 22, 30, 31, 32, 33, 35, 39], "exclud": [5, 10, 13, 17, 20, 30, 33], "scope": [5, 8, 18, 22, 30, 31, 32, 33, 37, 39], "wealth": [5, 10, 24], "discoveri": [5, 15, 17, 20, 22, 23, 34, 39], "highlight": [5, 10, 18, 22, 24, 29, 30, 32, 35, 39], "adddocu": 5, "viewdocu": 5, "editdocu": 5, "removedocu": 5, "feel": [5, 18, 22, 24, 29], "habit": [5, 30], "addanewus": 5, "succinct": 5, "addus": [5, 7, 30], "abbrevi": [5, 18, 30], "addusr": 5, "cryptic": 5, "addu": 5, "precis": [5, 9, 30], "compani": [5, 9, 10, 17, 18, 20, 23, 24, 31, 32, 35, 39], "annualreport2009": 5, "annualreport2010": 5, "somewhat": [5, 30, 31], "incredibli": 5, "notori": 5, "financi": [5, 10, 24], "publicli": [5, 32, 33, 36, 39], "announc": [5, 32], "wili": 5, "journalist": [5, 32], "year": [5, 17, 20, 24, 30, 32, 33, 40], "tidbit": 5, "conjectur": 5, "bak": [5, 19, 37, 39], "inc": [5, 18, 20, 33, 36, 39], "uncov": [5, 29, 32], "temporari": [5, 18, 20, 30, 36, 37, 39], "inadvert": [5, 10, 18, 30], "ds_store": [5, 37, 39], "focus": [5, 9, 20, 29, 31, 32, 33], "xxxdocument": 5, "addxxx": 5, "imagin": [5, 15, 18, 20, 31, 35, 37, 38, 39], "omit": [5, 19, 30, 34, 37, 39], "believ": [5, 17, 19, 24, 32], "suffici": [5, 7, 10, 30, 32], "subtli": 5, "longer": [5, 7, 10, 15, 17, 19, 30, 32, 33, 37, 39], "payment": [5, 11, 24, 30, 32], "usabl": [5, 13, 20, 30], "elsewher": [5, 32], "contact": [5, 10, 11, 18, 20, 29, 32], "staff": [5, 9, 10, 20, 31, 33], "forum": [5, 15, 32], "nikto": 5, "nonstandard": 5, "cgi": [5, 18, 30, 35], "cgidir": 5, "prone": [5, 10, 20, 29], "gure": 5, "mind": [5, 10, 15, 30, 31, 33], "editus": 5, "bomb": 5, "encapsul": [5, 11, 31], "bound": [5, 10, 31, 35, 39], "introduc": [5, 7, 10, 11, 21, 24, 29, 30, 31, 33, 36, 38, 39], "httprint": 5, "unusu": [5, 10, 30], "brand": [5, 24], "consult": [5, 9, 17, 18, 29, 31, 37, 39], "repositori": [5, 13, 18, 20, 29, 30, 32, 33, 37, 38, 39], "defect": [5, 9, 15, 21, 32], "think": [5, 10, 17, 18, 30, 31, 32, 33, 38, 39], "programm": [5, 9, 15, 18, 26, 30], "draw": [5, 30], "firm": 5, "conclus": 5, "diverg": [5, 30, 33], "retrospect": 5, "captcha": 5, "defens": [5, 9, 17, 29], "against": [5, 7, 8, 9, 10, 11, 15, 17, 18, 19, 22, 24, 29, 30, 32, 33, 35, 36, 38, 39], "osvdb": [5, 18], "formul": [5, 33], "plan": [5, 10, 13, 18, 20, 23, 26, 31, 32], "priorit": [5, 10, 32], "seriou": [5, 7, 18, 32, 33], "role": [5, 9, 10, 11, 15, 18, 19, 20, 30, 31, 32, 33, 37, 39], "ascertain": [5, 30], "avenu": 5, "plaintext": [5, 19, 20, 35, 37, 39], "impenetr": 5, "replai": [5, 9, 15], "pricing_token": 5, "cheaper": [5, 15], "overlong": 5, "browser": [6, 9, 17, 19, 20, 23, 30, 32, 35, 37, 39], "cooki": [6, 35, 37, 38, 39], "log": [6, 13, 15, 17, 18, 19, 20, 22, 23, 29, 32, 36, 37, 38], "url": [6, 10, 15, 17, 20, 29, 30, 35, 37, 38, 39], "side": [6, 9, 10, 13, 15, 17, 24, 29, 30, 31, 32, 33, 35, 36, 37, 38, 39], "union": [6, 32, 33], "laptop": [7, 10, 16, 20, 29, 31, 36, 39], "decent": [7, 17, 32], "vulnhub": [7, 17, 18, 26, 34, 37, 39, 40], "practic": [7, 8, 9, 10, 17, 18, 29, 31, 32, 33, 35, 36, 39], "team": [7, 9, 13, 17, 18, 21, 29, 30, 31, 32, 33, 37, 39], "lyni": [7, 29], "audit": [7, 9, 18, 20, 22, 29, 33, 37, 39], "anybodi": [7, 36, 39], "reboot": [7, 13, 14, 20, 30, 31], "he": [7, 9, 17, 18, 19, 36, 38, 39], "she": [7, 32], "mkpasswd": [7, 36, 39], "pbkdf2": [7, 20, 32], "reenter": [7, 20], "sha512": [7, 37, 39], "10000": [7, 35, 39], "a56beb30e27fe2f7d119e8defd6a8049e4300734bb139a5dd08e668ba434792b8ab45a285ac88b95dd16658ac7ec0xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx": 7, "40_custom": 7, "superus": [7, 29, 30, 35, 36, 37, 39], "password_pbkdf2": 7, "background_cach": 7, "vmlinuz": [7, 30, 38, 39], "kali1": 7, "amd64": [7, 30, 31], "initrd": [7, 38, 39], "pluggabl": [7, 30, 31], "libpam": 7, "passwdqc": 7, "strength": [7, 9, 18, 24, 32], "requisit": [7, 9, 30, 31], "pam_passwdqc": [7, 30], "n0": 7, "n1": [7, 35, 39], "n2": 7, "n3": 7, "n4": 7, "classifi": [7, 10, 11, 18, 24, 33], "meet": [7, 9, 10, 20, 22, 31, 32], "wheel": [7, 9, 36, 39], "wiki": [7, 19, 38, 39], "uncom": [7, 38, 39], "auth": [7, 10, 16, 19, 22, 30, 35, 37, 39], "pam_wheel": 7, "anymor": [7, 30], "groupadd": [7, 30], "usermod": [7, 30], "ag": [7, 24, 30], "tempfil": [7, 30], "thttpd": 7, "tmpdir": 7, "pam_tmpdir": 7, "followinglin": 7, "pam_securetti": 7, "pam_unix_auth": 7, "pam_warn": 7, "pam_deni": 7, "pam_unix_acct": 7, "pam_unix_passwd": 7, "pam_unix_sess": 7, "20400086134": 7, "022": 7, "027": 7, "077": 7, "bourn": 7, "csh": [7, 30], "cshrc": 7, "zshrc": 7, "bash_profil": [7, 30, 35, 36, 39], "pam_umask": 7, "bashrc": [7, 30, 35, 39], "strict": [7, 18, 32, 38, 39], "inadvertenli": 7, "0755": [7, 30], "dir_mod": 7, "0750": 7, "honor": 7, "sens": [7, 9, 17, 18, 24, 31, 32, 33, 34, 35, 39], "tune": [7, 10, 30, 31], "neither": [7, 17, 30], "indirectli": [7, 37, 39], "getti": 7, "sit": [7, 9, 10, 11, 17, 30], "faillog_enab": 7, "someon": [7, 20, 30, 31, 32, 33, 35, 37, 39], "log_unkfail_enab": 7, "unknown": [7, 10, 17, 18, 19, 30, 33, 34, 37, 39], "mistyp": 7, "640": [7, 36, 39], "adm": [7, 18, 30, 36, 39], "syslog_su_enab": 7, "syslog": [7, 9, 22, 30, 31, 35, 37, 38, 39], "privaci": [7, 16, 29, 30, 37, 39], "syslog_sg_enab": 7, "sg": [7, 30], "encrypt_method": 7, "greatli": [7, 9, 10, 19, 33], "reduc": [7, 9, 10, 13, 24, 29, 30, 31, 32, 33, 35, 39], "alert": [7, 9, 18, 19, 20, 31, 32], "loghost": 7, "lastlog": [7, 30], "faillog": 7, "summari": [7, 17, 18, 30, 31, 33, 37, 39], "recommend": [7, 8, 10, 18, 19, 22, 29, 30, 31, 33, 34, 35, 38, 39], "660": 7, "cut": [7, 9, 11, 16, 18, 20, 21], "perm": [7, 36, 39], "sysstat": 7, "sar": [7, 31], "sadf": 7, "mpstat": 7, "iostat": 7, "tapestat": 7, "pidstat": 7, "cifsiostat": 7, "listbug": 7, "goodi": 7, "toolbox": [7, 9], "deriv": [7, 17, 20, 30, 32, 33], "dglob": 7, "dgrep": 7, "dpig": 7, "debget": 7, "databas": [7, 9, 11, 12, 13, 17, 19, 21, 22, 23, 31, 32, 35, 36, 37, 38, 39], "debmani": 7, "manpag": 7, "checkrestart": 7, "restart": [7, 8, 10, 18, 30, 31], "outdat": [7, 15, 35, 37, 39], "popbug": 7, "releas": [7, 11, 12, 13, 14, 18, 20, 22, 23, 29, 30, 33, 35, 36, 37, 39], "pkg": [7, 35, 36, 39], "broke": 7, "broken": [7, 30, 32], "debscan": 7, "debsecan": 7, "fail2ban": [7, 30], "error_log": 7, "ban": [7, 11], "failur": [7, 9, 10, 15, 19, 30, 31, 32], "reject": [7, 18, 30, 31, 33], "email": [7, 10, 11, 12, 17, 18, 20, 26, 29, 30, 32, 33, 35, 37], "modsecurtii": 7, "nginx": [7, 10, 12, 18, 29, 31], "flexibl": [7, 9, 19, 20, 22, 29, 30, 31, 33], "cr": [7, 18, 20], "inject": [7, 10, 15, 19, 20, 29, 30, 31, 34, 35, 36, 38], "trojan": [7, 10, 18], "tripwir": [7, 30, 37, 39], "core_uses_pid": 7, "nonzero": 7, "kptr_restrict": 7, "toggl": [7, 15, 19, 30], "cap_syslog": 7, "unprivileg": [7, 10, 18, 30, 34, 38, 40], "dmesg_restrict": 7, "dmesg": [7, 13, 35, 39], "concern": [7, 10, 30, 31, 32, 38, 39], "sysrq": 7, "combo": 7, "bitmask": [7, 17], "sak": 7, "unraw": 7, "sync": [7, 9, 13, 18, 30, 38, 39], "remount": [7, 30], "0x40": 7, "oom": 7, "0x80": 7, "poweroff": [7, 30], "0x100": 7, "rt": [7, 35, 39], "net": [7, 10, 13, 14, 18, 20, 30, 31, 32, 35, 36, 37, 38, 39], "ipv4": [7, 8, 10, 11, 13, 18, 19, 22, 23, 30, 37, 39], "log_martian": 7, "imposs": [7, 10, 30, 31], "rp_filter": 7, "rfc3704": 7, "incom": [7, 9, 11, 24, 30, 31, 35, 37, 38, 39], "fib": 7, "loos": [7, 15, 38, 39], "ddo": [7, 10, 30], "asymmetr": 7, "rout": [7, 9, 15, 17, 18, 19, 22, 29, 31, 32, 35, 37, 39], "complic": [7, 30, 31, 32, 33], "send_redirect": 7, "router": [7, 9, 10, 11, 15, 30, 31, 37, 39], "accept_redirect": 7, "nnet": 7, "accept_source_rout": 7, "ssr": 7, "lsr": 7, "tcp_timestamp": 7, "lah": [7, 35, 38, 39], "lrwxrwxrwx": [7, 30, 36, 39], "x86_64": [7, 18, 30, 38, 39], "sep": [7, 11, 19, 30, 35, 39], "2015": [7, 18, 19, 38, 39], "usb": [7, 9, 10, 15, 16, 17, 30], "firewir": 7, "modprob": [7, 30], "usbstorag": 7, "firewire_cor": 7, "firewire_ohci": 7, "cover": [8, 9, 16, 17, 20, 22, 23, 29, 30, 31, 33, 37, 39, 40], "powershel": [8, 13, 17, 18, 22, 29, 35, 38], "commandlin": [8, 17, 30], "chad": 8, "cox": 8, "harri": 8, "eagl": 8, "2016": [8, 17, 18, 19, 34, 35, 36, 37, 38, 39], "computernam": [8, 19, 35, 37, 39], "sensibl": 8, "n2p19kahmfg": 8, "newnam": [8, 19], "mumdc01": 8, "system32": [8, 10, 19, 20, 35, 36, 38, 39], "netadapt": 8, "interfacedescript": 8, "ifindex": 8, "macaddress": 8, "linkspe": 8, "vboxhost": 8, "pro": [8, 9, 11, 18, 22, 30, 36, 39], "mt": [8, 34, 36, 39], "gbp": 8, "ethernet": [8, 9, 10, 14, 15, 18, 19, 31, 35, 37, 39], "9a": [8, 18, 30], "ipaddress": [8, 13, 18, 19, 34, 35, 37, 39], "netipaddress": 8, "interfacealia": 8, "addressfamili": 8, "prefixlength": 8, "interfaceindex": 8, "unicast": 8, "prefixorigin": 8, "suffixorigin": 8, "addressst": 8, "tent": 8, "validlifetim": 8, "infinit": 8, "timespan": 8, "maxvalu": 8, "preferredlifetim": 8, "skipassourc": 8, "policystor": 8, "activestor": 8, "persistentstor": 8, "dnsaddress": 8, "dnsclientserveraddress": 8, "serveraddress": 8, "windowsfeatur": 8, "includemanagementtool": 8, "addsforest": 8, "domainnam": [8, 17, 19, 20], "adw": 8, "kdc": [8, 13, 18, 19], "netlogon": [8, 19], "displaynam": [8, 13, 18, 22], "center": [8, 13, 17, 19, 29, 30, 31, 32, 37, 39], "sysvol": [8, 19, 20], "smbshare": 8, "scopenam": 8, "logon": [8, 19, 22, 36, 39], "technet": [8, 18, 19], "john": [8, 18, 19, 30, 32, 33, 37, 39], "smith": [8, 15, 18], "samaccountnam": [8, 18, 19], "givennam": [8, 18], "surnam": 8, "accountpassword": 8, "assecurestr": [8, 37, 39], "simon": 8, "wahlin": 8, "swrandompassword": 8, "inputstr": 8, "randbetween": 8, "focu": [8, 10, 18, 29, 30, 31, 32], "streetaddress": 8, "citi": [8, 9, 17, 18], "emailaddress": [8, 18, 34, 39], "rpassword": 8, "countri": [8, 9, 10, 17, 29, 32, 33, 35, 39], "telephonenumb": 8, "jane": [8, 33], "libellengass": 8, "sassl": 8, "odll6837": 8, "ai": [8, 9, 31], "AT": [8, 9, 19], "0650": [8, 18], "130": [8, 31], "tyzm9015": 8, "dp": [8, 9], "hudson": 8, "landstrass": 8, "etzelsdorf": 8, "mr": 8, "tbfy6122": 8, "ei": 8, "0664": 8, "366": 8, "ttqf5989": 8, "wk": [8, 19], "cori": 8, "nava": 8, "hauptstrass": 8, "prutz": 8, "dfnv5074": 8, "hy": 8, "0699": 8, "989": 8, "jske4317": 8, "convertto": [8, 35, 39], "securestr": [8, 32, 35], "asplaintext": [8, 35, 39], "carlo": [8, 35, 39], "perez": [8, 35, 39], "logonworkst": 8, "sam": [8, 17, 19], "netbio": [8, 9, 19, 37, 39], "opinion": [8, 33], "stope": [8, 19], "workgroup": [8, 18, 20, 37, 38, 39], "workgroupnam": 8, "pscredenti": [8, 35, 37, 39], "localcredenti": 8, "oupath": 8, "organiz": [8, 10, 19, 29, 32, 33], "cmdlet": [8, 19, 35, 37, 39], "unjoindomaincredenti": 8, "unsecur": 8, "whatif": 8, "commonparamet": 8, "domain02": 8, "server044": 8, "admin01": 8, "server01": 8, "user01": 8, "wmi": [8, 37, 39], "winrm": [8, 37, 39], "discourag": [8, 20, 32], "workstat": [8, 10, 18, 20, 30, 31], "deleg": [8, 13, 19, 20, 30, 32], "baselin": [8, 10, 22], "security_baselin": 8, "adorganizationalunit": 8, "windows7": 8, "windows10": 8, "ft": [8, 36, 39], "distinguishednam": [8, 19], "wanna": 8, "ldapfilt": 8, "activedirectori": [8, 19], "accountexpirationd": 8, "accountexpir": [8, 19], "9223372036854775807": [8, 18], "accountlockouttim": 8, "accountnotdeleg": 8, "allowreversiblepasswordencrypt": 8, "authenticationpolici": 8, "authenticationpolicysilo": 8, "badlogoncount": 8, "badpasswordtim": 8, "badpwdcount": 8, "cannotchangepassword": 8, "canonicalnam": 8, "ie10win72": 8, "certif": [8, 9, 12, 14, 15, 17, 19, 31, 32, 37, 38], "cn": [8, 11, 13, 18, 19], "codepag": [8, 19], "compoundidentitysupport": 8, "countrycod": [8, 19], "createtimestamp": 8, "dnshostnam": [8, 18, 19], "doesnotrequirepreauth": 8, "dscorepropagationdata": 8, "pm": [8, 18, 24, 38, 39], "homedirrequir": 8, "homepag": [8, 37, 39], "instancetyp": 8, "ipv4address": 8, "ipv6address": 8, "iscriticalsystemobject": 8, "isdelet": 8, "kerberosencryptiontyp": 8, "rc4": 8, "aes128": [8, 18], "lastbadpasswordattempt": 8, "lastknownpar": 8, "lastlogoff": 8, "lastlogon": [8, 19, 36, 39], "131471983161372555": 8, "lastlogond": [8, 19], "lastlogontimestamp": 8, "131467140289373056": 8, "localpolicyflag": 8, "lockedout": 8, "logoncount": [8, 19], "managedbi": 8, "memberof": [8, 19], "mnslogonaccount": 8, "modifytimestamp": 8, "creatorsid": 8, "1727263102": 8, "1930659670": 8, "937436522": 8, "1106": 8, "mc": [8, 19], "admpwd": 8, "j7n": 8, "c3e": 8, "admpwdexpirationtim": 8, "131493063003466404": 8, "msd": 8, "supportedencryptiontyp": 8, "ntsecuritydescriptor": 8, "directoryservic": [8, 19], "activedirectorysecur": 8, "objectcategori": [8, 19], "schema": [8, 19, 23], "objectclass": [8, 18], "objectguid": 8, "1cc964d9": 8, "3164": 8, "4780": 8, "bc0a": 8, "1149049d6df9": 8, "objectsid": 8, "1107": 8, "operatingsystem": [8, 18, 19], "enterpris": [8, 9, 10, 11, 13, 18, 20, 22, 23, 30, 31, 33, 40], "operatingsystemhotfix": 8, "operatingsystemservicepack": [8, 18, 19], "operatingsystemvers": [8, 19], "7601": [8, 18, 19, 20], "passwordexpir": 8, "passwordlastset": [8, 19], "passwordneverexpir": 8, "passwordnotrequir": 8, "primarygroup": 8, "primarygroupid": [8, 19], "515": [8, 9, 18, 19], "principalsallowedtodelegatetoaccount": 8, "protectedfromaccidentaldelet": 8, "pwdlastset": [8, 19], "131471756690576604": 8, "samaccounttyp": 8, "805306369": 8, "sdrightseffect": 8, "serviceaccount": [8, 19], "serviceprincipalnam": [8, 19], "termsrv": [8, 19], "restrictedkrbhost": 8, "sid": [8, 10, 17, 19, 20, 22, 23], "sidhistori": 8, "trustedfordeleg": [8, 19], "trustedtoauthfordeleg": [8, 19], "usedeskeyonli": 8, "useraccountcontrol": [8, 19], "4096": [8, 18, 30, 34, 36, 38, 39], "usercertif": 8, "userprincipalnam": 8, "usnchang": 8, "86161": 8, "usncreat": 8, "24601": 8, "whenchang": 8, "whencreat": [8, 18], "9600": [8, 15], "adobject": 8, "targetpath": 8, "expert": [8, 9, 10, 29, 32], "scm": [8, 19, 23, 29], "thru": [8, 11, 18, 35, 39], "readi": [8, 14, 19, 29, 30, 31, 32, 33, 36, 38, 39], "industri": [8, 9, 11, 24, 29, 40], "drift": [8, 29], "retir": [8, 24, 29], "toolkit": [8, 15, 20, 30, 31, 33], "lgpo": [8, 29], "gpo": [8, 19, 20, 22, 29], "preferrbli": 8, "sb": 8, "win7sb": 8, "win10sb": 8, "globalsb": 8, "651e0d7b": 8, "ad70": 8, "4369": 8, "b21e": 8, "8a9cde424a04": 8, "gpostatu": 8, "allsettingsen": 8, "creationtim": 8, "modificationtim": 8, "uservers": 8, "computervers": 8, "wmifilt": 8, "gplink": 8, "gpoid": 8, "securitybaselin": 8, "backupid": 8, "aa23f7c2": 8, "c57c": 8, "4fc0": 8, "82f9": 8, "7c12c8787d25": 8, "targetguid": 8, "358bb269": 8, "024a": 8, "408a": 8, "b010": 8, "0e54062cbd94": 8, "usersettingsdis": 8, "07": [8, 18, 19, 30], "a23f7c2": 8, "sean": [8, 19, 20], "metcalf": [8, 19, 20], "reappli": 8, "refresh": [8, 18, 20, 30, 37, 39], "llmnr": [8, 9, 17], "multicast": [8, 9, 11, 18, 31, 37, 39], "computer1": 8, "devolut": 8, "unabl": [8, 10, 19, 20, 30, 37, 38, 39], "hoc": [8, 22], "turn": [8, 9, 10, 11, 13, 15, 18, 29, 32, 35, 36, 37, 38, 39], "nbt": [8, 17], "node": [8, 9, 10, 11, 17, 18, 19, 22, 30, 31, 32, 33, 35, 37, 38, 39], "kb160177": 8, "admx": 8, "ceas": 8, "netsessionenum": 8, "hkey_local_machin": [8, 10, 36, 39], "currentcontrolset": [8, 10, 36, 39], "lanmanserv": 8, "defaultsecur": 8, "srvsvcsessioninfo": 8, "acl": [8, 10, 13, 18, 22, 29, 35, 39], "elig": [8, 29], "technic": [8, 9, 10, 17, 18, 29, 32, 33], "hei": [9, 25, 37, 39, 40], "pentest": [9, 17, 18, 21, 26, 29], "journei": [9, 19, 40], "travel": [9, 10, 15], "effort": [9, 10, 20, 31, 32, 33, 40], "water": [9, 10], "hose": 9, "pressur": [9, 10, 32], "voltag": [9, 15], "volt": [9, 10], "discharg": 9, "amper": 9, "friction": 9, "inner": [9, 17, 30, 38, 39], "resist": [9, 24, 32], "ohm": 9, "\u03c9": 9, "substanc": 9, "ir": [9, 10], "va": [9, 30], "watt": 9, "watthour": 9, "wh": 9, "hertz": 9, "shock": [9, 37, 39], "shortest": 9, "metal": 9, "conductor": 9, "conduct": [9, 10, 11, 18, 33], "liquid": [9, 24], "sap": [9, 20], "lethal": 9, "harm": [9, 30, 32, 38, 39], "transmit": [9, 10, 15, 17, 18, 30], "overhead": [9, 10, 15, 21], "tall": 9, "switchyard": 9, "intersect": 9, "satellit": 9, "fascin": 9, "soon": [9, 13, 25, 30, 31, 32], "breakneck": 9, "speed": [9, 10, 11, 15, 30, 31, 32, 33, 35, 39], "light": [9, 10, 15, 17, 18, 31], "rush": 9, "300": [9, 18], "kilometr": 9, "transform": [9, 29, 32], "checkpoint": [9, 20, 22, 24, 36, 39], "crossroad": 9, "invers": [9, 34, 37, 39], "proport": [9, 24], "tranmiss": [9, 10], "effici": [9, 13, 17, 20, 24, 30, 31, 33], "approach": [9, 11, 13, 15, 16, 17, 19, 22, 29, 30, 31, 32, 33], "gradual": [9, 10], "strateg": [9, 20], "wood": [9, 18], "pole": 9, "underground": 9, "13800": 9, "735": 9, "25000": 9, "49000": 9, "220": [9, 15, 18, 35, 38, 39], "110": [9, 35, 36, 37, 39], "33000": 9, "22000": 9, "11000": 9, "6000": [9, 37, 39], "415": 9, "plant": [9, 10, 24], "propel": 9, "turbin": 9, "diesel": 9, "nuclear": [9, 10], "ga": [9, 10], "wind": [9, 18], "solar": 9, "biomass": 9, "geotherm": 9, "capac": [9, 10, 11, 31], "turbinegener": 9, "powerst": 9, "winter": 9, "temperatur": [9, 10, 15], "rotor": 9, "electromagnet": 9, "rotat": [9, 30, 36, 39], "revolut": 9, "rpm": [9, 13, 22, 31, 37, 39], "600": [9, 18], "popul": [9, 10, 13, 30, 36, 39], "Their": [9, 30, 33], "shape": [9, 10, 18, 33], "sturdi": 9, "stress": [9, 38, 39], "stabil": [9, 30], "phase": [9, 10, 15, 17, 22, 40], "bundl": [9, 30, 31, 32, 37, 39], "lightn": 9, "ground": [9, 10, 15, 32], "strung": 9, "sag": 9, "tension": 9, "stronger": 9, "expens": [9, 24, 31], "contract": [9, 10, 32, 33], "expans": [9, 17], "hot": 9, "weather": [9, 18], "improv": [9, 10, 13, 17, 22, 25, 29, 30, 31, 32, 33, 35, 39], "dispatch": [9, 23], "isol": [9, 10, 21, 29, 31], "lessen": [9, 33], "impact": [9, 10, 24, 29, 32, 33], "mainten": [9, 31, 33], "equip": [9, 10, 24, 30], "shut": [9, 22, 30, 33], "disconnect": [9, 18, 19], "instantan": 9, "shunt": 9, "reactor": [9, 10], "capacitor": 9, "compens": [9, 33], "regul": [9, 10, 15, 30, 32], "mobil": [9, 15, 18, 31, 32], "735kv": 9, "120kv": 9, "220kv": 9, "110kv": 9, "safeti": [9, 10], "potienti": [9, 10], "railroad": 9, "busbar": 9, "subtransmiss": 9, "tss": 9, "dss": [9, 18, 22, 32], "town": 9, "css": [9, 29], "3g": [9, 11], "4g": [9, 11], "apn": 9, "compris": [9, 22, 32], "decis": [9, 10, 11, 21, 22, 24, 30, 31, 33], "hmi": [9, 10], "smart": [9, 11, 30], "ct": [9, 37, 39], "pt": [9, 17, 30, 37, 39], "switchgear": 9, "upstream": [9, 30, 31, 32, 33], "wish": [9, 14, 18, 30], "reactiv": [9, 10], "tap": [9, 10, 15, 35, 39], "puls": [9, 15], "reflex": 9, "intervent": [9, 31], "constantli": [9, 30], "decisionmak": 9, "heart": [9, 29, 30], "brain": [9, 30], "scc": 9, "round": [9, 17, 19, 35, 36, 39], "clock": [9, 11, 15], "prioriti": [9, 10, 17, 18, 36, 38, 39], "trade": [9, 10, 17, 24], "neighbor": [9, 17], "interconnect": [9, 11], "central": [9, 10, 11, 13, 18, 23, 24, 29, 30, 31, 33], "telecontrol": 9, "overse": 9, "deliveri": [9, 11, 19, 31, 32, 35, 36, 39], "hydropow": 9, "televis": 9, "everyon": [9, 10, 18, 29, 30, 33], "significantli": [9, 10, 11, 30, 32], "superior": 9, "applianc": [9, 10, 11, 22, 30, 31], "supplier": [9, 23, 32], "facil": [9, 10, 11, 18, 22, 30], "medium": [9, 15, 31, 33, 35, 39], "distanc": 9, "bare": 9, "insul": [9, 30], "neutral": [9, 33], "metr": 9, "beneath": 9, "contribut": [9, 13, 28, 29, 30, 31, 40], "occup": 9, "mount": [9, 13, 15, 19, 20, 35, 37, 38, 39], "domest": 9, "flick": 9, "promot": [9, 24, 31, 33], "instrument": [9, 10, 18, 19, 22, 24, 31, 33], "panel": [9, 20, 37, 39], "apparatu": 9, "hous": [9, 20], "overload": [9, 31, 33], "overh": 9, "outlet": 9, "dedic": [9, 10, 11, 13, 29, 30, 31, 33], "refriger": 9, "heater": 9, "bathroom": 9, "accid": 9, "heard": 9, "northern": 9, "wr": 9, "western": [9, 18], "southern": 9, "er": 9, "eastern": 9, "ldc": 9, "nldc": 9, "stand": [9, 15, 30, 32, 33, 38, 39], "supervisori": [9, 10], "apex": 9, "inter": [9, 10, 30, 31], "acquir": [9, 11, 22, 23, 24, 30], "histor": [9, 18, 24, 32, 33, 36, 39], "reconstruct": [9, 33], "trend": [9, 10, 24], "estim": [9, 32], "agc": 9, "econom": [9, 24, 31, 32], "spin": 9, "conting": 9, "forecast": [9, 18], "mi": [9, 29], "standbi": 9, "isolat": 9, "humid": 9, "multi": [9, 11, 15, 17, 18, 19, 20, 24, 32, 35, 39], "frtu": 9, "concentr": 9, "pc": [9, 10, 19, 29, 36, 39], "front": [9, 10, 17, 30, 35, 39], "av": [9, 18, 30], "antiviru": [9, 10, 18, 19, 20], "dmz": [9, 10, 17], "availabl": 9, "lan": [9, 10, 18, 20, 29], "synchron": [9, 15, 18, 30, 31], "health": [9, 10, 20, 24, 31], "plcc": 9, "fibr": 9, "optic": [9, 30], "cfe": 9, "poll": 9, "queu": [9, 11, 30, 38, 39], "infrastructur": [9, 10, 19, 22, 24, 32, 33], "vari": [9, 15, 18, 24, 30, 31, 32, 33], "splitter": 9, "modbu": [9, 18], "dnp3": 9, "overview": [9, 17, 18, 30, 33, 38, 39], "________": 9, "_______": 9, "rs232": [9, 10, 15], "pin": [9, 15, 18, 20, 30], "rs485": 9, "internetwork": 9, "transmitt": [9, 15], "rs422": [9, 10], "differenti": [9, 20, 30, 32], "opc": [9, 10], "feeder": 9, "compact": 9, "bank": [9, 15, 24, 29, 30], "secondari": [9, 10, 11, 30], "detect": [9, 11, 15, 17, 19, 20, 22, 31, 33, 34, 35, 36, 37, 39], "restor": [9, 10, 19, 20, 32], "decentr": 9, "driven": [9, 15, 17, 30, 31, 32], "accr": 9, "slower": [9, 17], "effic": [9, 10], "stamp": [9, 17], "timestamp": [9, 17, 30], "125": [9, 18], "vdc": 9, "norm": 9, "relai": [9, 11, 17, 19, 33, 37, 39], "changer": 9, "cb": 9, "reclos": 9, "overcurr": 9, "motor": 9, "interlock": 9, "vt": [9, 30, 31, 35, 39], "ac": [9, 11, 20, 31], "trip": [9, 17, 35, 39], "osisoft": 9, "trust": [9, 10, 13, 29, 30, 32, 33, 35, 37, 39], "tailor": 9, "piadmin": 9, "dcom": [9, 37, 39], "traffic": [9, 10, 11, 22, 28, 30, 31, 35, 37, 39], "india": [9, 18, 19, 24, 35, 39], "unschedul": 9, "market": [9, 11, 15, 23, 33], "charg": [9, 10, 11, 31, 33], "incent": [9, 32], "di": [9, 15, 18, 30, 31, 37, 39], "particip": [9, 10, 17, 31, 32, 33], "deviat": 9, "commit": [9, 24, 31, 32, 33], "hr": [9, 10], "hour": [9, 13, 17, 18, 24, 29, 30, 32], "96": [9, 18], "mwh": 9, "hydro": 9, "constitut": 9, "peak": 9, "beneficiari": 9, "prepar": [9, 15, 31, 32, 33], "drawal": 9, "quantifi": 9, "apport": 9, "outag": [9, 31], "bottleneck": 9, "revis": [9, 12, 18, 30, 31, 33, 38, 39], "4th": 9, "advis": [9, 16, 17, 30], "reckon": 9, "manner": [9, 10, 11, 17, 18, 20, 29, 30, 31, 33], "technologi": [9, 10, 11, 13, 17, 18, 19, 20, 24, 29, 33, 36, 37, 38, 39, 40], "bill": [9, 11, 32, 33], "troubleshoot": [9, 10, 11, 30, 31], "crm": [9, 23], "notif": [9, 11, 18, 30, 31], "hvd": 9, "hv": 9, "lv": 9, "alarm": [9, 10, 11, 19, 30], "survei": 9, "dashboard": [9, 12, 13, 22, 35, 39], "disturb": [9, 36, 39], "flicker": 9, "malfunct": [9, 33], "earli": [9, 10, 18, 24, 32, 33], "breakdown": [9, 24], "overcom": [9, 30, 31], "swell": 9, "nomin": 9, "distort": 9, "harmon": 9, "modern": [9, 30, 31], "overal": [9, 15, 29, 30, 31, 32], "assist": [9, 10, 11, 17, 19, 21, 30, 31, 37, 39], "assess": [9, 10, 17, 20, 32], "correl": [9, 10, 17, 29, 30, 33], "coupler": 9, "pqm": 9, "contol": 9, "acquist": [9, 10], "scd": 9, "icd": 9, "aka": [9, 18, 20, 30, 32], "l7": [9, 31], "2404": 9, "outstat": 9, "slave": [9, 10, 15, 31], "unbalanc": 9, "sequenti": [9, 10, 30, 33], "NO": [9, 18, 31, 34, 39], "repli": [9, 17, 18, 30], "simultan": [9, 10, 15, 29, 30, 31, 32], "broadcast": [9, 17, 30, 31, 37, 39], "rtu32": 9, "iec60870": 9, "iec104": 9, "pcap": [9, 10, 37, 39], "m_sp_na_1": 9, "m_dp_na_1": 9, "interrog": [9, 10], "0x68": 9, "apdu": 9, "cf1": 9, "unnumb": 9, "cf2": 9, "startdt": 9, "stopdt": 9, "testfr": 9, "transmisson": 9, "ioa": 9, "typeid": 9, "135": [9, 17], "136": [9, 18, 30], "cot": 9, "coa": 9, "appendix": [9, 34, 40], "forexampl": 9, "qd": 9, "whitout": 9, "normalis": 9, "rise": [9, 24], "edg": [9, 10, 11, 13, 22, 31, 35, 39], "32768": 9, "32767": 9, "indetermin": 9, "ON": [9, 19, 38, 39], "vice": [9, 10, 30, 31], "versa": [9, 10, 30, 31], "dataregist": 9, "tase": 9, "subset": [9, 20, 30, 35, 39], "bilater": 9, "agreement": [9, 10, 32], "methodologi": [9, 29], "extend": [9, 17, 18, 30, 31], "bandwidth": [9, 10, 15, 29, 31], "premium": 9, "telemet": 9, "board": [9, 15, 29], "buse": 9, "condens": 9, "mw": 9, "penalti": 9, "factor": [9, 13, 18, 31, 32], "emerg": [9, 11, 29], "bi": [9, 32, 35, 39], "setpoint": 9, "interchang": 9, "approv": [9, 10, 13, 30, 31, 33], "hourli": [9, 19], "affect": [9, 10, 11, 18, 29, 30, 31, 32, 33, 37, 38, 39], "layer": [9, 10, 11, 18, 22, 29, 30, 31, 37, 39], "heterogen": 9, "vmd": 9, "orient": [9, 31, 33], "semaphor": [9, 30], "pdu": 9, "requestpdu": 9, "responsepdu": 9, "errorpdu": 9, "cancel": [9, 30], "rejectpdu": 9, "invokeid": 9, "wireshark": [9, 16, 34, 39], "4431": 9, "invoc": [9, 30], "runnabl": [9, 30], "enrol": [9, 13, 26], "filestor": 9, "fileserv": [9, 10], "uca": [9, 10], "compliant": [9, 19, 29, 31], "sbo": 9, "icon": [9, 17, 19, 32], "her": [9, 30], "simpler": [9, 30], "thought": [9, 11, 19], "noun": 9, "bitron": 9, "powerserv": 9, "street": 9, "brick": 9, "poli": 9, "mmxu1": 9, "polyphas": 9, "subfunct": 9, "mx": [9, 18, 34, 39], "subgroup": 9, "phsaf": 9, "recogn": [9, 10, 17, 30, 33], "train": [9, 10, 31, 32, 33], "phsai": 9, "mmxu": 9, "phapo": 9, "mag": [9, 15], "ang": 9, "foundri": 9, "peer": [9, 11, 17], "gse": 9, "reliabl": [9, 10, 18, 31], "accommod": [9, 30], "subscrib": [9, 18], "mission": [9, 33], "10m": [9, 30], "3m": 9, "lon": 9, "decad": [9, 20], "interpanel": 9, "arc": 9, "ref615": 9, "outgo": [9, 18, 30, 31], "sensor": [9, 29, 31], "compart": 9, "37m": 9, "23m": 9, "scheme": [9, 18, 37, 39], "pictur": [9, 10, 33, 38, 39], "glanc": [9, 21], "enjoi": [9, 24, 31, 33], "spectacular": 9, "smv": 9, "merg": [9, 30, 31, 32], "cosem": 9, "ua": [9, 35, 39], "colour": [9, 32], "yellow": 9, "white": [9, 18, 30, 32, 33], "glossari": 9, "ssd": [9, 31], "cid": 9, "standardis": 9, "concret": 9, "offlin": [9, 10, 13, 17, 18, 22, 31], "elimin": [9, 31, 32], "discrep": 9, "eterra": 9, "terrascada": 9, "terratransmiss": 9, "terragener": 9, "terraloadforecast": 9, "terrasimul": 9, "simul": [9, 18, 19, 30, 32], "terravis": 9, "innov": 9, "terradisgen": 9, "terrarenewableplan": 9, "der": 9, "terraphasorpoint": 9, "pmu": 9, "spectrum": [9, 15, 33], "monarch": 9, "unequ": [9, 32], "portabl": [9, 10, 31], "popular": [9, 17, 18, 30, 31, 32, 33], "nosql": 9, "premis": [9, 31], "cloud": [9, 14, 15, 18, 29, 40], "deploy": [9, 11, 12, 13, 18, 20, 29, 30, 33], "robust": [9, 11, 30, 31, 33], "shield": [9, 11], "legaci": [9, 17, 20, 31], "dnp": [9, 10], "lightweight": [9, 19, 30, 31], "cyme": 9, "customiz": [9, 10, 17], "extens": [9, 10, 11, 13, 17, 18, 20, 29, 30, 31, 33, 35, 37, 38, 39], "cymdist": 9, "radial": 9, "mesh": [9, 11, 15], "comprehens": [9, 22, 30], "placement": [9, 15, 30], "road": [9, 33], "railwai": 9, "smallworld": 9, "portfolio": [9, 24, 33], "lifecycl": [9, 10, 23, 31], "asset": [9, 19, 32], "edna": 9, "advant": 9, "fieldbu": [9, 10], "profibu": [9, 10], "arcnet": 9, "canopen": 9, "telemetri": [9, 31], "easergi": 9, "t200": 9, "t300": 9, "oil": [9, 10], "pipelin": [9, 10, 13, 18, 29, 31, 32], "siprotec5": 9, "siprotec4": 9, "siptrotec": 9, "reyrol": 9, "digsi": 9, "versatil": [9, 20, 31, 36, 39], "parameter": 9, "commiss": [9, 15], "siprotec": 9, "intuit": [9, 29], "sigra": 9, "fi": [9, 11, 15, 16, 17, 30, 37, 39], "nding": 9, "60850": 9, "interoper": 9, "p85x": 9, "q100": 9, "sitra": 9, "iid": 9, "sed": [9, 35, 37, 39], "iec61850": 9, "netview": 9, "friendli": [9, 31], "reydisp": 9, "evolut": [9, 30], "7sr2x": 9, "sicom": 9, "disto": 9, "occurr": [9, 30, 32, 33], "fetch": [9, 20, 35, 37, 39], "preconfigur": [9, 36, 39], "incl": 9, "auto": [9, 30, 31, 34, 39], "wgom0ds1": 9, "s1": [9, 35, 39], "substn": 9, "devicetyp": 9, "ponda_ga": 9, "2b1": 9, "kv": 9, "20152": 9, "sttd": 9, "addres": 9, "3001": 9, "2001": [9, 18, 19, 33, 38, 39], "1001": [9, 20, 30], "ponda_gabu": 9, "commerci": [9, 22, 33], "slowli": 9, "guidelin": [9, 10, 13, 22, 30, 32], "rbac": 9, "62351": 9, "lifetim": [9, 31], "x509": 9, "509": 9, "vpn": [9, 13, 18, 19], "ipsec": [9, 30], "ppp": [9, 11, 37, 39], "refus": [9, 18, 22, 30, 36, 39], "diagnosi": 9, "telegram": 9, "trail": [9, 30], "logout": [9, 10, 18], "1x": 9, "disabl": [9, 10, 14, 17, 18, 20, 22, 31, 34, 35, 36, 37, 38, 39], "complianc": [9, 10, 22, 31], "harden": [9, 10, 13, 22, 31, 32], "project": [9, 18, 29, 30, 32, 35, 36, 37, 39], "sauran": 9, "threat": [9, 10, 17, 19, 31], "patch": [9, 17, 18, 19, 21, 30, 31, 32, 33, 35, 36, 37, 39], "arco": 9, "cyberark": 9, "seven": 9, "pim": 9, "vnc": [9, 19, 31, 35, 36, 39], "utmost": [9, 36, 39], "rmu": 9, "wi": [9, 11, 15, 16, 17], "modem": [9, 10], "heal": 9, "inventori": [9, 24, 31, 32], "whenev": [9, 10, 30, 32, 35, 39], "vulnerabl": [9, 35, 39], "risk": [9, 10, 13, 18, 19, 20, 22, 24, 30], "102": [9, 10], "20000": [9, 10], "4059": 9, "ecostruxur": 9, "strategi": [9, 10, 11], "nerc": [9, 10], "cip": [9, 10], "bdew": 9, "p1686": 9, "2018": [9, 10, 17, 30, 35, 36, 38, 39], "conjunct": [9, 30, 31, 33, 36, 39], "micom": 9, "p40": 9, "p30": 9, "saitel": 9, "c264": 9, "sdm600": 9, "cert": [9, 12, 29, 32, 34, 39], "ic": [9, 19, 35, 37, 39], "forens": [9, 29, 31, 40], "fundament": [9, 33, 40], "iec870": 9, "mitsubishi": 9, "lectur": 9, "beyond": [9, 24, 32], "weight": [9, 17, 31], "demonstr": [9, 36, 39], "st7570": 9, "fsk": [9, 15], "stm32": 9, "spear": 9, "apdrp": 9, "hand": [9, 10, 11, 22, 24, 30, 37, 39], "healthi": [9, 31], "bcu": 9, "mfm": 9, "liu": 9, "mlfb": 9, "sertel": 9, "bcpu": 9, "opmiii": 9, "1703": 9, "acp": 9, "omron": [9, 18], "mm2xp": 9, "moxa": 9, "7728": 9, "ecc": [9, 33], "bcc": 9, "nodal": 9, "mcc": 9, "ul": 9, "uldi2121": 9, "areva": [9, 10], "c264c": 9, "61131": [9, 10], "grafcet": 9, "chart": [9, 10, 12, 13, 31], "earth": 9, "energ": 9, "millisecond": 9, "rack": 9, "sce": [9, 11], "behav": [9, 10, 30, 31, 38, 39], "t103": 9, "paci": 9, "micro": [9, 10, 30], "licens": [9, 13, 22, 30, 32, 37, 38, 39], "obermei": 9, "licenc": 9, "pcm": 9, "abbmak": 9, "afs670": 9, "560d": 9, "560a": 9, "unifi": [9, 13, 21, 29, 30, 31], "til": 9, "dsagil": 9, "qtester": 9, "winpp104": 9, "night": [9, 24], "dragon": 9, "7sj63": 9, "siem": [9, 29], "7ut63": 9, "7sd61": 9, "7sj64": 9, "670": 9, "ruggedcom": 9, "rsg": 9, "2100": [9, 36, 39], "fenc": 9, "csc": 9, "326": 9, "easun": 9, "33kv": 9, "agil": [9, 31], "alstom": [9, 10], "p743": 9, "551": 9, "coupl": [9, 31], "reacter": 9, "surg": 9, "arrestor": 9, "fox": [9, 17, 30], "g950": 9, "telecommun": 11, "conceptu": 11, "overlai": [11, 31], "bearer": 11, "wireless": [11, 14, 15, 18, 30, 37, 39], "transceiv": 11, "station": [10, 11, 18, 37, 39], "coverag": [11, 16], "voic": 11, "radio": [10, 11], "subsystem": [11, 18, 30, 31, 33], "wider": [11, 33], "telephoni": 11, "gsm": 11, "handov": 11, "corner": [11, 18], "pstn": 11, "uplink": 11, "downlink": 11, "broadband": [11, 18], "ra": [11, 18, 37, 39], "bbra": 11, "multiplex": [11, 15], "dslam": 11, "isp": 11, "radiu": 11, "aaa": [11, 22], "qo": [11, 31, 37, 39], "fixedaaa": 11, "mobileaaa": 11, "offload": 11, "seamlessli": [11, 20], "2g": 11, "wifi": 11, "residenti": 11, "wirelin": 11, "tobroadband": 11, "retail": [11, 24], "wholesal": 11, "fttx": 11, "ugw": 11, "deep": [11, 22, 29, 33, 36, 37, 39], "packetlog": 11, "bgp": [11, 17, 31], "ldp": [11, 19], "authorit": [11, 20, 31], "adp": 11, "law": [10, 11, 32, 33], "agenc": [11, 29], "court": 11, "legal": [10, 11, 17, 32], "wiretap": 11, "govern": [10, 11, 24, 31, 32], "lig": 11, "lin": 11, "instant": 11, "bridg": [10, 11], "asynchron": [11, 15, 18, 30, 34, 39], "atm": 11, "pppoe": 11, "datagram": [10, 11, 18], "rfc": [11, 18, 29], "894": 11, "disadvantag": 11, "unsuit": 11, "dsl": 11, "roam": [11, 36, 39], "cdma": 11, "confer": [11, 17], "fax": [11, 18, 19], "prepaid": 11, "manufactur": [11, 15, 23, 24, 33, 36, 39], "anchor": 11, "plmn": 11, "imsi": 11, "msisdn": 11, "sim": 11, "card": [11, 15, 16, 17, 18, 30, 36, 37, 39], "sgsn": 11, "divert": 11, "smsc": 11, "smss": 11, "cipher": [11, 16, 37, 39], "exchang": [11, 15, 18, 19, 24, 29, 31, 32], "triplet": [11, 13], "clone": [11, 13, 17, 30, 31, 37, 39], "mss": [11, 17, 34, 39], "jurisdict": [11, 33], "pool": [11, 19, 20, 30, 31, 32, 33], "scp": [11, 36, 38], "imei": 11, "stolen": [11, 20], "toll": 11, "mmsc": 11, "handset": 11, "voicemail": 11, "pai": [11, 24, 31, 32, 36, 39], "eliteaaa": 11, "spr": 11, "transit": [11, 18, 30, 32, 33], "poi": 11, "agg": 11, "acc": [11, 20], "cpe": [11, 29], "bandwith": 11, "classif": [11, 33], "polic": 11, "larger": [11, 29, 32, 33, 36, 39], "ead": [11, 30], "latenc": [11, 17, 18, 19, 31], "mpl": [11, 33], "igw": 11, "grade": [11, 18, 29, 31, 33], "capact": 11, "bump": 11, "netboss": 11, "nm": [11, 30], "osix": 11, "polystar": 11, "analyi": 11, "drill": 11, "abnorm": [10, 11], "poor": [10, 11, 32, 33, 35, 39], "networ": 11, "tremend": 11, "retain": [11, 20, 23, 30, 31, 33], "roamer": 11, "revenu": [11, 24, 30], "leakg": 11, "competito": 11, "familar": 11, "roma": 11, "attract": [11, 33], "bein": 11, "hon": 11, "ntr7": 11, "tda": 11, "brg": 11, "border": [11, 17, 18, 32], "outreach": [11, 33], "relationship": [11, 13, 23, 24, 30, 31, 33], "empoewr": 11, "inbound": [11, 19, 22, 32, 35, 39], "outbound": [11, 19, 22, 33, 35, 39], "modal": 11, "messgin": 11, "vpmn": 11, "tariff": 11, "heldesk": 11, "theme": [11, 35, 37, 39], "winback": 11, "bon": 11, "voyag": 11, "mobileum": 11, "smpp": 11, "ss7": 11, "iom": 11, "stp": 11, "sctp": [11, 37, 39], "sca": 11, "internalt": 11, "dial": 11, "mistak": [10, 11, 30, 31, 33], "unfamilar": 11, "famillar": 11, "acccess": 11, "asuch": 11, "worldwid": [11, 31], "carer": 11, "taxi": 11, "hotel": 11, "vmcc": 11, "late": 11, "huawei": 11, "3900": 11, "smt": 11, "commis": 11, "lmt": 11, "umt": 11, "utran": 11, "mgw": 11, "btss": 11, "ten": [11, 31, 32], "hundr": [11, 22], "egbt": 11, "nodeb": 11, "enodeb": 11, "m2000": 11, "dhcp": [10, 11, 16, 17, 19, 30, 36, 37, 39], "mme": 11, "mbse": 11, "gw": 11, "pki": [11, 13], "cascad": 11, "ntp": [11, 13, 34, 39], "ggsn": 11, "aoip": 11, "iup": 11, "iuc": 11, "iur": 11, "iub_up": 11, "iub_cp": 11, "postilion": 11, "realtim": 11, "intial": [12, 35, 39], "uma": [12, 13], "kubernet": [12, 33], "realm": [12, 18], "projectnam": 12, "feder": [12, 13, 15], "freeipa": 12, "req": [12, 15], "metric": [12, 18, 24, 31, 33], "ingress": [12, 22, 31], "certmanag": [12, 13], "configurecertmanag": 12, "annot": 12, "acm": [12, 20], "vault": [12, 19], "ca": [12, 13, 18, 37, 39], "kubectl": 12, "ca_cert": 12, "pem": [12, 37, 39], "provider_openid_connect": 12, "sso": [12, 20], "oidc": 12, "omniauth": 12, "openid": [12, 32], "appconfig": 12, "blockautocreatedus": 12, "allowsinglesignon": 12, "openid_connect": 12, "saml": [12, 18], "runner": 12, "devop": [12, 32, 33], "helm": [12, 31], "jupyter_values_default": 12, "influxdb_values_default": 12, "authenci": 12, "pod": [12, 13, 31], "egress": [10, 12, 22, 31], "institut": [12, 18, 32, 33], "bitnami": 12, "bucket": [12, 30, 31], "certnam": [12, 13], "influxdb_values_custom": 12, "artifacthub": 12, "oauth": [12, 32], "grafana_values_default": 12, "grafana_values_custom": 12, "your_release_nam": 12, "your_namespac": 12, "2022": 12, "52360103": 12, "utc": [12, 18, 20, 23, 36, 39], "argo": [12, 31], "uninstal": [12, 13, 19, 22], "cloudcor": 12, "511111318": 12, "37972376": 12, "jupyt": 12, "245425793": 12, "unintal": 12, "urban": 13, "provisin": 13, "citizen": [13, 32, 33], "recognit": 13, "anpr": 13, "air": [13, 15, 31, 32], "influxdb": 13, "gcp": [13, 31], "kvm": 13, "hostnamectl": [13, 14], "xxxxx": [13, 14, 19, 37, 39], "bolt": 13, "puppetlab": 13, "puppet6": [13, 14], "buster": [13, 14], "cent": 13, "el": [13, 36, 39], "noarch": 13, "ivh": [13, 30], "rm": [13, 30, 35, 36, 38, 39], "bullsey": 13, "puppet7": 13, "nuc1": 13, "fedora": [13, 18], "cephserver1": 13, "k3sserver": 13, "k3sworker1": 13, "k3sworker2": 13, "systemctl": 13, "djava": 13, "preferipv4stack": 13, "java_arg": 13, "xms2g": 13, "xmx2g": 13, "djrubi": 13, "logger": [13, 20], "jruby_util": 13, "jrubi": 13, "slf4jlogger": 13, "epel": 13, "augeasproviders_cor": 13, "os_harden": 13, "docker": [13, 29, 35], "kmod": 13, "conf_fil": 13, "sing": 13, "cert1": 13, "cert2": 13, "pain": [13, 24, 30, 35, 39], "probab": 13, "patienc": 13, "workshop": 13, "dl1": 13, "dnf": [13, 31], "distro": [13, 30], "avahi": [13, 18], "daemon": [13, 18, 30, 31, 35, 38, 39], "difficult": [13, 17, 24, 30, 31, 32, 33, 35, 39], "ipa_serv": 13, "ipa_rol": 13, "ipa_server_fqdn": 13, "ipa_master_fqdn": 13, "puppet_admin_password": 13, "puppet_admin": 13, "directory_services_password": 13, "directory_servic": 13, "install_ipa_serv": 13, "ip_address": [13, 18], "enable_ip_address": 13, "enable_hostnam": 13, "manage_host_entri": 13, "install_epel": 13, "idstart": 13, "60001": 13, "bgstack15": 13, "wordpress": [13, 18, 37], "unattend": [13, 30], "domainjoin": 13, "thisisdapassword": 13, "ipaus": 13, "ideal": [13, 17, 18, 22, 24, 29, 32], "containerd": 13, "hiera": 13, "container_runtim": 13, "cri_containerd": 13, "cni_provid": 13, "flannel": [13, 31], "etcd_initial_clust": 13, "etcd_ip": 13, "kube_api_advertise_address": 13, "install_dashboard": 13, "kubetool": 13, "module_vers": 13, "changelog": [13, 32, 37], "md": [13, 32], "metadata": [10, 13, 17, 30, 31, 33, 38, 39], "provis": [13, 29, 33], "codeown": 13, "readm": [13, 20, 30, 32, 35, 39], "etcd": 13, "couldn": 13, "kubernetes_serv": 13, "ttl_durat": 13, "ipa_cli": 13, "finish": [13, 20, 30, 34, 39], "cluster_rol": 13, "kubeadm_init": 13, "regular": [10, 13, 16, 18, 19, 33, 38, 39], "kube": [13, 31], "cp": [13, 35, 37, 38, 39], "chown": [13, 18, 30, 37, 38], "kubeconfig": 13, "podnetwork": 13, "addon": 13, "202": [13, 18, 30], "6443": 13, "b6008d": 13, "201b8248ebf062ec": 13, "sha256": [13, 18, 30, 35, 37, 39], "6a6c8d9d2a5ba871a04c2556d7453b7f2b2aef8579abde201233fa93512ccc0b": 13, "k8sworker1": 13, "k8sworker2": 13, "cephserver2": 13, "cephserver3": 13, "cidr": [13, 17, 19, 34, 39], "244": 13, "ark": 13, "helm3": 13, "jetstack": 13, "installcrd": 13, "ipaddresspool": 13, "l2advertis": 13, "auth_en": 13, "proxy_en": 13, "auth_listen_addr": 13, "proxy_web_listen_addr": 13, "auth_service_token": 13, "pnvnrtiupuiegwgr0vz5lnoxuanbgigjsezaiajo3afkwvhciedllwkoscbxwffyqisotz5kfhwnudznpsztz0kzjkiuuohmgkhlz": 13, "keadm": 13, "vaultproject": 13, "banzai": 13, "revok": 13, "cephserv": 13, "firewalld": 13, "lvm2": 13, "quickstart": 13, "gb": [13, 20, 31], "hdd": [10, 13, 31], "qemu": [13, 15, 31], "10g": [13, 18], "cephdisk2": 13, "1024k": 13, "10600": 13, "libvirt": [13, 31], "virsh": [13, 31], "domain_nam": [13, 17, 19], "disk_loc": 13, "where_to_plac": 13, "ceph_server1": 13, "ceph_disk": 13, "vdb": 13, "storageclass": [13, 31], "struggl": 13, "teardown": [13, 18], "9179": 13, "discours": 13, "8999": 13, "0003": 13, "ssldir": 13, "del": [13, 19, 30], "updatedn": 13, "sshfp": 13, "obsolet": [13, 18, 32], "sck": [13, 15], "8140": 13, "allow_anonym": 13, "acl_fil": 13, "password_fil": 13, "passwd": [13, 18, 22, 35, 37, 38], "9gilxjmnelkyoe61": 13, "7nxexwa0uitw2qbk6fklk": 13, "2uf2ndm": 13, "pltpodkcv9ggvckzyertd2k0wkfnzmvcpfwznxn7hjc8": 13, "bj4czox4bq": 13, "rhel": [13, 30, 35, 39], "hat": [13, 18, 22, 29, 31, 32, 33], "administ": [13, 20, 30], "IT": [13, 19, 20, 22, 29, 30, 32, 34, 37, 39], "repeatedli": [13, 18, 30, 32], "boost": [13, 31], "mix": [13, 24, 30, 31, 33], "forest": [13, 20, 32], "krb5kdc": 13, "kadmin": 13, "ldap": [13, 17, 19], "dirsrv": 13, "ntpd": [13, 30], "varianc": 13, "httpd": [13, 30, 35, 39], "samba": [13, 17, 19, 37, 39], "winbind": 13, "cif": [13, 19, 20, 29, 30], "otp": 13, "otpd": 13, "custodia": 13, "opendnssec": 13, "dnskeysyncd": 13, "dnssec": 13, "certmong": 13, "renew": 13, "first_nam": 13, "last_nam": 13, "default_login": 13, "custom_login": 13, "mod": [13, 15, 18], "sshpubkei": 13, "aaaab3nza": 13, "snc5dv": 13, "id_rsa": [13, 18, 35, 36, 38, 39], "pub": [13, 18, 30, 35, 38, 39], "id_rsa2": 13, "user_login": 13, "new_titl": 13, "unenrol": 13, "webserv": [13, 18, 29, 35, 37, 38, 39], "princip": [13, 18, 19, 20], "keytab": 13, "symmetr": 13, "resembl": [13, 18], "extent": [13, 30, 33], "destroi": [13, 38, 39], "known_host": 13, "rapidli": [13, 20, 31, 32], "univers": [13, 15, 30, 31, 33, 35, 39], "worri": [13, 31], "characterist": [10, 13, 15, 30, 31, 32, 33], "sss": 13, "pubconf": 13, "sss_authorized_kei": 13, "whom": [13, 32, 33, 36, 39], "curl": [13, 17, 18, 32, 38], "sfl": 13, "k3s_token": 13, "k3s_url": 13, "k10905620f642071f1f6dbbd34b381f9e3e89494380fbee8b84fec80e6df5d82d56": 13, "0983a29cb2faaed59fa466afc5e04deb": 13, "marketplac": [13, 31], "unreach": 13, "faa": [13, 31], "cli": [13, 17, 18, 19, 22, 31], "kubescap": 13, "datre": 13, "nfd": 13, "operatorhub": 13, "tmux": 13, "jq": 13, "pi": 13, "hole": [13, 15, 22, 30, 35, 36, 37], "pihol": 13, "scalabl": [13, 29, 31], "autosc": [13, 31], "gitlab": [13, 31, 32], "vi": [14, 37], "raspbian": 14, "k3": 14, "cgroupscan": 14, "cgroup_memori": 14, "cgroup_en": 14, "cmdline": [14, 30, 35, 39], "serial0": 14, "tty1": [14, 18], "partuuid": 14, "58b06195": 14, "rootfstyp": 14, "ext4": [14, 30], "deadlin": 14, "fsck": [14, 30], "rootwait": 14, "enp0s25": 14, "wlp3s0": 14, "wlan0": [14, 30, 31, 34, 39], "netplan": 14, "sudoedit": 14, "stanza": 14, "ssid": [14, 29, 30], "dhcp4": 14, "datasourc": [14, 19], "cfg": [14, 30], "eth0": [10, 14, 30, 31, 34, 36, 39], "bellow": 14, "went": 14, "adapt": [14, 15, 16, 18, 19, 20, 30, 35, 39], "repo": [14, 30, 31], "focal": 14, "puppetserv": 14, "foreman": 14, "flaw": [15, 18, 30, 32, 37, 39], "3rd": [10, 15, 30], "sdk": [15, 18, 31], "improp": 15, "man": [15, 17, 18, 19, 35, 36, 39], "jam": 15, "chip": [15, 30], "ota": 15, "vector": [15, 29, 30, 36, 39], "categori": [10, 15, 17, 18, 22, 31, 32, 33], "owasp": [15, 29, 32], "major": [15, 17, 22, 29, 30, 31, 32, 33, 34, 36, 39], "sdr": 15, "bluetooth": 15, "energi": [10, 15], "lack": [10, 15, 24, 33], "preprietari": 15, "categor": [10, 15, 22, 24, 30], "fccid": 15, "fcc": 15, "emit": [15, 30], "sd": [15, 17, 18, 19, 22, 31, 38, 39], "rebrand": 15, "datasheets360": 15, "alldatasheet": 15, "datasheet": [15, 22], "dil": 15, "TO": [10, 15, 18, 35, 38, 39], "smd": 15, "cerpack": 15, "bga": 15, "sot": 15, "qfp": 15, "soic": 15, "sop": 15, "standpoint": [15, 32], "unauthent": [15, 18, 38, 39], "bootload": [15, 30], "pci": [15, 22, 30], "hdmi": 15, "8n1": 15, "salea": 15, "atmel": 15, "microcontrol": 15, "at89s52": 15, "atmega328": 15, "gpio": 15, "mutual": [15, 33], "38400": [15, 35, 39], "19200": 15, "57600": 15, "craig": 15, "heffner": 15, "devttys0": 15, "tx": [15, 31], "rx": [15, 31, 35, 39], "gnd": 15, "vcc": 15, "3v": 15, "5v": 15, "meter": [10, 15], "bootup": 15, "minicom": 15, "connector": [15, 18, 19], "sda": [15, 30], "scl": 15, "duplex": 15, "meant": [15, 30, 31], "pull": [15, 19, 20, 22, 26, 30, 31, 33, 40], "electr": [10, 15, 17, 40], "miso": 15, "mosi": 15, "wp": [15, 20, 35, 37, 39], "suspend": [15, 30], "amongst": 15, "imped": 15, "slow": [10, 15, 17, 30, 32], "thte": 15, "strech": 15, "happend": 15, "inhibit": 15, "underwayon": 15, "i2ceeprom": 15, "libmpss": 15, "pcb": 15, "implementatiion": 15, "mhz": [15, 36, 39], "fastest": [15, 19], "significatnt": 15, "msb": 15, "spiflash": 15, "diagos": 15, "tck": 15, "tdi": 15, "tdo": 15, "tm": 15, "trst": 15, "fsm": 15, "finit": [15, 30], "proce": [15, 30, 37, 39], "deactiva": 15, "149": 15, "availalb": 15, "flip": 15, "flop": 15, "resistor": 15, "chi": 15, "bsr": 15, "extest": 15, "circuitri": 15, "tester": [15, 17, 19, 21, 32], "unconnect": 15, "stack": [10, 15, 19, 29, 30, 34, 35, 39], "jtagul": 15, "thin": [15, 32, 33], "solder": 15, "ardunio": 15, "jtagenum": 15, "ft232rl": 15, "wil": 15, "lbe": 15, "cyphunk": 15, "opensourc": [15, 29, 31, 40], "multiarch": 15, "pirat": 15, "segger": 15, "attifi": 15, "badg": [15, 32], "write_imag": 15, "0x08000000": 15, "dump_imag": 15, "starting_point": 15, "0x0001000": 15, "mdw": 15, "volatil": [10, 15, 20], "cramf": 15, "jffs2": [15, 30], "yaffs2": 15, "ext2": [15, 30, 38, 39], "lzma": 15, "zlib": 15, "arj": 15, "binwalk": 15, "entropi": [15, 30, 32], "flat": [10, 15], "intermediari": 15, "adit": 15, "spawn": [15, 31], "ae": [15, 19, 32, 37, 39], "recur": [15, 32], "decryptxor": 15, "mip": [10, 15], "powerpc": [10, 15], "nvram": 15, "interceptor": 15, "firmadyn": 15, "kit": [15, 22], "osandamalith": 15, "buildroot": 15, "firmwalk": 15, "publicili": 15, "kdiff3": 15, "meld": 15, "sofwar": 15, "gnuradio": 15, "gqrx": 15, "rtl": 15, "cheapest": 15, "sniff": [15, 16, 18, 34, 39], "carrier": [15, 29, 31], "ghz": 15, "reciev": 15, "reciv": 15, "nois": [15, 17, 30], "reduct": 15, "baseband": 15, "throught": [10, 15], "amplitud": 15, "ssb": 15, "dsb": 15, "psk": [15, 16, 30], "qam": 15, "terminologi": [10, 15, 32], "adc": 15, "fft": 15, "wavelength": 15, "antenna": 15, "wx": 15, "sikn": 15, "rtl_sdr": 15, "rtl_433": 15, "43392000": 15, "rc": [15, 18, 35, 39], "resend": 15, "ook": 15, "hackrf_info": 15, "hackrf_transf": 15, "topologi": [10, 15, 31, 37, 39], "congest": 15, "killerbe": 15, "rzraven": 15, "mote": 15, "moteiv": 15, "tmote": 15, "sky": 15, "telosb": 15, "sewino": 15, "zbid": 15, "zbstumbler": 15, "zbdump": 15, "zbwireshark": 15, "gatt": 15, "att": [15, 20], "gap": [15, 31], "justwork": 15, "comparison": [15, 19, 24, 32, 33, 38, 39], "passkei": 15, "gatttool": 15, "hciconfig": 15, "hcitool": 15, "lescan": 15, "target_devic": 15, "hnd": 15, "0x000c": 15, "specifii": 15, "0x0021": 15, "0x0032": 15, "0x003a": 15, "ubertooth": 15, "adafruit": 15, "btle": 15, "scan_req": 15, "scan_r": 15, "btlejuic": 15, "penetr": [16, 17, 19, 20, 21, 22, 26, 37, 39, 40], "girish": 16, "nemad": 16, "offsec": 16, "netgear": [16, 18], "wn111v2": 16, "alfa": 16, "awus036h": 16, "500mw": 16, "airmon": 16, "airodump": 16, "essid": 16, "bssid": 16, "opn": 16, "wpa1": 16, "wpa2": [16, 17, 29], "appropi": [16, 18], "csv": [16, 17, 18, 19, 22], "92": 16, "ifconfig": [10, 16, 31, 35, 37, 39], "wlan4": 16, "hw": 16, "ether": [16, 31, 37, 39], "macchang": 16, "netmask": [10, 16, 17, 30, 31], "iwconfig": 16, "essid_nam": 16, "ssid_mac_address": 16, "abbrev": [16, 30], "tkip": 16, "tempor": 16, "ccmp": 16, "cbc": [16, 18, 37, 39], "mgt": 16, "ska": 16, "telecom": 17, "moreov": [17, 37, 39], "shout": [17, 34, 39], "bonsaivik": 17, "recrudesc": 17, "rajesh": 17, "tanoi": [17, 18, 19, 20, 28], "subdomain": [17, 18, 34, 35, 39], "addition": [17, 31, 34, 39], "breach": 17, "pose": [10, 17, 29], "employe": [10, 17, 18, 20, 24, 29, 30, 32, 33, 35, 39], "room": [10, 17, 20], "lai": 17, "hub": [17, 22, 31], "guest": [17, 18, 19, 20, 30, 31, 35, 36, 39], "segreg": 17, "mdn": 17, "rogu": [17, 29, 38, 39], "ntlmv2": 17, "lmv2": 17, "ntlmssp": 17, "wpad": 17, "nas001": 17, "mistakenli": 17, "nas01": 17, "anyon": [10, 17, 18, 30, 31, 32, 33, 36, 38, 39, 40], "seiz": 17, "opportun": [10, 17, 24, 31, 32, 38, 39], "ntmlv2": 17, "notsosecur": 17, "pwning": [17, 18], "nbn": 17, "spoofer": 17, "teamer": 17, "elobor": 17, "ntd": [17, 18, 19, 20], "dit": [17, 19, 20], "aad3b435b51404eeaad3b435b51404e": [17, 19, 20], "e19ccf75ee54e06b06a5907af13cef42": 17, "lm": 17, "vista": [17, 19, 20], "n46isnekpt": 17, "08ca45b7d7ea58e": 17, "88dcbe4446168966a153a0064958dac6": 17, "5c7830315c7830310000000000000b45c67103d07d7b95acd12ffa11230e0000000052920b85f78d013c31cdb3b92f5d765c783030": 17, "foothold": 17, "demystifi": [17, 33], "pwnage": 17, "harvestor": 17, "linkedin": [17, 20], "foca": 17, "assigne": 17, "autonom": 17, "registrar": 17, "disclaim": [17, 24], "inurl": [17, 38, 39], "finfish": 17, "skim": 17, "pastebin": 17, "cmru": 17, "cymru": [17, 22], "216": 17, "bulk": 17, "hurrican": 17, "bgptoolkit": 17, "unconfus": 17, "bing_domain_web": 17, "bing": [17, 38, 39], "google_site_web": 17, "brute_host": 17, "jason": [17, 20], "haddix": 17, "workspac": [17, 18], "shodan": [10, 17], "theharvest": 17, "googlecs": 17, "bingapi": 17, "pgp": 17, "people123": 17, "jigsaw": 17, "twitter": [17, 26], "googleplu": 17, "tld": 17, "discov": [10, 17, 20, 29, 30, 31, 32, 33], "hackertarget": 17, "hostsearch": 17, "dnslookup": 17, "suffix": [17, 18, 19, 30], "allinurl": 17, "faq": [17, 20], "allintitl": 17, "intitl": 17, "mcafe": [10, 17], "digger": 17, "proprietari": [10, 17, 18, 24, 34, 39], "nugget": 17, "searchdiggityv3": 17, "bishop": 17, "diggiti": 17, "googledigg": 17, "bingdigg": 17, "linkfromdomaindigg": 17, "codesearchdigg": 17, "dlpdiggiti": 17, "flashdigg": 17, "malwaredigg": 17, "portscandigg": 17, "shodandigg": 17, "bingbinarymalwaresearch": 17, "notinmybackyard": 17, "exfiltr": [17, 20, 32], "censu": 17, "scrape": [17, 18], "netblock": 17, "204": 17, "79": [17, 36, 39], "censi": 17, "scientist": 17, "engag": [17, 18, 20, 22, 29, 33], "reverseip": 17, "wildcard": [17, 19, 30, 35], "analyst": [10, 17, 29], "nse": [17, 24], "ist": [17, 18, 19], "xxxxxxindian": 17, "xxxxxindian": 17, "optional_name_serv": [17, 34, 39], "soa": [17, 18, 34, 39], "zonetransf": [17, 18], "nsztm1": [17, 18], "digi": [17, 18], "ninja": [17, 18], "nsztm2": [17, 18], "badli": 17, "axfr": [17, 18], "nameserv": [17, 18], "mailserv": 17, "name_serv": 17, "_servic": [17, 18], "_proto": 17, "ttl": [17, 18], "_sip": [17, 18], "_tl": 17, "querytyp": 17, "teamspeak": 17, "consider": [17, 30, 31], "minecraft": 17, "_minecraft": 17, "_tcp": [17, 18], "caldav": 17, "carddav": 17, "puppet": [17, 29], "sip": [17, 18, 37, 39], "xmpp": [17, 18], "libravatar": 17, "avatar": 17, "lync": [17, 18], "citrix": [17, 18], "checkout": [17, 30, 37, 39], "brute_srv": 17, "familiar": [17, 31, 37, 39], "million": [17, 36, 39], "watch": [10, 17, 18, 20, 30, 31, 33, 37, 39], "depart": [10, 17, 29, 32], "spot": [17, 29], "exposur": [17, 29], "sl": [17, 34, 39], "server1": [17, 30], "server2": 17, "156": [17, 34, 39], "cet": 17, "scanm": [17, 18, 34, 39], "443": [17, 34, 35, 39], "slash": [17, 30, 35, 39], "292054": 17, "361100": 17, "oui": [10, 17, 37, 39], "behaviour": [10, 17, 32, 33], "tcpdump": [17, 30, 31, 34], "742180": 17, "45066": 17, "742222": 17, "59246": 17, "3994420539": 17, "1460": [17, 34, 39], "742234": 17, "742241": 17, "38635": 17, "801243": 17, "801930": 17, "3994420540": 17, "805083": 17, "805930": 17, "731": 17, "xmit": 17, "073": 17, "burden": 17, "768525": 17, "39366": 17, "826098": 17, "snort": 17, "469": [17, 38, 39], "evas": [17, 37, 39], "31339": 17, "10042": 17, "gonna": [17, 35, 39], "accuraci": [17, 31], "nping": 17, "die": 17, "twice": [17, 18, 35, 39], "portscan": [10, 17, 18, 34, 39], "stealth": [17, 18], "p0f": 17, "irc": [17, 33], "og": [10, 17, 30, 34, 39], "ox": [10, 17, 30, 34, 35, 39], "scaninfo": 17, "8000": [17, 23, 35, 36, 38, 39], "8005": 17, "111": [17, 34, 35, 36, 39], "161": 17, "wild": [17, 36, 37, 39], "nine": 17, "591": [17, 37, 39], "593": 17, "8008": 17, "8443": [17, 20], "vvn": [17, 34, 39], "startport": [17, 34, 39], "endport": [17, 34, 39], "psnmap": [17, 34, 39], "sv": [10, 17, 18, 19, 34, 35, 39], "rariti": 17, "pertain": 17, "alia": 17, "liblua": 17, "ip_address_rang": 17, "rtt": 17, "retri": [10, 17, 18, 31], "t0": 17, "t1": 17, "t2": 17, "t3": 17, "t4": [17, 18], "t5": 17, "lua": 17, "harder": [17, 30, 32, 33, 35, 39], "accident": [17, 30], "thoroughli": [17, 32], "userag": 17, "oN": [10, 17, 34, 39], "ript": 17, "kiddi3": 17, "grepabl": [10, 17], "oa": [10, 17, 24], "basenam": [17, 38, 39], "abort": [17, 18, 19, 30], "gnmap": 17, "rn": [10, 17, 30], "xmlstarlet": 17, "sel": 17, "ancestor": 17, "portid": 17, "wkhtml2imag": 17, "httpscreenshot": 17, "breenmachin": 17, "thorough": [10, 17, 31], "oppos": [17, 36, 39], "eyewit": 17, "chri": [17, 18], "truncer": 17, "html2imag": 17, "markup": [17, 21, 30], "rawr": 17, "rapid": [17, 29, 31, 32, 33], "eleg": 17, "searchabl": [17, 33], "jqueri": [17, 35, 39], "landscap": [17, 30], "webappl": 17, "nessu": [17, 18], "openva": 17, "whatweb": 17, "recognis": 17, "cm": [17, 31, 35, 39], "analyt": [17, 19, 29, 31, 35, 37, 39], "tellmeweb": 17, "wapplyz": 17, "w3tech": 17, "crawl": [17, 35, 39], "x1": 17, "x2": 17, "chromesnifferplu": 17, "builtwith": 17, "139": [17, 18, 34, 37, 39], "445": [17, 19, 36, 38, 39], "137": [17, 34, 39], "ran": 17, "prerequis": 17, "enum": 17, "smbclient": [17, 19, 37, 38, 39], "rpclient": [17, 37, 39], "nmblookup": [17, 19], "snmpcheck": 17, "snmpwalk": [17, 37, 39], "onesixtyon": 17, "consolid": 17, "osint": 17, "collabor": [17, 21, 26, 29, 31], "offens": [17, 20, 33, 37, 39], "freeli": [17, 33, 37, 39], "demo": [17, 18, 19, 37, 39], "disclosur": [17, 33, 35, 39], "richard": 17, "cruz": 17, "mod_statu": 17, "campaign": 17, "yai": 18, "fu": [18, 20], "msfconsol": [18, 35, 38, 39], "quietli": [18, 32], "engagement_nam": 18, "db_import": 18, "project_loc": 18, "site_10": 18, "0_": 18, "nmap_scan": 18, "port_scan": 18, "tcpwrap": 18, "landesk": 18, "ipmi": 18, "ftpinfo": 18, "alfresco": 18, "ftpd": [18, 30], "freebsd": [18, 22, 30, 33], "00l": 18, "jetdirect": 18, "laserjet": 18, "p4014": 18, "konica": 18, "minolta": 18, "bizhub": 18, "nation": [18, 24, 32, 33], "labview": 18, "netbsd": 18, "lukemftpd": 18, "nortel": 18, "ces1010": 18, "oftpd": 18, "openbsd": [18, 30], "packetshap": 18, "proftpd": 18, "ricoh": 18, "aficio": 18, "mp": 18, "2352": 18, "4002": 18, "w3600": 18, "3500sf": 18, "75905e": 18, "vsftpd": 18, "mit": [18, 33], "auxiliari": [18, 19, 23, 35, 38, 39], "ftp_version": 18, "bdl095xxxx": 18, "x0d": 18, "pscn": 18, "feb": [18, 19, 30], "cst": 18, "ftp_login": 18, "ftpbounc": 18, "018": 18, "_drwxr": 18, "xr": [18, 30, 36, 38, 39], "ssh_version": 18, "openssh_5": 18, "famili": [10, 18, 19, 31, 32, 35, 36, 37, 39], "openssh": [18, 30, 35, 39], "9nrol": 18, "cisco": [10, 18, 29, 32], "certainti": 18, "auxilari": 18, "caution": 18, "ssh_login": 18, "kex_algorithm": 18, "diffi": [18, 32], "hellman": [18, 32], "group14": 18, "group1": 18, "server_host_key_algorithm": 18, "encryption_algorithm": 18, "ctr": 18, "aes192": 18, "blowfish": 18, "3de": 18, "mac_algorithm": 18, "hmac": [18, 20], "compression_algorithm": 18, "ssh_hostkei": 18, "019": 18, "aaaab3nzac1kc3maaacbaoohto8bessafi78mctp7vz1etkdsxnj8wgrymd": 18, "doedpdfmeqyjofpuwiyk0hrkyrp7uyodp9secrozem98idugvpzffsrhkpdtktqtt9": 18, "9mzdpfhgqryd04o2jvjzc6hlmwztoulurzwgt0": 18, "npep8asb32lrcgakfppa7r3ndfaaaafqdypzdnhttgci": 18, "vqnude": 18, "rlnfxx0waaaiaxbbnv": 18, "p1ryzgdgm": 18, "jx2tbm6gjvc4wnoq7okdh1zh2rxn1plu": 18, "ott189zi5ucr67x504o5fxvz0pj3yjh6ymqffsw89isbtgmm6v1wynq": 18, "s1lz83xvghiepv0odoj2he4tcyts6md0udlsio6rlwtvg": 18, "8vfrwb": 18, "c2kol36jiiabgaaaiautoqm2": 18, "lvnqisuzt": 18, "dodbz5h89dcblyl0uniprgw3xgjszrw": 18, "iyvn": 18, "fq1lz0vai1db3upbknvhqnhoijtayclyqg1btjvbcv2yvg9p91ljyl6avsuopedg7h46e90tpnefa0trf": 18, "v3rbc4kbxhrelghy": 18, "2zukaebomsrt2h4sq": 18, "aaaab3nzac1yc2eaaaadaqabaaabaqdirocxkgi0l3kzevneplmxbbdj4wyapfzngf63": 18, "rmn5dsyz4amvw1v8o": 18, "gsal3mcemwrdmfpcvlddfprdbzhyxnig2vstc": 18, "gbeohydaluqjvmf": 18, "m8yw9gwr7dooa9zufrkyvrqt53bfyzspiulzpabnky0x5ma40ao56sq4h1nnqb7zbdcwmder3vebq": 18, "6r9z": 18, "xsy0ji5csr52bil2bka36kfyx325rrup": 18, "lwdudwk": 18, "hq8jl9ejp884upflrjpqdxowlk001exsphmczofnceb2tqsktbjvih5qg55eel2d0f": 18, "yze24b6salaanszht9myg6q5dnbtwvv2ixv": 18, "134": [18, 38, 39], "042": 18, "_sshv1": 18, "telnet_vers": 18, "ttyp0": 18, "x0alogin": 18, "x0ausernam": 18, "sad": 18, "overwrit": [18, 20, 30, 32, 36, 38, 39], "3com": [18, 29], "aruba": 18, "telnetd": 18, "dell": 18, "powerconnect": 18, "pirelli": 18, "netgat": 18, "voip": [18, 37, 39], "telnet_login": 18, "xxxx": [18, 19, 30], "esmtp": 18, "3790": 18, "4675": 18, "0530": [18, 19], "smtpsrv": 18, "sendmail": 18, "smtp_relai": 18, "mailfrom": 18, "mailto": [18, 37, 39], "rcpt": [18, 35, 38, 39], "vrfy": [18, 35, 38, 39], "expn": 18, "alias": [18, 19, 30], "unixonli": 18, "smtp_enum": [18, 35, 39], "ftpsrv": 18, "autoipd": 18, "gdm": [18, 30], "gopher": 18, "haldaemon": 18, "halt": [18, 30], "lp": [18, 30], "nobodi": [18, 30, 36, 39], "postgr": [18, 29], "postmast": 18, "sshd": [18, 30], "uucp": [18, 30], "webmast": 18, "cram": 18, "ehlo": [18, 38, 39], "predefin": [10, 18, 30], "il": [10, 18], "email_serv": 18, "00039": 18, "relaytest": 18, "antispam": 18, "sysmailsrv": 18, "atrn": 18, "bdat": 18, "burl": 18, "helo": 18, "etrn": 18, "mydomain": [18, 20], "noop": [18, 31], "onex": 18, "yourdomain": 18, "rset": 18, "soml": 18, "starttl": 18, "submitt": 18, "danni": 18, "dolittl": 18, "sarah": 18, "mime": [18, 30], "dns_bruteforc": 18, "autodiscov": 18, "b2b": 18, "dns_info": 18, "184": 18, "2606": 18, "2800": 18, "248": 18, "1893": 18, "25c8": 18, "1946": 18, "iana": 18, "199": 18, "icann": 18, "ff9b": 18, "c704": 18, "1c1a": 18, "spf1": 18, "4415": 18, "23z": 18, "dns_reverse_lookup": 18, "dns_srv_enum": 18, "sipf": 18, "sipfederationtl": 18, "5061": 18, "_sipfederationtl": 18, "2a01": 18, "enum_dn": 18, "aspmx": 18, "aspmx3": 18, "googlemail": 18, "alt1": 18, "aspmx5": 18, "aspmx2": 18, "aspmx4": 18, "alt2": 18, "05t22": 18, "834590": 18, "15019": 18, "490698": 18, "undefin": [18, 30], "nil": 18, "nilclass": 18, "047468": 18, "167": 18, "047746": 18, "fatal": [18, 30], "269318": 18, "804121": 18, "481319": 18, "481519": 18, "5060": 18, "dns_amp": 18, "isc": [18, 37, 39], "99x": 18, "417": 18, "22x": 18, "43x": 18, "norecurs": 18, "dns_cache_scrap": 18, "dnl": 18, "geo": 18, "kasperski": 18, "downloads2": 18, "liveupd": 18, "symantecliveupd": 18, "symantec": 18, "nai": 18, "guru": 18, "avg": 18, "fe80": [18, 19, 31], "3e97": 18, "eff": 18, "fe9a": 18, "51b": 18, "udisk": 18, "teamview": 18, "dyngateid": 18, "164005815": 18, "crzebhh5rkziebsp": 18, "uuid": [18, 30, 36, 38, 39], "119e36d8": 18, "4366": 18, "4495": 18, "9e13": 18, "c44be02851f0": 18, "69ab": 18, "44d5": 18, "e21d": 18, "738e": 18, "surpris": 18, "spam": 18, "msf": [18, 20, 23, 38], "pn": [18, 34, 37, 39], "05": [18, 19, 30, 34, 39], "7432": 18, "4fd0": 18, "mx1": 18, "cbc7": 18, "2989": 18, "404b": 18, "42e6": 18, "2911": 18, "29a7": 18, "4fe7": 18, "4ebb": 18, "4e56": 18, "4ec9": 18, "4e18": 18, "ns5": 18, "xxxxxx": [18, 19, 36, 39], "co": [18, 30], "067": 18, "facebook": [18, 20], "yahoo": 18, "host3": 18, "tataidc": 18, "_updat": 18, "1912": 18, "aster": 18, "191": 18, "cabf": 18, "9a42": 18, "rdn": 18, "sifi": 18, "3600": [18, 23], "1209600": 18, "mname": 18, "ssu": 18, "097": 18, "3rc2": 18, "094": 18, "_dn": 18, "_udp": 18, "followup": 18, "5353": 18, "autodiscoveri": 18, "s2": 18, "a758": 18, "2a5e": 18, "996": 18, "robin": 18, "hinfo": 18, "casio": 18, "fx": 18, "700g": 18, "typ28j7jauha9fw2shxmgccc0i6xbmmovi04vlmewxa": 18, "157": 18, "177": 18, "arpa": 18, "asfdbauthdn": 18, "afsdb": 18, "asfdbbox": 18, "asfdbvolum": 18, "canberra": 18, "cmdexec": 18, "pippa": 18, "4567890": 18, "143": [18, 30], "228": 18, "deadbeef": 18, "dead": 18, "beaf": 18, "349044": 18, "642646": 18, "0m": 18, "dzc": 18, "abcdefg": [18, 19], "naptr": 18, "e2u": 18, "zonetransferm": 18, "intns1": 18, "intns2": 18, "ipv6actnow": 18, "67c": 18, "2e8": 18, "c100": 18, "1332": 18, "owa": 18, "207": [18, 31, 38, 39], "robinwood": 18, "rp": [18, 19], "sqli": [18, 37, 39], "sshock": 18, "shellshock": 18, "cname": 18, "sydneyoperahous": 18, "alltcpportsopen": 18, "174": 18, "xss": [18, 29, 32], "boo": 18, "_zonetransf": 18, "msrpc": 18, "8333": 18, "bitcoin": 18, "finger_us": 18, "nuucp": [18, 30], "noaccess": 18, "nobody4": 18, "svctag": 18, "citynam": 18, "graph": [18, 29, 30, 31], "newdelhi": 18, "meteogram": 18, "delhi": 18, "new_delhi": 18, "rain": [18, 29], "05_06_07_08_09_10_11_12_13_14_15_16_17_18": 18, "sw": [18, 34, 39], "nw": 18, "sunni": 18, "scatter": 18, "thunder": 18, "fog": 18, "sleet": 18, "snow": 18, "yr": 18, "norwegian": 18, "meteorolog": 18, "nrk": 18, "webadmin": 18, "agranat": 18, "emweb": 18, "allegro": 18, "rompag": 18, "allen": [10, 18], "bradlei": [10, 18], "1761": 18, "eniw": 18, "coyot": 18, "mod_perl": 18, "24_01": 18, "cento": [18, 29, 30], "win32": [18, 20], "mod_ssl": 18, "v5": [18, 34, 39], "audiocod": 18, "benq": 18, "projector": 18, "crestron": 18, "roomview": 18, "14rc19": 18, "busybox": [18, 31], "canon": 18, "pixma": 18, "ip4000r": 18, "ks_http": 18, "ngx": 18, "chippc": 18, "xen": [18, 31, 33], "xenserv": 18, "pro2": 18, "debut": 18, "brother": 18, "n2000": 18, "powervault": 18, "tl4000": 18, "embedthi": 18, "gembird": 18, "hawk": 18, "goahead": 18, "linksi": 18, "slm2024": 18, "srw2008": 18, "srw2016": 18, "realtek": 18, "8181": [18, 35, 39], "chipset": 18, "chaiso": 18, "deskjet": 18, "3050": 18, "j610": 18, "cn12e3937y05hx": 18, "1022n": 18, "p2014n": 18, "officejet": 18, "7610": 18, "cn5293m07x064n": 18, "procurv": 18, "1800": 18, "24g": 18, "jetti": 18, "pagescop": 18, "liaison": 18, "commerc": 18, "lighttpd": [18, 35, 39], "pap2": 18, "mathopd": 18, "5p6": 18, "mbedthi": 18, "appweb": 18, "httpapi": 18, "ssdp": 18, "upnp": 18, "asp": [18, 35, 37, 38, 39], "moxahttp": 18, "plc": [10, 18], "mod_plsql": 18, "mod_fastcgi": 18, "mod_oprocmgr": 18, "panason": 18, "wv": 18, "nf284": 18, "webcam": 18, "squid": [18, 29, 37, 39], "stable4": 18, "rapidlog": 18, "samsung": 18, "syncthru": 18, "m337x": 18, "387x": 18, "407x": 18, "zdfabjef600007w": 18, "uc": 18, "virata": 18, "ipp": 18, "8600": 18, "cm750a": 18, "cn314b3j9905sn": 18, "nrg": 18, "copier": 18, "gsoap": 18, "p2015": 18, "epson": 18, "stylu": 18, "nx230": 18, "wsman": [18, 19], "openwsman": 18, "edit_html_fileaccess": 18, "edit_html": 18, "file_disclosur": 18, "2006": [18, 30, 33], "webapp": [18, 35, 39], "webmin_show_cgi_exec": 18, "580": 18, "290": [18, 35, 39], "usermin": [18, 35, 39], "asynchpeopl": 18, "ci": [18, 29, 32, 33], "jenkins_enum": 18, "rhost": [18, 19, 22, 23, 30, 35, 39], "someexampl": 18, "rport": 18, "9000": [18, 35, 38, 39], "targeturi": 18, "195": 18, "newjob": 18, "systeminfo": 18, "jenkins_login": 18, "pass_fil": 18, "stop_on_success": 18, "123456": 18, "flower": 18, "playboi": 18, "groovi": 18, "jenkins_script_consol": 18, "handler": [18, 19, 20, 35, 38, 39], "245": [18, 35, 39], "4444": [18, 19, 34, 35, 36, 38, 39], "stager": [18, 19, 20], "1495599": 18, "meterpret": [18, 19, 20, 36, 37, 38], "44531": 18, "0200": [18, 20], "aaqyv": 18, "1840": 18, "tty": [18, 30, 36], "job": [10, 18, 19, 20, 22, 29, 31, 32, 33, 35, 36, 37, 38, 39], "sout": 18, "stringbuff": 18, "serr": 18, "consumeprocessoutput": 18, "waitfororkil": 18, "println": 18, "err": [18, 19], "empir": [18, 19, 35, 39], "launcher": [18, 19, 20, 31], "web_deliveri": [18, 19, 20], "leonjza": 18, "toi": 18, "powersploit": [18, 20, 35, 39], "proto": 18, "1311": 18, "8081": [18, 35, 37, 39], "tomcat_mgr_login": 18, "tomcat_mgr": 18, "qcc": 18, "qlogic66": 18, "war": [18, 35, 39], "tomcat_mgr_deploi": 18, "tomcat_mgr_upload": 18, "httppassword": 18, "httpusernam": 18, "undeploi": 18, "negoti": [18, 32, 38, 39], "vhost": 18, "aad": 18, "victim": [10, 18, 19, 20, 35, 36, 37, 38, 39], "rank": [18, 33, 38, 39], "shell_bind_tcp": 18, "inlin": [10, 18, 31, 37, 39], "shell_reverse_tcp": [18, 20], "bind_tcp": 18, "reverse_http": [18, 20, 35, 36, 39], "reverse_tcp": [18, 20, 35, 39], "meterepret": 18, "getsystem": 18, "laudanum": 18, "jbarcia": 18, "sysintern": [18, 37, 38, 39], "dd996900": 18, "lsass": 18, "famou": [10, 18], "mimikatz": [18, 20, 37, 39], "acceptula": 18, "ma": [18, 19, 20], "mydmp": 18, "vonloesch": 18, "filebrows": 18, "mg3100": 18, "mg5300": 18, "mg6100": 18, "mp495": 18, "mx340": 18, "mx870": 18, "mx890": 18, "mx920": 18, "canon_wireless": 18, "rvrsh3ll": 18, "lotus_domino_hash": 18, "collector": [10, 18, 29, 31], "lotus_domino_login": 18, "lotus_domino_vers": 18, "lotus_domino": 18, "notes_us": 18, "notes_pass": 18, "nadmin": 18, "notesadmin": 18, "geo1mdjkxxxxxxxxxxx": 18, "webdav": [18, 37, 39], "webdav_scann": 18, "newer": [10, 18, 30, 32, 33, 35, 39], "esx": 18, "esx_fingerprint": 18, "1623387": 18, "799733": 18, "vcenter": 18, "3339083": 18, "3073146": 18, "1065491": 18, "krb5kdc_err_c_principal_unknown": 18, "illicit": 18, "tgt": [18, 19, 20], "rep": 18, "krb5kdc_err_preauth_requir": 18, "xxxt": 18, "251": 18, "ecindxxxxx": 18, "vxxxxx": 18, "0015": 18, "pop3_vers": 18, "pop3_login": 18, "retr": 18, "dele": 18, "mailbox": 18, "nfsmount": 18, "iso": [18, 32, 33, 35, 37, 39], "datavolum": 18, "softshar": 18, "portmapp": 18, "741824": 18, "669": 18, "399929": 18, "631": [18, 30], "sssc": 18, "sssclog": 18, "20160413": 18, "2660": 18, "62cf9a": 18, "nfs_111": 18, "monkei": 18, "pentestmonkei": [18, 35, 39], "u2fsdgvkx19u": 18, "faos8zfi": 18, "sbfw5pbf2": 18, "hxwdfebltxm": 18, "u2fsdgvkx1": 18, "fvazmvwsbwobo05dskdnwg8mogawzhs8": 18, "gphl0rdmggqoqmnzsxtk": 18, "ro": [18, 20], "yq28ntg": 18, "5f5j9c2qnhfl5xkmclv7yjuw8lywn1ac": 18, "iwvqswohbuhjr3pagbkwtaimwiodmudi": 18, "u2fsdgvkx19eejrvaxj0lx0ttt": 18, "fob3j9bulfvqn3q": 18, "u2fsdgvkx18": 18, "o1mmagmcu4ul7knowuhfbgiplqz0r5c": 18, "8ef5wkl05ttmi": 18, "skss65krgiqb9z8wn": 18, "salted_some_garbag": 18, "appreci": [18, 33], "inquiri": 18, "netnew": 18, "keyword": [18, 30], "prohibit": [18, 33], "502": [10, 18], "newsgroup": 18, "340": 18, "lf": [18, 30], "misc": [10, 18, 34, 39], "filesrv": [18, 35, 39], "_192": 18, "xxxxcj": 18, "communtit": 18, "snmp_login": 18, "proof": [18, 20, 30, 37, 39], "sysdescr": 18, "c1130": 18, "k9w7": 18, "10b": 18, "fc2": 18, "techsupport": 18, "1986": 18, "2007": 18, "wed": [18, 19], "prod_rel_team": 18, "82000856_f6": 18, "extremexo": 18, "v1222b11": 18, "mon": [18, 19, 30, 38, 39], "pdt": 18, "snmp_enum": 18, "x150": 18, "24t": 18, "extremenetwork": 18, "888": 18, "257": 18, "uptim": [18, 30], "6842": 18, "6837": 18, "retran": 18, "243052379": 18, "192775346": 18, "993667": 18, "smartcent": 18, "checkpoint_hostnam": 18, "fw1": 18, "firefight": 18, "mgmt": 18, "dsa": [18, 32], "dse": 18, "015": 18, "currenttim": 18, "20160503173447": 18, "0z": 18, "subschemasubentri": 18, "xxxpcx": 18, "dsservicenam": 18, "scn": 18, "dc01": 18, "namingcontext": 18, "domaindnszon": [18, 19], "forestdnszon": [18, 19], "defaultnamingcontext": 18, "schemanamingcontext": 18, "configurationnamingcontext": 18, "rootdomainnamingcontext": 18, "supportedcontrol": 18, "319": 18, "801": 18, "473": 18, "528": 18, "619": 18, "841": 18, "529": 18, "805": 18, "521": 18, "970": 18, "1338": 18, "474": 18, "1339": 18, "1340": 18, "1413": 18, "113730": 18, "1504": 18, "1852": 18, "1907": 18, "1948": 18, "1974": 18, "1341": 18, "2026": 18, "2064": 18, "2065": 18, "2090": 18, "2205": 18, "2204": 18, "2206": 18, "2211": 18, "2239": 18, "2255": 18, "2256": 18, "supportedldapvers": 18, "supportedldappolici": 18, "maxpoolthread": 18, "maxpercentdirsyncrequest": 18, "maxdatagramrecv": 18, "maxreceivebuff": 18, "initrecvtimeout": 18, "maxconnect": 18, "maxconnidletim": 18, "maxpages": 18, "maxbatchreturnmessag": 18, "maxquerydur": 18, "maxtemptables": 18, "maxresultsets": 18, "minresultset": 18, "maxresultsetsperconn": 18, "maxnotificationperconn": 18, "maxvalrang": 18, "maxvalrangetransit": 18, "threadmemorylimit": 18, "systemmemorylimitperc": 18, "highestcommittedusn": 18, "70892": 18, "supportedsaslmechan": 18, "gssapi": 18, "gss": 18, "spnego": 18, "ldapservicenam": 18, "servernam": [18, 19, 30], "supportedcap": 18, "800": [10, 18, 31], "1670": [18, 36, 38, 39], "1791": 18, "1935": 18, "2080": 18, "2237": 18, "issynchron": 18, "isglobalcatalogreadi": 18, "domainfunction": 18, "forestfunction": 18, "domaincontrollerfunction": 18, "ldaptest": 18, "cqure": 18, "qfilter": 18, "attrib": 18, "searchattrib": 18, "searchvalu": 18, "userdb": 18, "passdb": 18, "lockout": [18, 22], "exce": [18, 20, 30], "binddn": 18, "bindpasswd": 18, "ldif": 18, "ldapv3": 18, "baseobject": 18, "openldaprootds": 18, "structuralobjectclass": 18, "configcontext": 18, "4203": 18, "334810": 18, "3344810": 18, "supportedextens": 18, "supportedfeatur": 18, "entrydn": 18, "subschema": 18, "numrespons": 18, "numentri": 18, "johnsmith": 18, "exaus": 18, "ou": 18, "ntuserlastlogon": 18, "130150432350834365": 18, "organizationalperson": 18, "inetorgperson": 18, "ntuser": [18, 20], "shadowaccount": 18, "ntusercodepag": 18, "ntuserdomainid": 18, "ntuserlastlogoff": 18, "ntuniqueid": 18, "75ac21092c755e42b2129a224eb328dd": 18, "ntuserdeleteaccount": 18, "ntuseracctexpir": 18, "jxplorer": 18, "smb_version": 18, "profession": [18, 29, 30, 32], "3bpc13b0843": 18, "3bwk14f0040": 18, "rservic": 18, "rexec_login": 18, "rlogin_login": 18, "1875": 18, "rsh_login": 18, "printnet": 18, "afp_server_info": 18, "capsul": 18, "utf8": 18, "reconnect": [18, 38, 39], "timecapsule8": 18, "119": 18, "afp3": 18, "uam": 18, "dhcast128": 18, "dhx2": 18, "srp": [18, 29], "recon1": 18, "4338364c4e355635463948350069672d": 18, "0009": 18, "9272": 18, "40ff": 18, "fe0b": 18, "99b7": 18, "cve": [10, 18, 29, 37, 39], "0533": 18, "endpoint_mapp": 18, "ncacn_tcp": 18, "tcp_dcerpc_auditor": 18, "impacket": [18, 20, 36, 37, 38, 39], "rpctool": 18, "2002": [18, 19, 20, 35, 36, 38, 39], "lmhash": [18, 19, 20], "nthash": [18, 19, 20], "iphlpsvc": 18, "552d076a": 18, "cb29": 18, "4e44": 18, "8b6a": 18, "d15e59e2c0af": 18, "ncacn_np": [18, 19], "srvsvc": 18, "ncacn_ip_tcp": [18, 19], "49154": 18, "atsvc": [18, 19], "ncalrpc": 18, "senssvc": 18, "oleec91239ab64e4f319a44eb95228b": 18, "iuserprofile2": 18, "schedsvc": 18, "0a74ef1c": 18, "41a4": 18, "4e06": 18, "83ae": 18, "dc74fb1cdd53": 18, "nsisvc": 18, "7ea70bcf": 18, "48af": 18, "4f6a": 18, "8968": 18, "6a440754d5fa": 18, "nsi": 18, "lrpc": 18, "37912a0de47813b4b3": 18, "ole6ece1f6a513142ec99562256f849": 18, "cmpo": 18, "msdtc": 18, "msdtcprx": 18, "906b0ce0": 18, "c70b": 18, "1067": 18, "b317": 18, "00dd010662da": 18, "316e773cde064c1ed": 18, "pan": 18, "spoolsv": 18, "0b6edbfa": 18, "4a24": 18, "4fc6": 18, "8a23": 18, "942b1eca65d1": 18, "spooler": [18, 19], "spoolss": 18, "tsch": 18, "schedul": [10, 18, 20, 22, 31, 37, 39], "taskcomp": 18, "mpssvc": 18, "7f9d11bf": 18, "7fb9": 18, "436b": 18, "a812": 18, "b2d50c5d4c03": 18, "fw": 18, "5409763072e46c4586": 18, "189": 18, "arizona": 18, "scottsdal": 18, "godaddi": 18, "daddi": 18, "g2": 18, "alg": 18, "sha256withrsaencrypt": 18, "sslv3": 18, "ssl_version": 18, "openssl_cc": 18, "openssl_heartble": 18, "msf5": 18, "loot": [18, 35, 39], "20160403185025_default_10": 18, "235": 18, "69_openssl": 18, "heartble_299937": 18, "xx_openssl": 18, "0f": 18, "a8": 18, "0b": 18, "uk": 18, "0c": 18, "00000100": 18, "00000110": 18, "00000120": 18, "00000130": 18, "00000140": 18, "commonnam": [18, 34, 39], "organizationnam": [18, 34, 39], "stateorprovincenam": [18, 34, 39], "countrynam": [18, 34, 39], "011": [18, 23], "astarouflex": 18, "flexfilm": 18, "uflex": 18, "localitynam": [18, 34, 39], "noida": 18, "virstech": 18, "gmail": [18, 26], "dehli": 18, "sha1withrsaencrypt": 18, "01t13": 18, "2038": 18, "01t00": 18, "c213": 18, "2536": 18, "95b4": 18, "0fbd": 18, "0784": 18, "5a68": 18, "f2c0": 18, "3979": 18, "sha": [18, 20, 30, 36, 39], "5f8d": 18, "5cf5": 18, "6f5c": 18, "8b23": 18, "dc49": 18, "83ec": 18, "6251": 18, "b050": 18, "3fda": 18, "997e": 18, "miidotccaqkgawibagijanqxaruc7sygma0gcsqgsib3dqebbquamgsxczajbgnv": 18, "baytamlumq4wdaydvqqhewvkzwhsaterma8ga1uechmidmlyc3rly2gxhtabbgnv": 18, "bamtfhzpcnn0zwnoifdlykfkbwluienbmrowgayjkozihvcnaqkbfgtnqgdtywl": 18, "lmnvbtaefw0xmzaymdexmzi3mzzafw0zodaxmdewmdawmdfamfaxczajbgnvbayt": 18, "amlumq4wdaydvqqhewvob2lkyteomawga1uechmfvwzszxgxitafbgnvbamtggfz": 18, "dgfyb3vmbgv4lmzszxhmawxtlmnvbtcbnzanbgkqhkig9w0baqefaaobjqawgykc": 18, "gyeal09pwqfnkgmaqzd7cylmqoskqmcp6mxjcpuhbl8wfte4m4ydzrtgjwejmv9u": 18, "mcvv2hshww0nmxs2xeosjy65i2nqrbbfq": 18, "dmxtdiuoiwbemk0ohv94fgswdnhb": 18, "83ryyzkgmfkwob63ovp8d78ufyspxql8o49o": 18, "1bfmqycow0caweaaaob": 18, "zcb": 18, "dad": 18, "bgnvhq4efgquvgir5fxbkextnlt4jjkuhnuhacgwgz0ga1udiwsbltcbkoaugifj": 18, "gjvpoigijdyq9tgpkxu3gjihb6rtmgsxczajbgnvbaytamlumq4wdaydvqqhewvk": 18, "zwhsaterma8ga1uechmidmlyc3rly2gxhtabbgnvbamtfhzpcnn0zwnoifdlykfk": 18, "bwluienbmrowgayjkozihvcnaqkbfgtnqgdtywlslmnvbyijanqxaruc7sycmcmg": 18, "a1udeqqcmbqcggfzdgfyb3vmbgv4lmzszxhmawxtlmnvbtajbgnvhrmeajaamasg": 18, "a1uddwqeawif4danbgkqhkig9w0baqufaaobgqaentishyi": 18, "xkwzrme2e98rm": 18, "yod": 18, "bgygxe6gwn": 18, "l3pbb8om5bxxmkydwvennvrog": 18, "kp1imu75hyge4qthldjff0i": 18, "i0myyr1jz2icnidcaym": 18, "lhofiuumup5ywdrk6jpiujvzjdrcdxl63e9r950": 18, "f4jn": 18, "drgigqejr7o9hko7tw": 18, "ephemer": [18, 31], "ciphersuit": 18, "modp": 18, "logjam": 18, "4000": [18, 19, 34, 35, 36, 39], "013": 18, "insuffici": [18, 33], "suscept": [10, 18, 32], "eavesdrop": 18, "tls_dhe_rsa_with_aes_256_gcm_sha384": 18, "modulu": 18, "prime": 18, "weakdh": 18, "despit": 18, "223": 18, "028": 18, "124": 18, "0088": 18, "ssl2_des_192_ede3_cbc_with_md5": 18, "ssl2_rc2_cbc_128_cbc_with_md5": 18, "ssl2_rc4_128_with_md5": 18, "ssl2_rc4_64_with_md5": 18, "ssl2_des_64_cbc_with_md5": 18, "ssl2_rc4_128_export40_with_md5": 18, "0224": 18, "serverhello": 18, "017": 18, "_ssl": 18, "03t18": 18, "4h49m42": 18, "compressor": 18, "0085": 18, "tls_dhe_rsa_export_with_des40_cbc_sha": 18, "tls_dhe_rsa_with_3des_ede_cbc_sha": 18, "tls_dhe_rsa_with_aes_128_cbc_sha": 18, "tls_dhe_rsa_with_aes_256_cbc_sha": 18, "tls_dhe_rsa_with_des_cbc_sha": 18, "tls_rsa_export_with_des40_cbc_sha": 18, "tls_rsa_export_with_rc2_cbc_40_md5": 18, "tls_rsa_export_with_rc4_40_md5": 18, "tls_rsa_with_3des_ede_cbc_sha": 18, "tls_rsa_with_aes_128_cbc_sha": 18, "tls_rsa_with_aes_256_cbc_sha": 18, "tls_rsa_with_des_cbc_sha": 18, "tls_rsa_with_rc4_128_md5": 18, "tls_rsa_with_rc4_128_sha": 18, "3566": 18, "tlsv1": 18, "0160": 18, "steal": [18, 20, 30, 32], "beta": [18, 37, 39], "beta1": [18, 30], "cvedetail": 18, "secadv_20140407": 18, "mitr": [18, 32], "cvenam": 18, "113251": 18, "1i": 18, "nondeterminist": 18, "bodo": 18, "imperialviolet": 18, "geovis": 18, "rtspd": 18, "_rtsp": 18, "surveil": [18, 24], "152": 18, "00047": 18, "video1": 18, "mplayer": [18, 30], "multitool": 18, "sdp": 18, "preview": [18, 31], "gstreamer": 18, "cctv": 18, "dvr": 18, "modules_list": 18, "otg": 18, "rajan": 18, "varlib": 18, "dar": 18, "usrloc": 18, "varlog": 18, "1653": 18, "somefil": [18, 30], "apv": 18, "somedirectori": 18, "java_rmi_serv": 18, "rmiregistri": 18, "rmid": 18, "jmx": 18, "lawvraftith7n": 18, "45741": 18, "3899": 18, "runtimeerror": 18, "httpdelai": 18, "mubix": [18, 19], "sun": [18, 19], "0011": 18, "rapid7": [18, 38, 39], "vast": [18, 32, 33, 37, 39], "mssql_enum": 18, "mssql_enum_domain_account": 18, "mssql_enum_domain_accounts_sqli": 18, "mssql_enum_sql_login": 18, "mssql_escalate_dbown": 18, "db_owner": 18, "mssql_escalate_dbowner_sqli": 18, "mssql_escalate_execute_a": 18, "mssql_escalate_execute_as_sqli": 18, "mssql_exec": 18, "mssql_findandsampledata": 18, "mssql_idf": 18, "mssql_ntlm_stealer": 18, "stealer": 18, "mssql_ntlm_stealer_sqli": 18, "mssql_sql": 18, "mssql_sql_file": 18, "jtr_mssql_fast": 18, "ripper": [18, 37, 39], "cracker": 18, "lansweeper_collector": 18, "lansweep": 18, "mssql_hashdump": 18, "mssql_login": 18, "mssql_ping": 18, "mssql_schemadump": 18, "sapbwbi": 18, "instancenam": 18, "boe140": 18, "isclust": 18, "50623": 18, "np": 18, "mangoos": 18, "mssqlserver": 18, "mhe": 18, "mhe_dmp_liv": 18, "53029": 18, "mssql11": 18, "mdf": 18, "mastlog": 18, "ldf": 18, "tempdb": 18, "templog": 18, "modellog": 18, "msdb": 18, "msdbdata": 18, "msdblog": 18, "reportserv": 18, "reportserver_log": 18, "reportservertempdb": 18, "reportservertempdb_log": 18, "ms_sqlresourcesigningcertif": 18, "ms_sqlreplicationsigningcertif": 18, "ms_sqlauthenticatorcertif": 18, "ms_policysigningcertif": 18, "ms_smoextendedsigningcertif": 18, "ms_policyeventprocessinglogin": 18, "ms_policytsqlexecutionlogin": 18, "ms_agentsigningcertif": 18, "oth": 18, "altadmin": 18, "sqlwriter": 18, "winmgmt": 18, "sqlserverag": 18, "sp_replsetsyncstatu": 18, "sp_replcount": 18, "sp_replsendtoqueu": 18, "sp_resyncexecutesql": 18, "sp_prepexecrpc": 18, "sp_repltran": 18, "sp_xml_preparedocu": 18, "xp_qv": 18, "xp_getnetnam": 18, "sp_releaseschemalock": 18, "sp_refreshview": 18, "sp_replcmd": 18, "sp_unprepar": 18, "sp_resyncprepar": 18, "sp_createorphan": 18, "xp_dirtre": 18, "sp_replwritetovarbin": 18, "sp_replsetorigin": 18, "sp_xml_removedocu": 18, "sp_repldon": 18, "sp_reset_connect": 18, "xp_fileexist": 18, "xp_fixeddr": 18, "sp_getschemalock": 18, "sp_prepexec": 18, "xp_revokelogin": 18, "sp_resyncuniquet": 18, "sp_replflush": 18, "sp_resyncexecut": 18, "xp_grantlogin": 18, "sp_droporphan": 18, "xp_regread": 18, "sp_getbindtoken": 18, "sp_replincrementlsn": 18, "sqlexpress": 18, "networkservic": [18, 20], "dbeaver": [18, 35, 39], "sp_configur": 18, "reconfigur": [18, 30], "ipconfig": [10, 18, 19], "798f": 18, "6cad": 18, "4f1e": 18, "c5fb": 18, "autoconfigur": 18, "254": [10, 18, 19], "tunnel": [10, 18, 19], "isatap": [18, 19], "d295b095": 18, "19eb": 18, "436e": 18, "97d0": 18, "4d22486521cc": 18, "a738e25a": 18, "f5e3": 18, "4e36": 18, "8f96": 18, "6977e22136b6": 18, "mssql_payload": 18, "powercat": [18, 37, 39], "noni": [18, 20, 35, 39], "iex": [18, 19, 20, 35, 36, 39], "webclient": [18, 20, 35, 36, 38, 39], "downloadstr": [18, 20, 35, 36, 39], "examplecrm1": 18, "01050000000000051500000016c0ea32f450ba7443170a32": 18, "patient": [18, 33], "krbtg": 18, "creator": [18, 19, 30, 32, 33], "ia": [18, 19, 24], "rodc": [18, 20], "tsinternetus": 18, "sample_s": 18, "msde": 18, "freetd": 18, "en_in": 18, "owner_sid": 18, "kuanxxxx": 18, "mangement": 18, "ownership": [18, 30, 33, 36, 39], "poorli": [10, 18, 32, 33], "walk": [18, 30, 33], "WITH": 18, "rick": 18, "osgood": 18, "osql": 18, "inherit": [18, 22, 30, 33], "bhusa09": 18, "oraclemetasploit": 18, "slide": [18, 20], "tn": [18, 19, 32], "tnslsnr_version": 18, "1189": 18, "listner": 18, "sid_enum": 18, "sid_brut": 18, "163": 18, "sa0": 18, "plsextproc": 18, "oraclesid": 18, "sidfil": 18, "1560": 18, "rdbm": 18, "oracle_login": 18, "nodefault": 18, "orcl": 18, "3137": 18, "o5login": 18, "11g": 18, "r1": [18, 35, 39], "unpatch": 18, "octob": 18, "oraus": 18, "lt_findricset": 18, "lt_findricset_cursor": 18, "findricset": 18, "cursor": [10, 18], "dba": [10, 18], "supposedli": [18, 35, 39], "dbms_metadata_open": 18, "dbms_metadata": 18, "dbms_cdc_ipublish": 18, "alter_hotlog_internal_csourc": 18, "execute_catalog_rol": 18, "10gr1": 18, "10gr2": 18, "11gr1": 18, "dbms_cdc_publish": 18, "alter_autolog_change_sourc": 18, "dbms_cdc_publish2": 18, "drop_change_sourc": 18, "dbms_cdc_publish3": 18, "create_change_set": 18, "dbms_cdc_subscribe_activate_subscript": 18, "dbms_cdc_subscrib": 18, "activate_subscript": 18, "9i": 18, "lt_compressworkspac": 18, "compressworkspac": 18, "lt_mergeworkspac": 18, "mergeworkspac": 18, "lt_removeworkspac": 18, "removeworkspac": 18, "lt_rollbackworkspac": 18, "rollbackworkspac": 18, "oracle_sql": 18, "sqlplu": 18, "tnsname": 18, "ora": 18, "homenetworkadmin": 18, "mydb": 18, "address_list": 18, "connect_data": 18, "service_nam": [18, 30], "win32exec": 18, "execcommand": 18, "javasyspriv": 18, "post_exploit": 18, "extproc": [18, 35, 39], "backdoor": 18, "dbms_schedul": 18, "checker": [18, 22, 29], "tnspoison_check": 18, "global_nam": 18, "p1": [18, 30, 34, 35, 38, 39], "65535": [10, 18, 34, 39], "100003": 18, "noexec": 18, "bz2": [18, 30], "example2": 18, "nfsv2": 18, "nfsv3": 18, "hostname1": 18, "no_subtree_check": 18, "hostname2": 18, "nfsv4": 18, "nfs4": 18, "krb5i": 18, "fsid": 18, "crossmnt": 18, "no_root_squash": 18, "nfsshare": 18, "root_squash": 18, "no_all_squash": 18, "nfsnobodi": 18, "execl": [18, 36, 39], "pwnme": 18, "xxxxxhostcu": 18, "older": [10, 18, 30, 33, 38, 39], "uptu": 18, "scsi": 18, "00064": 18, "iqn": 18, "1992": 18, "emc": 18, "fl1001433000190000": 18, "vnxe": 18, "dii": 18, "sendtarget": 18, "targetnam": [18, 19], "ifac": [18, 30], "strang": [18, 20], "43852": 18, "014179": 18, "host6": 18, "306055": 18, "celerra": 18, "pq": 18, "323940": 18, "sg1": 18, "sucess": 18, "sdb1": [18, 30], "125933": 18, "964768": 18, "host10": 18, "125934": 18, "259637": 18, "lio": 18, "fileio": 18, "259919": 18, "266155": 18, "sdb": [18, 30], "2097152001": 18, "tb": [18, 31], "gib": 18, "266794": 18, "266801": 18, "268003": 18, "dpo": 18, "fua": 18, "275206": 18, "279017": 18, "tpgt": 18, "leading_login": 18, "hwaddress": 18, "iscsi_ifacenam": 18, "net_ifacenam": 18, "transport_nam": 18, "initiatornam": 18, "bootproto": 18, "subnet_mask": 18, "ipv6_autocfg": 18, "linklocal_autocfg": 18, "router_autocfg": 18, "ipv6_linkloc": 18, "ipv6_rout": 18, "vlan_id": 18, "vlan_prior": 18, "vlan_stat": 18, "iface_num": 18, "mtu": [18, 31, 37, 39], "discovery_address": 18, "discovery_port": 18, "discovery_typ": 18, "send_target": 18, "initial_cmdsn": 18, "initial_login_retry_max": 18, "xmit_thread_prior": 18, "cmds_max": 18, "queue_depth": 18, "nr_session": 18, "authmethod": 18, "username_in": 18, "password_in": 18, "timeo": 18, "replacement_timeout": 18, "err_timeo": 18, "abort_timeout": 18, "lu_reset_timeout": 18, "tgt_reset_timeout": 18, "host_reset_timeout": 18, "fastabort": 18, "initialr2t": 18, "immediatedata": 18, "firstburstlength": 18, "maxburstlength": 18, "16776192": 18, "defaulttime2retain": 18, "defaulttime2wait": 18, "maxoutstandingr2t": 18, "erl": 18, "524288": 18, "type_of_servic": 18, "logout_timeout": 18, "login_timeout": 18, "auth_timeout": 18, "noop_out_interv": 18, "noop_out_timeout": 18, "maxxmitdatasegmentlength": 18, "maxrecvdatasegmentlength": 18, "headerdigest": 18, "datadigest": 18, "ifmark": 18, "ofmark": 18, "morisson": 18, "pierc": 18, "saprout": 18, "mysql_vers": 18, "x04host": 18, "0ubuntu0": 18, "mariadb": [18, 37, 39], "mysql_login": 18, "unsupport": 18, "passsword": 18, "mysql_hashdump": 18, "rbmysql": 18, "handshakeerror": 18, "hashstr": 18, "6fe073b02f77230c092415032f0ff0951fxxxxxx": 18, "a31b8f449706c32558abc788ddabf62dccxxxxxx": 18, "newsgroupdbo": 18, "intiadda": 18, "6fe073b02f77230c092415032f0ff0951xxxxxx": 18, "udf": [18, 36, 39], "postgres_vers": 18, "user_fil": 18, "userpass_fil": 18, "postgres_login": 18, "1899": 18, "postgres_dbname_flag_inject": 18, "hpdata": 18, "proctector": 18, "omniback": 18, "openview": 18, "omniinet": 18, "freeciv": 18, "wednesdai": 18, "integutil": 18, "hp_data_protector_exec_integutil": 18, "great": [10, 18, 19, 20, 22, 29, 32, 35, 36, 37, 39], "exec_integutil": 18, "executionnow": 18, "reverse_powershel": 18, "stagerlaunch": 18, "opensecur": 18, "snif": [18, 30], "plugin": [18, 20, 22, 29, 30, 35, 37, 39], "openvnc": 18, "vnc_none_auth": 18, "rfb": 18, "vnc_login": 18, "vncserver": 18, "vncpasswd": 18, "myvncpassword": 18, "passvnc": 18, "kr": 18, "x8": 18, "vncviewer": 18, "_all_db": 18, "basebal": 18, "plankton": 18, "dbname": 18, "_all_doc": 18, "16e458537602f5ef2a710089dffd9453": 18, "rev": [10, 18], "967a00dff5e02add41819138abb3284d": 18, "a4c51cdfa2069f3e905c431114001aff": 18, "total_row": 18, "screenshot": [18, 19, 20, 38, 39], "open_x11": 18, "xfree86": 18, "heidenhain": 18, "x11_keyboard_exec": 18, "keystrok": [10, 18, 30], "snoopng": 18, "swabackspacecaps_lock": 18, "josephttabcbackspaceshift_l": 18, "workshift_l": 18, "2123": 18, "qsaminuskp_down": 18, "kp_begin": 18, "kp_down": 18, "kp_left": 18, "kp_insert": 18, "tabrightleftrightdeletebtabdownntabkp_end": 18, "kp_right": 18, "kp_up": 18, "tabmtminusdbackspacewintab": 18, "262140": 18, "motion": 18, "lsbfirst": 18, "pixmap": 18, "bits_per_pixel": 18, "scanline_pad": 18, "keycod": 18, "0x600005": 18, "fontcach": 18, "saver": 18, "shm": [18, 36, 39], "xc": 18, "dga": 18, "vidmodeextens": 18, "xinputextens": 18, "xvideo": 18, "1024x768": 18, "347x260": 18, "millimet": [18, 30], "75x75": 18, "dot": [18, 20, 30, 35, 37, 39], "inch": 18, "colormap": 18, "prealloc": 18, "32x32": 18, "truecolor": 18, "subfield": 18, "0xf800": 18, "0x7e0": 18, "directcolor": 18, "xdump": 18, "768": 18, "inputoutput": 18, "graviti": 18, "forgetgrav": 18, "northwestgrav": 18, "notus": 18, "isview": 18, "geometri": 18, "updatetim": 18, "windowid": 18, "windownam": 18, "tfairan": 18, "door": [18, 33], "weev": 18, "webacoo": 18, "dbfilenam": 18, "bomba": 18, "_get": [18, 35, 38, 39], "bgsave": 18, "unencrypt": 18, "keygen": [18, 35, 39], "auth_kei": 18, "crackit": 18, "authorized_kei": [18, 35, 38, 39], "kevgir": 18, "1322": 18, "standalon": [18, 30, 31, 35, 36, 37, 39], "8180": 18, "forgotten": [18, 20, 38, 39], "libapach2": 18, "jk": 18, "vim": [18, 30, 31, 35, 37, 39], "apache2": [18, 35, 39], "worker": [18, 31], "jkworkersfil": 18, "jk_worker": 18, "jklogfil": 18, "mod_jk": 18, "jkloglevel": 18, "jklogstampformat": 18, "jkoption": 18, "forwardkeys": 18, "forwarduricompat": 18, "forwarddirectori": 18, "jkrequestlogformat": 18, "jkshmfile": 18, "ajp13": 18, "lbfactor": 18, "caches": 18, "cache_timeout": 18, "socket_keepal": 18, "socket_timeout": 18, "jkmount": 18, "a2enmod": 18, "proxy_ajp": 18, "proxy_http": 18, "metapsloit": 18, "ajpv13": 18, "modjk": 18, "printer_delete_fil": 18, "printer_download_fil": 18, "printer_env_var": 18, "printer_list_dir": 18, "printer_list_volum": 18, "printer_ready_messag": 18, "printer_upload_fil": 18, "printer_version_info": 18, "printjob_captur": 18, "printjob": 18, "m1522nf": 18, "mfp": 18, "postscript": [18, 35, 37, 39], "pjl_ready_messag": 18, "_pjl": 18, "convoi": 18, "166": [18, 38, 39], "083": 18, "apani1": 18, "_cassandra": 18, "device0000": 18, "rman": 18, "trdplm": 18, "shadow": [18, 20, 22, 36, 37, 38, 39], "_unknown": 18, "verita": 18, "ware": 18, "corp": [10, 18], "nsock": 18, "nsock_trace_handler_callback": 18, "callback": [18, 36, 38, 39], "eid": 18, "1122": 18, "40435": 18, "e7": 18, "082": 18, "4252": 18, "1582276": 18, "26t21": 18, "881617": 18, "413088": 18, "1582386": 18, "1459027205": 18, "libev": 18, "stabl": [18, 22, 24, 30], "pointer_s": 18, "rusage_us": 18, "889618": 18, "rusage_system": 18, "417088": 18, "curr_connect": 18, "total_connect": 18, "connection_structur": 18, "reserved_fd": 18, "cmd_get": 18, "cmd_set": 18, "cmd_flush": 18, "cmd_touch": 18, "get_hit": 18, "get_miss": 18, "delete_miss": 18, "delete_hit": 18, "incr_miss": 18, "incr_hit": 18, "decr_miss": 18, "decr_hit": 18, "cas_miss": 18, "cas_hit": 18, "cas_badv": 18, "touch_hit": 18, "touch_miss": 18, "auth_cmd": 18, "auth_error": 18, "bytes_read": 18, "775": 18, "bytes_written": 18, "26158": 18, "limit_maxbyt": 18, "67108864": 18, "accepting_conn": 18, "listen_disabled_num": 18, "thread": [18, 19, 33, 35, 39], "conn_yield": 18, "hash_power_level": 18, "hash_byt": 18, "hash_is_expand": 18, "expired_unfetch": 18, "evicted_unfetch": 18, "curr_item": 18, "total_item": 18, "evict": 18, "reclaim": [18, 31], "sensepost": 18, "derper": 18, "blackhat": 18, "mine": [10, 18], "lift": 18, "walkthru": [18, 29, 37, 39], "blank_password": 18, "mongodb_login": 18, "dosn": 18, "mongod": 18, "088": 18, "opensslvers": 18, "compilerflag": 18, "wnon": 18, "dtor": 18, "woverload": 18, "pthread": 18, "wsign": 18, "wno": 18, "winvalid": 18, "pch": 18, "werror": 18, "o3": 18, "deprec": [18, 30, 37, 38, 39], "memcmp": 18, "loaderflag": 18, "rdynam": 18, "maxbsonobjects": 18, "16777216": 18, "javascriptengin": 18, "sysinfo": 18, "build20": 18, "431": 18, "el6": 18, "fri": [18, 19, 35, 39], "boost_lib_vers": 18, "1_49": 18, "versionarrai": 18, "tcmalloc": 18, "gitvers": 18, "df313bc75aa94d192330cb92756fc486ea604e64": 18, "opcount": 18, "19752": 18, "1374": 18, "71735056": 18, "78465013": 18, "121": 18, "getmor": 18, "4156": 18, "795": 18, "totalcr": 18, "4487": 18, "uptimemilli": 18, "3487298933": 18, "localtim": 18, "1458938079849": 18, "getlasterror": 18, "wtime": 18, "totalmilli": 18, "uptimeestim": 18, "3455635": 18, "3487299": 18, "bytesout": 18, "17159001651": 18, "numrequest": 18, "78517212": 18, "bytesin": 18, "73790966211": 18, "nvt": 18, "344": 18, "25964": 18, "extra_info": 18, "heap_usage_byt": 18, "2798848": 18, "page_fault": 18, "16064": 18, "assert": [18, 32], "rollov": 18, "11344": 18, "msg": [10, 18], "090": 18, "shard": 18, "rs0": 18, "sizeondisk": 18, "21415067648": 18, "rs1": 18, "17122197504": 18, "38537265152": 18, "genprod": 18, "50331648": 18, "totals": 18, "38537265153": 18, "totalsizemb": 18, "36752": 18, "086": 18, "_mongodb": 18, "015625gb": 18, "046875gb": 18, "890625gb": 18, "nxae": 18, "_id": [18, 37, 39], "d6zzzdb4538zzz339acd585fa9zzzzzz": 18, "dbowner": 18, "deleteon": 18, "foreach": 18, "mydoc": 18, "toarrai": 18, "rockwel": 18, "maker": 18, "controllogix": [10, 18], "micrologix": 18, "redpoint": 18, "1766": 18, "l32bxb": 18, "0x40605446": 18, "1100": 18, "ml1100": 18, "1400": 18, "ml1400": 18, "vvv": [18, 20], "182": 18, "2404999": 18, "0x0000": 18, "00a": 18, "008": 18, "0x2050": 18, "prg": 18, "carrier_19xrv_chiller_01_er_mv": 18, "device2404999": 18, "lgr1000": 18, "bdt": 18, "foreign": [18, 30], "fdt": 18, "jexplor": [19, 37, 39], "eskoudi": 19, "plunder": 19, "infor": 19, "carnal0wnag": 19, "osx": [19, 20, 31], "blackhil": [19, 20], "sprai": 19, "rpc": [19, 31], "rpcclient": 19, "hxxxx": 19, "mlxxxxh": 19, "srvinfo": 19, "bdc": 19, "tim": 19, "platform_id": 19, "0x801033": 19, "enumalsgroup": 19, "enumdomain": 19, "enumdriv": 19, "enumkei": 19, "enumpriv": 19, "enumdata": 19, "enumdomgroup": 19, "enumform": 19, "enumport": 19, "enumtrust": 19, "enumdataex": 19, "enumdomus": 19, "enumjob": 19, "enumprint": 19, "idx": 19, "querydominfo": 19, "hmc_pdc": 19, "9043": 19, "616": 19, "logoff": 19, "role_domain_bdc": 19, "0x1f4": 19, "0x1f5": 19, "krbtgt": 19, "0x1f6": 19, "_standard": 19, "0x3ee": 19, "0x3fa": 19, "sko": 19, "0x43a": 19, "0x589": 19, "zentral": 19, "0x67f": 19, "dbserver": 19, "0x7d9": 19, "jvoo": 19, "0x7fa": 19, "hmc": 19, "te": 19, "0x8a0": 19, "0x8d5": 19, "0x9ea": 19, "pda": 19, "vis1": 19, "0xb65": 19, "testus": [19, 20], "0xc46": 19, "oeinstal": 19, "0x1133": 19, "repro": 19, "0x13c3": 19, "0x1f2": 19, "0x200": 19, "0x201": 19, "0x202": 19, "0x203": 19, "0x204": 19, "0x206": 19, "0x207": 19, "0x208": 19, "0x209": 19, "cloneabl": 19, "0x20a": 19, "0x20d": 19, "0x4d8": 19, "0x50d": 19, "0x8d7": 19, "smsinternalcligrp": 19, "0x9f5": 19, "0x105b": 19, "querygroup": 19, "querygroupmem": 19, "0x2227": 19, "0x7": 19, "0x3601": 19, "0x36aa": 19, "0x36e0": 19, "0x3c23": 19, "0x5528": 19, "0x363b": 19, "0x573e": 19, "0x56bc": 19, "0x5e5e": 19, "0x7fe1": 19, "0x86d9": 19, "0x9367": 19, "0x829c": 19, "0xa26": 19, "queryus": 19, "dummy_": 19, "kickoff": 19, "30828": 19, "getdompwinfo": 19, "min_password_length": 19, "password_properti": 19, "getusrdompwinfo": 19, "0x433e6584": 19, "1128162692": 19, "domain_password_complex": 19, "domain_password_no_anon_chang": 19, "domain_password_no_clear_chang": 19, "domain_password_lockout_admin": 19, "domain_password_store_cleartext": 19, "domain_refuse_password_chang": 19, "lsaenumsid": 19, "1971769256": 19, "327852233": 19, "3012798916": 19, "1014": 19, "ftp_user": 19, "example_us": [19, 36, 39], "lookupsid": 19, "setuserinfo2": 19, "password_expir": 19, "nt_status_invalid_paramet": 19, "admincount": 19, "ima": 19, "domainadmin": 19, "asdqwe123": 19, "nt_status_access_deni": 19, "adminus": 19, "came": [10, 19, 30, 31, 35], "msdn": 19, "user_information_class": 19, "sampr_user_internal4_inform": 19, "formerli": [19, 31], "bindview": 19, "userlist": [19, 35, 39], "sharelist": 19, "550": 19, "1050": 19, "impli": [19, 30, 32, 33, 34, 39], "999999": 19, "known_usernam": 19, "user1": [19, 20, 35, 37, 39], "user2": [19, 35, 39], "wrkg": 19, "nbtstat": [10, 19], "abcxxx": 19, "mluxxxx": 19, "threxxxx": 19, "favorit": [10, 19, 29], "dialog": [19, 23], "sophist": 19, "salli": 19, "vandeven": 19, "brilliant": [19, 20], "dsml": 19, "adsi": 19, "dcpromo": 19, "ntdsutil": [19, 20], "repadmin": 19, "dcdiag": 19, "dsacl": 19, "dsadd": 19, "dsdbutil": 19, "dsmgmt": 19, "dsmod": 19, "dsmove": 19, "dsqueri": [19, 20], "dsrm": 19, "gpfixup": 19, "ksetup": 19, "ktpass": 19, "nslookup": [19, 30], "w32tm": 19, "rsat": 19, "dclist": 19, "dcname": 19, "dsgetdc": 19, "dsgetdcnam": 19, "dsp": 19, "gc": 19, "timeserv": 19, "gtimeserv": 19, "avoidself": 19, "ldaponli": 19, "backg": 19, "ds_6": 19, "try_next_closest_sit": 19, "sitenam": 19, "accountnam": 19, "ret_dn": 19, "ret_netbio": 19, "dnsgetdc": 19, "dsgetdcopen": 19, "sitespec": 19, "dsgetfti": 19, "dsgetforesttrustinform": 19, "update_tdo": 19, "dsgetsit": 19, "dsgetsitenam": 19, "dsgetsitecov": 19, "dsgetdcsitecoverag": 19, "dsaddresstosit": 19, "machinenam": 19, "dsaddresstositenamesex": 19, "address1": 19, "address2": 19, "parentdomain": 19, "whowil": 19, "findus": 19, "lsl": 19, "msl": 19, "logon_queri": 19, "cumul": 19, "domain_trust": 19, "direct_out": 19, "direct_in": 19, "all_trust": 19, "abcdefg1": 19, "srilanka": 19, "abcdefg2": 19, "abcdefg5": 19, "bangladesh": 19, "testadmin": 19, "0x3eb": 19, "0x10002": 19, "2ee61c9a": 19, "01c0e947": 19, "9dad5428": 19, "01c0e577": 19, "7fffffff": 19, "0x210": 19, "badpasswordcount": 19, "securitydescriptor": 19, "80140001": 19, "0000009c": 19, "000000ac": 19, "00000014": 19, "00000044": 19, "00300002": 19, "0014c002": 19, "01050045": 19, "00000101": 19, "01000000": 19, "000f07ff": 19, "05000": 19, "00000007": 19, "00580012": 19, "00000003": 19, "00240000": 19, "00020044": 19, "00000501": 19, "05000000": 19, "00000015": 19, "22cd": 19, "b7b4": 19, "7112b3f1": 19, "2b3be507": 19, "000003eb": 19, "00180000": 19, "00000201": 19, "00220": 19, "00140000": 19, "0002035b": 19, "000220": 19, "00000220": 19, "lmowfpassword": 19, "fb890c9c": 19, "5c7e7e09": 19, "ee58593b": 19, "d959c681": 19, "ntowfpassword": 19, "d82759cc": 19, "81a342ac": 19, "df600c37": 19, "4e58a478": 19, "ntpasswordhistori": 19, "00011001": 19, "lmpasswordhistori": 19, "00010011": 19, "fourthcoffe": 19, "ijk": 19, "lmn": 19, "lmh": 19, "bose": [19, 20, 28], "cheer": 19, "ud": 19, "userd": 19, "pd": 19, "passwordd": 19, "holder": 19, "xxxxdc12": 19, "xxxxdc11": 19, "xxxxdc04": 19, "xxxxdc03": 19, "abcdc02": 19, "abcdc01": 19, "abcdc03": 19, "abcdc04": 19, "bskmacdb62": 19, "visio": 19, "awesom": [19, 20, 29, 30, 34, 37, 39], "recon": [19, 40], "noexit": 19, "getcurrentforest": 19, "globalcatalog": 19, "ok0hic2ucih": 19, "applicationpartit": 19, "forestmod": 19, "windows2008r2forest": 19, "rootdomain": 19, "schemaroleown": 19, "namingroleown": 19, "getcurrentdomain": 19, "domaincontrol": 19, "domainmod": 19, "windows2008r2domain": 19, "pdcroleown": 19, "ridroleown": 19, "infrastructureroleown": 19, "forestrootdomain": 19, "adsecur": [19, 20], "getforest": 19, "directorycontext": 19, "getalltrustrelationship": 19, "surfac": [10, 19, 32, 37, 39], "stealthi": [10, 19], "rdp": [19, 20, 31, 35, 39], "adcomput": 19, "win2008k001": 19, "mssqlsvc": 19, "win2008k002": 19, "1600": 19, "adfind": 19, "setspn": 19, "esclat": [10, 19], "psm1": 19, "autos": [19, 22, 36, 39], "domainus": 19, "localsystem": 19, "appmgmt": 19, "cisvc": 19, "clipsrv": 19, "dmserver": 19, "eventsystem": 19, "iisadmin": 19, "messeng": 19, "msiserv": 19, "mcsvc": 19, "netdd": 19, "netddedsm": 19, "netman": 19, "nmagent": 19, "oaklei": 19, "plugplai": 19, "policyag": 19, "protectedstorag": 19, "rasman": 19, "remoteaccess": 19, "rpclocat": 19, "rpcss": 19, "rsvp": 19, "samss": 19, "scardsvr": 19, "scesrv": 19, "seclogon": 19, "snmp": [10, 19, 22, 31, 37, 39], "tapisrv": 19, "trksvr": 19, "trkwk": 19, "w3svc": 19, "svc": [19, 36, 39], "adus": 19, "eq": [19, 30, 37, 39], "passwot": 19, "516": 19, "adgroup": 19, "groupcategori": 19, "addefaultpasswordpolici": 19, "addefaultdomainpasswordpolici": 19, "netgpogroup": 19, "netou": 19, "gponam": 19, "searchbas": 19, "passwordforsearch": 19, "domaincontrolleripaddress": 19, "ldapdn": 19, "bitvjai": 19, "directoryentri": 19, "directorysearch": 19, "searchroot": 19, "findon": 19, "ridsetrefer": 19, "objec": 19, "iscriti": 19, "bob": [19, 29, 36, 39], "bobbi": 19, "descripti": 19, "idl": [19, 30], "05d": 19, "22h": 19, "02m": 19, "wmic": [19, 36, 39], "win32_loggedus": 19, "anteced": 19, "cimv2": 19, "win32_account": 19, "abcroot": 19, "axx": 19, "srv": [19, 30, 38, 39], "axxd": 19, "useraccount": 19, "gpppassword": 19, "31b2f340": 19, "016d": 19, "11d2": 19, "945f": 19, "00c04fb984f9": 19, "datasouc": 19, "scheduledtask": [19, 36, 39], "adspath": 19, "netsit": 19, "harmj0i": 19, "win2k8": 19, "smb_enum_gpp": 19, "smbdomain": 19, "smbuser": 19, "smbpass": 19, "session_numb": 19, "group_nam": [19, 30], "eastcoast": 19, "printus": 19, "blackcat": 19, "enclos": [19, 30, 35, 39], "getdc": 19, "uraxxxx": 19, "xxxxx2": 19, "xxxxxx3": 19, "brief": [19, 20], "xxxxxxxxx": [19, 30], "7357": 19, "8728": 19, "9229": 19, "oer": 19, "5095": 19, "part2": [19, 20], "scriptjunki": 19, "wherev": 19, "debuglevel": 19, "reinstal": [19, 30], "runa": [19, 36, 39], "bewar": [19, 32], "disallow": [19, 22, 35, 39], "ostyp": 19, "4b579a266f697c2xxxxxxxxx": 19, "145": [19, 31], "ntauthor": 19, "fqdn": [19, 31], "concurr": [19, 32], "chain_command": 19, "module_opt": 19, "lsa": [19, 20], "vss": [19, 20], "drsuapi": 19, "wdigest": 19, "uselogoncredenti": 19, "uac": 19, "max_rid": 19, "pol": 19, "luser": 19, "atexec": 19, "ps32": 19, "ps_command": 19, "empire_exec": 19, "enum_avproduct": 19, "enum_chrom": 19, "chromedump": 19, "get_keystrok": 19, "get_netdomaincontrol": 19, "get_netrdpsess": 19, "get_timedscreenshot": 19, "gpp_autologin": 19, "autologon": [19, 36, 39], "gpp_password": 19, "invoke_sessiongoph": 19, "putti": [19, 22, 35, 39], "winscp": 19, "filezilla": [19, 30], "superputti": 19, "sessiongoph": 19, "invoke_vnc": 19, "met_inject": 19, "mimikatz_enum_chrom": 19, "mimikatz_enum_vault_cr": 19, "mimikittenz": 19, "multirdp": 19, "netripp": 19, "pe_inject": 19, "shellcode_inject": 19, "slinki": 19, "unc": 19, "test_connect": 19, "kick": 19, "cme": 19, "win7box": 19, "sekurlsa": 19, "logonpassword": 19, "msfvenom": [19, 20, 37], "inbuilt": [19, 22], "dcr": 19, "bizyisefgv": 19, "admini": 19, "180": 19, "kbibbkkl": 19, "svcmanag": 19, "cvzn": 19, "stringbind": 19, "svcctl": 19, "comspec": 19, "__output": 19, "bat": [19, 20], "semi": [19, 30, 37, 39], "4546": 19, "b672": 19, "307": 19, "b488": 19, "eb92dee7": 19, "521b": 19, "4e14": 19, "84c2": 19, "0e9b9e96563": 19, "nooutput": 19, "aeskei": 19, "ccach": 19, "krb5ccname": 19, "ommit": 19, "passw0rd": [19, 37, 39], "smbv2": 19, "dialect": 19, "isfdqn": 19, "xxxxhbks1739": 19, "49155": 19, "xxxxxxxxxxxxxx": 19, "xxxxxxx": [19, 36, 37, 39], "hnfrguvk": 19, "access_deni": 19, "datei": 19, "viru": [10, 19], "spywar": 19, "troj": 19, "swrort": 19, "957487": 19, "64783": 19, "wbemexec": [19, 38, 39], "systemroot": [19, 20], "kiahtgbg": 19, "wbem": 19, "5sz1wzenmhyai": 19, "jonathan": 19, "puff": 19, "randomli": [19, 38, 39], "reli": [19, 30, 32, 33, 35, 36, 39], "psexec_psh": 19, "deflat": 19, "tear": 19, "psexecsvc": 19, "wce": 19, "fuzzynop": 19, "amplialab": [19, 20], "01fc5a6be7bc6929aad3b435b51404e": [19, 20], "0cb6948805f797bf2a82807973b89537": [19, 20], "amplia": [19, 20], "hernan": [19, 20], "ochoa": [19, 20], "ampliasecur": [19, 20], "00024e1bh": 19, "remotecomput": 19, "commandnam": 19, "netonli": 19, "remotecomputernam": 19, "schtask": [19, 36, 39], "demand": [19, 30, 31, 32, 33], "2003": [19, 33], "scheduletyp": 19, "tasknam": [19, 36, 39], "taskrun": 19, "ru": 19, "month": [10, 19, 29, 30], "idletim": 19, "starttim": 19, "ri": 19, "endtim": 19, "du": 19, "durat": [19, 20, 22, 24], "daili": [10, 19, 24, 37, 39], "weekli": 19, "monthli": [19, 24], "onstart": 19, "onlogon": 19, "onidl": 19, "batch": [10, 19, 37, 39], "backslash": [19, 35, 39], "obscur": [19, 23, 30, 32, 33], "armitag": 19, "hacker": [10, 19, 37, 39], "binpath": [19, 20], "myentri": 19, "reg_sz": [19, 36, 39], "xcopi": 19, "executabletorun": 19, "5985": 19, "5986": 19, "psremot": 19, "wsmid": 19, "apps03": 19, "dmtf": 19, "ident": [10, 19, 30, 31, 32, 33, 35, 39], "wsmanident": 19, "xsd": 19, "protocolvers": 19, "productvendor": 19, "productvers": 19, "trustedhost": 19, "scriptblock": [19, 35, 37, 39], "hybrid": [19, 31, 32], "pssession": [19, 37, 39], "dummyus": 19, "undo": [19, 30], "pssessionconfigur": 19, "localaccounttokenfilterpolici": 19, "cheatsheet": [19, 20, 32], "win32_process": [19, 36, 39], "calc": 19, "__paramet": 19, "processid": 19, "2616": 19, "returnvalu": 19, "abcn": 19, "textfil": [19, 30], "part3": [19, 20], "snap": [19, 31, 38, 39], "executeshellcommand": 19, "activeview": 19, "createinst": 19, "gettypefromprogid": 19, "windowspowershel": [19, 35, 39], "dfdfsfsfsfsfsfsfsdfsfsf": 19, "mmc20rce": 19, "gettypefromclsid": 19, "9ba05972": 19, "f6a8": 19, "11cf": 19, "a442": 19, "00a0c90a8f39": 19, "obj": 19, "c08afd90": 19, "f2a1": 19, "11d1": 19, "8455": 19, "00a0c91f3880": 19, "factori": 19, "clsid": 19, "80070005": 19, "categoryinfo": 19, "notspecifi": 19, "methodinvocationexcept": 19, "fullyqualifiederrorid": 19, "unauthorizedaccessexcept": 19, "playbook": [19, 31], "overpass": 19, "masquerad": [19, 30, 31], "klist": 19, "harvest": 19, "accepteula": [19, 20], "kirbi": 19, "domainadminus": 19, "dc1c": 19, "dc1": 19, "intent": [19, 32, 33], "fullscreen": 19, "submsi": 19, "msutil": 19, "rce": [19, 37, 38, 39], "pv": [19, 31], "bh": 19, "caught": 19, "retyp": 19, "localgroup": [19, 36, 39], "newpassword": 19, "xxxxxxxx": [19, 30], "xxxxxxxxxx": 19, "lastwritetim": [19, 36, 39], "recycl": [19, 30, 31], "dh": [10, 19], "rnd": 19, "jul": [19, 30, 38, 39], "bootmgr": 19, "ahsr": 19, "333257": 19, "apr": [19, 30, 35, 39], "bootsect": 19, "asr": 19, "8192": [19, 30, 37, 39], "cpqsprt": 19, "8004": 19, "cpqsystem": 19, "278": 19, "1406": 19, "aug": [19, 30, 38, 39], "lcd": [10, 19], "mget": 19, "win_pc_ip": [19, 30], "rastamous": [19, 36, 39], "loginprompt": 19, "fuzzi": [19, 20], "amaz": [19, 37, 39], "pivot": [19, 24, 30], "profit": [19, 24, 33, 37, 38, 39], "nikhil": 19, "samratashok": 19, "mittal": 19, "unconstrain": 19, "ms08": 19, "suggestor": 19, "bulletin": [10, 19, 36, 39], "lure": 19, "karl": 19, "fosaaen": 19, "hurdl": 19, "sysadmin": [19, 30], "credman": 20, "bernardo": 20, "part1": 20, "part4": 20, "part5": 20, "part6": 20, "fgdump": 20, "pwdump": 20, "ck": 20, "psh": 20, "lhost": [20, 35, 39], "131": 20, "umoks6wtlyl": 20, "webrequest": 20, "getsystemwebproxi": 20, "credentialcach": 20, "defaultcredenti": 20, "meterprert": 20, "kiwi": 20, "cryptolog": 20, "usestag": 20, "sta": 20, "wwbtahkauwb0aguabqauae4arqbuamaa7acqadwbdad0atgbfafcalqbpagiasgblagmavaagafmaeqbtafqazqbnac4atgblahqalgbxaeuaqgbdagwasqbfag4avaa7acqadqa9accatqbvahoaaqbsagwayqavadualgawacaakabxag": 20, "4aoqa3ac4amqazadealgaxadmaoaa6adgamaa4adaalwbpag4azablahgalgbhahmacaaiackakqapahwajqb7acqaxwataeiawabpafiajablafsajabjacsakwalacqaswauaewazqboaecadabiaf0afqa7aekarqbyacaakaakaeialqbkag8asqboaccajwapaa": 20, "2ftfymkdfssf": 20, "dumpfilepath": 20, "secretsdump": [20, 37, 39], "bootkei": 20, "0x602e8c2947d56a95bf9cfxxxxxxxxxxx": 20, "admsi": 20, "3e24dcead23468ce597d68xxxxxxxxxx": 20, "501": [20, 30], "31d6cfe0d16ae931b73c59dxxxxxxxxx": 20, "64f12cddaa88057e06a81b5xxxxxxxxx": 20, "encryptedhash": 20, "longdomain": 20, "adm2": 20, "6ec74661650377df488415415bf10321": 20, "system1": 20, "c4a850e0fee5af324a57fd2eeb8dbd24": 20, "system2": 20, "2fb3672702973ac1b9adxxxxxxxxxx": 20, "theuser": 20, "000118914h": 20, "01020304050607080900010203040506": 20, "98971234567865019812734576890102": 20, "3beta": 20, "mypass1234": 20, "cachedump": 20, "vmdk": [20, 31], "mound": 20, "vmware": [10, 20, 31, 34, 36, 39], "osfmount": 20, "tee": [20, 35], "nharpsi": 20, "6b29dfa157face3f3d8db489aec5cc12": 20, "25bd785b8ff1b7fa3a9b9e069a5e7de7": 20, "mscash2": 20, "dcc2": 20, "intrins": 20, "8x": 20, "g0d": 20, "welcome1": 20, "coredump": 20, "vmss": 20, "vmsn": 20, "hashdump": 20, "vmem": 20, "avalon": 20, "b33f": 20, "vmss2core_mac64": 20, "win7": 20, "testb": [20, 29], "vmwarevm": 20, "e7a44fca": 20, "3157536": 20, "ddb": 20, "0x2930c28": 20, "mmpfndatabas": 20, "0x82970700": 20, "psloadedmodulelist": 20, "0x82950850": 20, "psactiveprocesshead": 20, "0x82948f18": 20, "kibugcheckdata": 20, "0x82968a40": 20, "kernbas": 20, "0x82806000": 20, "ntbuildlab": 20, "0x82850fa8": 20, "17514": 20, "x86fre": 20, "win7sp1_rtm": 20, "101119": 20, "1850": 20, "coredumpscanwin32": 20, "minorvers": 20, "win7sp1x86": 20, "josjikawa": 20, "vol": 20, "kdbg": 20, "win7sp0x86": 20, "instanti": [20, 31], "winxpsp2x86": 20, "layer1": 20, "ia32pagedmemorypa": 20, "layer2": 20, "windowscrashdumpspace32": 20, "unnam": [20, 37, 39], "layer3": 20, "fileaddressspac": 20, "pae": 20, "dtb": 20, "0x185000l": 20, "kuser_shared_data": 20, "0xffdf0000l": 20, "hivelist": 20, "0x988349c8": 20, "0x3945a9c8": 20, "fubar": 20, "appdata": [20, 36, 39], "usrclass": 20, "dat": 20, "0x87a0c008": 20, "0x27f9f008": 20, "0x87a1c008": 20, "0x280ed008": 20, "0x87a3a6b0": 20, "0x27d4b6b0": 20, "0x87abe5c0": 20, "0x2802a5c0": 20, "0x880b5008": 20, "0x231b7008": 20, "0x88164518": 20, "0x231cc518": 20, "0x8bd019c8": 20, "0x24aec9c8": 20, "harddiskvolume1": [20, 36, 39], "bcd": 20, "0x8bdd2008": 20, "0x24772008": 20, "0x8f5549c8": 20, "0x1f39e9c8": 20, "serviceprofil": 20, "0x90e83008": 20, "0x1f09f008": 20, "localservic": 20, "0x955a9450": 20, "0x15468450": 20, "syscach": 20, "hve": 20, "0x988069c8": 20, "0x3aa329c8": 20, "31d6cfe0d16ae931b73c59d7e0c089c0": 20, "8119935c5f7fa5f57135620c8073aaca": 20, "1003": [20, 36, 39], "7d65996108fccae892d38134a2310a4": 20, "volatility_2": 20, "4_x64": 20, "priviledg": 20, "fillei": 20, "sdshow": 20, "cclcswlocrrc": 20, "ccdclcswrpwpdtlocrsdrcwdwo": 20, "cclcswrpwpdtlocrrc": 20, "fa": [20, 24], "wd": 20, "changeserviceconfig": 20, "startservic": 20, "1053": 20, "fashion": [20, 30, 31, 33], "reckless": 20, "nestedgroup": 20, "sole": 20, "thereof": 20, "dsget": 20, "2079967355": 20, "3169663337": 20, "3296943937": 20, "1111": 20, "succeed": 20, "secedit": 20, "gpttmpl": 20, "inf": 20, "544": 20, "membership": [20, 22, 30, 31, 34], "544__memberof": 20, "544__member": 20, "surround": [10, 20, 30], "readpst": 20, "libpst": 20, "mh": 20, "rfc822": 20, "dirnam": 20, "cwd": [20, 35, 39], "quiet": [20, 30], "eajc": 20, "mbox": 20, "findstr": [20, 36, 39], "swamp": 20, "sift": 20, "ourselv": 20, "eac": 20, "unread": 20, "searchqueri": 20, "targetmailbox": 20, "discoverymailbox": 20, "targetfold": 20, "loglevel": 20, "newmailboxcr": 20, "inbox": 20, "newli": [20, 30, 31, 32], "powerview": [20, 37, 39], "netfileserv": 20, "mountdirectori": 20, "ifm": 20, "ninjacopi": 20, "dcsync": 20, "sound": [20, 24, 30, 33], "spend": [20, 32], "sinn3r": 20, "spy": 20, "mic": 20, "speech": 20, "psr": 20, "fullfilepath": 20, "maxsc": 20, "sketch": 20, "arcetl": 20, "arcxml": 20, "arcmht": 20, "stopev": 20, "eventnam": 20, "maxlogs": 20, "recordpid": 20, "outputpath": [20, 38, 39], "etw": 20, "mht": 20, "cool": [10, 20, 26, 33, 36, 39], "vmm": [20, 31], "tier": [20, 31, 32], "tradit": [20, 23, 30, 31, 36, 37, 39], "sccm": 20, "enigma": 20, "scom": 20, "repetit": [20, 29, 30, 33], "lport": [20, 35, 39], "macho": 20, "ansibl": [20, 29], "roberto": 20, "salgado": 20, "cred_f": 20, "socks5": [20, 35, 37, 39], "9050": [20, 35, 39], "offici": [20, 30, 31, 32, 33], "janedo": 20, "johndo": 20, "abc123": 20, "mitig": [10, 20, 29, 32], "pth": 20, "necessarili": [20, 30, 32], "upn": 20, "unsalt": 20, "md4": 20, "collis": [20, 31, 32], "guidanc": [10, 20, 29, 32, 33, 40], "valuabl": [10, 20, 32], "hklmsecur": 20, "ever": [20, 32, 35, 39], "behalf": [20, 31, 33], "sharepoint": [20, 37, 39], "reversibli": 20, "replica": 20, "dpapi": 20, "hashcat": 20, "word_dictionari": 20, "50k": 20, "darkc0d": 20, "lst": 20, "inplac": 20, "_same_": 20, "ruleset": 20, "lastnam": 20, "dic": 20, "korelogicrulesadd2010everywher": 20, "3everyth": 20, "ssha": 20, "korelogicrulesmonthsfullprefac": 20, "season": [20, 40], "korelogicrulesprependjustspeci": 20, "korelogicrul": 20, "sports_team": 20, "pot": 20, "potfil": 20, "cobalt": 20, "strike": 20, "sixdub": 20, "divers": 20, "powermemori": 20, "det": 20, "docx": 21, "lockhe": 21, "martin": [21, 32], "dispar": 21, "homogen": 21, "plethora": 22, "dirti": 22, "osi": [22, 33], "spi": 22, "quest": 22, "broadli": [22, 32], "speak": [22, 35, 39], "foremost": 22, "runn": 22, "tftp": [22, 36, 37], "voilat": 22, "stakehold": [10, 22, 32], "buis": 22, "clerali": 22, "authnet": 22, "telent": 22, "cdp": 22, "juici": 22, "verison": 22, "isnt": 22, "riski": [22, 24], "finger": [22, 30], "requiremnet": 22, "vty": 22, "auxilliari": 22, "aux": [22, 30, 36, 37, 39], "contorl": 22, "paid": [22, 24, 31, 32], "trial": 22, "junip": 22, "netscreen": 22, "sonicwal": 22, "ibm": [22, 31], "iseri": 22, "juno": 22, "tenabl": 22, "packetstorm": 22, "ncm": 22, "nist": [10, 22, 31, 32], "fisma": 22, "stig": [22, 29], "toolset": 22, "wlc": 22, "tufin": 22, "proactiv": 22, "securetrack": 22, "securechang": 22, "secureapp": 22, "toc": 22, "reneiw": 22, "rulebas": 22, "tabul": 22, "rsop": 22, "targetdomain": 22, "targetus": 22, "srvmain": 22, "maindomhiropln": 22, "ssw23": 22, "maindom": 22, "hiropln": 22, "itemproperti": [22, 36, 39], "wow6432nod": 22, "displayvers": 22, "installd": [22, 36, 39], "misconfigur": [22, 29, 35, 36, 37, 39], "subcategori": 22, "audit_polici": 22, "inconsist": [22, 29], "spreadsheet": [22, 29, 30], "permisss": 22, "persmiss": 22, "gpl": [22, 33], "merit": 22, "resurrect": 22, "modular": [22, 30, 31, 37, 39], "solari": [22, 31], "hpux": 22, "unprivilg": 22, "cron": [22, 37], "inetd": 22, "unneed": [10, 22], "checkbp": 22, "checkcfg": 22, "checkdotfil": 22, "exrc": 22, "netrc": 22, "checkfil": 22, "sitcki": 22, "utmp": 22, "wtmp": [22, 35, 39], "mtab": 22, "644": 22, "checkftpus": 22, "ftpuser": [22, 38, 39], "checkhostsfil": 22, "checkinetd": 22, "xinetd": 22, "checkinittab": 22, "runlevel": 22, "checkipv4": 22, "checklimit": 22, "checklog": 22, "authpriv": 22, "erp": [10, 23], "entrust": 23, "plm": 23, "srm": 23, "procur": [23, 33], "abap": 23, "sm59": 23, "smicm": 23, "sap_service_discoveri": 23, "3200": 23, "sapdp00": 23, "3201": 23, "sapdp01": 23, "sapgw00": 23, "sapm": 23, "8001": 23, "sap_icf_public_info": 23, "oracl": [10, 23, 30, 31, 34, 37, 39], "4102": 23, "sapdev": 23, "745": 23, "274": 23, "ux": 23, "sapdev_dev_00": 23, "740": 23, "timezon": 23, "19800": 23, "sapqa": 23, "sapqas_qas_00": 23, "qa": [23, 30, 31], "prddb": 23, "sapprdc": 23, "sapprdc_prd_01": 23, "prd": 23, "4103": 23, "xxxnwprd2": 23, "mi2": 23, "xxxnwprd": 23, "710": 23, "562": 23, "xxxnwprd2_mi2_02": 23, "hood": [23, 30, 33], "envelop": 23, "xmlsoap": 23, "rfc_system_info": 23, "urn": 23, "rfcsi": 23, "rfcproto": 23, "rfcchartyp": 23, "rfcinttyp": 23, "lit": 23, "rfcflotyp": 23, "ie3": 23, "rfcdest": 23, "pclnwprd2_mi2_02": 23, "rfchost": 23, "pclnwprd": 23, "rfcsysid": 23, "rfcdatab": 23, "rfcdbhost": 23, "pclnwprd2": 23, "rfcdbsy": 23, "rfcsaprl": 23, "rfcmach": 23, "rfcopsi": 23, "rfctzone": 23, "rfcdayst": 23, "rfcipaddr": 23, "rfckernrl": 23, "rfchost2": 23, "rfcsi_resv": 23, "rfcipv6addr": 23, "sicf": 23, "felt": 24, "gold": [24, 32], "estat": 24, "debt": 24, "capit": [24, 32], "bought": 24, "150": [10, 24, 38, 39], "bse": 24, "deeper": 24, "investor": 24, "growth": [24, 30, 33], "prospect": 24, "deduct": 24, "sale": [24, 33], "margin": 24, "competit": [24, 33], "ratio": 24, "earn": [24, 32], "cloth": 24, "cheap": 24, "nbfc": 24, "rbi": 24, "roe": 24, "sharehold": 24, "opm": 24, "pat": 24, "motiv": 24, "bhaav": 24, "bhagwan": 24, "che": 24, "bullish": 24, "candl": 24, "trap": [24, 30], "zerodha": 24, "kite": 24, "studi": [24, 33], "ralli": 24, "breakout": [24, 38, 39], "swing": 24, "sell": [24, 32, 33], "sold": [24, 32], "downturn": 24, "upturn": 24, "regulatori": 24, "sebi": 24, "screener": 24, "chairman": 24, "confid": [24, 31, 32, 33], "tangibl": [24, 33], "intang": 24, "machineri": 24, "patent": 24, "noncurr": 24, "realiz": 24, "illiquid": 24, "intellectu": [24, 33], "rou": 24, "lesse": 24, "leas": [24, 33], "incur": [24, 31], "goodwil": 24, "reput": [24, 32], "loyal": 24, "solid": 24, "defer": 24, "tax": 24, "taxabl": 24, "overpai": 24, "monei": [24, 29, 32, 33], "relief": 24, "overpay": 24, "credit": [24, 32, 33], "matur": 24, "cashier": 24, "borrow": 24, "oblig": [24, 33], "loan": 24, "repai": 24, "repay": 24, "fulfil": [24, 30], "accru": 24, "financ": [24, 29], "hire": [24, 29, 33], "reap": [24, 30], "park": 24, "dividend": 24, "bond": [10, 24], "pessim": 24, "yearli": 24, "stori": 24, "steep": 24, "candlestick": 24, "ohlc": 24, "highest": [10, 24, 30], "rd": 24, "ppf": 24, "5000": 24, "quantit": 24, "settl": 24, "compli": [24, 30, 32, 33], "complaint": 24, "depositori": 24, "viz": 24, "cdsl": 24, "nsdl": 24, "demateri": 24, "gdp": 24, "agricultur": 24, "automot": [24, 33], "chemic": 24, "bagger": 24, "life": [24, 29, 31], "fold": [24, 35, 39], "practis": 24, "geographi": 24, "employ": [24, 33], "emot": 24, "wast": [24, 32], "advic": [24, 32], "myth": 24, "rare": [24, 32, 33], "shortag": 24, "attent": [24, 33, 36, 39], "excess": 24, "lose": [10, 24], "peac": 24, "indian": 24, "broker": [24, 31, 32], "motil": 24, "oswal": 24, "ipo": 24, "nifti": 24, "sensex": 24, "corpu": 24, "passion": 24, "gift": 24, "mojo": 24, "marketsmojo": 24, "moneycontrol": 24, "economictim": 24, "indiatim": 24, "livemint": 24, "hear": 25, "enthusiast": 26, "streamlin": [26, 29, 31, 33], "umm": 26, "sphinx": 26, "vulhub": 26, "cyberac": 26, "oscp": 26, "futurelearn": 26, "leviathan": 26, "cryptop": 26, "happi": 26, "vijai": 26, "kumar": 26, "contributor": [27, 31], "aaron": 28, "ott": 28, "ernest": 28, "kai": 28, "drawnzer": 28, "pjdeni": 28, "tunni": 28, "alic": 29, "hopefulli": [29, 32], "evolv": [29, 33], "friend": [29, 33, 35, 39], "met": [29, 30, 31, 35, 39], "fantast": 29, "unwant": [29, 30], "adguard": 29, "opendn": 29, "depreci": 29, "auditor": [10, 29, 37, 39], "mbsa": 29, "tough": 29, "hierarch": [10, 29, 30, 31], "memor": 29, "arch": 29, "tomcat": [29, 34, 39], "safeguard": [29, 30, 32], "todai": [29, 32], "june": [29, 30], "saltstack": 29, "chef": 29, "testabl": [29, 32], "dsc": [29, 30], "inspec": 29, "adher": [29, 33], "dscea": 29, "mof": [29, 37, 38, 39], "galleri": [29, 31], "baselinemanag": 29, "kitchen": 29, "har": 29, "amazon": 29, "ec2": [29, 31], "gce": [29, 31], "azur": 29, "cloudstack": [29, 31], "ocean": [29, 31], "rackspac": 29, "openstack": [29, 31, 33], "vagrant": 29, "lxc": [29, 38, 39], "wrote": [29, 35, 39], "rubocop": 29, "outlin": [10, 29], "lint": 29, "pylint": 29, "smell": 29, "refactor": [29, 31], "restructur": 29, "codesniff": 29, "phpc": 29, "php_codesniff": 29, "violat": [10, 29], "phpcbf": 29, "phpmd": 29, "mess": [29, 30, 33], "detector": 29, "suboptim": 29, "overcompl": 29, "tidi": [29, 36, 39], "filtrat": 29, "cfo": 29, "elast": 29, "ingest": 29, "multitud": 29, "stash": 29, "quarterli": 29, "wef": 29, "wec": 29, "jessica": 29, "payn": 29, "russel": 29, "tomkin": 29, "subscript": [29, 31], "sauron": 29, "centralis": 29, "evtx": 29, "beyondtrust": 29, "guard": [29, 30], "japan": 29, "nsa": 29, "adversari": [10, 29, 32], "eu": [29, 32], "acceler": [29, 38, 39], "majorli": 29, "zap": [29, 38, 39], "zed": 29, "sei": [29, 32], "modsecur": 29, "700": 29, "mysql": [10, 29, 31, 37], "opennm": 29, "openaudit": 29, "himself": 29, "lap": 29, "opennac": 29, "wan": [10, 29], "alcatel": 29, "smartphon": [29, 32], "tablet": [10, 29], "nac": 29, "applock": 29, "ata": 29, "timelin": [29, 32], "defend": 29, "atp": 29, "phish": [10, 29], "hostil": 29, "mwr": 29, "infosecur": [29, 35, 39], "wareh": 29, "manti": 29, "django": 29, "stix": 29, "cybox": 29, "openioc": 29, "iodef": 29, "5070": 29, "mongodb": 29, "crit": 29, "Into": 29, "grr": 29, "cti": 29, "anticip": 29, "taxii": 29, "misp": 29, "oversight": 29, "misus": [29, 30, 32, 33, 38, 39], "illustr": 30, "julia": [30, 31], "digramwis": 30, "userland": [30, 31, 34, 39], "gentoo": 30, "grub": 30, "isolinux": 30, "nfsd": 30, "gnome": [30, 33], "kde": [30, 33], "xfce": [30, 33], "fluxbox": 30, "tcsh": 30, "zsh": 30, "damag": [10, 30, 32, 33], "surviv": 30, "btrf": [30, 31], "mous": [30, 35, 39], "paritcular": 30, "crw": 30, "506": 30, "media0": 30, "media1": 30, "media2": 30, "kmem": 30, "brw": 30, "179": 30, "mmcblk0": 30, "mmcblk0p1": 30, "mmcblk0p2": 30, "rework": 30, "senior": [10, 30], "fellow": 30, "linu": [30, 33], "torvald": [30, 33], "sle": 30, "opensus": 30, "yast": 30, "epiphani": 30, "w3m": 30, "lynx": 30, "thunderbird": [30, 36], "claw": 30, "mutt": 30, "xchat": 30, "pidgin": 30, "libreoffic": 30, "amarok": 30, "rhythmbox": 30, "movi": [30, 33], "vlc": 30, "xine": 30, "totem": 30, "kino": 30, "cinepaint": 30, "blender": 30, "retouch": 30, "eog": 30, "inkscap": 30, "scribu": 30, "initramf": 30, "rom": [10, 30], "motherboard": 30, "cmo": 30, "batteri": 30, "grand": 30, "da": 30, "oss": [30, 31, 32], "bootabl": [30, 31], "splash": 30, "udev": [30, 35, 39], "Near": 30, "f7": 30, "adopt": [30, 31, 33], "aggress": [10, 30, 33], "ship": [30, 31, 32], "sshd_config": [30, 35, 39], "auditd": 30, "conditionpathexist": 30, "sshd_not_to_be_run": 30, "environmentfil": 30, "execstartpr": 30, "execstart": 30, "sshd_opt": 30, "execreload": 30, "hup": 30, "mainpid": 30, "killmod": 30, "restartpreventexitstatu": 30, "runtimedirectori": 30, "runtimedirectorymod": 30, "wantedbi": 30, "attain": 30, "inittab": 30, "finabl": 30, "jf": 30, "ubif": 30, "yaff": 30, "procf": [30, 36, 39], "sysf": 30, "tmpf": [30, 31], "debugf": [30, 38, 39], "withoutsystem": 30, "upport": 30, "dvd": 30, "graft": 30, "theoret": 30, "mimic": 30, "cpuinfo": 30, "meminfo": 30, "vital": [30, 33], "lp1": 30, "spool": 30, "explod": 30, "skel": 30, "skeleton": 30, "bookkeep": 30, "grub2": 30, "libncurs": 30, "pam": 30, "ramdisk": 30, "dumpe2f": 30, "sda4": 30, "cloudimg": 30, "rootf": 30, "f75f9307": 30, "27dc": 30, "87b7": 30, "0xef53": 30, "has_journ": 30, "ext_attr": 30, "resize_inod": 30, "dir_index": 30, "needs_recoveri": 30, "flex_bg": 30, "sparse_sup": 30, "large_fil": 30, "huge_fil": 30, "uninit_bg": 30, "dir_nlink": 30, "extra_is": 30, "signed_directory_hash": 30, "snipe": 30, "xhcx": 30, "destruct": 30, "seamless": [30, 31], "startx": 30, "lightdm": 30, "kdm": 30, "xdm": 30, "tweak": 30, "xdpyinfo": 30, "dim": 30, "3200x1080": 30, "847x286": 30, "telinit": 30, "xterm": 30, "rxvt": 30, "konsol": 30, "f6": [30, 37, 39], "mynam": 30, "detach": [30, 31], "pane": 30, "shouldn": [10, 30], "scratch": [30, 31, 33], "mousehighlight": 30, "eric": [30, 37, 39], "raymond": 30, "whati": 30, "apropo": 30, "cpio": 30, "ntfscp": 30, "subsect": 30, "subtop": 30, "pinfo": 30, "synopsi": [30, 32], "yelp": 30, "khelpcent": 30, "zcat": 30, "wherei": 30, "tild": 30, "pushd": 30, "popd": 30, "bird": 30, "ey": 30, "suppress": [10, 30, 37, 39], "forcefulli": 30, "rf": 30, "rmdir": 30, "nano": 30, "vimtutor": 30, "3w": 30, "30i": 30, "esckei": 30, "escapekei": 30, "fo": [30, 36, 39], "3fo": 30, "parenthes": 30, "parenthesi": 30, "30g": 30, "30th": 30, "spell": 30, "dnd": [30, 35, 39], "yank": 30, "yny": 30, "currentlin": 30, "esc": 30, "wq": 30, "nonumb": 30, "spelllang": 30, "en_u": [30, 38, 39], "nospel": 30, "whitespac": [30, 37, 39], "eol": [30, 35, 39], "hexedit": 30, "fmt": 30, "gi": [30, 37, 39], "nerd": 30, "nerdtreetoggl": 30, "nerdtreefocu": 30, "nerdtre": 30, "syntast": 30, "syntasticcheck": 30, "youcompletem": 30, "fzf": 30, "gfile": 30, "oldfil": 30, "ultisnip": 30, "fugit": 30, "bcommit": 30, "tabular": 30, "vundl": 30, "pluginlist": 30, "plugininstal": 30, "pluginupd": 30, "pluginsearch": 30, "pluginclean": 30, "scriptfil": 30, "replace_str": 30, "nologin": 30, "passwd_new": 30, "rearrang": 30, "ascend": 30, "simplifi": [30, 31], "file3": 30, "american": 30, "99171": 30, "dictionaryxx": 30, "my_str": 30, "book1": 30, "xl": 30, "set1": 30, "set2": 30, "abcdefghijklmnopqrstuvwxyz": 30, "inputfil": 30, "brace": 30, "geek": 30, "432234": 30, "newfil": 30, "unalia": 30, "scroll": [30, 37, 39], "synonym": [30, 32], "tac": 30, "octet": 30, "octal": 30, "zless": 30, "zdiff": 30, "zgrep": 30, "zmore": 30, "bzcat": 30, "bzless": 30, "bzip2": [30, 36, 39], "xzcat": 30, "xzless": 30, "updatedb": 30, "criteria": 30, "somenam": [30, 35, 39], "gname": 30, "kilobyt": 30, "megabyt": 30, "gigabyt": 30, "ctime": 30, "atim": 30, "mtime": 30, "cmin": 30, "amin": 30, "mmin": [30, 37, 39], "squiggli": 30, "placehold": [30, 35, 39], "mattter": 30, "thE": 30, "BUT": 30, "testfil": [30, 37, 39], "crime": [30, 32], "matcher": 30, "za": 30, "clarifi": [30, 33], "rnw": 30, "th": 30, "binv": 30, "yield": [10, 30, 33], "tick": 30, "tarbal": 30, "smaller": [10, 30, 32], "xvf": 30, "mydir": 30, "zcvf": 30, "jcvf": 30, "projectx": 30, "gunzip": 30, "bunzip2": 30, "dk": 30, "dcf": 30, "dry": 30, "sourcefil": 30, "destinationfil": 30, "avrxh": 30, "sourcedir": 30, "filename1": 30, "filename2": 30, "cmp": 30, "nur": 30, "originalfil": 30, "patchfil": 30, "cal": 30, "journalctl": 30, "sentenc": 30, "brown": 30, "lazi": 30, "dog": 30, "azi": 30, "ju": 30, "contextu": 30, "overridden": 30, "path1": 30, "path2": 30, "student": [30, 33], "debian_chroot": 30, "hop": 30, "mysit": [10, 30], "sftp": 30, "ncftp": 30, "yafc": 30, "benefici": [30, 31], "remote_system": 30, "some_system": 30, "my_command": 30, "ssh_host_": 30, "kept": [30, 35, 39], "localfil": 30, "remotesystem": 30, "ethtool": 30, "netstat": [30, 36, 37, 39], "iptraf": 30, "mtr": 30, "ifup": 30, "ifdown": 30, "deconfigur": 30, "inet": [30, 31, 37, 39], "inet6": [30, 31], "loopback": [30, 31, 35, 37, 39], "wpasupplic": 30, "explan": 30, "homenetworkssid": 30, "homenetworkpassword": 30, "enp2s0": 30, "asterik": 30, "file23": 30, "pic": 30, "pic1": 30, "pic2": 30, "pic24": 30, "uncondition": 30, "ampersand": 30, "hello1": 30, "hello2": 30, "3017": 30, "lahi": 30, "4995": 30, "claim": [30, 32], "geco": 30, "ksh": [30, 35, 39], "4294967294": 30, "lpd": 30, "invscout": 30, "uucppubl": 30, "uucico": 30, "paul": 30, "jdoe": 30, "smithj": 30, "ep6mckrolchf": 30, "10063": 30, "99999": [30, 38, 39], "januari": 30, "week": 30, "cdrom": [30, 38, 39], "mike": 30, "yummi": [30, 36, 39], "gshadow": 30, "vipw": 30, "vigr": 30, "getent": 30, "nss": 30, "nsswitch": 30, "ki4ovkaqyeqicqjt": 30, "jcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxlfm": 30, "18622": 30, "lastb": 30, "userid": [30, 36, 39], "nodenam": 30, "pstree": 30, "alft": 30, "winkei": 30, "unsuccess": 30, "lognam": [30, 37, 39], "euid": 30, "ruser": 30, "as_whom": 30, "440": 30, "visudo": 30, "cess": 30, "xampl": 30, "erac": 30, "tive": 30, "roce": 30, "firef": 30, "atch": 30, "fifo": 30, "upd": 30, "atedb": 30, "dae": 30, "bvirtd": 30, "thr": 30, "refox": 30, "gno": 30, "ter": 30, "minal": 30, "ke": 30, "rnel": 30, "kth": 30, "readd": 30, "migr": 30, "ation": 30, "kso": 30, "ftirqd": 30, "thereaft": 30, "libc": [30, 31], "libdmmp": 30, "34664": 30, "sonam": 30, "0x0000ffffb3bda000": 30, "libm": 30, "aarch64": 30, "0x0000ffffb3813000": 30, "libtinfo": 30, "0x0000ffffb37d5000": 30, "libselinux": 30, "0x0000ffffb379d000": 30, "libcanberra": 30, "0x0000ffffb377b000": 30, "libacl": 30, "0x0000ffffb3762000": 30, "libgpm": 30, "0x0000ffffb374c000": 30, "libdl": 30, "0x0000ffffb3738000": 30, "libpython3": 30, "0x0000ffffb31e2000": 30, "libpthread": 30, "0x0000ffffb31b2000": 30, "0x0000ffffb303f000": 30, "0x0000ffffb3baa000": 30, "libpcre2": 30, "0x0000ffffb2fb1000": 30, "libvorbisfil": 30, "0x0000ffffb2f98000": 30, "libtdb": 30, "0x0000ffffb2f70000": 30, "libltdl": 30, "0x0000ffffb2f56000": 30, "libexpat": 30, "0x0000ffffb2f1f000": 30, "libz": 30, "0x0000ffffb2ef5000": 30, "libutil": 30, "0x0000ffffb2ee1000": 30, "libvorbi": 30, "0x0000ffffb2ea6000": 30, "libogg": 30, "0x0000ffffb2e8c000": 30, "ldconfig": 30, "anytim": 30, "ld_library_path": 30, "323": 30, "libzstd": 30, "libc6": 30, "libyaml": 30, "seg": 30, "kbyte": 30, "pend": [30, 31], "30857": 30, "65536": [30, 31, 37, 39], "819200": 30, "eagerli": 30, "experienc": [30, 33], "zombi": 30, "inquir": 30, "defunct": 30, "lesser": [30, 33], "ppid": 30, "pgid": 30, "tid": 30, "pid_max": 30, "awaken": 30, "unpredict": [10, 30], "killal": 30, "pkill": 30, "sigkil": 30, "sigstop": 30, "prematur": 30, "sighup": 30, "sigint": [30, 35, 39], "sigquit": 30, "sigil": 30, "sigabrt": 30, "sigbu": 30, "sigfp": 30, "sigusr1": 30, "sigsegv": 30, "sigusr2": 30, "sigpip": 30, "sigalrm": 30, "sigterm": 30, "sigstkflt": 30, "sigcont": 30, "sigtstp": 30, "sigttin": 30, "sigttou": 30, "sigurg": 30, "sigxcpu": 30, "sigxfsz": 30, "sigvtalrm": 30, "sigprof": 30, "sigwinch": 30, "sigio": 30, "sigpwr": 30, "sigsi": 30, "sigrtmin": 30, "sigrtmax": 30, "rgid": 30, "egid": 30, "ni": 30, "process_id": 30, "decreas": 30, "predetermin": 30, "saw": 30, "quad": 30, "smooth": [30, 33], "bg": 30, "fg": [30, 35, 39], "ipc_priv": 30, "destructionwhen": 30, "htop": 30, "atop": 30, "ef": 30, "axo": 30, "clearli": [30, 32, 33], "percentag": [30, 32], "si": [10, 30, 36, 39], "xfce4": 30, "taskmanag": 30, "ksysguard": 30, "atq": 30, "datestamp": 30, "ongo": 30, "crontab": [10, 30, 37], "dom": 30, "dow": 30, "sundai": 30, "irrespect": [30, 31], "prescript": 30, "bash_login": 30, "fiddl": 30, "bash_histori": [30, 35, 36, 39], "bash_logout": [30, 35, 39], "environment": [10, 30, 35, 39], "histsiz": 30, "histfil": [30, 35, 39], "histfiles": 30, "histcontrol": 30, "histignor": 30, "unsav": 30, "pronounc": 30, "nth": 30, "backtick": 30, "planet": 30, "THE": [10, 30], "element1": 30, "element2": 30, "element3": 30, "233": 30, "opposit": 30, "sometest": 30, "test1": 30, "somothertest": 30, "test2": 30, "pattern1": 30, "pattern2": 30, "pattern3": 30, "pattern4": 30, "esac": 30, "function_nam": 30, "script_fil": 30, "delin": 30, "mktemp": 30, "tempdir": 30, "volumin": 30, "overwhelm": 30, "pseudofil": 30, "disappear": [30, 33], "lr": 30, "meaningless": [10, 30], "urandom": 30, "drawn": 30, "refin": 30, "sgid": [30, 36, 39], "ge": 30, "revision_numb": 30, "unmodifi": [30, 31], "aptitud": 30, "synapt": 30, "distributor": [30, 32], "listfil": 30, "mageia": 30, "e18": 30, "berkelei": [10, 30, 33], "helper": [30, 31], "rpmrc": 30, "ql": 30, "qi": 30, "prerequisit": 30, "whatprovid": 30, "whatrequir": 30, "el8_0": 30, "conflict": [30, 31, 33], "rpmsave": 30, "uvh": 30, "package_nam": 30, "downgrad": [30, 37, 39], "oldpackag": 30, "fvh": 30, "minor": [30, 32], "mismatch": 30, "readlink": 30, "logrot": 30, "rpm2archiv": 30, "xvz": 30, "nevertheless": 30, "contrib": 30, "packagenam": [30, 33], "pkgname": 30, "showpkg": 30, "rdepend": 30, "metapackag": 30, "purg": [30, 33], "dist": 30, "autoremov": 30, "club": 30, "99local": 30, "yourproxi": 30, "3128": [30, 37, 39], "990": 30, "explanationl": 30, "unstabl": 30, "experiment": [30, 38, 39], "unsatisfi": 30, "cam": 30, "markauto": 30, "unmarkauto": 30, "xapian": 30, "armhf": 30, "repackag": 30, "alongsid": [30, 31], "libwin": 30, "ambigu": [30, 33], "libgcc1": 30, "wine": 30, "circumv": 30, "seal": 30, "hasn": 30, "keyr": 30, "gnupg": [30, 37, 39], "gpg": 30, "cdimag": 30, "rsa4096": 30, "8439": 30, "38df": 30, "228d": 30, "22f7": 30, "b374": 30, "2bc0": 30, "d94a": 30, "a3f0": 30, "efe2": 30, "1092": 30, "f6ec": 30, "b376": 30, "2474": 30, "eda9": 30, "d21b": 30, "7022": 30, "8719": 30, "20d1": 30, "991b": 30, "c93c": 30, "ftpmaster": 30, "complain": [30, 33], "asc": 30, "xxd_2": 30, "3a8": 30, "3995": 30, "1ubuntu2": 30, "10_armhf": 30, "zst": 30, "apt_1": 30, "beta1_amd64": 30, "tzf": 30, "conffil": 30, "md5sum": 30, "postinst": 30, "postrm": 30, "preinst": 30, "prerm": 30, "shlib": 30, "tjf": 30, "01autoremov": 30, "3478": 30, "gpgv": 30, "gpgv2": 30, "gpgv1": 30, "libapt": 30, "pkg5": 30, "rc2": 30, "libstdc": 30, "gnupg2": 30, "gnupg1": 30, "wajig": 30, "powermgmt": 30, "exp2": 30, "preselect": 30, "stipul": [30, 33], "compulsori": 30, "indispens": 30, "perfectli": 30, "hinder": [10, 30], "transitori": 30, "entitl": 30, "zsh_5": 30, "1_amd64": 30, "814486": 30, "2557": 30, "838": 30, "3327": 30, "969": 30, "175": [30, 37, 39], "dh_installdeb": 30, "maintscript": 30, "symlink_to_dir": 30, "satisfactori": 30, "insofar": 30, "zsh5": 30, "1785": 30, "debconf": [30, 36, 39], "frontend": 30, "bash_4": 30, "2_amd64": 30, "baseurl": 30, "ht": 30, "tp": [30, 32], "mirrorlist": 30, "gpgcheck": 30, "deplist": 30, "grouplist": 30, "groupinfo": 30, "packagegroup": 30, "localinstal": 30, "groupinstal": 30, "rpmnew": 30, "repolist": 30, "downloadonli": 30, "rpmdb": 30, "yellowdog": 30, "addrepo": 30, "removerepo": 30, "zypp": 30, "useradd": 30, "userdel": 30, "fuse": 30, "delus": 30, "mailspool": 30, "userhom": 30, "expired": 30, "yyyi": 30, "addgroup": 30, "delgroup": 30, "groupmod": 30, "gpasswd": 30, "groupdel": 30, "chfn": 30, "chsh": [30, 35, 39], "chage": 30, "newgrp": 30, "rfile": [30, 36, 39], "chgrp": 30, "1601": 30, "uo": 30, "rwxr": [30, 36, 39], "shorthand": 30, "suffic": 30, "freedom": [30, 32, 33], "755": 30, "sticki": [30, 36, 39], "everybodi": 30, "fourth": 30, "4754": 30, "fstab": 30, "exportf": 30, "heavier": 30, "nofail": 30, "sudent": 30, "lsmod": 30, "lspci": 30, "lsusb": 30, "hal": 30, "lspcmcia": 30, "pcmcia": 30, "lsdev": 30, "lshw": 30, "introspect": 30, "forth": 30, "cupsd": 30, "advertis": [10, 30], "ppd": 30, "flavor": 30, "lpr": 30, "lpoption": 30, "lpq": 30, "lpadmin": 30, "lpstat": 30, "lprm": 30, "lpmove": 30, "newprint": 30, "printout": 30, "enscript": 30, "rtf": 30, "psfile": 30, "pdf2p": 30, "ps2pdf": 30, "pstopdf": 30, "pdftop": 30, "evinc": 30, "okular": 30, "ghostview": 30, "xpdf": 30, "bookmark": [10, 30], "1r": 30, "clockwis": 30, "mypw": 30, "a1": [30, 35, 39], "endright": 30, "user_pw": 30, "dbatch": 30, "dnopaus": 30, "sdevic": 30, "pdfwrite": 30, "soutputfil": 30, "ddopdfmark": 30, "dfirstpag": 30, "dlastpag": 30, "drag": 30, "changeset": 30, "decor": 30, "pedant": 30, "tui": 30, "linenumb": 30, "disrupt": 30, "typo": 30, "versu": [30, 31, 38, 39], "workload": [30, 31], "inact": [30, 33], "candid": 30, "ip6tabl": 30, "nat": [30, 31, 38, 39], "mangl": 30, "ToS": 30, "prerout": 30, "postrout": 30, "syslogd": 30, "ulog": 30, "ulogd": 30, "chain_nam": 30, "snat": 30, "dnat": 30, "fend": 30, "rule_num": 30, "flush": 30, "action_opt": 30, "criterion": 30, "icmpv6": 30, "negat": 30, "exclam": 30, "correspondingli": 30, "ipt_conntrack": 30, "imap": 30, "builder": [30, 31], "ipf": 30, "virus": [10, 30], "cgroup": 30, "remind": 30, "expiri": 30, "pam_cracklib": 30, "alon": [10, 30, 32, 38, 39], "pen": [30, 32, 38, 39], "becam": [30, 33], "mkconfig": 30, "lockdown": 30, "tini": [30, 32], "udeb": 30, "\u03bcdeb": 30, "downsid": 30, "qwerti": 30, "atftpd": 30, "use_inetd": 30, "cleaner": [30, 33], "logcheck": 30, "logfil": 30, "unfortun": [30, 32, 33, 38, 39], "autogener": 30, "etckeep": 30, "samhain": 30, "rootkit": [10, 30], "checksecur": 30, "chkrootkit": 30, "rkhunter": 30, "unintention": 30, "inst1": 30, "deb7u5": 30, "deb7u6": 30, "step1": 30, "step2": 30, "step3": 30, "densiti": 30, "lfs162x": 31, "lfs151x": 31, "digitalocean": 31, "ubiquit": 31, "tenanc": 31, "saa": 31, "8gb": 31, "sdd": [10, 31], "wikipedia": [31, 33], "hyper": 31, "esxi": 31, "nutanix": 31, "ahv": 31, "xcp": 31, "sparc": 31, "qnx": [10, 31], "amd": 31, "loadabl": 31, "virt": 31, "tenant": 31, "proxmox": 31, "intel64": [31, 36, 39], "reproduc": [31, 32, 33], "teammat": 31, "vagrantfil": 31, "provision": 31, "yum": [31, 37, 39], "nitro": 31, "droplet": 31, "agnost": 31, "cfar": 31, "buildpack": 31, "cfcr": 31, "kubecf": 31, "incub": 31, "quark": 31, "eirini": 31, "oci": 31, "centric": 31, "fledg": 31, "s2i": 31, "ecosystem": [31, 32, 33, 36, 39], "clojur": 31, "scala": 31, "indirect": 31, "footprint": [10, 31], "interprocess": 31, "blkio": 31, "cpuacct": 31, "cpuset": 31, "freezer": 31, "overlaid": 31, "inclin": 31, "emphas": [31, 32], "simplic": [31, 32], "miranti": 31, "newbi": 31, "linuxkit": 31, "lean": 31, "musl": 31, "openrc": 31, "pie": 31, "diskless": 31, "fco": 31, "monolith": 31, "atom": 31, "fah": 31, "ignit": 31, "ostre": 31, "selinux": 31, "redhat": [31, 35, 39], "iot": [31, 32], "immut": 31, "roll": 31, "whitepap": 31, "confin": 31, "kspp": 31, "k8": 31, "replicaset": 31, "statefulset": 31, "daemonset": 31, "toler": [31, 33], "hadoop": 31, "spark": 31, "kafka": 31, "datacent": [31, 36, 39], "benjamin": 31, "hindman": 31, "mesospher": 31, "prem": 31, "ak": 31, "gke": 31, "netapp": 31, "astra": 31, "stackpoint": 31, "grid": [10, 31, 40], "tkg": 31, "vsphere": 31, "deepli": 31, "mirag": 31, "mirageo": 31, "maco": [31, 35, 39], "osv": 31, "unik": 31, "microvm": 31, "decoupl": 31, "datadog": 31, "sdn": 31, "openflow": 31, "veth": 31, "routabl": 31, "macvlan": 31, "ipvlan": 31, "weav": 31, "calico": 31, "propos": [31, 33], "cnm": 31, "libnetwork": 31, "vxlan": 31, "cni": 31, "acb6ec59ea": 31, "d2b0d4f71517": 31, "15d5ceb9443": 31, "docker0": 31, "4099": 31, "1500": [31, 37, 39], "c3": 31, "txqueuelen": 31, "bb1": 31, "lower_up": [31, 37, 39], "qdisc": [31, 37, 39], "noqueu": [31, 37, 39], "qlen": [31, 37, 39], "brd": [31, 37, 39], "valid_lft": [31, 37, 39], "forev": [31, 37, 39], "preferred_lft": [31, 37, 39], "1399": 31, "if1400": 31, "cater": 31, "acb6ec59eaedb2597092898acab922b53f45ba0243161917ab678bf8960bfc27": 31, "01t17": 31, "004197458z": 31, "enableipv6": 31, "ipam": 31, "configfrom": 31, "configonli": 31, "default_bridg": 31, "enable_icc": 31, "enable_ip_masquerad": 31, "host_binding_ipv4": 31, "my_bridg": 31, "itd": 31, "c4": [31, 37, 39], "mq": 31, "a6": 31, "e5": 31, "63319sec": 31, "2a00": 31, "23c7": 31, "8a86": 31, "7c00": 31, "dea6": 31, "32ff": 31, "fee5": 31, "8ddc": 31, "noprefixrout": [31, 37, 39], "315359969sec": 31, "fdaa": 31, "bbcc": 31, "ddee": 31, "2cff": 31, "fec3": 31, "367b": 31, "c5": 31, "decapsul": 31, "contiv": 31, "infoblox": 31, "kuryr": 31, "neutron": 31, "cilium": 31, "l3": 31, "nsx": 31, "ncp": 31, "gorout": 31, "garden": 31, "silk": 31, "ineffici": 31, "resili": [31, 32], "erasur": [31, 32], "freena": 31, "gluster": 31, "linbit": 31, "minio": 31, "nexenta": 31, "openeb": 31, "vsan": 31, "auf": 31, "vf": 31, "npipe": 31, "webvol": 31, "webdata": 31, "_data": 31, "blockbridg": 31, "flocker": 31, "ndvp": 31, "openstorag": 31, "rex": [31, 36, 39], "rai": 31, "migrat": [31, 36, 39], "afresh": 31, "outliv": 31, "awselasticblockstor": 31, "eb": 31, "azuredisk": 31, "azurefil": 31, "cephf": 31, "configmap": 31, "emptydir": 31, "tightli": 31, "gcepersistentdisk": 31, "hostpath": 31, "nf": 31, "persistentvolumeclaim": 31, "rbd": 31, "rado": 31, "vspherevolum": 31, "persistentvolum": 31, "pvc": 31, "iscsi": [31, 34, 39], "storageo": 31, "protobuf": 31, "consumpt": 31, "diego": 31, "mindset": 31, "organis": [10, 31], "overlap": 31, "absorb": [31, 33], "harmoni": 31, "contin": 31, "aris": [10, 31], "strain": [31, 33], "compound": 31, "fixabl": 31, "upfront": 31, "regress": 31, "fewer": [10, 31], "teamciti": 31, "gocd": 31, "bamboo": 31, "codeship": 31, "circleci": 31, "concours": 31, "freestyl": 31, "ant": 31, "maven": 31, "bitbucket": 31, "yml": 31, "before_instal": 31, "before_script": 31, "before_cach": 31, "after_success": 31, "after_failur": 31, "before_deploi": 31, "after_deploi": 31, "after_script": 31, "riak": 31, "memcach": 31, "codedeploi": 31, "workflow": [31, 33], "rollback": 31, "draft": 31, "skaffold": 31, "spinnak": 31, "netflix": 31, "veloc": 31, "kernelci": 31, "agentless": 31, "galaxi": 31, "puppetdb": 31, "forg": [31, 37, 39], "cookbook": 31, "recip": 31, "minion": 31, "zeromq": 31, "hcl": 31, "alibaba": 31, "atla": 31, "dnsimpl": 31, "vcloud": 31, "director": 31, "cpi": 31, "strongli": [31, 33], "leader": [31, 33], "elect": 31, "bootstrap": 31, "skydn": 31, "downtim": 31, "consensu": [31, 32], "failov": 31, "sbin": [31, 35, 36, 38, 39], "debootstrap": 31, "supermin": 31, "buildstep": 31, "workdir": [31, 38, 39], "initsystem": 31, "ami": 31, "pvm": 31, "ovf": 31, "vmx": 31, "nagio": 31, "zabbix": 31, "tediou": 31, "prometheu": 31, "relic": 31, "jsonfil": 31, "journald": 31, "gelf": 31, "graylog": 31, "awslog": 31, "splunk": 31, "falco": 31, "facto": 31, "custodian": 31, "advisor": 31, "kibana": 31, "unstructur": 31, "geospati": 31, "breaker": 31, "sidecar": 31, "unhealthi": 31, "haproxi": 31, "traefik": 31, "maesh": 31, "nelson": 31, "smartstack": 31, "citadel": 31, "pilot": 31, "istiod": 31, "grpc": 31, "websocket": 31, "webassembli": 31, "l4": 31, "microos": 31, "ultra": 31, "invas": 31, "underutil": 31, "sre": 31, "secop": 31, "vehicl": 31, "actuat": [10, 31], "exert": 31, "freerto": 31, "tpu": 31, "artifici": 31, "webhook": 31, "stateless": [10, 31], "augment": 31, "chatbot": 31, "rent": 31, "drawback": 31, "multiten": 31, "s3": 31, "kinesi": 31, "knativ": 31, "kubelet": 31, "aci": 31, "fargat": 31, "fission": 31, "platform9": 31, "fn": [31, 35, 38, 39], "openfaa": 31, "pinpoint": 31, "opentelemetri": 31, "took": [31, 36, 39, 40], "opentrac": 31, "acycl": 31, "dag": 31, "contigu": 31, "jaeger": 31, "lightstep": 31, "instana": 31, "apm": 31, "wavefront": 31, "gitkraken": 31, "launchpad": [31, 37, 39], "formal": [31, 33], "lfd104x": 32, "lfd106x": 32, "repudi": 32, "iapp": 32, "cultur": [32, 33], "divulg": 32, "european": 32, "fraught": 32, "adequ": [10, 32, 33], "acquisit": 32, "likelihood": 32, "undesir": 32, "increasingli": 32, "insur": 32, "burn": 32, "bruce": 32, "schneier": 32, "interestingli": 32, "checklist": [10, 32, 33], "troubl": 32, "aid": [32, 37, 39], "waterfal": 32, "mainlin": 32, "systemat": 32, "cde": 32, "revisit": 32, "cooper": 32, "shorten": [32, 37, 39], "devsecop": 32, "secdevop": 32, "tend": [32, 33], "ineffect": 32, "importantli": 32, "cybersecur": [10, 32, 40], "impair": 32, "unintent": [10, 32], "career": [32, 33], "embargo": 32, "promptli": 32, "led": 32, "nvd": 32, "cna": 32, "resort": 32, "2025": 32, "50000": 32, "mere": 32, "intention": 32, "reoccur": 32, "cwe": 32, "widespread": 32, "quirk": 32, "thumb": [10, 32], "fewest": 32, "mediat": 32, "subvert": 32, "secreci": 32, "changeabl": 32, "confusingli": 32, "psycholog": 32, "evid": [32, 33], "cii": 32, "safecod": 32, "unmaintain": 32, "artefact": 32, "rigor": 32, "untrust": [32, 35, 38, 39], "woefulli": 32, "todo": 32, "backstabb": 32, "knife": [32, 37, 39], "trait": 32, "sbom": 32, "spdx": 32, "swid": 32, "cyclonedx": 32, "typosquat": 32, "mislead": 32, "spread": [10, 32, 33, 36, 39], "underscor": 32, "trustworthi": 32, "redistribut": [32, 33], "foolish": 32, "skf": 32, "asv": 32, "masv": 32, "sate": 32, "exposit": 32, "appsec": 32, "sast": 32, "iast": 32, "dast": 32, "rasp": 32, "lfx": 32, "sonatyp": 32, "nexu": 32, "duck": 32, "ion": 32, "snyk": 32, "bundler": 32, "dramat": 32, "subtl": 32, "theori": 32, "favour": 32, "undirect": 32, "mock": 32, "dataset": 32, "worthwhil": [32, 33], "realiti": 32, "tdd": 32, "encourag": [32, 40], "misbehav": 32, "hang": 32, "fuzzer": 32, "wise": 32, "asan": 32, "veracod": 32, "breeden": 32, "weirdest": 32, "2019": [32, 33], "expressli": 32, "thoma": 32, "scanlon": 32, "sergej": 32, "dechand": 32, "strengthen": 32, "silver": 32, "exceedingli": 32, "stride": 32, "dfd": 32, "cylind": 32, "interactor": 32, "psychokinesi": 32, "collaps": 32, "oldest": 32, "phd": 32, "colleg": 32, "vet": 32, "cryptographicalgorithm": 32, "massiv": [10, 32, 33], "ecb": 32, "infeas": 32, "preimag": 32, "ellipt": 32, "curv": 32, "ecdsa": 32, "ecdh": 32, "prng": 32, "cprng": 32, "csprg": 32, "crypto": [32, 35], "rng": 32, "requestor": 32, "argon2id": 32, "bcrypt": 32, "weaker": 32, "gpu": 32, "scrypt": 32, "gotten": 32, "2fa": 32, "georgiev": 32, "scienc": 32, "timingsafeequ": 32, "activesupport": 32, "securityutil": 32, "secure_compar": 32, "fixed_length_secure_compar": 32, "messagedigest": 32, "ancient": 32, "mlock": 32, "virtuallock": 32, "surprisingli": 32, "nonprofit": 32, "psirt": 32, "disposit": 32, "csirt": 32, "openssf": 32, "securitytxt": 32, "fee": [32, 33], "annual": 32, "inelig": 32, "incred": 32, "kati": 32, "moussouri": 32, "yourselv": 32, "costli": 32, "stilgherrian": 32, "openli": 32, "threaten": 32, "triag": 32, "justifi": 32, "amber": 32, "score": 32, "uptak": 32, "advisori": [32, 33], "workaround": 32, "wors": 32, "reward": 32, "discret": [10, 32], "unrespons": 32, "withcompani": 32, "developand": 32, "controversi": 32, "irrespons": 32, "madeavail": 32, "bias": 32, "coiner": 32, "unilater": 32, "enforcementin": 32, "terrorist": 32, "ethic": [32, 33], "contravent": 32, "ethnic": 32, "polit": [32, 33], "dissid": 32, "iec": [10, 32], "15026": 32, "juic": 32, "beginn": 33, "lfd102": 33, "lfc191": 33, "nda": 33, "indemnifi": 33, "bsd": [33, 38, 39], "philosoph": 33, "idealist": 33, "profound": 33, "belief": 33, "ideolog": 33, "technolog": 33, "pragmat": 33, "democrat": 33, "inspir": 33, "dictat": 33, "eyebal": 33, "embarrass": 33, "ugli": 33, "sloppi": 33, "actor": 33, "elementari": 33, "school": 33, "teach": 33, "workforc": 33, "tex": 33, "coreutil": 33, "onap": 33, "hyperledg": 33, "sustain": 33, "centr": 33, "inappropri": 33, "foss": 33, "tracker": 33, "worthless": 33, "outsourc": 33, "spokespeopl": 33, "substanti": 33, "promin": 33, "exclusionari": 33, "oin": 33, "crucial": 33, "briefli": 33, "retali": 33, "codifi": 33, "ospo": 33, "recruit": 33, "dna": 33, "5230": 33, "vibrant": 33, "certifi": [10, 33], "logo": 33, "chat": 33, "subvers": 33, "veteran": 33, "mentor": 33, "weakest": 33, "impati": 33, "conceiv": 33, "pontif": [33, 38, 39], "obscen": 33, "flame": 33, "troll": 33, "etho": 33, "sporad": 33, "singular": 33, "itch": 33, "janitori": 33, "feet": 33, "wet": 33, "frustrat": 33, "respectfulli": 33, "boss": 33, "neglect": [10, 33], "bright": 33, "peter": 33, "feasibl": 33, "oblivion": 33, "uncomfort": 33, "bite": 33, "wing": 33, "began": 33, "ego": 33, "skin": 33, "irrit": 33, "breath": 33, "nasti": 33, "kindli": [33, 40], "calm": 33, "unpleas": 33, "energet": 33, "mellow": 33, "discrimin": 33, "race": [33, 36, 39], "sex": 33, "sexual": 33, "religion": 33, "religi": 33, "sentiment": 33, "rot": 33, "ensu": 33, "volunt": 33, "spelt": 33, "contractu": 33, "duti": 33, "license": 33, "redistributor": 33, "downstream": 33, "implicit": 33, "royalti": 33, "endeavor": 33, "endeavour": 33, "genet": 33, "insist": 33, "predic": 33, "reciproc": 33, "lgpl": 33, "eclips": 33, "epl": 33, "cddl": 33, "affero": 33, "agpl": 33, "possess": [33, 36, 39], "sublicens": 33, "trademark": 33, "warrant": 33, "liabl": 33, "drlegal": 33, "lawyer": 33, "creativ": 33, "curat": 33, "unambigu": 33, "exclus": 33, "authorship": 33, "treati": 33, "bern": 33, "treatment": 33, "artist": 33, "1886": 33, "switzerland": 33, "literari": 33, "signatori": 33, "1988": 33, "kingdom": 33, "tradition": 33, "2004": 33, "___________": 33, "openvdb": 33, "fabric": 33, "filecopyrighttext": 33, "fairli": 33, "paperwork": 33, "dco": 33, "toolchain": 33, "zephyr": 33, "icla": 33, "ccla": 33, "relicens": 33, "fsf": 33, "linuxfound": 33, "accompani": 33, "graphic": [10, 33, 38, 39], "nomo": 33, "vicin": 33, "monk": 33, "complementari": 33, "plicit": 33, "breez": 33, "wheeler": 33, "spdxversion": 33, "datalicens": 33, "cc0": 33, "foopackag": 33, "packagehomepag": 33, "packagelicensedeclar": 33, "constitu": 33, "quartermast": 33, "qmstr": 33, "endocod": 33, "tern": 33, "elucid": 33, "container": 33, "speedier": 33, "longev": 33, "empow": 33, "loosen": 33, "entrant": 33, "tutor": 33, "antisoci": 33, "autocrat": 33, "worst": [10, 33], "disparag": 33, "waster": 33, "uninform": 33, "alien": 33, "wari": 33, "gender": 33, "geograph": [10, 33], "scada": 10, "substat": 10, "basement": 10, "floor": 10, "tower": 10, "specfi": 10, "shutdown": 10, "hart": 10, "devicenet": 10, "synchronzi": 10, "eeprom": 10, "eprom": 10, "rto": 10, "milliamp": 10, "485": 10, "controlnet": 10, "lonwork": 10, "keypad": 10, "jumper": 10, "dip": 10, "brower": 10, "neutrino": 10, "vxwork": 10, "ce": 10, "workbenc": 10, "codesi": 10, "isagraf": 10, "ladder": 10, "fbd": 10, "sfc": 10, "rung": 10, "milli": 10, "principl": [10, 37, 39], "coil": 10, "depict": 10, "valv": 10, "rtu": 10, "pac": 10, "historian": 10, "x3": 10, "bbc": 10, "7200": 10, "cdc": 10, "contitel": 10, "dcp": 10, "gedac": 10, "7020": 10, "landi": 10, "teja": 10, "trw": 10, "9550": 10, "indusoft": 10, "rockwellautom": 10, "micro800": 10, "micro850": 10, "plcfiddl": 10, "understad": 10, "enquir": 10, "vision": 10, "reconnaiss": [10, 34, 37], "neccessarili": 10, "pathwai": 10, "unnecessarili": 10, "inflict": 10, "preoccupi": 10, "watchdog": 10, "timer": [10, 35, 39], "burst": 10, "repopul": 10, "anob": 10, "pantu": 10, "iptabl": [10, 37, 39], "etherap": 10, "nbstat": 10, "displaydn": 10, "vendo": 10, "indicatio": 10, "nof": 10, "merci": 10, "bacnet": 10, "47808": 10, "44818": 10, "2222": 10, "1023": 10, "49151": 10, "49152": 10, "ano": 10, "processs": 10, "ip_forward": 10, "tcpip": 10, "ipenablerout": 10, "diffrent": 10, "fswcb1": 10, "ad2": 10, "libpcap": 10, "winpcap": 10, "bpf": 10, "analysz": 10, "dissector": 10, "personnel": 10, "avial": 10, "frequenctli": 10, "temporarti": 10, "rsync": 10, "noisi": 10, "disoveri": 10, "icss": 10, "unreli": 10, "hd": [10, 38, 39], "pr": 10, "obstacl": 10, "unfilt": 10, "throttl": 10, "ndiff": 10, "gmap": 10, "filnam": [10, 38, 39], "charactertist": 10, "theres": 10, "cla": 10, "freez": 10, "dangl": 10, "exlus": 10, "excludefil": 10, "energei": 10, "unsolicit": 10, "cotp": 10, "tsap": 10, "livedata": 10, "matrikon": 10, "pump": 10, "spoc": 10, "responsibl": 10, "invit": 10, "upto": 10, "learnt": 10, "educ": [10, 40], "unclassifi": 10, "disciplin": 10, "combat": 10, "63b": 10, "007": 10, "unapprov": 10, "usbducki": 10, "omg": 10, "biometr": 10, "technician": 10, "undocu": 10, "perimet": 10, "presid": 10, "starbuck": 10, "england": 10, "safari": 10, "africa": 10, "duress": 10, "purdu": 10, "pera": 10, "intranet": 10, "demilitar": 10, "idmz": 10, "barrier": 10, "complimentari": 10, "supervis": 10, "persecpt": 10, "erron": [10, 38, 39], "cornerston": 10, "architect": 10, "bounc": 10, "unidirect": 10, "cure": 10, "uni": 10, "icsot": 10, "baremet": 10, "businesssecur": 10, "sand": 10, "annoi": 10, "steadi": 10, "forewarn": 10, "precursori": 10, "viewpoint": 10, "egregi": 10, "nidss": 10, "unawar": 10, "misinterpret": 10, "hors": 10, "poke": 10, "infect": 10, "dark": 10, "un": [10, 35, 39], "anomal": 10, "threshold": 10, "rule1": 10, "3000001": 10, "plate": 10, "defici": 10, "specfic": 10, "httpinspect": 10, "dnp3_func": 10, "dnp3_ind": 10, "dnp3_obj": 10, "dnp3_data": 10, "reserved_1": 10, "reserved_2": 10, "3000002": 10, "badstuff": 10, "3000003": 10, "modbus_func": 10, "modbus_unit": 10, "modbus_data": 10, "write_multiple_coil": 10, "3000004": 10, "modbus_admin": 10, "3000005": 10, "3000006": 10, "ipvar": 10, "home_net": 10, "external_net": 10, "hist1": 10, "confdb": 10, "portvar": 10, "tag_rang": 10, "4000001": 10, "4000002": 10, "4000003": 10, "classtyp": 10, "4000004": 10, "4000005": 10, "4000007": 10, "4000008": 10, "4000009": 10, "chronolog": 10, "naught": 10, "defacto": 10, "decoi": 10, "variant": 10, "conpot": 10, "scribe": 10, "unplug": 10, "ceo": 10, "counsel": 10, "remedi": 10, "miner": 10, "tcpflow": 10, "tcpxtract": 10, "argu": 10, "virtualis": [34, 39], "g0tm1lk": 34, "moder": [34, 39], "hackthebox": [34, 39], "lff": [34, 37, 39], "p2": [34, 38, 39], "vulnerabilityanalysi": [34, 39], "jboss": [34, 39], "lastli": [34, 39], "iii": 34, "vboxnet0": [34, 39], "vmnet1": [34, 39], "virtualbox": [34, 39], "vboxnet": [34, 39], "vmnet": [34, 39], "maimon": [34, 39], "xma": [34, 39], "p22": [34, 39], "tracerout": [34, 39], "535": [34, 39], "onetwopunch": [34, 39], "fxp1": [34, 39], "mtsfpu": [34, 39], "65k": [34, 39], "3445": [34, 39], "12380": [34, 39], "unidentifi": [34, 39], "unstuck": [34, 39], "doubt": [34, 39], "096292": [34, 39], "36327": [34, 39], "861815232": [34, 39], "16384": [34, 39], "sackok": [34, 39], "wscale": [34, 39], "4127458640": [34, 39], "ecr": [34, 39], "096330": [34, 39], "861815233": [34, 39], "098584": [34, 39], "100773": [34, 39], "lvp": [34, 35, 39], "39519": [34, 39], "0ihnpbgvuy2ugc3vycm91bmrpbmcgew91lg0kww91igxvb2sgzwfzdcwgdghlbibzb3v0acwgdghlbib3zxn0lcbhbgwgew91ignhbibzzwugaxmgysbncmvhdcb3yxn0zwxh": [34, 39], "2600": [34, 39], "3c01": [34, 39], "f03c": [34, 39], "91ff": [34, 39], "fe18": [34, 39], "bb2f": [34, 39], "surf": [34, 39], "examplecorp": [34, 39], "attica": [34, 39], "mumbai": [34, 39], "organizationalunitnam": [34, 39], "webmin": [35, 39], "trim": [35, 39], "miniserv": [35, 39], "_http": [35, 39], "8859": [35, 39], "ndmp": [35, 39], "1997": [35, 39], "24574": [35, 39], "24674": [35, 39], "xmlfile": [35, 39], "example_softwar": [35, 39], "stuck": [35, 39], "cms_name": [35, 39], "cmspreferredcultur": [35, 39], "citrix_ns_id": [35, 39], "zmail": [35, 39], "6386xxxxx": [35, 39], "html5": [35, 39], "httpserver": [35, 39], "208": [35, 39], "kentico": [35, 39], "modernizr": [35, 39], "uncommonhead": [35, 39], "cteonnt": [35, 39], "orig": [35, 39], "sameorigin": [35, 39], "ie": [35, 39], "gobust": [35, 39], "cewl": [35, 37, 39], "hardest": [35, 39], "somethingnotobivousforwaf": [35, 39], "129": [35, 39], "dav": [35, 37, 39], "propfind": [35, 39], "mkcol": [35, 37, 39], "proppatch": [35, 39], "intact": [35, 39], "rootm": [35, 39], "newpag": [35, 39], "destination_pag": [35, 39], "new_pag": [35, 39], "wpscan": [35, 39], "wpsscan": [35, 39], "vp": [35, 39], "timthumb": [35, 37, 39], "example_usernam": [35, 39], "worpdress": [35, 39], "crackabl": [35, 39], "wpterm": [35, 39], "custompluginnam": [35, 39], "elbor": [35, 39], "namemash": [35, 39], "passwordlist": [35, 39], "authlog": [35, 39], "dt1w": [35, 39], "sessid": [35, 39], "exchweb": [35, 39], "owaauth": [35, 39], "2fexchang": [35, 39], "submitcr": [35, 39], "ncrack": [35, 39], "elabor": [35, 39], "highon": [35, 39], "coffe": [35, 39], "mkfifo": [35, 36, 38, 39], "shell_exec": [35, 39], "passthru": [35, 37, 38, 39], "phpcode": [35, 39], "somepag": [35, 39], "somecooki": [35, 39], "somevalu": [35, 39], "name1": [35, 39], "value1": [35, 39], "name2": [35, 39], "value2": [35, 39], "nc64": [35, 39], "isset": [35, 38, 39], "_request": [35, 38, 39], "fupload": [35, 39], "file_put_cont": [35, 38, 39], "file_get_cont": [35, 38, 39], "yourip": [35, 36, 39], "filename_on_your_webserv": [35, 39], "fsockopen": [35, 39], "webshel": [35, 37, 39], "location_of_payload": [35, 39], "elobr": [35, 39], "wasn": [35, 39], "iirc": [35, 39], "rsocket": [35, 39], "tcpsocket": [35, 39], "to_i": [35, 39], "pf_inet": [35, 39], "sock_stream": [35, 39], "getprotobynam": [35, 39], "sockaddr_in": [35, 39], "inet_aton": [35, 39], "af_inet": [35, 39], "dup2": [35, 39], "fileno": [35, 39], "pty": [35, 39], "sock_dgram": [35, 39], "4445": [35, 39], "putenv": [35, 39], "getruntim": [35, 39], "jsp_shell_reverse_tcp": [35, 39], "runm": [35, 39], "196": [35, 39], "abovelin": [35, 39], "nhost": [35, 39], "nconnect": [35, 39], "carriag": [35, 39], "mknod": [35, 39], "6001": [35, 39], "xnest": [35, 39], "xhost": [35, 39], "targetip": [35, 39], "lynxdownload": [35, 39], "lynxshel": [35, 39], "goto": [35, 39], "sugfil": [35, 39], "sqlmap": [35, 39], "phpmyadmin": [35, 39], "outfil": [35, 39], "phpinfo": [35, 37, 38, 39], "3c3f70687020706870696e666f28293b203f3": [35, 39], "0x3c3f70687020706870696e666f28293b203f3": [35, 39], "blogblog": [35, 39], "ncat": [35, 37, 39], "youripaddress": [35, 39], "nishang": [35, 37, 39], "4446": [35, 39], "wonder": [35, 39], "bind_awk": [35, 39], "bind_inetd": [35, 39], "bind_lua": [35, 39], "bind_netcat": [35, 39], "bind_perl": [35, 39], "reverse_awk": [35, 39], "reverse_python": [35, 39], "reverse_python_ssl": [35, 39], "reverse_r": [35, 39], "reverse_rubi": [35, 39], "cdniov": [35, 39], "your_ip": [35, 39], "networkinform": [35, 39], "pingopt": [35, 39], "dontfrag": [35, 39], "getbyt": [35, 39], "ry": [35, 39], "getstr": [35, 39], "encodedcommand": [35, 39], "thrice": [35, 39], "certutil": [35, 38, 39], "iisapppool": [35, 39], "usernameher": [35, 39], "passwordher": [35, 39], "securepassword": [35, 37, 39], "invokecommand": [35, 39], "iiswebpool": [35, 39], "multpl": [35, 39], "sshserver": [35, 39], "imgur": [35, 39], "bind_address": [35, 39], "hostport": [35, 39], "remote_socket": [35, 39], "local_socket": [35, 39], "gatewayport": [35, 39], "tcp4": [35, 39], "ip_address_of_machin": [35, 39], "9001": [35, 39], "joomla": [35, 39], "3306": [35, 39], "stricthostkeycheck": [35, 39], "userknownhostsfil": [35, 39], "globalknownhostsfil": [35, 39], "remmina": [35, 39], "socks4": [35, 37, 39], "proxychains4": [35, 39], "rdesktop": [35, 39], "sshuttl": [35, 39], "portnumb": [35, 39], "sessnam": [35, 39], "rlogin": [35, 39], "pw": [35, 39], "passw": [35, 39], "x11": [35, 38, 39], "ovpn": [35, 39], "tun": [35, 39], "218": [35, 39], "afoot": [35, 39], "reconsid": [35, 39], "albinolobst": [35, 39], "247": [35, 39], "54836": [35, 39], "fortun": [35, 39], "dave": [35, 39], "kennedi": [35, 39], "trustedsec": [35, 39], "ps_encod": [35, 39], "setenv": [35, 39], "recombin": [35, 39], "z1": [35, 39], "zgb1ag4aywb0agkabwbuacaaywbsaguayqbuahuacaagahsadqakagkazgagacgajabjagwaaqblag4adaauaemabwbuag4azqbjahqazqbkacaalqblaheaiaakahqacgb1aguakqagahsajabjagwaaqblag4adaauaemababvahmazqaoackafqanaaoaaqbmacaakaakahaacgbvagmazqbzahmalgbfahgaaqb0aem": [35, 39], "abwbkaguaiaatag4azqagacqabgb1agwabaapacaaewakahaacgbvagmazqbzahmalgbdagwabwbzaguakaapah0adqakaguaeabpahqafqanaaoajabhagqazabyaguacwbzacaapqagaccamqa5adialgaxadyaoaauadealgayadeaoaanaa0acgakahaabwbyahqaiaa9acaajwa4adeaoaaxaccadqakacqaywbsag": [35, 39], "kazqbuahqaiaa9acaatgblahcalqbpagiaagblagmadaagahmaeqbzahqazqbtac4abgblahqalgbzag8aywbraguadabzac4adabjahaaywbsagkazqbuahqadqakacqaywbsagkazqbuahqalgbjag8abgbuaguaywb0acgajabhagqazabyaguacwbzacwajabwag8acgb0ackadqakacqacwb0ahiazqbhag0aiaa9a": [35, 39], "caajabjagwaaqblag4adaauaecazqb0afmadabyaguayqbtacgakqanaaoajabuaguadab3ag8acgbragiadqbmagyazqbyacaapqagae4azqb3ac0atwbiagoazqbjahqaiabtahkacwb0aguabqauaeiaeqb0aguawwbdacaajabjagwaaqblag4adaauafiazqbjaguaaqb2aguaqgb1agyazgblahiauwbpahoazqan": [35, 39], "aaoajabwahiabwbjaguacwbzacaapqagae4azqb3ac0atwbiagoazqbjahqaiabtahkacwb0aguabqauaeqaaqbhagcabgbvahmadabpagmacwauafaacgbvagmazqbzahmadqakacqacabyag8aywblahmacwauafmadabhahiadabjag4azgbvac4argbpagwazqboageabqblacaapqagaccaqwa6afwaxab3agkabgb": [35, 39], "kag8adwbzafwaxabzahkacwb0aguabqazadiaxabcagmabqbkac4azqb4aguajwanaaoajabwahiabwbjaguacwbzac4auwb0ageacgb0aekabgbmag8algbsaguazabpahiazqbjahqauwb0ageabgbkageacgbkaekabgbwahuadaagad0aiaaxaa0acgakahaacgbvagmazqbzahmalgbtahqayqbyahqasqbuagyabw": [35, 39], "g1": [35, 39], "auafiazqbkagkacgblagmadabtahqayqbuagqayqbyagqatwb1ahqacab1ahqaiaa9acaamqanaaoajabwahiabwbjaguacwbzac4auwb0ageacgb0aekabgbmag8algbvahmazqbtaggazqbsagwarqb4aguaywb1ahqazqagad0aiaawaa0acgakahaacgbvagmazqbzahmalgbtahqayqbyahqakaapaa0acgakagkab": [35, 39], "gbwahuadabzahqacgblageabqagad0aiaakahaacgbvagmazqbzahmalgbtahqayqbuagqayqbyagqasqbuahaadqb0aa0acgakag8adqb0ahaadqb0ahmadabyaguayqbtacaapqagacqacabyag8aywblahmacwauafmadabhag4azabhahiazabpahuadabwahuadaanaaoauwb0ageacgb0ac0auwbsaguazqbwacaa": [35, 39], "i1": [35, 39], "mqanaaoajablag4aywbvagqaaqbuagcaiaa9acaabgblahcalqbvagiaagblagmadaagafmaeqbzahqazqbtac4avablahgadaauaeeacwbjagkaaqbfag4aywbvagqaaqbuagcadqakahcaaabpagwazqaoacqabwb1ahqacab1ahqacwb0ahiazqbhag0algbqaguazqbracgakqagac0abgblacaalqaxackaewakag8": [35, 39], "j1": [35, 39], "adqb0acaakwa9acaajablag4aywbvagqaaqbuagcalgbhaguadabtahqacgbpag4azwaoacqabwb1ahqacab1ahqacwb0ahiazqbhag0algbsaguayqbkacgakqapah0adqakacqacwb0ahiazqbhag0algbxahiaaqb0aguakaakaguabgbjag8azabpag4azwauaecazqb0aeiaeqb0aguacwaoacqabwb1ahqakqasad": [35, 39], "k1": [35, 39], "aalaakag8adqb0ac4atablag4azwb0aggakqanaaoajabvahuadaagad0aiaakag4adqbsagwaowagacqazabvag4azqagad0aiaakagyayqbsahmazqa7acaajab0aguacwb0agkabgbnacaapqagadaaowanaaoadwboagkabablacaakaatag4abwb0acaajabkag8abgblackaiab7aa0acgbpagyaiaaoacqaywbsa": [35, 39], "l1": [35, 39], "gkazqbuahqalgbdag8abgbuaguaywb0aguazaagac0abgblacaajab0ahiadqblackaiab7agmabablageabgb1ahaafqanaaoajabwag8acwagad0aiaawadsaiaakagkaiaa9acaamqanaaoadwboagkabablacaakaaoacqaaqagac0azwb0acaamaapacaalqbhag4azaagacgajabwag8acwagac0abab0acaajabu": [35, 39], "aguadab3ag8acgbragiadqbmagyazqbyac4atablag4azwb0aggakqapacaaewanaaoajabyaguayqbkacaapqagacqacwb0ahiazqbhag0algbsaguayqbkacgajabuaguadab3ag8acgbragiadqbmagyazqbyacwajabwag8acwasacqabgblahqadwbvahiaawbiahuazgbmaguacgauaewazqbuagcadaboacaalqa": [35, 39], "gacqacabvahmakqanaaoajabwag8acwarad0ajabyaguayqbkadsaiabpagyaiaaoacqacabvahmaiaatageabgbkacaakaakag4azqb0ahcabwbyagsaygb1agyazgblahiawwawac4algakacgajabwag8acwatadeakqbdacaalqbjag8abgb0ageaaqbuahmaiaaxadaakqapacaaewbiahiazqbhagsafqb9aa0acg": [35, 39], "o1": [35, 39], "bpagyaiaaoacqacabvahmaiaatagcadaagadaakqagahsadqakacqacwb0ahiaaqbuagcaiaa9acaajablag4aywbvagqaaqbuagcalgbhaguadabtahqacgbpag4azwaoacqabgblahqadwbvahiaawbiahuazgbmaguacgasadaalaakahaabwbzackadqakacqaaqbuahaadqb0ahmadabyaguayqbtac4adwbyagkad": [35, 39], "ablacgajabzahqacgbpag4azwapaa0acgbzahqayqbyahqalqbzagwazqblahaaiaaxaa0acgbpagyaiaaoacqacabyag8aywblahmacwauaeuaeabpahqaqwbvagqazqagac0abgblacaajabuahuababsackaiab7agmabablageabgb1ahaafqanaaoazqbsahmazqagahsadqakacqabwb1ahqaiaa9acaajablag4a": [35, 39], "q1": [35, 39], "ywbvagqaaqbuagcalgbhaguadabtahqacgbpag4azwaoacqabwb1ahqacab1ahqacwb0ahiazqbhag0algbsaguayqbkacgakqapaa0acgb3aggaaqbsaguakaakag8adqb0ahaadqb0ahmadabyaguayqbtac4auablaguaawaoackaiaatag4azqagac0amqapahsadqakacqabwb1ahqaiaarad0aiaakaguabgbjag8": [35, 39], "azabpag4azwauaecazqb0afmadabyagkabgbnacgajabvahuadabwahuadabzahqacgblageabqauafiazqbhagqakaapackaowagagkazgagacgajabvahuadaagac0azqbxacaajabzahqacgbpag4azwapacaaewakag8adqb0acaapqagaccajwb9ah0adqakacqacwb0ahiazqbhag0algbxahiaaqb0aguakaakag": [35, 39], "uabgbjag8azabpag4azwauaecazqb0aeiaeqb0aguacwaoacqabwb1ahqakqasadaalaakag8adqb0ac4abablag4azwb0aggakqanaaoajabvahuadaagad0aiaakag4adqbsagwadqakacqacwb0ahiaaqbuagcaiaa9acaajabuahuababsah0afqagaguababzaguaiab7agmabablageabgb1ahaafqb9aa": [35, 39], "windowstyl": [35, 39], "226": [35, 38, 39], "51082": [35, 39], "17134": [35, 39], "albino_lobst": [35, 39], "r5u6pvd": [35, 39], "stranger": [35, 39], "viscos": [35, 39], "exp": [35, 39], "ronni": [35, 39], "flather": [35, 39], "setsid": [35, 39], "sane": [35, 37, 39], "256color": [35, 39], "baud": [35, 39], "264": [35, 39], "intr": [35, 39], "undef": [35, 39], "eol2": [35, 39], "swtch": [35, 39], "susp": [35, 39], "rprnt": [35, 39], "weras": [35, 39], "lnext": [35, 39], "parenb": [35, 39], "parodd": [35, 39], "cmspar": [35, 39], "cs8": [35, 39], "hupcl": [35, 39], "cstopb": [35, 39], "cread": [35, 39], "clocal": [35, 39], "crtsct": [35, 39], "ignbrk": [35, 39], "brkint": [35, 39], "ignpar": [35, 39], "parmrk": [35, 39], "inpck": [35, 39], "istrip": [35, 39], "inlcr": [35, 39], "igncr": [35, 39], "icrnl": [35, 39], "ixon": [35, 39], "ixoff": [35, 39], "iuclc": [35, 39], "ixani": [35, 39], "imaxbel": [35, 39], "iutf8": [35, 39], "opost": [35, 39], "olcuc": [35, 39], "ocrnl": [35, 39], "onlcr": [35, 39], "onocr": [35, 39], "onlret": [35, 39], "ofdel": [35, 39], "nl0": [35, 39], "cr0": [35, 39], "tab0": [35, 39], "bs0": [35, 39], "vt0": [35, 39], "ff0": [35, 39], "isig": [35, 39], "icanon": [35, 39], "iexten": [35, 39], "echok": [35, 39], "echonl": [35, 39], "noflsh": [35, 39], "xcase": [35, 39], "tostop": [35, 39], "echoprt": [35, 39], "echoctl": [35, 39], "flusho": [35, 39], "foreground": [35, 39], "xterm256": [35, 39], "jbdahaipl8qm": [35, 39], "kcanjcpggevozqwnfrvvbxu2u9zc5u": [35, 39], "randomart": [35, 39], "ooo": [35, 39], "aaaab3nzac1yc2eaaaadaqabaaabaqc": [35, 39], "tbcpnhu5qqm6typwi52fcin6ndyp0hmqffag2kdwmdis0j1k": [35, 39], "kuxfqfqklbva9eo6iuacrjiuaqbsztsvjyffjzo": [35, 39], "hdkycr1m5": [35, 39], "115jx4q4v48a7bnnuuqi": [35, 39], "qzufjldfzfutp6xm1n": [35, 39], "y1b6tqjjc9wruofunk2ex6pmoikj8qptvmxyaxwol84mrb89v9vhcbfdrbwfhoa6hzeqvti01thmpqqqgv5l": [35, 39], "ri0gvlznt8cuye0uigzw7ek9ddctedtmuv1y99zivk4fjmqwlzxplp5duj1nh5rm6ybh8coqhlextwc36ih18xsyzw8qk4bfl4sotesht5": [35, 39], "3plkqhn": [35, 39], "shellcatraz": [35, 39], "shellopt": [35, 39], "ins": [35, 39], "rbash": [35, 39], "rksh": [35, 39], "jail": [35, 39], "getmeout": [35, 39], "noprofil": [35, 36, 39], "vimjail": [35, 39], "1257": [35, 39], "alioth": [35, 39], "gtk2": [35, 39], "cindent": [35, 39], "cryptv": [35, 39], "listcmd": [35, 39], "mouse_dec": [35, 39], "multi_byt": [35, 39], "persistent_undo": [35, 39], "rightleft": [35, 39], "termrespons": [35, 39], "arab": [35, 39], "clientserv": [35, 39], "cscope": [35, 39], "emacs_tag": [35, 39], "jumplist": [35, 39], "localmap": [35, 39], "mouse_gpm": [35, 39], "multi_lang": [35, 39], "tag_binari": [35, 39], "textobject": [35, 39], "visualextra": [35, 39], "xfontset": [35, 39], "autocmd": [35, 39], "clipboard": [35, 37, 39], "cursorbind": [35, 39], "keymap": [35, 39], "mouse_jsbterm": [35, 39], "mzscheme": [35, 39], "scrollbind": [35, 39], "tag_old_stat": [35, 39], "viminfo": [35, 39], "xim": [35, 39], "balloon_ev": [35, 39], "cmdline_compl": [35, 39], "cursorshap": [35, 39], "ex_extra": [35, 39], "lambda": [35, 39], "mouse_netterm": [35, 39], "netbeans_intg": [35, 39], "tag_any_whit": [35, 39], "vreplac": [35, 39], "xpm": [35, 39], "cmdline_hist": [35, 39], "dialog_con_gui": [35, 39], "extra_search": [35, 39], "gettext": [35, 39], "langmap": [35, 39], "mksession": [35, 39], "mouse_sgr": [35, 39], "num64": [35, 39], "smartind": [35, 39], "tcl": [35, 39], "wildignor": [35, 39], "xsmp_interact": [35, 39], "builtin_term": [35, 39], "cmdline_info": [35, 39], "farsi": [35, 39], "hangul_input": [35, 39], "libcal": [35, 39], "modify_fnam": [35, 39], "mouse_sysmous": [35, 39], "startuptim": [35, 39], "termguicolor": [35, 39], "user_command": [35, 39], "wildmenu": [35, 39], "xterm_clipboard": [35, 39], "byte_offset": [35, 39], "digraph": [35, 39], "file_in_path": [35, 39], "iconv": [35, 39], "linebreak": [35, 39], "mouse_urxvt": [35, 39], "path_extra": [35, 39], "quickfix": [35, 39], "statuslin": [35, 39], "vertsplit": [35, 39], "xterm_sav": [35, 39], "conceal": [35, 39], "find_in_path": [35, 39], "insert_expand": [35, 39], "lispind": [35, 39], "mouseshap": [35, 39], "mouse_xterm": [35, 39], "reltim": [35, 39], "sun_workshop": [35, 39], "terminfo": [35, 39], "virtualedit": [35, 39], "writebackup": [35, 39], "vimrc": [35, 39], "lfi": [35, 37], "g0tmi1k": [35, 39], "sched_debug": [35, 39], "fib_tri": [35, 39], "documentroot": [35, 39], "nano_histori": [35, 39], "atftp_histori": [35, 39], "mysql_histori": [35, 39], "php_histori": [35, 39], "id_dsa": [35, 39], "ssh_config": 35, "btmp": [35, 39], "kern": [35, 39], "findout": [36, 39], "hotfix": [36, 39], "7600": [36, 39], "multiprocessor": [36, 39], "00496": [36, 39], "0001283": [36, 39], "84782": [36, 39], "genuineintel": [36, 39], "bio": [36, 39], "phoenix": [36, 39], "athen": [36, 39], "bucharest": [36, 39], "istanbul": [36, 39], "048": [36, 39], "095": [36, 39], "665": [36, 39], "430": [36, 39], "pagefil": [36, 39], "htb": [36, 39], "nic": [36, 39], "softwaredistribut": [36, 39], "wsu": [36, 39], "windowupd": [36, 39], "qfe": [36, 39], "caption": [36, 39], "csname": [36, 39], "fixcom": [36, 39], "hotfixid": [36, 39], "installedbi": [36, 39], "installedon": [36, 39], "servicepackineffect": [36, 39], "kbid": [36, 39], "4100347": [36, 39], "kb4100347": [36, 39], "4343669": [36, 39], "kb4343669": [36, 39], "4343902": [36, 39], "kb4343902": [36, 39], "local_exploit_suggest": [36, 39], "clearinghous": [36, 39], "getuid": [36, 39], "requesterror": [36, 39], "stdapi_sys_config_getuid": [36, 39], "smbserver": [36, 38, 39], "smb2support": [36, 38, 39], "sharenam": [36, 37, 38, 39], "sharepath": [36, 38, 39], "4b324fc8": [36, 38, 39], "01d3": [36, 38, 39], "1278": [36, 38, 39], "5a47bf6ee188": [36, 38, 39], "6bffd098": [36, 38, 39], "a112": [36, 38, 39], "3610": [36, 38, 39], "9833": [36, 38, 39], "46c3f87e345a": [36, 38, 39], "victimip": [36, 39], "ms15": [36, 39], "051x64": [36, 39], "getpriv": [36, 39], "rotten": [36, 39], "potato": [36, 39], "seimpersonateprivileg": [36, 39], "seassignprimaryprivileg": [36, 39], "setcbprivileg": [36, 39], "sebackupprivileg": [36, 39], "serestoreprivileg": [36, 39], "secreatetokenprivileg": [36, 39], "seloaddriverprivileg": [36, 39], "setakeownershipprivileg": [36, 39], "sedebugprivileg": [36, 39], "savecr": [36, 39], "cmdkei": [36, 39], "childitem": 36, "logonserv": [36, 39], "logicaldisk": [36, 39], "providernam": [36, 39], "psdrive": [36, 39], "weren": [36, 39], "localus": [36, 39], "qwinsta": [36, 39], "localgroupmemb": [36, 39], "principalsourc": [36, 39], "winlogon": [36, 39], "defaultusernam": [36, 39], "defaultdomainnam": [36, 39], "defaultpassword": [36, 39], "tasklist": [36, 39], "includeusernam": [36, 39], "processnam": [36, 39], "notlik": [36, 39], "svchost": [36, 39], "wmiobject": [36, 39], "getown": [36, 39], "taskpath": [36, 39], "runonc": [36, 39], "hkcu": [36, 39], "ciminst": [36, 39], "win32_startupcommand": [36, 39], "hkey_current_us": [36, 39], "netsh": [36, 37, 39], "advfirewal": [36, 39], "erroract": [36, 39], "silentlycontinu": [36, 39], "execu": [36, 39], "knockd": 36, "knock": [36, 37, 39], "chkroot": [36, 39], "couchdb": [36, 39], "maxdepth": [36, 39], "222": [36, 37, 39], "xdev": [36, 39], "nouser": [36, 39], "nogroup": [36, 39], "noowner": [36, 39], "viewabl": [36, 39], "groupnam": [36, 39], "backjob": [36, 39], "ron": [36, 39], "ton": [36, 39], "levelxx": [36, 39], "997": [36, 39], "cronjob": [36, 39], "ulimit": [36, 39], "4777": [36, 39], "readexampleconf": [36, 39], "softlink": [36, 39], "xxx2": [36, 39], "sym_fil": [36, 39], "sym_fold": [36, 39], "tocttou": [36, 39], "w_ok": [36, 39], "o_wronli": [36, 39], "passwordless": [36, 39], "crypt": [36, 39], "pitfal": [36, 39], "display_script": [36, 39], "ftplib": [36, 39], "pythonpath": [36, 39], "myscript": [36, 39], "sudo_us": [36, 39], "snoop": [36, 39], "colleagu": [36, 39], "inotifi": [36, 39], "watcher": [36, 39], "picoplay": 36, "any_script": [36, 39], "sudoer": 36, "tidyup": [36, 39], "postrot": [36, 39], "file_s": [36, 39], "savefil": [36, 39], "576": [36, 39], "timeslic": [36, 39], "bzip": [36, 39], "relinquish": [36, 39], "hollygrac": [36, 39], "privesc": [36, 39], "permisson": [36, 39], "post_fil": [36, 37, 39], "attackerip": [36, 39], "helloworld": [36, 39], "setuptool": [36, 39], "pypi": [36, 39], "scipt": [36, 39], "pypug": [36, 39], "flask": [36, 39], "jinja2": [36, 39], "worm": [36, 39], "rimrafal": [36, 39], "defensecod": [36, 39], "stumbl": [36, 39], "drwxrwxrwx": [36, 39], "drwx": [36, 39], "ado": [36, 39], "187": [36, 39], "leon": [36, 39], "drf": [36, 39], "357": [36, 39], "225": [36, 39], "somebodi": [36, 39, 40], "drunk": [36, 39], "closer": [36, 39], "conclud": [36, 39], "pollut": [36, 39], "asterisk": [36, 37, 39], "20480": [36, 39], "rwxrwxrwx": [36, 39], "777": [36, 37, 39], "cvvf": [36, 39], "numberth": [36, 39], "unconfined_u": [36, 39], "unconfined_r": [36, 39], "unconfined_t": [36, 39], "s0": [36, 39], "c1023": [36, 39], "boom": [36, 39], "rcp": [36, 39], "unexpectedli": [36, 39], "601": [36, 39], "shell_output": [36, 39], "gci": [37, 39], "readonli": [37, 39], "reparsepoint": [37, 39], "repars": [37, 39], "zipfil": [37, 39], "createfromdirectori": [37, 39], "extracttodirectori": [37, 39], "fullnam": [37, 39], "hidden_stream": [37, 39], "utilz": [37, 39], "lad": [37, 39], "filepath": [37, 39], "nonewwindow": [37, 39], "redirectstandardoutput": [37, 39], "redirectstandarderror": [37, 39], "ip_psexec": [37, 39], "ntdsgrab": [37, 39], "_333512": [37, 39], "0x620": [37, 39], "0x16d44752": [37, 39], "dirtyshutdown": [37, 39], "_089134": [37, 39], "ntds_crack": [37, 39], "systemh": [37, 39], "bstr": [37, 39], "interopservic": [37, 39], "marshal": [37, 39], "securestringtobstr": [37, 39], "unsecurepassword": [37, 39], "ptrtostringauto": [37, 39], "getnetworkcredenti": [37, 39], "plainpassword": [37, 39], "unsecurepassword1": [37, 39], "targetsess": [37, 39], "halomem03": [37, 39], "tosess": [37, 39], "halo": [37, 39], "sourcesess": [37, 39], "halodc01": [37, 39], "fromsess": [37, 39], "filehash": [37, 39], "8a7d37867537db78a74a473792928f14edcb3948b9eb11a48d6de38b3dd30eec": [37, 39], "p3": [37, 39], "enum4linux": [37, 39], "nltest": [37, 39], "netdom": [37, 39], "bloodhound": [37, 39], "adexplor": [37, 39], "diagramm": [37, 39], "adsisearch": [37, 39], "winex": [37, 39], "psexec": [37, 39], "smbexec": [37, 39], "wmiexec": [37, 39], "domainadministrator_us": [37, 39], "da_passw0rd": [37, 39], "rq": [37, 39], "output_docu": [37, 39], "post_data": [37, 39], "somenumb": [37, 39], "aaaaaaa": [37, 39], "tighten": [37, 39], "permitrootlogin": [37, 39], "eugen": [37, 39], "margo": [37, 39], "allowus": [37, 39], "example_user1": [37, 39], "example_user2": [37, 39], "passwordauthent": [37, 39], "admin_5f4dcc3b5aa765d61d8327deb882cf99": [37, 39], "sitepag": [37, 39], "_layout": [37, 39], "allpag": [37, 39], "svn": [37, 39], "xxe": [37, 39], "xpath": [37, 39], "unseri": [37, 39], "forgeri": [37, 39], "ssrf": [37, 39], "ssti": [37, 39], "rfi": [37, 38, 39], "uncommon": [37, 38, 39], "blind": [37, 39], "sup3r": [37, 39], "s3cr3t": [37, 39], "dr0pb0x": [37, 39], "steve": [37, 39], "browsermatchnocas": [37, 39], "errordocu": [37, 39], "h2": [37, 39], "lol": [37, 39], "execv": [37, 39], "popen": [37, 38, 39], "suidbinari": [37, 39], "dhclient": [37, 39], "equiv": [37, 39], "fcrackzip": [37, 39], "rockyou2": [37, 39], "weed": [37, 39], "croc": [37, 39], "artwork": [37, 39], "rar3": [37, 39], "35c0eaaed4c9efb9": [37, 39], "463323be": [37, 39], "140272": [37, 39], "187245": [37, 39], "kdbx": [37, 39], "keepass": [37, 39], "f362b5565b916422607711b54e8d0bd20838f5111d33a5eed137f9d66a375efb": [37, 39], "3f51c5ac43ad11e0096d59bb82a59dd09cfd8d2791cadbdb85ed3020d14c8fea": [37, 39], "3f759d7011f43b30679a5ac650991caa": [37, 39], "b45da6b5b0115c5a7fb688f8179a19a749338510dfe90aa5c2cb7ed37f992192": [37, 39], "535a85ef5c9da14611ab1c1edc4f00a045840152975a4d277b3b5c4edc1cd7da": [37, 39], "hashfil": [37, 39], "2john": [37, 39], "thingi": [37, 39], "dmg2john": [37, 39], "gpg2john": [37, 39], "hccap2john": [37, 39], "keychain2john": [37, 39], "keyring2john": [37, 39], "keystore2john": [37, 39], "kwallet2john": [37, 39], "luks2john": [37, 39], "pfx2john": [37, 39], "putty2john": [37, 39], "pwsafe2john": [37, 39], "racf2john": [37, 39], "ssh2john": [37, 39], "truecrypt_volume2john": [37, 39], "uaf2john": [37, 39], "wpapcap2john": [37, 39], "zip2john": [37, 39], "7z2john": 37, "rsactftool": [37, 39], "unciph": [37, 39], "rsautl": [37, 39], "inkei": [37, 39], "privatekei": [37, 39], "encryptedfil": [37, 39], "5e14f2c53cbc04b82a35414dc670a8a474ee0021349f280bfef215e23d40601a": [37, 39], "ciphertext3": [37, 39], "egcd": [37, 39], "gcd": [37, 39], "1090660992520643446103273789680343": [37, 39], "1162435056374824133712043309728653": [37, 39], "65537": [37, 39], "299604539773691895576847697095098784338054746292313044353582078965": [37, 39], "phi": [37, 39], "pow": [37, 39], "x00": [37, 38, 39], "x146": [37, 39], "x17": [37, 38, 39], "xe9": [37, 39], "xc1": [37, 39], "x1a": [37, 38, 39], "x7fkx": [37, 39], "xec": [37, 39], "xa0n": [37, 39], "xb4": [37, 39], "x98": [37, 39], "xeao": [37, 39], "xf8": [37, 39], "x85": [37, 39], "xaa": [37, 39], "xb37": [37, 39], "xf0j": [37, 39], "x0e": [37, 39], "x8b": [37, 39], "xfe": [37, 39], "x8a": [37, 39], "xf2": [37, 39], "xceu": [37, 39], "x07": [37, 38, 39], "x90k2e": [37, 39], "x12": [37, 38, 39], "x1d": [37, 38, 39], "xf1": [37, 39], "x8f": [37, 39], "xc6": [37, 39], "x91": [37, 39], "x1b9": [37, 39], "wwan0": [37, 39], "pfifo_fast": [37, 39], "194": [37, 39], "148": [37, 39], "151": [37, 39], "5222sec": [37, 39], "exempt_group": [37, 39], "sudo_": [37, 39], "env_keep": [37, 39], "env_check": [37, 39], "env_fil": [37, 39], "mail_all_cmnd": [37, 39], "mail_alwai": [37, 39], "mail_no_host": [37, 39], "mail_no_perm": [37, 39], "mail_no_us": [37, 39], "keytool": [37, 39], "csr": [37, 39], "crackstat": [37, 39], "stego": [37, 39], "encinfo": [37, 39], "mercuri": [37, 39], "haxma": [37, 39], "9390": [37, 39], "nicola": [37, 39], "surriba": [37, 39], "git_templ": [37, 39], "git_ssh_command": [37, 39], "setuidbinari": [37, 39], "4755": [37, 39], "run_command": [37, 39], "git_dir": [37, 39], "mytempl": [37, 39], "flag2": [37, 39], "truecrack": [37, 39], "veracrypt": [37, 39], "wordlist_fil": [37, 39], "cryptsetup": [37, 39], "tcrypt": [37, 39], "mountnam": [37, 39], "preg_match": [37, 39], "opcach": [37, 39], "gosecur": [37, 39], "xenial": [37, 39], "xeru": [37, 39], "_like": [37, 39], "_name": [37, 39], "_url": [37, 39], "_report": [37, 39], "_codenam": [37, 39], "v2c": [37, 39], "prism": [37, 39], "335544320": [37, 39], "335544321": [37, 39], "171": [37, 39], "205": [37, 39], "335544323": [37, 39], "3002": [37, 39], "5678": [37, 39], "opmod": [37, 39], "kathi": [37, 39], "fred": [37, 39], "v4": [37, 39], "v6": [37, 39], "worldlist": [37, 39], "truth": [37, 39], "deauth": [37, 39], "eapol": [37, 39], "922176": [37, 39], "nonassoci": [37, 39], "922688": [37, 39], "923157": [37, 39], "acknowledg": [37, 39], "924224": [37, 39], "e8": [37, 39], "924736": [37, 39], "925723": [37, 39], "933402": [37, 39], "mbit": [37, 39], "ch": [37, 39], "933908": [37, 39], "934427": [37, 39], "991250": [37, 39], "992274": [37, 39], "992282": [37, 39], "992795": [37, 39], "992787": [37, 39], "994834": [37, 39], "assoc": [37, 39], "994843": [37, 39], "996890": [37, 39], "996882": [37, 39], "011783": [37, 39], "addba": [37, 39], "012314": [37, 39], "012827": [37, 39], "ta": [37, 39], "ctl": [37, 39], "013330": [37, 39], "014874": [37, 39], "015379": [37, 39], "030226": [37, 39], "030746": [37, 39], "043034": [37, 39], "043026": [37, 39], "054803": [37, 39], "056338": [37, 39], "056859": [37, 39], "064514": [37, 39], "065030": [37, 39], "079878": [37, 39], "080901": [37, 39], "108096": [37, 39], "110144": [37, 39], "flair": [37, 39], "dvc": [37, 39], "hg": [37, 39], "bzr": [37, 39], "gruber": [37, 39], "drupal": [37, 39], "droopi": [37, 39], "proxychain": [37, 39], "elastix": [37, 39], "freepbx": [37, 39], "pbx": [37, 39], "sipvici": [37, 39], "ippanel": [37, 39], "spartan": [37, 39], "frontpag": [37, 39], "sharepwn": [37, 39], "authbind": [37, 39], "swak": [37, 39], "swiss": [37, 39], "armi": [37, 39], "xxxxxee": [37, 39], "2525": [37, 39], "buddi": [37, 39], "unshadow": [37, 39], "cudahashcat": [37, 39], "shadown": [37, 39], "testdav": [37, 39], "cadav": [37, 39], "davtest": [37, 39], "e3u9isnnswyes0": [37, 39], "davtestdir_e3u9isnnswyes0": [37, 39], "davtest_e3u9isnnswyes0": [37, 39], "jhtml": [37, 39], "shtml": [37, 39], "lime": [37, 39], "extractor": [37, 39], "ramdump": [37, 39], "evilscript": [37, 39], "thecoloni": [37, 39], "phpbash": [37, 39], "rss": [37, 39], "localaddress": [37, 39], "linux_command": [37, 39], "globbl": [37, 39], "strut": [37, 39], "padbust": [37, 39], "artisan": [37, 39], "appconsolekernel": [37, 39], "somecas": [37, 39], "11026": [37, 39], "showtext": [37, 39], "honeypot": [37, 39], "lanip": [37, 39], "xxxxxxxwordpress": [37, 39], "python2": [37, 39], "honeyport": [37, 39], "43059": [37, 39], "22435": [37, 39], "17432": [37, 39], "securework": [37, 39], "entic": [37, 39], "exe2hex": [37, 39], "unicorn": [37, 39], "culmin": [37, 39], "splinter": [37, 39], "incarn": [37, 39], "limitless": [37, 39], "uniscan": [38, 39], "sitemap": [38, 39], "dork": [38, 39], "qwed": [38, 39], "bqwed": [38, 39], "fimap": [38, 39], "strpo": [38, 39], "fileincl": [38, 39], "example1": [38, 39], "include_path": [38, 39], "pear": [38, 39], "scandir": [38, 39], "def506bd2176265e006f2db3d7b4e9db11c459c1": [38, 39], "23shell": [38, 39], "rv": [38, 39], "gecko": [38, 39], "20100101": [38, 39], "codeg": [38, 39], "owlur": [38, 39], "readfil": [38, 39], "xqi": [38, 39], "http_raw_post_data": [38, 39], "enctyp": [38, 39], "multipart": [38, 39], "logfilecheck": [38, 39], "redact": [38, 39], "xhtml": [38, 39], "i56kgbsq9rm8ndg3qbarhsbm27": [38, 39], "lang": [38, 39], "php5": [38, 39], "sess_": [38, 39], "sess_i56kgbsq9rm8ndg3qbarhsbm27": [38, 39], "3fphp": [38, 39], "22cat": [38, 39], "2fetc": [38, 39], "2fpasswd": [38, 39], "pwned": [38, 39], "genrandomstr": [38, 39], "0123456789abcdefghijklmnopqrstuvwxyz": [38, 39], "mt_rand": [38, 39], "makerandompath": [38, 39], "file_exist": [38, 39], "makerandompathfromfilenam": [38, 39], "pathinfo": [38, 39], "pathinfo_extens": [38, 39], "array_key_exist": [38, 39], "target_path": [38, 39], "_file": [38, 39], "uploadedfil": [38, 39], "tmp_name": [38, 39], "move_uploaded_fil": [38, 39], "href": [38, 39], "max_file_s": [38, 39], "1kb": [38, 39], "o0xn5q93si": [38, 39], "exif_imagetyp": [38, 39], "02x": [38, 39], "sunflow": [38, 39], "format_str": [38, 39], "xe0": [38, 39], "x4a": [38, 39], "x46": [38, 39], "x49": [38, 39], "x2c": [38, 39], "x16": [38, 39], "x45": [38, 39], "x78": [38, 39], "x66": [38, 39], "x4d": [38, 39], "x2a": [38, 39], "xdb": [38, 39], "x43": [38, 39], "x05": [38, 39], "x03": [38, 39], "x06": [38, 39], "x0c": [38, 39], "x0f": [38, 39], "x09": [38, 39], "x13": [38, 39], "x14": [38, 39], "x15": [38, 39], "x18": [38, 39], "x21": [38, 39], "x1f": [38, 39], "fh": [38, 39], "coment": [38, 39], "suspectinfo": [38, 39], "textarea": [38, 39], "400px": [38, 39], "150px": [38, 39], "sinfo": [38, 39], "355px": [38, 39], "serversid": [38, 39], "secretnam": [38, 39], "random_filenam": [38, 39], "random_numb": [38, 39], "accesspolici": [38, 39], "web_config": [38, 39], "isapimodul": [38, 39], "scriptprocessor": [38, 39], "windir": [38, 39], "inetsrv": [38, 39], "resourcetyp": [38, 39], "unspecifi": [38, 39], "requireaccess": [38, 39], "precondit": [38, 39], "bitness64": [38, 39], "requestfilt": [38, 39], "fileextens": [38, 39], "hiddenseg": [38, 39], "querystr": [38, 39], "createobject": [38, 39], "wscript": [38, 39], "readal": [38, 39], "smb1": [38, 39], "nt_status_network_unreach": [38, 39], "sucessfulli": [38, 39], "efaa": [38, 39], "696": [38, 39], "056": [38, 39], "simplehttpserv": [38, 39], "downloadfil": [38, 39], "urlcach": [38, 39], "pstool": [38, 39], "bitsadmin": [38, 39], "mydownloadjob": [38, 39], "pyftpdlib": [38, 39], "2121": [38, 39], "evel": [38, 39], "hdm": [38, 39], "ftppass": [38, 39], "ftproot": [38, 39], "pasvport": [38, 39], "pasv": [38, 39], "srvhost": [38, 39], "srvport": [38, 39], "sslcert": [38, 39], "331": [38, 39], "160": [38, 39], "drwxr": [38, 39], "4367": [38, 39], "kb": [38, 39], "jduck": [38, 39], "todb": [38, 39], "tftproot": [38, 39], "pkgmgr": [38, 39], "iu": [38, 39], "shocker": [38, 39], "poc": [38, 39], "wheezi": [38, 39], "clearanc": [38, 39], "16364": [38, 39], "16176": [38, 39], "ftw": [38, 39], "fb0": [38, 39], "framebuff": [38, 39], "fb2png": [38, 39], "4163040": [38, 39], "virtual_s": [38, 39], "1176": [38, 39], "885": [38, 39], "aaaab3nzac1yc2eaaaadaqa": [38, 39], "1608806": [38, 39], "394": [38, 39], "00239741": [38, 39], "164": [38, 39], "hda6": [38, 39], "2790777": [38, 39], "32641": [38, 39], "2790778": [38, 39], "dir1": [38, 39], "2790781": [38, 39], "2790782": [38, 39], "4044": [38, 39], "40700": [38, 39], "2605": [38, 39], "2601": [38, 39], "40755": [38, 39], "100600": [38, 39], "somethingels": [38, 39], "sphere": [38, 39], "icandowhatev": [38, 39], "unsaf": [38, 39], "cpickl": [38, 39], "unpickl": [38, 39], "shell_cod": [38, 39], "__reduce__": [38, 39], "cposix": [38, 39], "tp3": [38, 39], "rp4": [38, 39], "x03cposix": [38, 39], "nsystem": [38, 39], "nq": [38, 39], "x00xt": [38, 39], "fq": [38, 39], "x85q": [38, 39], "x02rq": [38, 39], "_pickl": [38, 39], "sour": [38, 39], "pcre": [38, 39], "carelessli": [38, 39], "use_m": [38, 39], "dgbp": [38, 39], "property_set": [38, 39], "xpwn": [38, 39], "woe": [38, 39], "exot": [38, 39], "unvalid": [38, 39], "msf4": [38, 39], "reload_al": [38, 39], "module_nam": [38, 39], "gloriou": [38, 39], "npm": 39, "infosec": 40, "skill": 40, "cryptographi": 40}, "objects": {}, "objtypes": {}, "objnames": {}, "titleterms": {"binari": [0, 15, 19, 30, 35, 36, 39], "exploit": [0, 5, 6, 15, 18, 19, 20, 36, 38, 39], "basic": [0, 1, 4, 9, 16, 18, 30, 33], "initi": [0, 3, 13, 17, 19, 30, 31, 34, 35], "check": [0, 13, 18, 22, 30, 32, 36, 39], "architectur": [0, 1, 9, 10, 11, 14, 31], "help": [0, 30, 33, 35, 39], "protect": [0, 9, 10, 32, 37, 39], "pie": 0, "enabl": [0, 13, 19, 30], "eip": 0, "offset": 0, "other": [0, 3, 5, 9, 10, 11, 17, 18, 19, 29, 30, 31, 32, 36, 37, 39], "integar": 0, "overflow": 0, "buffer": 0, "execut": [0, 10, 18, 19, 20, 30, 31, 36, 37, 38, 39], "stack": [0, 5, 31], "non": [0, 18, 30], "aslr": 0, "disabl": [0, 5, 7, 8, 13, 19, 30], "export": 0, "environ": [0, 8, 30, 35, 36, 38, 39], "variabl": [0, 10, 30, 35, 36, 39], "return2libc": 0, "return": [0, 1, 30], "orient": 0, "program": [0, 1, 2, 4, 10, 30, 32, 36], "find": [0, 3, 13, 17, 18, 19, 30, 32, 34, 36, 39], "system": [0, 9, 10, 18, 20, 22, 23, 30, 35, 36, 37, 38, 39], "exit": 0, "bin": [0, 30, 37, 39], "sh": [0, 35, 39], "creation": [0, 8, 36, 39], "call": [0, 23], "target": [0, 19, 20], "multipl": [0, 30], "time": [0, 5, 10, 32, 36, 39], "format": [0, 3, 9, 30], "string": [0, 3, 5, 18, 30], "vulner": [0, 5, 9, 18, 19, 29, 32, 39, 40], "definit": [0, 9, 10, 24, 31, 33, 35, 39], "behaviour": 0, "function": [0, 1, 5, 9, 10, 23, 30, 31, 38, 39], "crash": 0, "view": [0, 19, 30], "memori": [0, 3, 4, 10, 20], "ani": [0, 36, 39], "locat": [0, 11, 18, 30, 36, 39], "overwrit": 0, "arbitrari": [0, 36, 39], "direct": 0, "paramet": [0, 5, 9, 30, 35, 39], "access": [0, 7, 9, 10, 15, 18, 19, 20, 29, 38, 39], "write": [0, 1, 15, 20, 38, 39], "two": 0, "byte": [0, 38, 39], "four": 0, "heap": 0, "share": [0, 29, 30, 32, 38, 39], "librari": [0, 30], "hijack": [0, 36, 39], "global": [0, 19, 30], "tabl": [0, 10, 18, 27, 30], "pointer": 0, "tip": [0, 3, 30, 37, 39], "trick": [0, 30, 36, 37, 38, 39], "appendix": [0, 4, 5, 12, 13, 17, 38, 39], "gdb": [0, 15, 30], "get": [0, 15, 19, 30, 32, 35, 37, 39], "input": [0, 5, 10, 30, 37, 38, 39], "from": [0, 1, 3, 5, 6, 7, 9, 13, 15, 16, 30, 35, 36, 37, 38, 39], "char": 0, "argv": 0, "file": [0, 1, 3, 7, 10, 18, 19, 20, 30, 31, 33, 35, 36, 37, 38, 39], "stdin": 0, "network": [0, 1, 3, 8, 9, 10, 11, 17, 18, 19, 22, 29, 30, 31, 36, 37, 39], "keep": 0, "open": [0, 18, 21, 30, 33], "after": 0, "inject": [0, 5, 18, 37, 39], "examin": 0, "data": [0, 1, 5, 9, 10, 15, 18, 20, 21, 30, 31, 32, 33, 37, 38, 39], "frame": 0, "regist": [0, 4, 11, 19], "set": [0, 7, 8, 15, 30, 38, 39], "radare2": 0, "ii": [0, 13, 18, 20, 38, 39], "ld_preload": 0, "import": [0, 30], "thing": [0, 31, 33, 37, 39], "note": 0, "control": [0, 5, 7, 8, 9, 10, 13, 19, 29, 30, 31, 33, 38, 39], "uniniti": 0, "libc": 0, "rpath": 0, "libc_start_main": 0, "gmon_start": 0, "version": [0, 10, 17, 18, 19, 22], "refer": [0, 1, 5, 9, 18, 33, 36, 37, 39], "ld_debug": 0, "ulimit": [0, 30], "iii": [0, 13, 20, 39], "concept": [0, 10, 24, 30, 31, 33], "us": [0, 3, 5, 7, 13, 15, 17, 18, 19, 20, 30, 31, 33, 36, 37, 38, 39], "exampl": [0, 4, 5, 6, 9, 10, 17, 19, 30, 31, 33, 36, 38, 39], "convent": 0, "cdecl": 0, "sysv": 0, "plt": 0, "miscellan": 0, "changelog": [0, 9, 29, 39], "code": [1, 2, 3, 5, 18, 19, 29, 33, 37, 38, 39], "quick": [1, 35, 39], "python": [1, 35, 36, 38, 39], "scapi": 1, "read": [1, 9, 15, 18, 30], "pcap": [1, 3], "pattern": [1, 3, 30], "numpi": 1, "random": [1, 8, 30, 32], "seed": 1, "beautifulsoup": 1, "pwntool": 1, "instal": [1, 8, 12, 13, 14, 15, 22, 30, 32, 36, 38, 39], "verifi": [1, 19, 30, 38, 39], "foreign": 1, "tube": 1, "io": [1, 17], "receiv": 1, "send": [1, 32], "manipul": [1, 9, 18, 30], "integ": [1, 5], "process": [1, 15, 30, 32, 36, 37, 39], "featur": [1, 13, 31], "interact": [1, 19, 35, 39], "session": [1, 8, 19, 20, 37, 38, 39], "secur": [1, 7, 8, 9, 10, 13, 15, 20, 29, 30, 32, 33, 35, 37, 39], "shell": [1, 3, 18, 30, 35, 36, 37, 39], "serial": [1, 5], "port": [1, 3, 9, 10, 15, 17, 18, 30, 34, 35, 39], "util": [1, 18, 30, 37, 39], "fiddl": 1, "pwn": 1, "templat": 1, "ctype": 1, "php": [1, 5, 6, 35, 38, 39], "burpsuit": [1, 35, 39], "gener": [1, 9, 18, 24, 30, 32], "wordlist": 1, "cewl": 1, "crunch": 1, "c": [1, 20, 30], "rand": 1, "srand": 1, "fget": 1, "valu": [1, 7, 18, 30, 31, 37, 38, 39], "convers": 1, "hex": [1, 3, 5], "littl": 1, "endian": 1, "big": 1, "ascii": [1, 3], "cryptographi": [2, 32], "substitut": [2, 30], "cipher": [2, 18], "asymmetr": [2, 32], "encrypt": [2, 15, 18, 30, 32, 37, 39], "rsa": [2, 37, 39], "p": [2, 19, 30, 37, 39], "q": [2, 37, 39], "dp": 2, "differ": [2, 8, 9, 30, 33], "public": [2, 13, 32, 37, 39], "expon": 2, "e": [2, 17, 30, 35, 37, 39], "same": 2, "modulu": 2, "n": 2, "symmetr": [2, 32, 37, 39], "esoter": 2, "languag": [2, 9, 30, 38, 39], "rockstar": 2, "piet": 2, "malbolg": 2, "base": [2, 5, 9, 13, 30], "golden": 2, "ratio": 2, "forens": [3, 10], "header": [3, 5], "equival": 3, "kaitai": 3, "struct": 3, "bmp": 3, "png": 3, "chunk": 3, "layout": 3, "summari": [3, 9, 32], "metadata": 3, "timestamp": 3, "timelin": 3, "steganographi": 3, "imag": [3, 31, 38, 39], "exiftool": 3, "stegsolv": 3, "cyberchef": 3, "steghid": [3, 37, 39], "binwalk": 3, "foremost": 3, "lsb": 3, "stegonagraphi": 3, "msb": 3, "powershel": [3, 19, 20, 36, 37, 39], "qrcode": 3, "type": [3, 5, 10, 11, 15, 19, 30, 31, 32, 33, 38, 39], "svg": 3, "sound": 3, "slow": 3, "scan": [3, 10, 15, 17, 19, 30, 34, 39], "televis": 3, "transmiss": [3, 9], "sstv": 3, "spectrum": 3, "analysi": [3, 10, 18, 24, 32], "amplitud": 3, "introduct": [3, 5, 22, 24, 33], "wire": [3, 9, 17], "dn": [3, 8, 10, 17, 18, 34, 39], "tunnel": [3, 35, 39], "decrypt": [3, 32], "traffic": [3, 32], "tl": [3, 18], "wireshark": [3, 10], "ssldump": 3, "attack": [3, 5, 15, 17, 18, 38, 39], "detect": [3, 5, 10, 18, 29, 30, 32], "host": [3, 10, 13, 14, 17, 19, 30, 31], "discoveri": [3, 10, 13, 18, 31], "recon": [3, 17, 34], "wireless": [3, 16, 17], "revers": [3, 4, 15, 17, 18, 35, 39], "eternalblu": 3, "tftp": [3, 38, 39], "filter": [3, 5, 30, 38, 39], "inform": [3, 9, 10, 17, 18, 19, 20, 30, 35, 36, 37, 39], "bittorr": 3, "usb": 3, "keyboard": [3, 18, 30], "report": [3, 21, 22, 24, 32], "hid": [3, 10], "mous": 3, "storag": [3, 20, 30, 31], "devic": [3, 9, 10, 15, 22, 30], "browser": [3, 5, 10, 18], "extens": [3, 5], "webserv": 3, "log": [3, 5, 7, 9, 10, 30, 31, 35, 39], "zip": [3, 30, 36, 37, 38, 39], "word": [3, 30], "powerpoint": 3, "macro": 3, "pdf": [3, 30], "redact": 3, "volatil": 3, "extract": 3, "raw": 3, "pictur": 3, "dump": [3, 18, 20, 38, 39], "disk": [3, 30, 38, 39], "mount": [3, 18, 30, 31], "method": [3, 5, 10, 18, 19, 30, 35, 39], "1": [3, 18, 19, 24, 29, 30, 31, 35], "2": [3, 18, 19, 29, 30, 31, 35], "raid": 3, "challeng": [3, 10, 40], "board": [3, 33], "pass": [3, 18, 19], "interest": [3, 17, 19, 20, 30, 36], "blog": [3, 9, 18, 36, 39, 40], "tool": [3, 9, 10, 13, 15, 17, 19, 20, 21, 22, 29, 30, 31, 32, 33, 38, 39], "engin": [4, 15], "objdump": 4, "ida": 4, "i": [4, 9, 13, 15, 17, 19, 20, 30, 33, 39], "assembli": 4, "address": [4, 8, 10, 17, 30, 34, 39], "mode": [4, 18, 30, 31, 35, 37, 39], "jump": 4, "statement": [4, 24, 30], "learn": [5, 6, 7, 10, 16, 27, 36, 40], "ctf": [5, 6, 37, 39, 40], "web": [5, 6, 10, 20, 29, 30, 35, 38, 39], "applic": [5, 7, 9, 10, 12, 13, 15, 19, 22, 29, 30, 31, 32, 34, 39], "technologi": [5, 31], "The": [5, 11, 17, 20, 23, 27, 30, 40], "http": [5, 17, 18, 35, 37, 38, 39], "protocol": [5, 9, 10, 18, 20, 23, 32], "request": 5, "respons": [5, 10, 32], "url": [5, 18], "rest": 5, "cooki": 5, "statu": [5, 13], "authent": [5, 9, 10, 11, 13, 18, 20, 32], "encod": 5, "scheme": [5, 10], "unicod": 5, "html": [5, 37, 39], "base64": [5, 38, 39], "map": [5, 10, 15, 17], "discov": [5, 18, 19, 23], "hidden": [5, 18], "content": [5, 27, 38, 39], "analyz": [5, 15, 22], "identifi": [5, 10, 15, 17, 19, 30, 32], "entri": [5, 14, 19], "point": [5, 18, 22], "user": [5, 7, 8, 9, 10, 13, 18, 19, 20, 29, 30, 31, 35, 36, 37, 39], "server": [5, 8, 9, 10, 13, 17, 18, 19, 20, 29, 30, 34, 38, 39], "side": [5, 14, 18], "surfac": [5, 15, 17], "bypass": 5, "client": [5, 13, 30, 37, 39], "transmit": 5, "via": [5, 9, 18, 19, 20, 37, 39], "form": [5, 35, 38, 39], "field": [5, 7, 9, 10, 16], "opaqu": 5, "asp": 5, "net": [5, 8, 17, 19, 22], "viewstat": 5, "captur": 5, "length": 5, "limit": [5, 10, 30, 32], "script": [5, 17, 30, 36, 39], "valid": [5, 8, 30], "element": [5, 9, 10], "common": [5, 18, 32], "approach": 5, "handl": [5, 32], "decompil": 5, "design": [5, 32], "flaw": 5, "mechan": [5, 29, 33], "passthru": [5, 6], "acccheck": [5, 6], "usag": [5, 6, 19, 30], "hydra": [5, 6, 35, 39], "vii": 5, "sql": [5, 18, 19], "login": [5, 7, 18, 30, 37, 39], "screen": [5, 30], "smo": 5, "error": [5, 30, 37, 39], "union": [5, 31], "blind": 5, "boolean": 5, "cover": [5, 18], "your": [5, 7], "track": [5, 18, 30], "sp_password": 5, "": [5, 20, 30, 33], "databas": [5, 10, 18, 20, 30], "structur": [5, 9, 11], "queri": [5, 18, 19, 30], "mysql": [5, 18, 35, 36, 39], "m": [5, 18], "oracl": [5, 18], "o": [5, 8, 10, 13, 30, 31], "stuff": [5, 19, 30], "line": [5, 18, 30], "comment": 5, "inlin": 5, "oper": [5, 9, 10, 13, 17, 20, 22, 29, 30, 35, 39], "without": [5, 13, 19, 35], "quot": 5, "evas": 5, "viii": 5, "hack": [5, 18], "step": 5, "debian": [7, 13, 30], "up": [7, 8, 10, 15, 30, 38, 39], "grub": 7, "password": [7, 8, 10, 18, 19, 20, 30, 32, 35, 36, 37, 39], "provid": [7, 30, 31], "pam": 7, "su": [7, 30, 35, 39], "temporari": 7, "directori": [7, 19, 20, 29, 30, 31, 36, 37, 39], "configur": [7, 8, 9, 10, 13, 18, 20, 22, 30, 31, 35, 36, 39], "undefin": 7, "umask": 7, "action": [7, 30], "permiss": [7, 22, 30, 33, 36, 39], "packag": [7, 15, 30, 33, 36, 39], "kernel": [7, 30, 36, 39], "harden": [7, 8, 29], "sysctl": [7, 30], "legal": [7, 33], "banner": [7, 18], "compil": [7, 30, 32], "driver": [7, 30, 31], "seri": 8, "window": [8, 10, 18, 19, 20, 22, 29, 30, 35, 36, 37, 38, 39], "creat": [8, 13, 19, 20, 30, 31, 32, 38, 39], "domain": [8, 13, 17, 18, 19, 29], "renam": 8, "comput": [8, 19, 31, 32], "static": [8, 30, 32], "ip": [8, 10, 17, 30, 34, 37, 39], "figur": 8, "out": [8, 20, 35, 37, 39], "adapt": 8, "updat": [8, 11, 29, 30, 32], "servic": [8, 13, 17, 18, 19, 20, 23, 29, 30, 31, 36], "ad": [8, 13, 19, 30], "add": [8, 14, 19, 30], "forest": [8, 19], "new": [8, 18, 19, 20, 29, 30], "adus": 8, "csv": [8, 30], "local": [8, 13, 19, 20, 35, 36, 38, 39], "remot": [8, 9, 18, 19, 23, 35, 37, 38, 39], "todo": [8, 12, 17, 18, 19, 20, 26, 30, 33, 35, 37, 39], "move": [8, 30], "ou": [8, 19], "adcomput": 8, "object": [8, 9, 19], "specif": [8, 9, 19, 30], "complianc": [8, 29, 33], "manag": [8, 10, 11, 13, 18, 20, 21, 22, 23, 29, 30, 31, 32, 36, 39], "extra": [8, 13], "custom": [8, 9, 37, 39], "enumer": [8, 17, 18, 19, 23, 35, 36, 37, 39], "netceas": 8, "administr": [8, 19, 20, 30], "solut": [8, 9, 11, 31], "lap": 8, "electr": 9, "grid": 9, "fact": 9, "consumpt": 9, "hydroelectr": 9, "station": 9, "thermal": 9, "renew": 9, "energi": 9, "tower": 9, "straight": 9, "substat": 9, "flow": [9, 10, 24], "balanc": [9, 24], "suppli": 9, "demand": 9, "meter": 9, "breaker": 9, "nation": 9, "hierarch": 9, "hierarchi": 9, "region": 9, "level": [9, 20, 30], "implement": [9, 10, 31], "scada": 9, "em": 9, "rldc": 9, "sldc": 9, "distribut": [9, 30, 31], "fep": 9, "commun": [9, 10, 15, 18, 23, 33], "principl": [9, 32], "termin": [9, 30], "unit": 9, "measur": 9, "acquisit": 9, "typic": 9, "rtu": 9, "plc": 9, "intellig": [9, 17, 29], "electron": 9, "interfac": [9, 10, 18, 30, 31, 34, 39], "bai": 9, "pi": [9, 14], "iccp": 9, "historian": 9, "avail": [9, 17, 30, 33], "tariff": 9, "schedul": [9, 19, 30, 36], "automat": [9, 13, 30], "mda": 9, "power": 9, "qualiti": [9, 32, 33], "monitor": [9, 14, 30, 31, 32], "intern": [9, 10, 15, 17], "standard": [9, 29, 31, 37, 39], "iec": 9, "60870": 9, "5": 9, "104": 9, "apci": 9, "asdu": 9, "conform": 9, "block": [9, 30, 31], "exchang": [9, 20, 33], "requir": [9, 30], "between": [9, 30], "center": [9, 11, 20], "pool": 9, "iso": 9, "rto": 9, "manufactur": 9, "messag": [9, 18], "mm": 9, "casm": 9, "gomsf": 9, "goos": 9, "61850": 9, "what": [9, 10, 15, 32, 33, 36, 39], "why": [9, 10, 31, 33], "dlm": 9, "cosec": 9, "scl": 9, "benefit": [9, 13, 31], "softwar": [9, 15, 31, 32, 33], "abb": 9, "ge": 9, "siemen": 9, "osi": 9, "plan": 9, "toolkit": [9, 29], "geograph": 9, "schneider": 9, "ac31": 9, "sicam": 9, "tm": 9, "ak": 9, "test": [9, 15, 19, 29, 30, 32], "nomenclatur": [9, 29], "identif": [9, 10, 17], "centr": 9, "ident": [9, 11, 13, 18, 20, 29], "sourc": [9, 10, 21, 33], "For": [9, 13, 30], "cybersecur": [9, 29], "remedi": 9, "integr": [9, 30], "firewal": [9, 10, 18, 22, 29, 30, 36], "supervis": 9, "snmp": [9, 17, 18, 36], "v3": 9, "hygien": 9, "IT": [9, 10], "abt": 9, "amr": 9, "feed": 9, "vendor": [9, 10], "advisori": 9, "relat": 9, "towrit": 9, "essenti": [11, 40], "mobil": 11, "phone": 11, "cellular": 11, "term": 11, "bra": 11, "bng": 11, "enhanc": 11, "subscrib": 11, "esm": 11, "li": 11, "ipo": 11, "ppoe": 11, "nss": 11, "msc": 11, "home": [11, 29, 30, 37, 39], "hlr": 11, "auc": 11, "visitor": 11, "vlr": 11, "equip": 11, "eir": 11, "profil": 11, "repositori": [11, 31], "transport": [10, 11, 32], "carrier": 11, "ethernet": 11, "lte": 11, "diamet": 11, "rout": [10, 11, 30], "agent": [11, 13, 14, 31], "dra": 11, "probe": [11, 18], "ntr": 11, "sigtran": 11, "ran": 11, "bt": 11, "rnc": 11, "bsc": 11, "pgw": 11, "keycloak": [12, 13], "gitlab": 12, "jupyterhub": 12, "influxdb": 12, "grafana": 12, "argocd": 12, "mattermost": 12, "influxdb2": 12, "cloud": [13, 31], "tier": 13, "s1": 13, "virtual": [13, 20, 30, 31], "machin": [13, 19, 20, 31, 39, 40], "aw": [13, 31], "azur": [13, 31], "openstack": 13, "s2": [13, 32], "s2a": 13, "hostnam": [13, 14, 18, 37, 39], "terraform": [13, 31], "s2b": 13, "puppet": [13, 14, 20, 31], "repo": 13, "we": 13, "redhat": [13, 30], "cento": 13, "s3": [13, 32], "vm1": 13, "puppetserv": 13, "With": [13, 30, 38, 39], "foreman": 13, "accept": 13, "certif": [13, 18, 33, 34, 39], "vm2": 13, "freeipa": 13, "manual": 13, "vm4": 13, "cloudcor": 13, "vm4a": 13, "kubernet": [13, 31], "worker": 13, "node": 13, "kubeadm": 13, "token": [13, 36, 39], "arkad": 13, "helm": 13, "cert": [13, 18], "nginx": 13, "ingress": 13, "metallb": 13, "loadbalanc": 13, "If": [13, 30], "infrastructur": [13, 17, 29, 31, 40], "deploi": 13, "bare": [13, 31], "metal": [13, 31], "starboard": 13, "vm2a": 13, "rancher": 13, "vm3": 13, "teleport": 13, "vm4b": 13, "kubeedg": 13, "vm5": 13, "vault": 13, "vm6": 13, "ceph": [13, 31], "tear": 13, "down": 13, "cluster": 13, "upgrad": [13, 30, 36, 37, 39], "rook": 13, "vm7": 13, "kafka": 13, "remov": [10, 13, 14, 19, 30], "On": 13, "ipa": 13, "yum": [13, 30], "mosquitto": 13, "idm": 13, "displai": 13, "info": [13, 18, 19, 30], "delet": [13, 19, 30, 37, 39], "modifi": [13, 30, 38, 39], "unlock": 13, "account": [13, 18, 19, 20, 22, 36, 39], "sudo": [13, 30, 36, 39], "ssh": [13, 18, 30, 35, 37, 39], "kei": [13, 30, 31, 32, 35, 37, 39], "openssh": 13, "sssd": 13, "how": [10, 13, 15], "rule": [10, 13, 20, 24, 30], "k3": 13, "kubectl": 13, "openfaa": 13, "serverless": [13, 31], "iv": [13, 39], "addit": [13, 29, 33], "x": [13, 30], "pxe": 13, "boot": [13, 30], "metric": 13, "falco": 13, "urban": 14, "edg": 14, "raspberri": 14, "systemd": [14, 30], "resolv": 14, "conf": [14, 30], "cgroup": [14, 31], "wifi": 14, "chang": [14, 19, 30], "etc": [14, 19, 30, 36, 39], "layer": [15, 32], "iot": 15, "pentest": [15, 16, 40], "embed": [10, 15], "vuln": [15, 18, 32, 35, 39], "firmwar": 15, "radio": 15, "hardwar": [15, 30], "visual": 15, "inspect": 15, "compon": [15, 31], "uart": 15, "packet": 15, "baud": 15, "rate": 15, "connect": [10, 15, 18, 19, 36], "i2c": 15, "spi": 15, "inter": 15, "intergr": 15, "circuit": 15, "understad": 15, "eeprom": 15, "summar": 15, "doe": [15, 33], "work": [15, 19, 30, 33], "jtag": 15, "boundari": 15, "instruct": 15, "debug": [15, 30, 31], "pinout": 15, "openocd": 15, "over": [15, 18, 38, 39], "hardcod": 15, "secret": 15, "emul": [15, 19, 30], "backdoor": 15, "run": [15, 37, 39], "autom": [15, 29, 33], "dif": 15, "defin": [15, 19, 31], "lab": 15, "hackrf": 15, "zigbe": 15, "ble": 15, "snif": 15, "wep": 16, "gather": [17, 20, 30, 35, 39], "scenario": 17, "outsid": [17, 35, 39], "extern": [10, 17, 30], "insid": [17, 31, 36], "lan": 17, "respond": [10, 17, 32], "inveigh": 17, "ntlm": [17, 20], "ntlmv1": 17, "v2": 17, "fingerprint": [17, 32], "passiv": [10, 17], "whoi": 17, "asn": 17, "number": [17, 30, 32], "ng": 17, "harvest": 17, "name": [17, 18, 19, 29, 31, 35, 39], "g": 17, "com": 17, "websit": 17, "dumpster": 17, "api": 17, "googl": [17, 18, 31, 35, 39], "dork": 17, "search": [17, 18, 20, 30], "publicli": 17, "lookup": [17, 18], "domaintool": 17, "passivetot": 17, "sniff": 17, "robtex": 17, "activ": [10, 17, 19, 20, 29, 37, 39], "mx": 17, "aaaa": 17, "A": [17, 19, 20, 32], "nslookup": 17, "zone": [17, 18], "transfer": [17, 18, 38, 39], "dig": 17, "dnsrecon": 17, "dnsenum": 17, "srv": [17, 18], "record": [17, 18, 20, 30], "rang": 17, "ping": [17, 18, 30], "gatewai": 17, "portal": 17, "link": [17, 30], "aliv": 17, "perform": [10, 17], "nmap": [10, 17, 18, 30, 34, 35, 36, 39], "output": [10, 17, 30], "option": [10, 17, 35], "explor": [17, 19, 23, 30], "further": 17, "screenshot": 17, "netbio": [10, 17, 18], "nbtscan": 17, "enum4linux": [17, 19], "area": 17, "reconnaiss": [17, 19, 35, 39], "aquaton": 17, "flyover": 17, "datasploit": 17, "spiderfoot": 17, "intrigu": 17, "stori": [17, 19, 20], "compromis": 17, "21": 18, "ftp": [18, 30, 37, 38, 39], "metasploit": [18, 19, 20, 23, 35, 36, 37, 38, 39], "scanner": [10, 18], "anonym": 18, "bounc": 18, "anon": 18, "brute": [18, 35, 39], "22": 18, "forc": [18, 35, 39], "ssh2": 18, "enum": [18, 19], "algo": 18, "hostkei": 18, "sshv1": 18, "23": 18, "telnet": [18, 35, 39], "25": 18, "smtp": 18, "587": 18, "submiss": 18, "smtp_version": 18, "relai": 18, "nse": 18, "command": [18, 19, 30, 36, 37, 38, 39], "53": 18, "bruteforc": 18, "amplif": 18, "recurs": 18, "scraper": 18, "broadcast": 18, "blacklist": [18, 29], "cach": [10, 18], "snoop": 18, "nsid": 18, "79": 18, "finger": 18, "webmin": 18, "jenkin": [18, 31], "apach": [18, 31], "tomcat": 18, "jboss": 18, "lotu": 18, "domino": 18, "httpd": 18, "vmware": 18, "esxi": 18, "88": 18, "kerbero": 18, "krb5": 18, "110": 18, "pop3": 18, "grabber": 18, "capabl": [18, 37, 39], "111": 18, "rpcinfo": 18, "nf": [18, 30], "113": 18, "auth": 18, "owner": [18, 30, 36, 39], "nntp": 18, "reader": [18, 30], "quit": 18, "listgroup": 18, "articl": 18, "post": [18, 20, 35, 38, 39], "master": [18, 30, 31], "161": 18, "modul": [18, 19, 30, 35, 38, 39], "264": 18, "topologi": [18, 19], "checkpoint": 18, "securemot": 18, "disclosur": [18, 32], "389": 18, "ldap": 18, "rootds": 18, "ldapsearch": 18, "445": 18, "smb": [18, 38, 39], "512": 18, "rexec": 18, "rlogin": 18, "513": 18, "514": 18, "rsh": 18, "548": 18, "afp": 18, "appl": 18, "serverinfo": 18, "l": [18, 30, 36, 39], "showmount": 18, "path": [18, 30], "microsoft": [18, 19, 20, 32], "rpc": 18, "135": 18, "593": 18, "endpoint": 18, "mapper": [18, 20, 34, 39], "dcerpc": 18, "tcp": [10, 18, 34, 35, 39], "auditor": 18, "rpcdump": 18, "443": 18, "8443": 18, "ssl": [18, 34, 39], "poodl": 18, "openssl": 18, "changecipherspec": 18, "heartbeat": 18, "heartble": 18, "leak": 18, "dh": 18, "param": 18, "catalog": [18, 19, 31], "sslv2": 18, "cc": [18, 30], "date": 18, "554": 18, "8554": 18, "rtsp": 18, "cameradar": 18, "873": 18, "rsync": [18, 30, 36, 39], "list": [18, 20, 30, 35, 38, 39], "1099": 18, "java": [18, 35, 37, 39], "rmi": 18, "insecur": 18, "default": 18, "classload": 18, "1433": 18, "mssql": 18, "xp_cmdshell": 18, "suser_snam": 18, "sampl": 18, "schema": 18, "tsql": 18, "store": [18, 31, 32], "procedur": 18, "part": [18, 37, 39], "un": 18, "trustworthi": 18, "imperson": 18, "3": [18, 19, 35], "4": 18, "mitm": 18, "1521": 18, "methodologi": 18, "determin": [18, 19], "sid": 18, "guess": 18, "privileg": [10, 18, 19, 20, 29, 30, 36, 37, 39], "escal": [18, 19, 36, 37, 39], "2049": 18, "nfsshell": 18, "3260": 18, "iscsi": 18, "iscsiadm": 18, "3299": 18, "sap": [18, 23], "router": [18, 22, 29], "3306": 18, "hashdump": 18, "5432": 18, "postgresql": 18, "flag": 18, "5555": 18, "hpdataprotector": 18, "rce": 18, "5900": 18, "vnc": 18, "none": 18, "5984": 18, "couchdb": 18, "document": [18, 30, 36], "6000": 18, "x11": 18, "No": 18, "xspy": 18, "xdpyinfo": 18, "xwd": 18, "xwininfo": 18, "xwatchwin": 18, "6379": 18, "redi": 18, "8009": 18, "ajp": 18, "jserv": 18, "9100": 18, "pjl": 18, "printer": [18, 30], "readi": 18, "9160": 18, "cassandra": 18, "10000": 18, "ndmp": 18, "f": 18, "11211": 18, "memcach": 18, "27017": 18, "27018": 18, "mongodb": 18, "mongo": 18, "44818": 18, "ethernetip": 18, "udp": [10, 18, 34, 35, 39], "enip": 18, "47808": 18, "bacnet": 18, "rpclient": 19, "current": [19, 29, 30], "group": [19, 20, 30, 33, 38, 39], "membership": [19, 38, 39], "rid": 19, "polici": 19, "reset": 19, "adexplor": 19, "jxplorer": 19, "nltest": 19, "advanc": [19, 31, 36, 39], "about": [19, 26, 40], "pdc": 19, "show": [19, 30], "trust": 19, "relationship": 19, "netdom": 19, "dc": [19, 31], "fsmo": 19, "workstat": 19, "diagramm": 19, "enterpris": [19, 29], "spn": 19, "all": [19, 30], "dcom": 19, "dnscach": 19, "admin": 19, "right": 19, "adsisearch": 19, "acceler": 19, "usernam": [19, 20, 35, 39], "properti": [19, 33], "powerview": 19, "netsess": 19, "wmi": 19, "workgroup": 19, "netus": 19, "netcomput": 19, "affect": 19, "gpp": 19, "netgroupmemb": 19, "resourc": [19, 33], "kit": 19, "bloodhound": 19, "hunt": [19, 20, 29], "particular": 19, "invok": 19, "userhunt": 19, "users_sess": 19, "eventlog": 19, "winex": 19, "linux": [10, 19, 22, 30, 31, 35, 36, 38, 39], "pth": 19, "win": [19, 35, 39], "ex": [19, 20, 22], "crackmapexec": 19, "smbmap": 19, "impacket": 19, "psexec": 19, "smbex": 19, "wmiexec": 19, "smbexec": 19, "nativ": [19, 31], "upload": [19, 38, 39], "mof": 19, "msf": [19, 35, 39], "sysintern": 19, "hash": [19, 20, 32, 37, 39], "task": [19, 36], "sc": 19, "start": [19, 30, 37, 39], "registri": [19, 20, 36], "an": [19, 29, 30, 32, 38, 39], "winrm": 19, "mmc": 19, "class": 19, "mmc20": 19, "shellexecut": 19, "shellbrowserwindow": 19, "mimikatz": 19, "ptt": 19, "ticket": 19, "xfreerdp": 19, "desktop": [19, 30, 36], "rdesktop": 19, "smbrelai": 19, "credenti": [20, 36, 39], "deliveri": 20, "empir": 20, "lsass": 20, "author": [20, 30], "subsystem": 20, "procdump": 20, "minidump": 20, "hive": [20, 37, 39], "editor": 20, "wce": 20, "logon": 20, "obtain": 20, "cleartext": 20, "sam": 20, "creddump7": 20, "snapshot": 20, "And": 20, "suspend": 20, "state": [20, 30], "vmss2core": 20, "built": [20, 30, 37, 39], "In": 20, "self": [20, 38, 39], "elev": [20, 36, 39], "ea": 20, "da": 20, "ba": 20, "nest": 20, "member": 20, "backup": 20, "high": [20, 30], "impact": 20, "outlook": 20, "pst": 20, "pillag": 20, "full": [20, 30], "mailbox": 20, "cmdlet": 20, "webcam": 20, "microphon": 20, "record_m": 20, "hypervisor": [20, 31], "credmap": 20, "terminologi": [20, 30], "crack": [20, 37, 39], "john": 20, "ripper": 20, "lm": 20, "nt": 20, "korelog": 20, "loopback": 20, "statist": 20, "serpico": 21, "dart": 21, "cisco": [21, 22], "kvasir": 21, "threadfix": 21, "salesforc": 21, "vulnreport": 21, "review": 22, "switch": 22, "nipper": 22, "nessu": [10, 22], "profession": 22, "rconfig": 22, "solarwind": 22, "ciscoconfpars": 22, "tuffin": 22, "orchestr": [22, 31], "suit": 22, "fsm": 22, "springbok": 22, "end": [22, 30], "gpresult": 22, "wmic": 22, "auditpol": 22, "policyanalyz": 22, "accessenum": 22, "tiger": 22, "unix": [22, 36, 39], "privesc": 22, "lsat": 22, "lyni": 22, "rfc": 23, "gui": [23, 30], "diag": 23, "internet": [23, 29, 31], "icm": 23, "framework": [23, 29], "icf": 23, "stock": 24, "market": 24, "invest": 24, "fundament": [24, 32], "checklist": 24, "technic": 24, "pick": 24, "conclus": 24, "qualit": 24, "annual": 24, "sheet": 24, "asset": [10, 24], "liabil": 24, "equiti": 24, "cash": 24, "bull": 24, "v": [10, 24, 30, 31, 33, 39], "bear": 24, "chart": 24, "feedback": 25, "me": [26, 40], "complet": 26, "magic": [27, 38, 39, 40], "contributor": [28, 33, 40], "compani": [29, 33], "setup": 29, "builtin": [29, 30], "wi": 29, "fi": 29, "micro": [29, 31], "issu": [29, 33, 38, 39], "small": 29, "wsu": 29, "dhcp": 29, "minimum": 29, "baselin": 29, "mbss": 29, "linter": 29, "breach": 29, "elk": 29, "elasticsearch": [29, 31], "logstash": 29, "kibana": 29, "event": [10, 29], "forward": [29, 35, 39], "later": 29, "movement": 29, "proxi": [29, 35, 39], "pentrat": 29, "guidelin": [29, 33], "medium": 29, "devsec": 29, "inventori": [10, 29], "assess": 29, "whitelist": [10, 29], "threat": [29, 32], "pim": 29, "userspac": 30, "loader": 30, "partit": 30, "filesystem": [30, 31], "charact": 30, "develop": [30, 32, 33], "famili": 30, "suse": 30, "bio": 30, "mbr": 30, "first": [30, 32, 37, 39], "stage": [30, 31], "efi": 30, "uefi": 30, "second": 30, "ram": 30, "text": [30, 38, 39], "init": 30, "sbin": 30, "upstart": 30, "runlevel": 30, "distinct": 30, "shareabl": 30, "proc": [30, 35, 38, 39], "dev": [30, 35, 39], "var": 30, "lib": 30, "superblock": 30, "du": 30, "estim": 30, "space": 30, "mkf": 30, "resolut": 30, "turn": 30, "off": 30, "graphic": 30, "multiplex": 30, "tmux": 30, "tab": 30, "reload": 30, "config": [30, 38, 39], "copi": [30, 37, 38, 39], "past": 30, "man": 30, "gnu": 30, "cd": [30, 31], "tree": 30, "simpl": [30, 38, 39], "echo": 30, "cat": 30, "edit": 30, "vi": [30, 35, 36, 39], "cursor": 30, "posit": 30, "insert": 30, "vimrc": 30, "viminfo": 30, "replac": 30, "cut": 30, "section": 30, "each": 30, "sed": 30, "awk": 30, "convert": 30, "normal": 30, "sort": 30, "uniq": 30, "join": 30, "split": 30, "tr": 30, "tee": [30, 36, 39], "wc": 30, "alia": 30, "xxd": 30, "hexdump": 30, "larg": 30, "less": 30, "head": 30, "tail": 30, "compress": 30, "swp": 30, "empti": 30, "regular": 30, "express": 30, "print": 30, "grep": [30, 37, 39], "wai": [10, 30], "syntax": [30, 38, 39], "anchor": 30, "expans": 30, "tar": [30, 36, 39], "gzip": 30, "bzip": 30, "xz": 30, "back": 30, "cp": 30, "compar": 30, "diff": 30, "ps1": 30, "prompt": 30, "tracerout": 30, "wget": [30, 36, 37, 39], "curl": [30, 35, 37, 39], "scp": [30, 35, 39], "ifupdown": 30, "networkd": 30, "netplan": 30, "pipe": 30, "special": 30, "understand": 30, "absolut": [30, 36, 39], "rel": [30, 36, 39], "pathnam": 30, "hard": 30, "soft": 30, "confidenti": 30, "repudi": 30, "passwd": [30, 36, 39], "shadow": 30, "shortcut": 30, "eras": 30, "histori": [10, 30, 35, 39], "sudoer": [30, 37, 39], "dd": 30, "attribut": 30, "thread": 30, "id": [10, 30], "signal": 30, "kill": 30, "prioriti": 30, "nice": 30, "renic": 30, "load": 30, "averag": 30, "background": 30, "foreground": 30, "job": 30, "ipc": [30, 31], "style": 30, "bsd": 30, "cron": [30, 36, 39], "sleep": 30, "bash": [30, 35, 39], "ubuntu": [30, 31], "startup": [30, 36], "recal": 30, "previou": 30, "case": [30, 31], "modif": 30, "condit": 30, "loop": 30, "thru": 30, "arrai": 30, "while": 30, "until": 30, "elif": 30, "argument": 30, "shellcheck": 30, "temp": 30, "discard": 30, "null": [30, 31], "singl": [30, 31], "redirect": [30, 37, 39], "equal": 30, "arithmet": 30, "expr": 30, "let": 30, "low": 30, "dpkg": [30, 36, 39], "uninstal": 30, "except": 30, "its": 30, "includ": [30, 32], "rpm": 30, "red": 30, "hat": 30, "fedora": [30, 31], "freshen": 30, "apt": [30, 36, 39], "multi": [10, 30, 31], "arch": 30, "support": 30, "deep": 30, "dive": 30, "pkg": 30, "dnf": 30, "zypper": 30, "sever": 30, "chmod": [30, 36, 39], "setuid": 30, "setgid": 30, "stickybit": 30, "unmount": 30, "rc": 30, "d": [30, 36, 39], "systemctl": 30, "cup": 30, "backend": [30, 31], "postscript": 30, "qpdf": 30, "pdftk": 30, "ghost": 30, "pdfinfo": 30, "flpsed": 30, "pdfmod": 30, "git": [30, 31, 37, 39], "gitk": 30, "commit": 30, "see": 30, "collect": 30, "debugg": 30, "netfilt": 30, "behavior": 30, "chain": 30, "iptabl": 30, "fwbuilder": 30, "root": [30, 38, 39], "suid": [30, 36, 39], "isol": 30, "algorithm": [30, 32], "good": [30, 32], "practic": 30, "preseed": 30, "answer": 30, "prese": 30, "initrd": 30, "media": [10, 30], "delai": 30, "countri": 30, "question": 30, "fail": [30, 33], "audit": [10, 30, 32], "aid": 30, "most": 30, "kvm": 31, "vm": 31, "virtualbox": 31, "vagrant": 31, "box": [31, 37, 39], "sync": 31, "folder": [31, 36, 39], "provis": 31, "plugin": [10, 31], "deploy": [10, 31, 32], "model": [31, 32, 33], "iaa": 31, "platform": 31, "paa": 31, "foundri": 31, "cf": 31, "openshift": 31, "okd": 31, "heroku": 31, "contain": [10, 31, 36], "build": [31, 38, 39], "namespac": 31, "pid": 31, "mnt": 31, "ut": 31, "runtim": 31, "runc": 31, "containerd": 31, "cri": 31, "docker": [31, 38, 39], "project": [31, 33], "mobi": 31, "os": 31, "alpin": 31, "coreo": 31, "core": 31, "photon": 31, "swarm": 31, "meso": 31, "marathon": 31, "hashicorp": 31, "nomad": 31, "amazon": 31, "elast": 31, "instanc": 31, "unikernel": 31, "microservic": 31, "disadvantag": [10, 31], "bridg": 31, "glusterf": 31, "volum": 31, "persist": 31, "claim": 31, "csi": 31, "devop": 31, "ci": 31, "travi": 31, "shippabl": 31, "consourc": 31, "ansibl": 31, "chef": 31, "salt": 31, "releas": [31, 32], "cloudform": 31, "bosh": 31, "pair": 31, "etcd": 31, "consul": 31, "zookeep": 31, "dockerfil": [31, 38, 39], "packer": 31, "container": 31, "sysdig": 31, "cadvisor": 31, "fluentd": 31, "commerci": 31, "mesh": 31, "plane": 31, "envoi": 31, "istio": 31, "kuma": 31, "linkerd": 31, "tanzu": 31, "lambda": 31, "That": 31, "trace": 31, "github": 31, "more": [31, 36, 39], "gerrit": 31, "privaci": 32, "gdpr": 32, "telemetri": 32, "risk": 32, "defens": [10, 32], "breadth": 32, "individu": [32, 33], "mistak": 32, "recommend": 32, "brief": 32, "exposur": 32, "cve": 32, "top": 32, "kind": 32, "ar": [32, 33, 36, 39], "reus": [32, 33], "download": 32, "reusabl": 32, "materi": 32, "verif": 32, "bug": 32, "warn": 32, "composit": 32, "sca": 32, "depend": 32, "dynam": 32, "tradit": 32, "coverag": 32, "fuzz": [32, 35, 39], "penetr": 32, "diagram": 32, "cryptograph": 32, "digit": 32, "signatur": [10, 32], "pseudo": 32, "csprng": 32, "ciphersuit": 32, "constant": 32, "minim": 32, "exist": 32, "incid": [10, 32], "bounti": 32, "light": 32, "tlp": 32, "cvss": 32, "tell": 32, "world": [32, 36, 39], "assur": 32, "proprietari": 33, "govern": 33, "led": 33, "mostli": 33, "close": 33, "benevol": 33, "dictatorship": 33, "strong": 33, "leadership": 33, "tighter": 33, "smaller": 33, "reason": 33, "collabor": 33, "oss": 33, "advantag": [10, 33], "stakehold": 33, "busi": 33, "educ": 33, "strategi": 33, "strateg": 33, "consider": [10, 33], "licens": 33, "patent": 33, "choos": 33, "talk": 33, "openli": 33, "openchain": 33, "contribut": 33, "copyleft": 33, "consid": 33, "look": [33, 36], "like": [33, 35, 39], "copyright": 33, "who": [10, 33], "holder": 33, "notic": 33, "agreement": 33, "cla": 33, "assign": 33, "origin": 33, "rememb": 33, "fossologi": 33, "spdx": 33, "health": 33, "analyt": 33, "chaoss": 33, "lead": 33, "do": 33, "mani": 33, "respect": 33, "encourag": 33, "divers": 33, "industri": 10, "purpos": 10, "ot": 10, "ic": 10, "programm": 10, "logic": 10, "artifact": 10, "arp": 10, "netstat": 10, "tcpdump": [10, 36, 39], "windump": 10, "bash_histori": 10, "three": 10, "handshak": 10, "result": 10, "vulnerabl": 10, "least": 10, "grassmarlin": 10, "retir": 10, "converg": 10, "human": 10, "opsec": 10, "factor": 10, "vpn": [10, 35, 39], "lesson": 10, "segment": 10, "diod": 10, "patch": 10, "potenti": 10, "complic": 10, "intrus": 10, "nid": 10, "sensor": 10, "placement": 10, "anomali": 10, "netflow": 10, "alert": 10, "zeek": 10, "snort": 10, "preprocessor": 10, "dnp3": 10, "modbu": 10, "syslog": 10, "honeypot": 10, "canari": 10, "recov": [10, 37, 39], "prepar": 10, "team": 10, "clean": 10, "recoveri": 10, "follow": 10, "yara": 10, "netdiscov": [34, 39], "unicornscan": [34, 39], "netcat": [34, 35, 39], "amap": [34, 39], "rabbit": [34, 39], "hole": [34, 39], "listen": [34, 39], "noth": [35, 39], "unprivileg": [35, 36, 39], "searchsploit": [35, 39], "seclist": [35, 39], "org": [35, 39], "mail": [35, 39], "archiv": [35, 39, 40], "webservic": [35, 39], "whatweb": [35, 39], "nikto": [35, 39], "dirb": [35, 39], "wfuzz": [35, 39], "dirbust": [35, 39], "spider": [35, 39], "put": [35, 39], "wordpress": [35, 39], "possibl": [35, 39], "nc": [35, 39], "meterpret": [35, 39], "weev": [35, 39], "rubi": [35, 39], "perl": [35, 39], "jsp": [35, 39], "xterm": [35, 39], "lynx": [35, 39], "elf": [35, 39], "msfvenom": [35, 39], "icmp": [35, 39], "sock": [35, 39], "plink": [35, 39], "openvpn": [35, 39], "spawn": [35, 39], "tty": [35, 39], "lua": [35, 38, 39], "irb": [35, 39], "expect": [35, 38, 39], "sneaki": [35, 39], "stealthi": [35, 39], "fulli": [35, 39], "socat": [35, 39], "stty": [35, 39], "restrict": [35, 39], "take": [35, 39], "sshing": [35, 39], "rvim": [35, 39], "privat": [35, 37, 39], "systeminfo": [36, 39], "suggestor": [36, 39], "sherlock": [36, 39], "powerup": [36, 39], "abus": [36, 39], "drive": 36, "sensit": 36, "possibli": 36, "them": 36, "g0tm1lk": [36, 39], "where": [36, 39], "can": [36, 39], "written": [36, 39], "problem": [36, 39], "own": [36, 39], "than": [36, 39], "writabl": [36, 39], "crontab": [36, 39], "symlink": [36, 39], "came": [36, 39], "legaci": [36, 39], "pspy": [36, 39], "unattend": [36, 39], "pip": 36, "npm": 36, "wildcard": [36, 39], "chown": [36, 39], "childitem": [37, 39], "unzip": [37, 39], "onli": [37, 39], "altern": [37, 39], "stream": [37, 38, 39], "ntd": [37, 39], "dit": [37, 39], "securestr": [37, 39], "To": [37, 39], "wgetrc": [37, 39], "ssh_config": [37, 39], "csc": [37, 39], "austria": [37, 39], "htaccess": [37, 39], "userag": [37, 39], "cgi": [37, 39], "shellshock": [37, 39], "xss": [37, 39], "uri": [37, 39], "page": [37, 38, 39], "tag": [37, 39], "404": [37, 39], "rar2john": [37, 39], "keepass2john": [37, 39], "given": [37, 39], "seccur": [37, 39], "ellipt": [37, 39], "curv": [37, 39], "crypto": [37, 39], "reliabl": [37, 39], "gpg": [37, 39], "ss": [37, 39], "firefox": [37, 39], "thunderbird": [37, 39], "seabird": [37, 39], "secure_path": [37, 39], "env_reset": [37, 39], "mail_badpass": [37, 39], "keystor": [37, 39], "md5": [37, 39], "git_ssh": [37, 39], "git_template_dir": [37, 39], "truecrypt": [37, 39], "wordpot": [37, 39], "fakesmtp": [37, 39], "rubberglu": [37, 39], "knockd": [37, 39], "dcept": [37, 39], "a1": 38, "inclus": [38, 39], "lfi": [38, 39], "wrapper": [38, 39], "phar": [38, 39], "plain": [38, 39], "fd": [38, 39], "email": [38, 39], "a2": 38, "a3": 38, "a4": 38, "becom": [38, 39], "video": [38, 39], "long": [38, 39], "file1": [38, 39], "inod": [38, 39], "lxd": [38, 39], "a5": 38, "pickl": [38, 39], "preg_replac": [38, 39], "complex": [38, 39], "curli": [38, 39], "xdebug": [38, 39], "juggl": [38, 39], "a6": 38, "cyber": 39, "decept": 39, "critic": 40, "obligatori": 40, "disclaim": 40}, "envversion": {"sphinx.domains.c": 3, "sphinx.domains.changeset": 1, "sphinx.domains.citation": 1, "sphinx.domains.cpp": 9, "sphinx.domains.index": 1, "sphinx.domains.javascript": 3, "sphinx.domains.math": 2, "sphinx.domains.python": 4, "sphinx.domains.rst": 2, "sphinx.domains.std": 2, "sphinx.ext.intersphinx": 1, "sphinx.ext.viewcode": 1, "sphinx.ext.todo": 2, "sphinx": 60}, "alltitles": {"Binary Exploitation": [[0, "binary-exploitation"]], "Basics": [[0, "basics"], [16, "basics"]], "Initial Checks?": [[0, "initial-checks"]], "Binary Architecture": [[0, "binary-architecture"]], "Binary Help?": [[0, "binary-help"]], "Binary Protection": [[0, "binary-protection"]], "PIE Enabled": [[0, "pie-enabled"]], "EIP Offsets?": [[0, "eip-offsets"]], "others": [[0, "others"]], "Integar Overflow": [[0, "integar-overflow"]], "Buffer overflow": [[0, "buffer-overflow"]], "Executable Stack": [[0, "executable-stack"]], "Non-executable stack, ASLR Disabled": [[0, "non-executable-stack-aslr-disabled"]], "Export a environment variable": [[0, "export-a-environment-variable"]], "Return2libc": [[0, "return2libc"]], "Return-Oriented Programming": [[0, "return-oriented-programming"]], "Non-Executable Stack, ASLR Enabled": [[0, "non-executable-stack-aslr-enabled"]], "Find the offset of system, exit and /bin/sh": [[0, "find-the-offset-of-system-exit-and-bin-sh"]], "Creation of exploit": [[0, "creation-of-exploit"]], "Calling the targetted binary multiple times": [[0, "calling-the-targetted-binary-multiple-times"]], "Format String Vulnerability": [[0, "format-string-vulnerability"]], "Definition": [[0, "definition"], [0, "id1"], [33, "definition"], [35, "definition"], [39, "definition"]], "Behaviour of the format function": [[0, "behaviour-of-the-format-function"]], "Crashing the Program": [[0, "crashing-the-program"]], "Viewing the stack": [[0, "viewing-the-stack"]], "Viewing Memory at any location": [[0, "viewing-memory-at-any-location"]], "Overwriting of Arbitrary Memory": [[0, "overwriting-of-arbitrary-memory"]], "Direct Parameter Access": [[0, "direct-parameter-access"]], "Write two bytes": [[0, "write-two-bytes"]], "Write four bytes": [[0, "write-four-bytes"]], "Heap Exploitation": [[0, "heap-exploitation"]], "Shared Library": [[0, "shared-library"]], "Hijack the Global Offset Table with pointers": [[0, "hijack-the-global-offset-table-with-pointers"]], "Tips and Tricks": [[0, "tips-and-tricks"], [37, "tips-and-tricks"], [39, "tips-and-tricks"]], "Appendix": [[0, "appendix"], [38, "appendix"]], "GDB Basics": [[0, "gdb-basics"]], "Getting inputs": [[0, "getting-inputs"]], "Getting inputs from char *argv[]": [[0, "getting-inputs-from-char-argv"]], "Getting inputs from a file": [[0, "getting-inputs-from-a-file"]], "Getting inputs from stdin": [[0, "getting-inputs-from-stdin"]], "Getting inputs from network": [[0, "getting-inputs-from-network"]], "Keep the stdin open after injection": [[0, "keep-the-stdin-open-after-injection"]], "Examining Data": [[0, "examining-data"], [0, "id2"]], "Examining functions": [[0, "examining-functions"]], "Examining Memory": [[0, "examining-memory"]], "Examining Frames": [[0, "examining-frames"]], "Examining Registers": [[0, "examining-registers"]], "Setting program variable": [[0, "setting-program-variable"]], "Radare2 Basics": [[0, "radare2-basics"]], "Appendix-II LD_PRELOAD": [[0, "appendix-ii-ld-preload"]], "Hijacking Functions": [[0, "hijacking-functions"]], "Important things to note": [[0, "important-things-to-note"]], "Controlling uninitialized memory with LD_PRELOAD": [[0, "controlling-uninitialized-memory-with-ld-preload"]], "LIBC - Rpath": [[0, "libc-rpath"]], "RPATH": [[0, "rpath"]], "libc_start_main": [[0, "libc-start-main"]], "gmon_start": [[0, "gmon-start"]], "Version Reference": [[0, "version-reference"]], "LD_DEBUG environment variable": [[0, "ld-debug-environment-variable"]], "ulimit": [[0, "ulimit"]], "Appendix-III Basic Concepts": [[0, "appendix-iii-basic-concepts"]], "Registers": [[0, "registers"], [4, "registers"]], "Stack": [[0, "stack"]], "Uses": [[0, "uses"]], "Example": [[0, "example"], [5, "example"], [6, "example"], [9, "example"], [19, "example"], [19, "id17"], [30, "example"], [36, "example"]], "Calling Conventions": [[0, "calling-conventions"]], "cdecl": [[0, "cdecl"]], "SysV": [[0, "sysv"]], "Global Offset Table": [[0, "global-offset-table"]], "PLT": [[0, "plt"]], "Buffer": [[0, "buffer"]], "Buffer Overflow Examples": [[0, "buffer-overflow-examples"]], "Format String Examples": [[0, "format-string-examples"]], "Miscellanous Examples": [[0, "miscellanous-examples"]], "Changelog": [[0, "changelog"], [9, "changelog"], [29, "changelog"], [39, "changelog"]], "Coding Quick Reference": [[1, "coding-quick-reference"]], "Python": [[1, "python"], [35, "python"], [35, "id9"], [38, "python"], [39, "python"], [39, "id15"], [39, "id44"]], "SCAPY": [[1, "scapy"]], "Read PCAP": [[1, "read-pcap"]], "Read/Write File": [[1, "read-write-file"]], "Patterns": [[1, "patterns"], [3, "patterns"]], "Numpy": [[1, "numpy"]], "Random Seed": [[1, "random-seed"]], "BeautifulSoup": [[1, "beautifulsoup"]], "PwnTools": [[1, "pwntools"]], "Installing Pwntools": [[1, "installing-pwntools"]], "Verifying Installation": [[1, "verifying-installation"]], "Foreign Architectures": [[1, "foreign-architectures"]], "Tubes": [[1, "tubes"]], "Basic IO": [[1, "basic-io"]], "Receiving data": [[1, "receiving-data"]], "Sending data": [[1, "sending-data"]], "Manipulating integers": [[1, "manipulating-integers"]], "Processes and Basic Features": [[1, "processes-and-basic-features"]], "Interactive Sessions": [[1, "interactive-sessions"]], "Networking": [[1, "networking"], [30, "networking"], [31, "networking"], [36, "networking"]], "Secure Shell": [[1, "secure-shell"]], "Serial Ports": [[1, "serial-ports"]], "Util.fiddling": [[1, "id1"]], "Pwn Templates": [[1, "pwn-templates"]], "ctypes": [[1, "ctypes"]], "PHP": [[1, "php"], [5, "php"], [6, "php"], [35, "php"], [38, "php"], [39, "php"], [39, "id45"]], "BurpSuite": [[1, "burpsuite"]], "Generating Wordlists": [[1, "generating-wordlists"]], "cewl": [[1, "cewl"]], "crunch": [[1, "crunch"]], "C Programming": [[1, "c-programming"]], "Functions": [[1, "functions"]], "Randomization": [[1, "randomization"]], "rand": [[1, "rand"]], "srand": [[1, "srand"]], "Read": [[1, "read"]], "fgets": [[1, "fgets"]], "Return value": [[1, "return-value"]], "Data conversion": [[1, "data-conversion"]], "Hex": [[1, "hex"]], "Hex from little endian to big-endian": [[1, "hex-from-little-endian-to-big-endian"]], "Hex to ASCII": [[1, "hex-to-ascii"]], "Cryptography": [[2, "cryptography"], [32, "cryptography"]], "Codes and Substitution": [[2, "codes-and-substitution"]], "Ciphers": [[2, "ciphers"]], "Asymmetric Encryption": [[2, "asymmetric-encryption"]], "RSA": [[2, "rsa"]], "p,q,dp,dp": [[2, "p-q-dp-dp"]], "Different public exponent (e) and the same modulus (N)": [[2, "different-public-exponent-e-and-the-same-modulus-n"]], "Symmetric Encryption": [[2, "symmetric-encryption"]], "Esoteric programming language": [[2, "esoteric-programming-language"]], "Rockstar": [[2, "rockstar"]], "Piet": [[2, "piet"]], "Malbolge": [[2, "malbolge"]], "Different Base": [[2, "different-base"]], "Golden Ratio Base": [[2, "golden-ratio-base"]], "Forensics": [[3, "forensics"]], "File Formats": [[3, "file-formats"]], "Hex File Header and ASCII Equivalent": [[3, "hex-file-header-and-ascii-equivalent"]], "Kaitai Struct": [[3, "kaitai-struct"]], "BMP": [[3, "bmp"]], "PNG": [[3, "png"], [3, "id3"]], "Chunk layout": [[3, "chunk-layout"]], "Summary of chunks": [[3, "summary-of-chunks"]], "Metadata": [[3, "metadata"]], "Timestamps": [[3, "timestamps"]], "Timeline Patterns": [[3, "timeline-patterns"]], "Steganography": [[3, "steganography"]], "Images": [[3, "images"]], "exiftool": [[3, "exiftool"]], "strings": [[3, "strings"], [30, "strings"]], "stegsolve": [[3, "stegsolve"]], "CyberChef": [[3, "cyberchef"]], "steghide": [[3, "steghide"]], "binwalk/foremost": [[3, "binwalk-foremost"]], "LSB Stegonagraphy": [[3, "lsb-stegonagraphy"]], "LSB Stegonagraphy in Images": [[3, "lsb-stegonagraphy-in-images"]], "MSB Steganography": [[3, "msb-steganography"]], "Powershell Steganography": [[3, "powershell-steganography"]], "QRCodes?": [[3, "qrcodes"]], "Images type": [[3, "images-type"]], "SVG": [[3, "svg"]], "Sound Files": [[3, "sound-files"]], "Slow-Scan Television transmissions (SSTV)": [[3, "slow-scan-television-transmissions-sstv"]], "Spectrum Analysis": [[3, "spectrum-analysis"]], "Amplitude?": [[3, "amplitude"]], "Network Forensics": [[3, "network-forensics"], [10, "network-forensics"]], "Introduction": [[3, "introduction"], [5, "introduction"], [22, "introduction"], [24, "introduction"]], "Wired PCAP": [[3, "wired-pcap"]], "DNS Tunneling?": [[3, "dns-tunneling"]], "Decrypting traffic": [[3, "decrypting-traffic"]], "TLS": [[3, "tls"]], "Wireshark": [[3, "wireshark"]], "ssldump": [[3, "ssldump"]], "Network attack Detection": [[3, "network-attack-detection"]], "Detection of host discovery (recon)": [[3, "detection-of-host-discovery-recon"]], "Detection of network port scanning": [[3, "detection-of-network-port-scanning"]], "Detection of network attacks": [[3, "detection-of-network-attacks"]], "Detection of wireless network attacks": [[3, "detection-of-wireless-network-attacks"]], "Detection of reverse shell port": [[3, "detection-of-reverse-shell-port"]], "EternalBlue": [[3, "eternalblue"]], "TFTP Filter": [[3, "tftp-filter"]], "Wireshark tips": [[3, "wireshark-tips"]], "Finding information": [[3, "finding-information"]], "Bittorrent": [[3, "bittorrent"]], "Wireless PCAP": [[3, "wireless-pcap"]], "USB Forensics": [[3, "usb-forensics"]], "USB-Keyboard": [[3, "usb-keyboard"]], "Keyboard Report Format": [[3, "keyboard-report-format"]], "USB HID Keyboard Scan Codes": [[3, "usb-hid-keyboard-scan-codes"]], "USB-Mouse": [[3, "usb-mouse"]], "USB-Storage-Device": [[3, "usb-storage-device"]], "Browser Forensics": [[3, "browser-forensics"]], "Browser extension": [[3, "browser-extension"]], "File Forensics": [[3, "file-forensics"]], "Webserver logs": [[3, "webserver-logs"]], "ZIP Files": [[3, "zip-files"]], "Word/Powerpoint and others? Macro": [[3, "word-powerpoint-and-others-macro"]], "PDF Files": [[3, "pdf-files"]], "Redacted PDF": [[3, "redacted-pdf"]], "Memory Forensics": [[3, "memory-forensics"]], "Volatility": [[3, "volatility"]], "Extracting RAW pictures from memory dumps": [[3, "extracting-raw-pictures-from-memory-dumps"]], "Disk Forensics": [[3, "disk-forensics"]], "Initial recon": [[3, "initial-recon"]], "Mounting the disk": [[3, "mounting-the-disk"]], "Method 1": [[3, "method-1"], [30, "method-1"], [35, "method-1"]], "Method 2": [[3, "method-2"], [30, "method-2"], [35, "method-2"]], "RAID": [[3, "raid"]], "Challenges": [[3, "challenges"]], "Formats": [[3, "formats"]], "Boarding Pass Format": [[3, "boarding-pass-format"]], "Interesting Blog": [[3, "interesting-blog"]], "Others": [[3, "others"], [18, "others"], [18, "id86"], [19, "others"], [29, "others"], [30, "others"], [30, "others-1"], [30, "id15"], [37, "others"], [37, "id9"], [39, "others"], [39, "id34"]], "Forensics Tools used": [[3, "forensics-tools-used"]], "Learning from the CTF : Web Exploitation": [[5, "learning-from-the-ctf-web-exploitation"], [6, "learning-from-the-ctf-web-exploitation"]], "Web Application Technologies": [[5, "web-application-technologies"]], "The HTTP Protocol": [[5, "the-http-protocol"]], "HTTP Requests": [[5, "http-requests"]], "HTTP Response": [[5, "http-response"]], "HTTP Methods": [[5, "http-methods"]], "URLs": [[5, "urls"]], "REST": [[5, "rest"]], "HTTP Headers": [[5, "http-headers"]], "Cookies": [[5, "cookies"]], "Status Codes": [[5, "status-codes"]], "HTTP Authentication": [[5, "http-authentication"]], "Encoding Schemes": [[5, "encoding-schemes"]], "URL Encoding": [[5, "url-encoding"]], "Unicode Encoding": [[5, "unicode-encoding"]], "HTML Encoding": [[5, "html-encoding"]], "Base64 Encoding": [[5, "base64-encoding"]], "Hex Encoding": [[5, "hex-encoding"]], "Mapping the Application": [[5, "mapping-the-application"], [5, "id2"]], "Discovering Hidden Content": [[5, "discovering-hidden-content"]], "Analyzing the Web application": [[5, "analyzing-the-web-application"]], "Identifying Entry Points for User Input": [[5, "identifying-entry-points-for-user-input"]], "Identifying Server-Side Technologies": [[5, "identifying-server-side-technologies"]], "Identifying Server-Side Functionality": [[5, "identifying-server-side-functionality"]], "Mapping the Attack Surface": [[5, "mapping-the-attack-surface"]], "Bypassing Client-Side Controls": [[5, "bypassing-client-side-controls"], [5, "id3"]], "Transmitting Data Via the Client": [[5, "transmitting-data-via-the-client"]], "Hidden Form Fields": [[5, "hidden-form-fields"]], "HTTP Cookies": [[5, "http-cookies"]], "URL Parameters": [[5, "url-parameters"]], "The Referer Header": [[5, "the-referer-header"]], "Opaque Data": [[5, "opaque-data"]], "The ASP.NET ViewState": [[5, "the-asp-net-viewstate"]], "Capturing User Data: HTML Forms": [[5, "capturing-user-data-html-forms"]], "Length Limits": [[5, "length-limits"]], "Script-Based Validation": [[5, "script-based-validation"]], "Disabled Elements": [[5, "disabled-elements"]], "Capturing User Data: Browser Extensions": [[5, "capturing-user-data-browser-extensions"]], "Common Browser Extension Technologies": [[5, "common-browser-extension-technologies"]], "Approaches to Browser Extensions": [[5, "approaches-to-browser-extensions"]], "Handling Serialized Data": [[5, "handling-serialized-data"]], "Decompiling Browser Extensions": [[5, "decompiling-browser-extensions"]], "Attacking Authentication": [[5, "attacking-authentication"]], "Authentication Technologies": [[5, "authentication-technologies"]], "Design Flaws in Authentication Mechanisms": [[5, "design-flaws-in-authentication-mechanisms"]], "passthru": [[5, "passthru"], [6, "passthru"]], "Acccheck": [[5, "acccheck"], [6, "acccheck"]], "usage": [[5, "usage"], [6, "usage"]], "Hydra": [[5, "hydra"], [6, "hydra"]], "Usage": [[5, "id1"], [6, "id1"], [19, "usage"], [19, "id5"], [19, "id6"], [19, "id13"]], "Appendix-VII SQL-Injection": [[5, "appendix-vii-sql-injection"]], "Detecting Vulnerable Functions": [[5, "detecting-vulnerable-functions"]], "Bypassing Login Screens (SMO+)": [[5, "bypassing-login-screens-smo"]], "Types of Injection": [[5, "types-of-injection"]], "Error Based": [[5, "error-based"]], "Union Based": [[5, "union-based"]], "Blind SQL Injections": [[5, "blind-sql-injections"]], "Blind Boolean": [[5, "blind-boolean"]], "Time-Based Blind": [[5, "time-based-blind"]], "Covering Your Tracks": [[5, "covering-your-tracks"]], "SQL Server -sp_password log bypass (S)": [[5, "sql-server-sp-password-log-bypass-s"]], "Database Structure Queries": [[5, "database-structure-queries"]], "SQL Server (S)": [[5, "sql-server-s"]], "MySQL (M)": [[5, "mysql-m"]], "Oracle (O)": [[5, "oracle-o"]], "Other Stuff": [[5, "other-stuff"]], "Line Comments": [[5, "line-comments"]], "Inline Comments": [[5, "inline-comments"]], "Stacking Queries": [[5, "stacking-queries"]], "Using Integers": [[5, "using-integers"]], "String Operations": [[5, "string-operations"]], "Strings without Quotes": [[5, "strings-without-quotes"]], "Filter Evasion": [[5, "filter-evasion"]], "Appendix-VIII Hack Steps": [[5, "appendix-viii-hack-steps"]], "Learning from the field : Securing your Debian": [[7, "learning-from-the-field-securing-your-debian"]], "Set up a GRUB password": [[7, "set-up-a-grub-password"]], "Providing secure user access": [[7, "providing-secure-user-access"]], "Password security in PAM": [[7, "password-security-in-pam"]], "Control of su in PAM": [[7, "control-of-su-in-pam"]], "Temporary directories in PAM": [[7, "temporary-directories-in-pam"]], "Configuration for undefined PAM applications": [[7, "configuration-for-undefined-pam-applications"]], "Setting users umasks": [[7, "setting-users-umasks"]], "User login actions": [[7, "user-login-actions"]], "Log files Permissions": [[7, "log-files-permissions"]], "Useful packages": [[7, "useful-packages"]], "Kernel Hardening: Sysctl Values": [[7, "kernel-hardening-sysctl-values"]], "Legal Banner": [[7, "legal-banner"]], "Harden compilers": [[7, "harden-compilers"]], "Disable drivers": [[7, "disable-drivers"]], "Configuring and Securing Series : Windows Environment": [[8, "configuring-and-securing-series-windows-environment"]], "Creating a Domain Controller": [[8, "creating-a-domain-controller"]], "Renaming the Computer": [[8, "renaming-the-computer"]], "Setting up the Static IP": [[8, "setting-up-the-static-ip"]], "Figure out the network adapters": [[8, "figure-out-the-network-adapters"]], "Setting the IP Address": [[8, "setting-the-ip-address"]], "Updating the DNS Server": [[8, "updating-the-dns-server"]], "Installing the Domain Services": [[8, "installing-the-domain-services"]], "Install AD-Domain-Services": [[8, "install-ad-domain-services"]], "Install ADDS-Forest": [[8, "install-adds-forest"]], "Validate the Domain Controller": [[8, "validate-the-domain-controller"]], "User Creation": [[8, "user-creation"]], "New-ADUser": [[8, "new-aduser"]], "New-ADUser with Password": [[8, "new-aduser-with-password"]], "Random Password Creation": [[8, "random-password-creation"]], "New-ADUser creation with CSV": [[8, "new-aduser-creation-with-csv"]], "Adding Computer to Domain": [[8, "adding-computer-to-domain"]], "AD-Computer": [[8, "ad-computer"]], "Add a local computer to the domain": [[8, "add-a-local-computer-to-the-domain"]], "Add a remote computer to the domain": [[8, "add-a-remote-computer-to-the-domain"]], "Todo": [[8, "id1"], [8, "id2"], [17, "id1"], [17, "id2"], [17, "id3"], [17, "id4"], [17, "id5"], [17, "id6"], [17, "id7"], [17, "id8"], [17, "id9"], [17, "id10"], [17, "id11"], [17, "id14"], [17, "id15"], [17, "id16"], [17, "id17"], [17, "id18"], [17, "id19"], [17, "id20"], [17, "id21"], [17, "id22"], [17, "id24"], [17, "id25"], [17, "id28"], [17, "id29"], [17, "id30"], [17, "id31"], [18, "id30"], [18, "id61"], [19, "id19"], [20, "id7"], [30, "id4"], [35, "id2"], [35, "id3"], [35, "id4"], [35, "id5"], [35, "id6"], [37, "id10"], [39, "id8"], [39, "id9"], [39, "id10"], [39, "id11"], [39, "id12"], [39, "id35"], [26, "id1"]], "Moving Computer to OUs": [[8, "moving-computer-to-ous"]], "Creating a New OU": [[8, "creating-a-new-ou"]], "Figuring out different OS in Domain": [[8, "figuring-out-different-os-in-domain"]], "Moving ADComputer Object to a specific OU": [[8, "moving-adcomputer-object-to-a-specific-ou"]], "Windows Security Hardening": [[8, "windows-security-hardening"]], "Security Compliance Manager": [[8, "security-compliance-manager"], [29, "security-compliance-manager"]], "Extra Hardening": [[8, "extra-hardening"]], "Custom Settings": [[8, "custom-settings"]], "Disable Net Session Enumeration ( NetCease )": [[8, "disable-net-session-enumeration-netcease"]], "Local Administrator Password Solution LAPS": [[8, "local-administrator-password-solution-laps"]], "Examples": [[9, "examples"], [19, "examples"], [19, "id16"], [30, "examples"], [38, "examples"], [39, "examples"], [4, "examples"]], "Electrical Grid": [[9, "electrical-grid"]], "Electricity": [[9, "electricity"]], "Other Facts": [[9, "other-facts"]], "Generation to the Consumption": [[9, "generation-to-the-consumption"]], "Generation": [[9, "generation"]], "Hydroelectric generating station": [[9, "hydroelectric-generating-station"]], "Thermal Generating Station": [[9, "thermal-generating-station"]], "Renewable Energy": [[9, "renewable-energy"]], "Towers": [[9, "towers"]], "Towers Wires?": [[9, "towers-wires"]], "Tower Wires not straight?": [[9, "tower-wires-not-straight"]], "Substations": [[9, "substations"]], "Substation Flow?": [[9, "substation-flow"]], "Substation Data Flow": [[9, "substation-data-flow"]], "Electrical parameters of a substation": [[9, "electrical-parameters-of-a-substation"]], "System operations": [[9, "system-operations"]], "System Operators": [[9, "system-operators"]], "Balancing supply and demand": [[9, "balancing-supply-and-demand"]], "Electricity consumption": [[9, "electricity-consumption"]], "From the meter to the breaker": [[9, "from-the-meter-to-the-breaker"]], "From the breaker to the user": [[9, "from-the-breaker-to-the-user"]], "National Grid": [[9, "national-grid"]], "Hierarchical Structure": [[9, "hierarchical-structure"]], "Hierarchy at Regional Level": [[9, "hierarchy-at-regional-level"]], "Functions implemented in SCADA/ EMS at RLDC and SLDC levels": [[9, "functions-implemented-in-scada-ems-at-rldc-and-sldc-levels"]], "SCADA Functions": [[9, "scada-functions"]], "EMS Functions": [[9, "ems-functions"]], "SCADA Architecture": [[9, "scada-architecture"]], "Transmission Architecture": [[9, "transmission-architecture"]], "Transmission Substation Architecture": [[9, "transmission-substation-architecture"]], "Distribution Architecture": [[9, "distribution-architecture"]], "Distribution Substation Architecture": [[9, "distribution-substation-architecture"]], "Electricity Distribution Network": [[9, "electricity-distribution-network"]], "SCADA/ EMS Server": [[9, "scada-ems-server"]], "FEP Server": [[9, "fep-server"]], "Communication Principles": [[9, "communication-principles"]], "Remote Terminal Unit": [[9, "remote-terminal-unit"]], "Measurement and acquisition of electrical parameters": [[9, "measurement-and-acquisition-of-electrical-parameters"]], "Typical applications of RTU in Electrical Grid": [[9, "typical-applications-of-rtu-in-electrical-grid"]], "RTUs and PLCs Difference?": [[9, "rtus-and-plcs-difference"]], "Field RTU": [[9, "field-rtu"]], "Intelligent Electronic Devices": [[9, "intelligent-electronic-devices"]], "IED Interfaces": [[9, "ied-interfaces"]], "Bay Control Unit": [[9, "bay-control-unit"]], "PI Server": [[9, "pi-server"], [9, "id12"]], "PI Architecture": [[9, "pi-architecture"]], "PI Interface Server": [[9, "pi-interface-server"]], "ICCP Server": [[9, "iccp-server"]], "Historian Server": [[9, "historian-server"]], "Metering": [[9, "metering"]], "Availability-Based Tariff": [[9, "availability-based-tariff"]], "Scheduling": [[9, "scheduling"]], "Architecture": [[9, "architecture"]], "Automatic Meter Reading": [[9, "automatic-meter-reading"]], "Meter Data Acquisition System (MDAS)": [[9, "meter-data-acquisition-system-mdas"]], "Power Quality Monitoring": [[9, "power-quality-monitoring"]], "International Standards/ Protocols": [[9, "international-standards-protocols"]], "IEC-60870-5-104": [[9, "iec-60870-5-104"]], "Transmission": [[9, "transmission"]], "Communication": [[9, "communication"]], "Application Data Objects": [[9, "application-data-objects"]], "APCI Format": [[9, "apci-format"]], "ASDU Format": [[9, "asdu-format"]], "Information Objects": [[9, "information-objects"]], "Information Elements": [[9, "information-elements"]], "ICCP": [[9, "iccp"]], "ICCP Conformance Blocks": [[9, "iccp-conformance-blocks"]], "Data Exchange Requirements Between Control Centers and Power Pools or ISOs/ RTOs": [[9, "data-exchange-requirements-between-control-centers-and-power-pools-or-isos-rtos"]], "Manufacturing Message Specification (MMS)": [[9, "manufacturing-message-specification-mms"]], "Definitions": [[9, "definitions"], [24, "definitions"], [31, "definitions"], [10, "definitions"]], "CASM": [[9, "casm"]], "GOMSFE": [[9, "gomsfe"]], "GOOSE": [[9, "goose"]], "IEC 61850 GOOSE, What?": [[9, "iec-61850-goose-what"]], "GOOSE, Why?": [[9, "goose-why"]], "GOOSE Communication": [[9, "goose-communication"]], "Substation Communication Example": [[9, "substation-communication-example"]], "Summary": [[9, "summary"]], "DLMS/ COSEC": [[9, "dlms-cosec"]], "SCL Substation Configuration Language": [[9, "scl-substation-configuration-language"]], "SCL \u2013 Benefits": [[9, "scl-benefits"]], "Solutions/ Softwares?": [[9, "solutions-softwares"]], "SCADA Server": [[9, "scada-server"]], "ABB": [[9, "abb"], [9, "id14"]], "GE": [[9, "ge"], [9, "id5"], [9, "id6"]], "Siemens": [[9, "siemens"], [9, "id8"], [9, "id10"]], "OSI": [[9, "osi"]], "Network Planning Toolkit": [[9, "network-planning-toolkit"]], "Geographical Information System": [[9, "geographical-information-system"]], "Historian": [[9, "historian"]], "Schneider Electric": [[9, "schneider-electric"], [9, "id9"], [9, "id13"]], "PLC": [[9, "plc"]], "ABB - AC31": [[9, "abb-ac31"]], "RTU": [[9, "rtu"]], "Siemens SICAM TM/ AK": [[9, "siemens-sicam-tm-ak"]], "IED": [[9, "ied"]], "Softwares for Siemens": [[9, "softwares-for-siemens"]], "Other": [[9, "other"], [18, "other"], [18, "id11"], [18, "id19"], [18, "id21"], [18, "id23"], [18, "id29"], [18, "id33"], [18, "id37"], [18, "id41"], [18, "id46"], [18, "id50"], [18, "id54"], [18, "id57"], [18, "id60"], [18, "x11-port-6000"], [18, "id66"], [18, "id70"], [18, "id80"], [18, "id83"], [30, "other"], [10, "other"]], "SICAM Protocol Test System": [[9, "sicam-protocol-test-system"]], "Nomenclature/ Identification": [[9, "nomenclature-identification"]], "Nomenclature of control centre servers": [[9, "nomenclature-of-control-centre-servers"]], "Identity of a parameter": [[9, "identity-of-a-parameter"]], "Sources of data": [[9, "sources-of-data"]], "For RTU data": [[9, "for-rtu-data"]], "For ICCP data": [[9, "for-iccp-data"]], "Cybersecurity": [[9, "cybersecurity"]], "Vulnerabilities": [[9, "vulnerabilities"], [32, "vulnerabilities"]], "Remediation": [[9, "remediation"]], "User access control": [[9, "user-access-control"]], "Secure communication": [[9, "secure-communication"]], "Integrated firewall": [[9, "integrated-firewall"]], "Manipulation protection": [[9, "manipulation-protection"]], "Device supervision via SNMP V3": [[9, "device-supervision-via-snmp-v3"]], "Security logging": [[9, "security-logging"]], "Network access control (Authentication)": [[9, "network-access-control-authentication"]], "Basic Hygiene": [[9, "basic-hygiene"]], "IT Network": [[9, "it-network"]], "Transmission/ Distribution": [[9, "transmission-distribution"]], "Customer Substation": [[9, "customer-substation"]], "ABT/ AMR Server": [[9, "abt-amr-server"]], "Vulnerability Feeds": [[9, "vulnerability-feeds"]], "Communication Ports": [[9, "communication-ports"], [10, "communication-ports"]], "Vendor Security Configuration Tools": [[9, "vendor-security-configuration-tools"]], "Security Advisory Feeds": [[9, "security-advisory-feeds"]], "SCADA Cybersecurity Related Blogs": [[9, "scada-cybersecurity-related-blogs"]], "References": [[9, "references"]], "ToWrite": [[9, "towrite"]], "The Essentials": [[11, "the-essentials"], [40, null]], "Network Structure": [[11, "network-structure"]], "Structure of the mobile phone cellular network": [[11, "structure-of-the-mobile-phone-cellular-network"]], "Terms": [[11, "terms"]], "BRAS": [[11, "bras"]], "BNG": [[11, "bng"]], "Enhanced Subscriber Management ESM": [[11, "enhanced-subscriber-management-esm"]], "LI": [[11, "li"]], "IPoE": [[11, "ipoe"]], "PPoE": [[11, "ppoe"]], "NSS": [[11, "nss"]], "MSC": [[11, "msc"]], "Home location register (HLR)": [[11, "home-location-register-hlr"]], "Authentication center (AuC)": [[11, "authentication-center-auc"]], "Visitor location register (VLR)": [[11, "visitor-location-register-vlr"]], "Equipment identity register (EIR)": [[11, "equipment-identity-register-eir"]], "Subscriber Profile Repository?": [[11, "subscriber-profile-repository"]], "Network and Transport": [[11, "network-and-transport"]], "Carrier Ethernet Architecture": [[11, "carrier-ethernet-architecture"]], "Others?": [[11, "others"]], "Solutions": [[11, "solutions"]], "LTE": [[11, "lte"]], "Diameter Routing Agent - DRA or Probe DRA?": [[11, "diameter-routing-agent-dra-or-probe-dra"]], "NTR": [[11, "ntr"]], "SIGTRAN": [[11, "sigtran"]], "Type of Update Locations": [[11, "type-of-update-locations"]], "RAN": [[11, "ran"]], "BTS": [[11, "bts"]], "RNC": [[11, "rnc"]], "BSC": [[11, "bsc"]], "PGW": [[11, "pgw"]], "Appendix - Installation of Applications": [[12, "appendix-installation-of-applications"]], "Keycloak": [[12, "keycloak"]], "GitLab": [[12, "gitlab"], [12, "gitlab-1"]], "ToDo": [[12, "todo"], [12, "todo-1"]], "JupyterHub": [[12, "jupyterhub"], [12, "jupyterhub-1"]], "InfluxDB": [[12, "influxdb"]], "Grafana": [[12, "grafana"], [12, "grafana-1"]], "ArgoCD": [[12, "argocd"]], "Mattermost": [[12, "mattermost"]], "InfluxDB2": [[12, "influxdb2"]], "Cloud Tier": [[13, "cloud-tier"]], "S1: Create the Virtual Machines": [[13, "s1-create-the-virtual-machines"]], "Local Virtualization": [[13, "local-virtualization"]], "Cloud (AWS/Azure/OpenStack)": [[13, "cloud-aws-azure-openstack"]], "S2: Virtual Machines: Initial Configuration": [[13, "s2-virtual-machines-initial-configuration"]], "S2A: Hostname": [[13, "s2a-hostname"]], "Virtual Machines created using cloud": [[13, "virtual-machines-created-using-cloud"]], "Virtual Machines created using Terraform": [[13, "virtual-machines-created-using-terraform"]], "S2B: Install Puppet Repo": [[13, "s2b-install-puppet-repo"]], "For Debian-based OS, we use": [[13, "for-debian-based-os-we-use"]], "For Redhat/CentOS, we use": [[13, "for-redhat-centos-we-use"]], "S3: Configure the Virtual Machines": [[13, "s3-configure-the-virtual-machines"]], "VM1: PuppetServer": [[13, "vm1-puppetserver"]], "Install Puppet": [[13, "install-puppet"]], "With Foreman": [[13, "with-foreman"]], "Without Foreman": [[13, "without-foreman"]], "Configuring PuppetServer": [[13, "configuring-puppetserver"]], "Accepting Client certificates": [[13, "accepting-client-certificates"]], "VM2: FreeIPA Server": [[13, "vm2-freeipa-server"]], "Initial Configuration": [[13, "initial-configuration"]], "Automatic installation using Puppet-FreeIPA": [[13, "automatic-installation-using-puppet-freeipa"]], "Manual installation": [[13, "manual-installation"]], "Service User for FreeIPA": [[13, "service-user-for-freeipa"]], "VM4: Cloudcore Server": [[13, "vm4-cloudcore-server"]], "VM4A: Kubernetes Server": [[13, "vm4a-kubernetes-server"]], "Puppet-Kubernetes": [[13, "puppet-kubernetes"]], "Adding Worker nodes": [[13, "adding-worker-nodes"]], "Kubeadm Token": [[13, "kubeadm-token"]], "Manual Installation": [[13, "manual-installation-1"]], "Services on Kubernetes Server?": [[13, "services-on-kubernetes-server"]], "arkade": [[13, "arkade"]], "Helm": [[13, "helm"]], "cert-manager": [[13, "cert-manager"]], "Nginx Ingress Controller": [[13, "nginx-ingress-controller"]], "MetalLB LoadBalancer (If the infrastructure is deployed on Bare Metal)": [[13, "metallb-loadbalancer-if-the-infrastructure-is-deployed-on-bare-metal"]], "Install Starboard Security Tool": [[13, "install-starboard-security-tool"]], "VM2A: Rancher Server": [[13, "vm2a-rancher-server"]], "VM3: Teleport Server": [[13, "vm3-teleport-server"]], "VM4B: KubeEdge": [[13, "vm4b-kubeedge"]], "VM5 Vault Server": [[13, "vm5-vault-server"]], "VM6: CEPH Server": [[13, "vm6-ceph-server"]], "Tearing down the cluster": [[13, "tearing-down-the-cluster"]], "Upgrading the Rook and Ceph cluster": [[13, "upgrading-the-rook-and-ceph-cluster"]], "VM7 Keycloak server": [[13, "vm7-keycloak-server"]], "VM5: Kafka Server": [[13, "vm5-kafka-server"]], "Remove Nodes": [[13, "remove-nodes"]], "From Puppet": [[13, "from-puppet"]], "puppet-agent": [[13, "puppet-agent"]], "From PuppetServer": [[13, "from-puppetserver"]], "From Puppet Node": [[13, "from-puppet-node"]], "From FreeIPA": [[13, "from-freeipa"]], "On Node": [[13, "on-node"]], "On IPA Server": [[13, "on-ipa-server"]], "Yum": [[13, "yum"]], "Mosquitto server": [[13, "mosquitto-server"]], "Appendix - I : FreeIPA": [[13, "appendix-i-freeipa"]], "Benefits of IDM": [[13, "benefits-of-idm"]], "Identity management domain": [[13, "identity-management-domain"]], "Identity Management Servers": [[13, "identity-management-servers"]], "Services hosted by idM Servers": [[13, "services-hosted-by-idm-servers"]], "Identity Management Clients": [[13, "identity-management-clients"]], "Services Hosted by IdM Clients": [[13, "services-hosted-by-idm-clients"]], "Operations": [[13, "operations"]], "User": [[13, "user"]], "Adding user": [[13, "adding-user"]], "Finding User": [[13, "finding-user"]], "Displaying user info": [[13, "displaying-user-info"]], "Deleteing a user": [[13, "deleteing-a-user"]], "Modifying a user": [[13, "modifying-a-user"]], "Disabling/ Enabling a user": [[13, "disabling-enabling-a-user"]], "Unlocking a user account": [[13, "unlocking-a-user-account"]], "Checking the status of user": [[13, "checking-the-status-of-user"]], "Host": [[13, "host"]], "Sudo": [[13, "sudo"]], "Hosts, Services, Machine Identity and Authentication": [[13, "hosts-services-machine-identity-and-authentication"]], "Managing Public SSH Keys for Hosts": [[13, "managing-public-ssh-keys-for-hosts"]], "ipa-client-install and OpenSSh": [[13, "ipa-client-install-and-openssh"]], "Managing services": [[13, "managing-services"]], "SSSD": [[13, "sssd"]], "How SSSD Manages Host Keys": [[13, "how-sssd-manages-host-keys"]], "How SSSD Manages User Keys": [[13, "how-sssd-manages-user-keys"]], "sudo user": [[13, "sudo-user"]], "sudo Rules in Identity Management": [[13, "sudo-rules-in-identity-management"]], "Appendix - II K3S Server and Agents": [[13, "appendix-ii-k3s-server-and-agents"]], "Server": [[13, "server"], [30, "server"]], "Agents": [[13, "agents"]], "Kubectl": [[13, "kubectl"]], "Appendix - III OpenFaaS Serverless": [[13, "appendix-iii-openfaas-serverless"]], "Appendix - IV Securing Kubernetes": [[13, "appendix-iv-securing-kubernetes"]], "Kubernetes Additional Features": [[13, "kubernetes-additional-features"]], "Node Feature Discovery": [[13, "node-feature-discovery"]], "Puppet server": [[13, "puppet-server"]], "Appendix - X PXE Boot": [[13, "appendix-x-pxe-boot"]], "Appendix - Extra": [[13, "appendix-extra"]], "Appendix - Installation of Cluster Applications": [[13, "appendix-installation-of-cluster-applications"]], "Metrics Server": [[13, "metrics-server"]], "Falco": [[13, "falco"]], "Appendix - Removal of Cluster Applications": [[13, "appendix-removal-of-cluster-applications"]], "Urban Monitoring Architecture - Edge Side": [[14, "urban-monitoring-architecture-edge-side"]], "Raspberry Pi": [[14, "raspberry-pi"]], "Remove systemd resolv.conf": [[14, "remove-systemd-resolv-conf"]], "Add Cgroup": [[14, "add-cgroup"]], "Add Wifi": [[14, "add-wifi"]], "Change Hostname": [[14, "change-hostname"]], "Install Puppet Agent": [[14, "install-puppet-agent"]], "Add puppet host entry to /etc/hosts": [[14, "add-puppet-host-entry-to-etc-hosts"]], "Puppet agent": [[14, "puppet-agent"]], "Layers in IoT": [[15, "layers-in-iot"]], "IoT Pentest": [[15, "iot-pentest"]], "Attack Surface Mapping": [[15, "attack-surface-mapping"]], "Embedded Devices Vulns": [[15, "embedded-devices-vulns"]], "Firmware, Software and Applications": [[15, "firmware-software-and-applications"]], "Radio Communications": [[15, "radio-communications"]], "Analyzing Hardware": [[15, "analyzing-hardware"]], "Visual Inspection": [[15, "visual-inspection"]], "Component Package": [[15, "component-package"]], "UART Communication": [[15, "uart-communication"]], "UART Data Packet": [[15, "uart-data-packet"]], "Type of UART Ports": [[15, "type-of-uart-ports"]], "Baud Rate": [[15, "baud-rate"]], "Connections for UART Exploitation": [[15, "connections-for-uart-exploitation"]], "Exploitation using I2C and SPI": [[15, "exploitation-using-i2c-and-spi"]], "I2C (Inter-Intergrate Circuit)": [[15, "i2c-inter-intergrate-circuit"]], "Understading EEPROM": [[15, "understading-eeprom"]], "Exploiting I2C Security": [[15, "exploiting-i2c-security"]], "Summarize": [[15, "summarize"]], "SPI": [[15, "spi"]], "How does SPI work?": [[15, "how-does-spi-work"]], "Reading and Writing from SPI EEPROM": [[15, "reading-and-writing-from-spi-eeprom"]], "JTAG": [[15, "jtag"]], "Boundary Scan": [[15, "boundary-scan"]], "Test Access Port": [[15, "test-access-port"]], "Boundary Scan Instructions": [[15, "boundary-scan-instructions"]], "Test process": [[15, "test-process"]], "Debugging with JTAG": [[15, "debugging-with-jtag"]], "Identifying JTAG pinouts": [[15, "identifying-jtag-pinouts"]], "What is OpenOCD": [[15, "what-is-openocd"]], "Installing software for JTAG debugging": [[15, "installing-software-for-jtag-debugging"]], "Debugging over JTAG with GDB": [[15, "debugging-over-jtag-with-gdb"]], "Firmware Reverse Engineering and Exploitation": [[15, "firmware-reverse-engineering-and-exploitation"]], "How to get Firmware Binary": [[15, "how-to-get-firmware-binary"]], "Firmware Internals": [[15, "firmware-internals"]], "Hardcoded Secrets": [[15, "hardcoded-secrets"]], "Encrypted Firmware?": [[15, "encrypted-firmware"]], "Emulating a Firmware Binary": [[15, "emulating-a-firmware-binary"]], "Backdooring a Firmware": [[15, "backdooring-a-firmware"]], "Running Automated firmware scanning tools": [[15, "running-automated-firmware-scanning-tools"]], "Firmware Diffing": [[15, "firmware-diffing"]], "Software Defined Radio": [[15, "software-defined-radio"]], "Setting up the lab": [[15, "setting-up-the-lab"]], "HackRF": [[15, "hackrf"]], "ZigBee": [[15, "zigbee"]], "Understading ZigBee Communication": [[15, "understading-zigbee-communication"]], "BLE": [[15, "ble"]], "Hardware": [[15, "hardware"]], "Sniffing BLE Packets": [[15, "sniffing-ble-packets"]], "Learning from the field : Wireless Pentesting": [[16, "learning-from-the-field-wireless-pentesting"]], "WEP": [[16, "wep"]], "Intelligence Gathering": [[17, "intelligence-gathering"]], "Scenarios": [[17, "scenarios"]], "Outside - External": [[17, "outside-external"]], "Inside - Internal": [[17, "inside-internal"]], "Wired LAN": [[17, "wired-lan"]], "Wireless LAN": [[17, "wireless-lan"]], "Responder/ Inveigh": [[17, "responder-inveigh"]], "NTLM/ NTLMv1/v2 / Net-NTLMv1/v2": [[17, "ntlm-ntlmv1-v2-net-ntlmv1-v2"]], "Fingerprinting": [[17, "fingerprinting"]], "Passive Fingerprinting:": [[17, "passive-fingerprinting"]], "Whois": [[17, "whois"]], "ASN Number": [[17, "asn-number"]], "Recon-ng": [[17, "recon-ng"]], "The Harvester": [[17, "the-harvester"]], "Enumeration with Domain Name (e.g. example.com) using external websites": [[17, "enumeration-with-domain-name-e-g-example-com-using-external-websites"]], "DNS Dumpster API": [[17, "dns-dumpster-api"]], "Google Dorks (search operators)": [[17, "google-dorks-search-operators"]], "Other Tools": [[17, "other-tools"]], "Publicly available scans of IP Addresses": [[17, "publicly-available-scans-of-ip-addresses"]], "Reverse DNS Lookup using External Websites": [[17, "reverse-dns-lookup-using-external-websites"]], "DomainTools Reverse IP Lookup": [[17, "domaintools-reverse-ip-lookup"]], "PassiveTotal": [[17, "passivetotal"]], "Server-Sniff": [[17, "server-sniff"]], "Robtex": [[17, "robtex"]], "Active Fingerprinting": [[17, "active-fingerprinting"]], "Finding DNS, MX, AAAA, A using": [[17, "finding-dns-mx-aaaa-a-using"]], "host": [[17, "host"], [17, "id13"]], "nslookup": [[17, "nslookup"]], "DNS Zone Transfer": [[17, "dns-zone-transfer"]], "Dig": [[17, "dig"]], "dnsrecon": [[17, "dnsrecon"]], "DNSEnum": [[17, "dnsenum"]], "SRV Records": [[17, "srv-records"]], "Internal Infrastructure Mapping": [[17, "internal-infrastructure-mapping"]], "Internal Network Range Identification": [[17, "internal-network-range-identification"]], "Ping Gateway IP Addresses": [[17, "ping-gateway-ip-addresses"]], "DNS Enumeration": [[17, "dns-enumeration"]], "Internal Portal Links": [[17, "internal-portal-links"]], "Reverse DNS Lookup": [[17, "reverse-dns-lookup"]], "Identifying Alive IP Addresses": [[17, "identifying-alive-ip-addresses"]], "Port Scanning": [[17, "port-scanning"], [34, "port-scanning"], [39, "port-scanning"], [10, "port-scanning"]], "Identifying service versions": [[17, "identifying-service-versions"]], "Performance": [[17, "performance"]], "Nmap Scripts": [[17, "nmap-scripts"]], "Output Options": [[17, "output-options"]], "Exploring the Network Further": [[17, "exploring-the-network-further"]], "Gathering Screenshots for http* services": [[17, "gathering-screenshots-for-http-services"]], "Information Gathering for http* Services": [[17, "information-gathering-for-http-services"]], "NetBIOS Service": [[17, "netbios-service"]], "NBTSCAN": [[17, "nbtscan"]], "enum4linux": [[17, "enum4linux"]], "SNMP Enumeration": [[17, "snmp-enumeration"]], "Attack Surface Area - Reconnaissance Tools": [[17, "attack-surface-area-reconnaissance-tools"]], "Aquatone: A tool for domain flyovers": [[17, "aquatone-a-tool-for-domain-flyovers"]], "DataSploit": [[17, "datasploit"]], "Spiderfoot": [[17, "spiderfoot"]], "Intrigue.io": [[17, "intrigue-io"]], "Appendix-I : Interesting Stories": [[17, "appendix-i-interesting-stories"]], "Initial Compromise": [[17, "initial-compromise"]], "Vulnerability Analysis": [[18, "vulnerability-analysis"]], "Port 21 - FTP": [[18, "port-21-ftp"]], "Metasploit": [[18, "metasploit"], [18, "id1"], [18, "id3"], [18, "id5"], [18, "id7"], [18, "id9"], [18, "id14"], [18, "id15"], [18, "id17"], [18, "id20"], [18, "id26"], [18, "id27"], [18, "id31"], [18, "id32"], [18, "id35"], [18, "id36"], [18, "id38"], [18, "id40"], [18, "id42"], [18, "id48"], [18, "id51"], [18, "id53"], [18, "id59"], [18, "id62"], [18, "id63"], [18, "id65"], [18, "id69"], [18, "id71"], [18, "id81"]], "FTP Version Scanner": [[18, "ftp-version-scanner"]], "Anonymous FTP Access Detection": [[18, "anonymous-ftp-access-detection"]], "FTP Authentication Scanner": [[18, "ftp-authentication-scanner"]], "FTP Bounce Port Scanner": [[18, "ftp-bounce-port-scanner"]], "Nmap": [[18, "nmap"], [18, "id2"], [18, "id4"], [18, "id8"], [18, "id10"], [18, "id16"], [18, "id18"], [18, "id22"], [18, "id25"], [18, "id28"], [18, "id34"], [18, "id39"], [18, "id43"], [18, "id45"], [18, "id49"], [18, "id52"], [18, "id56"], [18, "id68"], [18, "id72"], [18, "id76"], [18, "id78"], [18, "id82"], [18, "id84"], [34, "nmap"], [34, "id2"], [35, "nmap"], [35, "id12"], [39, "nmap"], [39, "id4"], [39, "id18"]], "ftp-anon": [[18, "ftp-anon"]], "ftp-brute": [[18, "ftp-brute"]], "ftp-bounce": [[18, "ftp-bounce"]], "Port 22 - SSH": [[18, "port-22-ssh"]], "SSH Version Scanner": [[18, "ssh-version-scanner"]], "SSH Brute force": [[18, "ssh-brute-force"]], "ssh2-enum-algos": [[18, "ssh2-enum-algos"]], "SSH-Hostkey": [[18, "ssh-hostkey"]], "SSHv1": [[18, "sshv1"]], "Port 23 - Telnet": [[18, "port-23-telnet"]], "Telnet version": [[18, "telnet-version"]], "Telnet Login Check Scanner": [[18, "telnet-login-check-scanner"]], "Telnet-brute": [[18, "telnet-brute"]], "Telnet-encryption": [[18, "telnet-encryption"]], "Port 25 - SMTP | Port 587 - Submission": [[18, "port-25-smtp-port-587-submission"]], "SMTP_Version": [[18, "smtp-version"]], "SMTP Open Relays": [[18, "smtp-open-relays"]], "SMTP User Enumeration Utility": [[18, "smtp-user-enumeration-utility"]], "Nmap NSE": [[18, "nmap-nse"]], "SMTP-brute": [[18, "smtp-brute"]], "SMTP-Commands": [[18, "smtp-commands"]], "SMTP-enum-users": [[18, "smtp-enum-users"]], "SMTP-open-relay": [[18, "smtp-open-relay"]], "SMTP Commands": [[18, "id6"]], "Port 53 - DNS": [[18, "port-53-dns"]], "DNS Bruteforce Enumeration": [[18, "dns-bruteforce-enumeration"]], "DNS Basic Information Enumeration": [[18, "dns-basic-information-enumeration"]], "DNS Reverse Lookup Enumeration": [[18, "dns-reverse-lookup-enumeration"]], "DNS Common Service Record Enumeration": [[18, "dns-common-service-record-enumeration"]], "DNS Record Scanner and Enumerator": [[18, "dns-record-scanner-and-enumerator"]], "DNS Amplification Scanner": [[18, "dns-amplification-scanner"]], "DNS Non-Recursive Record Scraper": [[18, "dns-non-recursive-record-scraper"]], "Broadcast-dns-service-discovery": [[18, "broadcast-dns-service-discovery"]], "DNS-blacklist": [[18, "dns-blacklist"]], "DNS-brute": [[18, "dns-brute"]], "DNS-Cache-snoop": [[18, "dns-cache-snoop"]], "DNS-Check-zone": [[18, "dns-check-zone"]], "DNS-nsid": [[18, "dns-nsid"]], "DNS-recursion": [[18, "dns-recursion"]], "DNS-Service-Discovery": [[18, "dns-service-discovery"]], "DNS-SRV-Enum": [[18, "dns-srv-enum"]], "DNS-Zone-Transfer": [[18, "dns-zone-transfer"]], "Port 79 - Finger": [[18, "port-79-finger"]], "Finger Service User Enumerator": [[18, "finger-service-user-enumerator"]], "Finger": [[18, "finger"]], "finger": [[18, "id12"]], "HTTP": [[18, "http"], [37, "http"], [38, "http"], [39, "http"], [39, "id41"]], "Webmin": [[18, "webmin"]], "Jenkins": [[18, "jenkins"], [31, "jenkins"]], "Apache Tomcat": [[18, "apache-tomcat"]], "JBoss": [[18, "jboss"]], "Lotus Domino httpd": [[18, "lotus-domino-httpd"]], "IIS": [[18, "iis"]], "VMware ESXi": [[18, "vmware-esxi"]], "Port 88 - Kerberos": [[18, "port-88-kerberos"]], "krb5-enum-users": [[18, "krb5-enum-users"]], "Port 110 - POP3": [[18, "port-110-pop3"]], "POP3 Banner Grabber": [[18, "pop3-banner-grabber"]], "POP3 Login Utility": [[18, "pop3-login-utility"]], "POP3-capabilities": [[18, "pop3-capabilities"]], "POP3-brute": [[18, "pop3-brute"]], "POP3 Commands": [[18, "pop3-commands"]], "Port 111 - RPCInfo": [[18, "port-111-rpcinfo"]], "NFS Mount Scanner": [[18, "nfs-mount-scanner"]], "rpcinfo": [[18, "rpcinfo"]], "Port 113 - Ident": [[18, "port-113-ident"]], "Auth-owners": [[18, "auth-owners"]], "Ident-user-enum": [[18, "ident-user-enum"]], "NNTP Network News Transfer Protocol": [[18, "nntp-network-news-transfer-protocol"]], "Commands": [[18, "commands"], [30, "commands"]], "CAPABILITIES": [[18, "capabilities"]], "MODE READER": [[18, "mode-reader"]], "QUIT": [[18, "quit"]], "LISTGROUP": [[18, "listgroup"]], "ARTICLE": [[18, "article"]], "POST": [[18, "post"]], "NetBios": [[18, "netbios"]], "broadcast-netbios-master-browser": [[18, "broadcast-netbios-master-browser"]], "Port 161 - SNMP": [[18, "port-161-snmp"]], "SNMP Community Scanner": [[18, "snmp-community-scanner"]], "SNMP Enumeration Module": [[18, "snmp-enumeration-module"]], "Port 264 - Check Point FireWall-1 Topology": [[18, "port-264-check-point-firewall-1-topology"]], "CheckPoint Firewall-1 SecuRemote Topology Service Hostname Disclosure": [[18, "checkpoint-firewall-1-securemote-topology-service-hostname-disclosure"]], "Port 389 - LDAP": [[18, "port-389-ldap"]], "LDAP-rootdse": [[18, "ldap-rootdse"]], "ldap-search": [[18, "ldap-search"]], "ldap-brute": [[18, "ldap-brute"]], "ldapsearch": [[18, "ldapsearch"]], "Port 445 - SMB": [[18, "port-445-smb"]], "SMB Version Detection": [[18, "smb-version-detection"]], "Port 512 - rexec": [[18, "port-512-rexec"]], "rexec Authentication Scanner": [[18, "rexec-authentication-scanner"]], "rlogin": [[18, "rlogin"]], "rexec-brute": [[18, "rexec-brute"]], "Port 513 - rlogin": [[18, "port-513-rlogin"]], "rlogin Authentication Scanner": [[18, "rlogin-authentication-scanner"]], "Port 514 - RSH": [[18, "port-514-rsh"]], "rsh Authentication Scanner": [[18, "rsh-authentication-scanner"]], "rsh": [[18, "rsh"]], "Port 548 - AFP (Apple Filing Protocol)": [[18, "port-548-afp-apple-filing-protocol"]], "Apple Filing Protocol Info Enumerator": [[18, "apple-filing-protocol-info-enumerator"]], "Apple Filing Protocol Login Utility": [[18, "apple-filing-protocol-login-utility"]], "afp-serverinfo": [[18, "afp-serverinfo"]], "afp-brute": [[18, "afp-brute"]], "afp-ls": [[18, "afp-ls"]], "afp-showmount": [[18, "afp-showmount"]], "afp-path-vuln": [[18, "afp-path-vuln"]], "Microsoft Windows RPC Services | Port 135 and Microsoft RPC Services over HTTP | Port 593": [[18, "microsoft-windows-rpc-services-port-135-and-microsoft-rpc-services-over-http-port-593"]], "Endpoint Mapper Service Discovery": [[18, "endpoint-mapper-service-discovery"]], "Hidden DCERPC Service Discovery": [[18, "hidden-dcerpc-service-discovery"]], "Remote Management Interface Discovery": [[18, "remote-management-interface-discovery"]], "DCERPC TCP Service Auditor": [[18, "dcerpc-tcp-service-auditor"]], "rpcdump": [[18, "rpcdump"]], "Port 443/8443 - HTTPS": [[18, "port-443-8443-https"]], "HTTP SSL Certificate Information": [[18, "http-ssl-certificate-information"]], "HTTP SSL/TLS Version Detection (POODLE scanner)": [[18, "http-ssl-tls-version-detection-poodle-scanner"]], "OpenSSL Server-Side ChangeCipherSpec Injection Scanner": [[18, "openssl-server-side-changecipherspec-injection-scanner"]], "OpenSSL Heartbeat (Heartbleed) Information Leak": [[18, "openssl-heartbeat-heartbleed-information-leak"]], "ssl-cert": [[18, "ssl-cert"]], "ssl-dh-params": [[18, "ssl-dh-params"]], "ssl-google-cert-catalog": [[18, "ssl-google-cert-catalog"]], "sslv2": [[18, "sslv2"]], "ssl-ccs-injection": [[18, "ssl-ccs-injection"]], "ssl-date": [[18, "ssl-date"]], "ssl-enum-ciphers": [[18, "ssl-enum-ciphers"]], "ssl-heartbleed": [[18, "ssl-heartbleed"]], "ssl-poodle": [[18, "ssl-poodle"]], "Port 554/8554 - RTSP": [[18, "port-554-8554-rtsp"]], "rtsp-methods": [[18, "rtsp-methods"]], "rtsp-url-brute": [[18, "rtsp-url-brute"]], "Cameradar": [[18, "cameradar"]], "Blogs": [[18, "blogs"]], "Port 873 - Rsync": [[18, "port-873-rsync"]], "List Rsync Modules": [[18, "list-rsync-modules"]], "rsync-list-modules": [[18, "rsync-list-modules"]], "rsync": [[18, "rsync"], [30, "rsync"]], "Port 1099 - Java RMI": [[18, "port-1099-java-rmi"]], "Java RMI Server Insecure Endpoint Code Execution Scanner": [[18, "java-rmi-server-insecure-endpoint-code-execution-scanner"]], "Java RMI Server Insecure Default Configuration Java Code Execution": [[18, "java-rmi-server-insecure-default-configuration-java-code-execution"]], "rmi-vuln-classloader": [[18, "rmi-vuln-classloader"]], "Port 1433 - MS-SQL": [[18, "port-1433-ms-sql"]], "MSSQL Ping Utility": [[18, "mssql-ping-utility"]], "MSSQL Login Utility": [[18, "mssql-login-utility"]], "Microsoft SQL Server Configuration Enumerator": [[18, "microsoft-sql-server-configuration-enumerator"]], "Microsoft SQL Server xp_cmdshell Command Execution": [[18, "microsoft-sql-server-xp-cmdshell-command-execution"]], "Microsoft SQL Server SUSER_SNAME Windows Domain Account Enumeration": [[18, "microsoft-sql-server-suser-sname-windows-domain-account-enumeration"]], "Microsoft SQL Server Find and Sample Data": [[18, "microsoft-sql-server-find-and-sample-data"]], "Microsoft SQL Server Generic Query": [[18, "microsoft-sql-server-generic-query"]], "MSSQL Schema Dump": [[18, "mssql-schema-dump"]], "tsql": [[18, "tsql"]], "Microsoft SQL Server Management": [[18, "microsoft-sql-server-management"]], "Default MS-SQL System Tables": [[18, "default-ms-sql-system-tables"]], "Reference - Hacking SQL Server Stored Procedures": [[18, "reference-hacking-sql-server-stored-procedures"]], "Part 1: (un)Trustworthy Databases": [[18, "part-1-un-trustworthy-databases"]], "Part 2: User Impersonation": [[18, "part-2-user-impersonation"]], "Part 3: SQL Injection": [[18, "part-3-sql-injection"]], "Part 4: Enumerating Domain Accounts": [[18, "part-4-enumerating-domain-accounts"]], "Reference - Other Blogs": [[18, "reference-other-blogs"]], "MSSQL-MITM": [[18, "mssql-mitm"]], "Port 1521 - Oracle": [[18, "port-1521-oracle"]], "Oracle Attack Methodology": [[18, "oracle-attack-methodology"]], "Locate Oracle Systems": [[18, "locate-oracle-systems"]], "Determine Oracle Version": [[18, "determine-oracle-version"]], "Determine Oracle SID": [[18, "determine-oracle-sid"]], "Guess/Bruteforce USER/PASS": [[18, "guess-bruteforce-user-pass"]], "Privilege Escalation via SQL Injection": [[18, "privilege-escalation-via-sql-injection"]], "Manipulate Data/Post Exploitation": [[18, "manipulate-data-post-exploitation"]], "Cover Tracks": [[18, "cover-tracks"]], "Port 2049 - NFS": [[18, "port-2049-nfs"]], "nfsshell": [[18, "nfsshell"]], "Using nfsshell": [[18, "using-nfsshell"]], "Port 3260 - ISCSI": [[18, "port-3260-iscsi"]], "iscsi-info": [[18, "iscsi-info"]], "iscsiadm": [[18, "iscsiadm"]], "Port 3299 - SAP Router": [[18, "port-3299-sap-router"]], "Port 3306 - MySQL": [[18, "port-3306-mysql"]], "MySQL Server Version Enumeration": [[18, "mysql-server-version-enumeration"]], "MySQL Login Utility": [[18, "mysql-login-utility"]], "MYSQL Password Hashdump": [[18, "mysql-password-hashdump"]], "mysql": [[18, "mysql"]], "Port 5432 - Postgresql": [[18, "port-5432-postgresql"]], "PostgreSQL Version Probe": [[18, "postgresql-version-probe"]], "PostgreSQL Login Utility": [[18, "postgresql-login-utility"]], "PostgreSQL Database Name Command Line Flag Injection": [[18, "postgresql-database-name-command-line-flag-injection"]], "Port 5555 - HPDataProtector RCE": [[18, "port-5555-hpdataprotector-rce"]], "Port 5900 - VNC": [[18, "port-5900-vnc"]], "VNC Authentication None Detection": [[18, "vnc-authentication-none-detection"]], "VNC Authentication Scanner": [[18, "vnc-authentication-scanner"]], "VNC Password": [[18, "vnc-password"]], "Port 5984 - CouchDB": [[18, "port-5984-couchdb"]], "Database List": [[18, "database-list"]], "Document List": [[18, "document-list"]], "Read Value Document": [[18, "read-value-document"]], "Port 6000 - X11": [[18, "port-6000-x11"]], "X11 No-Auth Scanner": [[18, "x11-no-auth-scanner"]], "X11 Keyboard Command Injection": [[18, "x11-keyboard-command-injection"]], "xspy": [[18, "xspy"]], "xdpyinfo": [[18, "xdpyinfo"]], "xwd": [[18, "xwd"]], "xwininfo": [[18, "xwininfo"]], "XWatchwin": [[18, "xwatchwin"]], "Port 6379 - Redis": [[18, "port-6379-redis"]], "Port 8009 - AJP (Apache JServ Protocol)": [[18, "port-8009-ajp-apache-jserv-protocol"]], "Port 9100 - PJL": [[18, "port-9100-pjl"]], "Printer Version Information Scanner": [[18, "printer-version-information-scanner"]], "PJL-ready-message": [[18, "pjl-ready-message"]], "Port 9160 - Apache Cassandra": [[18, "port-9160-apache-cassandra"]], "NMap": [[18, "id74"]], "Cassandra-info": [[18, "cassandra-info"]], "Cassandra-brute": [[18, "cassandra-brute"]], "Port 10000 - ndmp (Network Data Management Protocol)": [[18, "port-10000-ndmp-network-data-management-protocol"]], "ndmp-fs-info": [[18, "ndmp-fs-info"]], "ndmp-version": [[18, "ndmp-version"]], "Port 11211 - Memcache": [[18, "port-11211-memcache"]], "memcached-info": [[18, "memcached-info"]], "Port 27017/27018 - MongoDB": [[18, "port-27017-27018-mongodb"]], "MongoDB Login Utility": [[18, "mongodb-login-utility"]], "Mongodb-info": [[18, "mongodb-info"]], "Mongodb-database": [[18, "mongodb-database"]], "Mongodb-BruteForce": [[18, "mongodb-bruteforce"]], "Connection String": [[18, "connection-string"]], "Mongo-shell": [[18, "mongo-shell"]], "Port 44818 - EthernetIP-TCP-UDP": [[18, "port-44818-ethernetip-tcp-udp"]], "enip-enumerate": [[18, "enip-enumerate"]], "Port 47808 - UDP BACNet": [[18, "port-47808-udp-bacnet"]], "BACNet-discover-enumerate": [[18, "bacnet-discover-enumerate"]], "Exploitation": [[19, "exploitation"]], "Active Directory Reconnaissance": [[19, "active-directory-reconnaissance"]], "rpclient": [[19, "rpclient"]], "Connection": [[19, "connection"]], "Version of the target Windows machine": [[19, "version-of-the-target-windows-machine"]], "Enum commands": [[19, "enum-commands"]], "Current domain": [[19, "current-domain"]], "Enum Domain info": [[19, "enum-domain-info"]], "Enum Domain users": [[19, "enum-domain-users"]], "Enum Domain groups": [[19, "enum-domain-groups"]], "Enum Group Information and Group Membership": [[19, "enum-group-information-and-group-membership"]], "Enumerate specific User/ computer information by RID": [[19, "enumerate-specific-user-computer-information-by-rid"]], "Domain Password Policy": [[19, "domain-password-policy"], [19, "id8"]], "User password policies": [[19, "user-password-policies"]], "Local Users": [[19, "local-users"]], "Reset AD user password": [[19, "reset-ad-user-password"]], "Enum4linux": [[19, "enum4linux"]], "Active Directory Explorer (ADExplorer)": [[19, "active-directory-explorer-adexplorer"]], "JXplorer": [[19, "jxplorer"]], "Remote Server Administration Tools": [[19, "remote-server-administration-tools"]], "nltest": [[19, "nltest"]], "Verify domain controllers in a domain": [[19, "verify-domain-controllers-in-a-domain"]], "Advanced information about users": [[19, "advanced-information-about-users"]], "Determine the PDC emulator for a domain": [[19, "determine-the-pdc-emulator-for-a-domain"]], "Show trust relationships for a domain": [[19, "show-trust-relationships-for-a-domain"]], "netdom": [[19, "netdom"]], "DC": [[19, "dc"]], "PDC": [[19, "pdc"]], "FSMO": [[19, "fsmo"]], "TRUST": [[19, "trust"]], "OU": [[19, "ou"]], "SERVER/ WORKSTATION": [[19, "server-workstation"]], "Microsoft Active Directory Topology Diagrammer": [[19, "microsoft-active-directory-topology-diagrammer"]], "AD Reconnaissance with PowerShell": [[19, "ad-reconnaissance-with-powershell"]], "Forest Information": [[19, "forest-information"]], "Domain Information": [[19, "domain-information"]], "Forest Trusts": [[19, "forest-trusts"]], "Domain Trusts": [[19, "domain-trusts"]], "Forest Global Catalogs": [[19, "forest-global-catalogs"]], "Enterprise Services without scanning of Network": [[19, "enterprise-services-without-scanning-of-network"]], "SPN-Scanning": [[19, "spn-scanning"]], "SPN Scanning using Powershell": [[19, "spn-scanning-using-powershell"]], "Find all registered SQL Servers, Dcom, dnscache etc.": [[19, "find-all-registered-sql-servers-dcom-dnscache-etc"]], "Discovering the Service Accounts": [[19, "discovering-the-service-accounts"]], "Discovering the Computers and Domain Controllers without scanning the network": [[19, "discovering-the-computers-and-domain-controllers-without-scanning-the-network"]], "Identifying the Admin Accounts": [[19, "identifying-the-admin-accounts"]], "Finding the Admin Groups": [[19, "finding-the-admin-groups"]], "Identifying the Groups with Local Admin Rights to windows machines": [[19, "identifying-the-groups-with-local-admin-rights-to-windows-machines"]], "PowerShell [adsiSearcher] Type Accelerator": [[19, "powershell-adsisearcher-type-accelerator"]], "Define username, password, Domain, etc.": [[19, "define-username-password-domain-etc"]], "Initialize the connection": [[19, "initialize-the-connection"]], "Finding the Domain Name": [[19, "finding-the-domain-name"]], "Finding the Computers": [[19, "finding-the-computers"]], "Finding the Users:": [[19, "finding-the-users"]], "Properties of the object": [[19, "properties-of-the-object"]], "Get sessions of remote machines": [[19, "get-sessions-of-remote-machines"]], "Powerview Get-NetSession": [[19, "powerview-get-netsession"]], "net session": [[19, "net-session"]], "WMI": [[19, "wmi"], [19, "id9"], [19, "id18"]], "View users in Domain / Workgroup": [[19, "view-users-in-domain-workgroup"]], "Powerview Get-NetUser": [[19, "powerview-get-netuser"]], "net user /domain": [[19, "net-user-domain"]], "View machines in Domain/ Workgroup": [[19, "view-machines-in-domain-workgroup"]], "Powerview Get-NetComputers": [[19, "powerview-get-netcomputers"]], "net view /domain": [[19, "net-view-domain"]], "View machines affected by GPP vulnerability": [[19, "view-machines-affected-by-gpp-vulnerability"]], "View group in Domain / Workgroup": [[19, "view-group-in-domain-workgroup"]], "Powerview Get-NetGroupMember": [[19, "powerview-get-netgroupmember"]], "Net group / domain": [[19, "net-group-domain"]], "Windows Resource Kit Local/ Global executable": [[19, "windows-resource-kit-local-global-executable"]], "BloodHound Group Memberships": [[19, "bloodhound-group-memberships"]], "WMI user groups": [[19, "wmi-user-groups"]], "Hunting for a particular User?": [[19, "hunting-for-a-particular-user"]], "Powerview Invoke-UserHunter": [[19, "powerview-invoke-userhunter"]], "BloodHound users_sessions": [[19, "bloodhound-users-sessions"]], "EventLog AD?": [[19, "eventlog-ad"]], "Remote Code Execution Methods": [[19, "remote-code-execution-methods"]], "Winexe": [[19, "winexe"]], "Linux Binary pth-winexe": [[19, "linux-binary-pth-winexe"]], "Windows Binary win-exe": [[19, "windows-binary-win-exe"]], "crackmapexec": [[19, "crackmapexec"]], "Modules": [[19, "modules"]], "Smbmap": [[19, "smbmap"]], "Impacket psexec/ smbexe/ wmiexec": [[19, "impacket-psexec-smbexe-wmiexec"]], "Impacket psexec": [[19, "impacket-psexec"]], "Impacket smbexec": [[19, "impacket-smbexec"]], "Impacket wmiexec": [[19, "impacket-wmiexec"]], "Metasploit psexec": [[19, "metasploit-psexec"]], "Target 2: Native upload": [[19, "target-2-native-upload"]], "Target 1, powershell": [[19, "target-1-powershell"]], "Target 3: MOF Upload": [[19, "target-3-mof-upload"]], "Working of MSF PSexec - Native Upload": [[19, "working-of-msf-psexec-native-upload"]], "Working of MSF PSExec - Powershell": [[19, "working-of-msf-psexec-powershell"]], "Sysinternals psexec": [[19, "sysinternals-psexec"]], "Working of Microsoft PSExec": [[19, "working-of-microsoft-psexec"]], "Sysinternal PSExec with hashes": [[19, "sysinternal-psexec-with-hashes"]], "Task Scheduler": [[19, "task-scheduler"]], "Scheduled Tasks": [[19, "scheduled-tasks"], [36, "scheduled-tasks"]], "Service Controller (SC)": [[19, "service-controller-sc"]], "Create a new service": [[19, "create-a-new-service"]], "Start the service": [[19, "start-the-service"]], "Delete the service": [[19, "delete-the-service"]], "Remote Registry": [[19, "remote-registry"]], "Add an entry": [[19, "add-an-entry"]], "Query the remote registry": [[19, "query-the-remote-registry"]], "Delete the remote registry": [[19, "delete-the-remote-registry"]], "Remote File Access": [[19, "remote-file-access"]], "WinRM": [[19, "winrm"]], "Enabling PS-Remoting": [[19, "enabling-ps-remoting"]], "Testing the WinRM Connection": [[19, "testing-the-winrm-connection"]], "Adding Trusted Host in WinRM": [[19, "adding-trusted-host-in-winrm"]], "PowerShell Invoke-Command": [[19, "powershell-invoke-command"]], "Interactive PowerShell session": [[19, "interactive-powershell-session"]], "Disable Powershell Remoting": [[19, "disable-powershell-remoting"]], "Local code execution": [[19, "local-code-execution"]], "Remote code execution": [[19, "remote-code-execution"]], "DCOM": [[19, "dcom"]], "DCOM applications via MMC Application Class (MMC20.Application)": [[19, "dcom-applications-via-mmc-application-class-mmc20-application"]], "DCOM via ShellExecute": [[19, "dcom-via-shellexecute"]], "DCOM via ShellBrowserWindow": [[19, "dcom-via-shellbrowserwindow"]], "Mimikatz PTH/ PTT": [[19, "mimikatz-pth-ptt"]], "Pass the Hash": [[19, "pass-the-hash"]], "Pass the ticket": [[19, "pass-the-ticket"]], "xfreerdp/ Remote Desktop": [[19, "xfreerdp-remote-desktop"]], "rdesktop": [[19, "rdesktop"]], "Pass the Hash with Remote Desktop": [[19, "pass-the-hash-with-remote-desktop"]], "Useful Stuff": [[19, "useful-stuff"]], "Add/ remove/ a local user": [[19, "add-remove-a-local-user"]], "Add a domain user": [[19, "add-a-domain-user"]], "Add / remove a local user to administrator group": [[19, "add-remove-a-local-user-to-administrator-group"]], "Change local user password": [[19, "change-local-user-password"]], "Accessing Remote machines": [[19, "accessing-remote-machines"]], "Windows": [[19, "windows"], [35, "windows"], [37, "windows"], [39, "windows"], [39, "id31"], [10, "windows"], [10, "id3"], [10, "id5"], [10, "id7"]], "Linux": [[19, "linux"], [35, "linux"], [39, "linux"], [10, "linux"], [10, "id4"], [10, "id6"], [10, "id8"]], "A-I : Interesting Stories": [[19, "a-i-interesting-stories"]], "Targeting Domain Administrator!": [[19, "targeting-domain-administrator"]], "SMBRelay": [[19, "smbrelay"]], "Windows Privilege Escalation": [[19, "windows-privilege-escalation"], [36, "windows-privilege-escalation"], [39, "windows-privilege-escalation"]], "Post Exploitation": [[20, "post-exploitation"]], "Gather Windows Credentials": [[20, "gather-windows-credentials"]], "Metasploit Web Delivery": [[20, "metasploit-web-delivery"]], "Powershell Empire": [[20, "powershell-empire"]], "Dump Lsass.exe (Local Security Authority Subsystem Service)": [[20, "dump-lsass-exe-local-security-authority-subsystem-service"]], "Procdump": [[20, "procdump"]], "Powershell Out-MiniDump": [[20, "powershell-out-minidump"]], "Registry Hives": [[20, "registry-hives"]], "Windows Credential Editor (WCE)": [[20, "windows-credential-editor-wce"]], "List NTLM credentials in memory": [[20, "list-ntlm-credentials-in-memory"]], "Create a new logon session": [[20, "create-a-new-logon-session"]], "Write hashes obtained by WCE to a file?": [[20, "write-hashes-obtained-by-wce-to-a-file"]], "Dump logon cleartext passwords with WCE?": [[20, "dump-logon-cleartext-passwords-with-wce"]], "Useful Information": [[20, "useful-information"]], "System/ Security /SAM File": [[20, "system-security-sam-file"]], "creddump7": [[20, "id3"]], "Virtual Machine Snapshots And Suspended States - Vmss2core": [[20, "virtual-machine-snapshots-and-suspended-states-vmss2core"]], "Active Directory Built-In Groups Self-Elevation": [[20, "active-directory-built-in-groups-self-elevation"]], "Built-In Administrators to EA/DA": [[20, "built-in-administrators-to-ea-da"]], "Server Operators elevate to EA/DA/BA": [[20, "server-operators-elevate-to-ea-da-ba"]], "Account Operators elevate to privileged group via nested group": [[20, "account-operators-elevate-to-privileged-group-via-nested-group"]], "Member of Backup Operators elevate to Administrators": [[20, "member-of-backup-operators-elevate-to-administrators"]], "High Impact Exploitation": [[20, "high-impact-exploitation"]], "Outlook data file .pst": [[20, "outlook-data-file-pst"]], "Pillage Exchange": [[20, "pillage-exchange"]], "Full access to the targeted user\u2019s mailbox": [[20, "full-access-to-the-targeted-user-s-mailbox"]], "Search-Mailbox cmdlet": [[20, "search-mailbox-cmdlet"]], "File Servers": [[20, "file-servers"]], "Active Directory Database Credentials": [[20, "active-directory-database-credentials"]], "C-Level Executive - Webcam, Microphone, User Activity Recording": [[20, "c-level-executive-webcam-microphone-user-activity-recording"]], "Webcam": [[20, "webcam"]], "Record_Mic": [[20, "record-mic"]], "User Activity": [[20, "user-activity"]], "Hypervisor": [[20, "hypervisor"], [31, "hypervisor"]], "Targeted Hunting": [[20, "targeted-hunting"]], "Microsoft\u2019s System Center Configuration Manager": [[20, "microsoft-s-system-center-configuration-manager"]], "Microsoft System Center Operations Manager": [[20, "microsoft-system-center-operations-manager"]], "Puppet": [[20, "puppet"], [31, "puppet"]], "Credmap: The credential Mapper": [[20, "credmap-the-credential-mapper"]], "A-I : Windows Credentials": [[20, "a-i-windows-credentials"]], "Terminology: authentication, credentials, and authenticators": [[20, "terminology-authentication-credentials-and-authenticators"]], "Credentials in Windows operating systems": [[20, "credentials-in-windows-operating-systems"]], "Identities - usernames": [[20, "identities-usernames"]], "Windows authenticators": [[20, "windows-authenticators"]], "Credential Storage": [[20, "credential-storage"]], "Windows authentication protocols": [[20, "windows-authentication-protocols"]], "A-II Cracking Hashes": [[20, "a-ii-cracking-hashes"]], "John The Ripper": [[20, "john-the-ripper"]], "LM:NT/ NT-Hashes": [[20, "lm-nt-nt-hashes"]], "Korelogic Rules": [[20, "korelogic-rules"]], "Loopback?": [[20, "loopback"]], "Password Statistics": [[20, "password-statistics"]], "A-III Interesting Stories": [[20, "a-iii-interesting-stories"]], "Tools": [[20, "tools"], [22, "tools"], [38, "tools"], [39, "tools"], [10, "tools"], [10, "id15"]], "Reporting": [[21, "reporting"]], "Open-Source Reporting Tools": [[21, "open-source-reporting-tools"]], "Serpico": [[21, "serpico"]], "DART": [[21, "dart"]], "Open-Source Data-Management Tools": [[21, "open-source-data-management-tools"]], "Cisco Kvasir": [[21, "cisco-kvasir"]], "Threadfix": [[21, "threadfix"]], "Salesforce Vulnreport": [[21, "salesforce-vulnreport"]], "Configuration Review": [[22, "configuration-review"]], "Routers": [[22, "routers"]], "Switches": [[22, "switches"]], "Firewalls": [[22, "firewalls"], [10, "firewalls"]], "Cisco Devices": [[22, "cisco-devices"]], "Nipper": [[22, "nipper"]], "Nessus (Professional version)": [[22, "nessus-professional-version"]], "rConfig": [[22, "rconfig"]], "Solarwinds Network Configuration Manager": [[22, "solarwinds-network-configuration-manager"]], "ciscoconfparse": [[22, "ciscoconfparse"]], "Tuffin Orchestration Suite": [[22, "tuffin-orchestration-suite"]], "Solarwinds FSM": [[22, "solarwinds-fsm"]], "Springbok": [[22, "springbok"]], "End-Point Review": [[22, "end-point-review"]], "Windows Operating Systems": [[22, "windows-operating-systems"]], "Gpresult": [[22, "gpresult"]], "Net Accounts": [[22, "net-accounts"]], "WMIC.exe": [[22, "wmic-exe"]], "Applications installed": [[22, "applications-installed"]], "auditpol": [[22, "auditpol"]], "PolicyAnalyzer": [[22, "policyanalyzer"]], "AccessEnum": [[22, "accessenum"]], "Permission Reporter": [[22, "permission-reporter"]], "SolarWinds Permission Analyzer": [[22, "solarwinds-permission-analyzer"]], "Linux Operating systems": [[22, "linux-operating-systems"]], "Tiger": [[22, "tiger"]], "unix-privesc-check": [[22, "unix-privesc-check"]], "LSAT": [[22, "lsat"]], "Lynis": [[22, "lynis"]], "Remote Function Calls (RFC), SAP GUI, and the DIAG Protocol": [[23, "remote-function-calls-rfc-sap-gui-and-the-diag-protocol"]], "The SAP Internet Communication Manager (ICM)": [[23, "the-sap-internet-communication-manager-icm"]], "Exploring SAP": [[23, "exploring-sap"]], "Enumerate SAP Systems": [[23, "enumerate-sap-systems"]], "The SAP Internet Communication Framework (ICF)": [[23, "the-sap-internet-communication-framework-icf"]], "Discovering ICF Services with Metasploit": [[23, "discovering-icf-services-with-metasploit"]], "Stock Market": [[24, "stock-market"]], "Investing in stock markets": [[24, "investing-in-stock-markets"]], "Fundamental Analysis": [[24, "fundamental-analysis"]], "Fundamental Rule 1": [[24, "fundamental-rule-1"]], "Checklist for fundamental analysis": [[24, "checklist-for-fundamental-analysis"]], "Technical Analysis": [[24, "technical-analysis"]], "Stock picking": [[24, "stock-picking"]], "Checklist": [[24, "checklist"]], "Conclusion": [[24, "conclusion"]], "Qualitative Analysis": [[24, "qualitative-analysis"]], "Annual Report": [[24, "annual-report"]], "Balance sheet": [[24, "balance-sheet"]], "Assets": [[24, "assets"]], "Liability": [[24, "liability"]], "Equities and Liabilities": [[24, "equities-and-liabilities"]], "Cash Flow Statement": [[24, "cash-flow-statement"]], "General Concepts": [[24, "general-concepts"]], "Bull vs Bears": [[24, "bull-vs-bears"]], "Chart": [[24, "chart"]], "Contributors": [[28, "contributors"]], "Cybersecurity in an Enterprise": [[29, "cybersecurity-in-an-enterprise"]], "Nomenclature": [[29, "nomenclature"]], "New Company": [[29, "new-company"]], "Current Users": [[29, "current-users"], [29, "id1"], [29, "id4"], [29, "id12"]], "Current Setup": [[29, "current-setup"], [29, "id2"], [29, "id5"], [29, "id13"]], "Security Additions": [[29, "security-additions"], [29, "id3"], [29, "id9"], [29, "id11"], [29, "id17"], [29, "id18"]], "Home Router with builtin Wi-Fi": [[29, "home-router-with-builtin-wi-fi"]], "Micro Enterprise": [[29, "micro-enterprise"]], "Operations Issues": [[29, "operations-issues"], [29, "id6"], [29, "id14"]], "Small Enterprise": [[29, "small-enterprise"]], "Windows Domain Controller": [[29, "windows-domain-controller"]], "Domain Name Server": [[29, "domain-name-server"]], "Windows Server Update Services (WSUS) Server": [[29, "windows-server-update-services-wsus-server"]], "DHCP Server": [[29, "dhcp-server"]], "Minimum Baseline Security Standard (MBSS)": [[29, "minimum-baseline-security-standard-mbss"]], "Security Compliance Toolkit": [[29, "security-compliance-toolkit"]], "Operations Additions": [[29, "operations-additions"], [29, "id15"]], "Infrastructure Automation Tools": [[29, "infrastructure-automation-tools"]], "Automation Tools Addition": [[29, "automation-tools-addition"]], "Linters": [[29, "linters"]], "Security Breach 1": [[29, "security-breach-1"]], "ELK (Elasticsearch, Logstash, and Kibana)": [[29, "elk-elasticsearch-logstash-and-kibana"]], "Windows Event Forwarding": [[29, "windows-event-forwarding"]], "Detecting Lateral Movement": [[29, "detecting-lateral-movement"]], "Internet Proxy Server": [[29, "internet-proxy-server"]], "Web-Application Pentration Testing": [[29, "web-application-pentration-testing"]], "Secure Coding Guidelines": [[29, "secure-coding-guidelines"]], "Web Application Firewall": [[29, "web-application-firewall"]], "Medium Enterprise": [[29, "medium-enterprise"]], "DevSec Hardening Framework": [[29, "devsec-hardening-framework"]], "Inventory": [[29, "inventory"]], "Vulnerability Assessment": [[29, "vulnerability-assessment"]], "Active Directory Hardening": [[29, "active-directory-hardening"]], "Network Access Control": [[29, "network-access-control"]], "Application Whitelist/Blacklisting": [[29, "application-whitelist-blacklisting"]], "Detection Mechanism": [[29, "detection-mechanism"]], "Security Breach 2": [[29, "security-breach-2"]], "Threat Intelligence": [[29, "threat-intelligence"]], "Threat Hunting": [[29, "threat-hunting"]], "Sharing Threat Intelligence": [[29, "sharing-threat-intelligence"]], "Privileged Identity Management (PIM)": [[29, "privileged-identity-management-pim"]], "Linux Basics": [[30, "linux-basics"]], "Linux Concepts": [[30, "linux-concepts"]], "Terminology": [[30, "terminology"]], "Kernel": [[30, "kernel"]], "Userspace": [[30, "userspace"]], "Distribution": [[30, "distribution"]], "Boot loader": [[30, "boot-loader"]], "Service": [[30, "service"]], "X Window System": [[30, "x-window-system"], [30, "id1"]], "Desktop Environment": [[30, "desktop-environment"]], "Command Line": [[30, "command-line"]], "Shell": [[30, "shell"]], "Partition": [[30, "partition"]], "Filesystem": [[30, "filesystem"]], "Device files": [[30, "device-files"]], "Block": [[30, "block"]], "Character": [[30, "character"]], "Linux Development Process": [[30, "linux-development-process"]], "Linux Families": [[30, "linux-families"]], "Redhat Family": [[30, "redhat-family"]], "SUSE Family": [[30, "suse-family"]], "Debian Family": [[30, "debian-family"]], "Linux Applications": [[30, "linux-applications"]], "Linux Boot Process": [[30, "linux-boot-process"]], "BIOS": [[30, "bios"]], "Master Boot Record (MBR) and Boot Loader": [[30, "master-boot-record-mbr-and-boot-loader"]], "Boot loader in action": [[30, "boot-loader-in-action"]], "First stage": [[30, "first-stage"]], "For systems using the BIOS/MBR method": [[30, "for-systems-using-the-bios-mbr-method"]], "For systems using the EFI/UEFI method": [[30, "for-systems-using-the-efi-uefi-method"]], "Second stage": [[30, "second-stage"]], "Initial RAM Disk": [[30, "initial-ram-disk"]], "Text-Mode Login": [[30, "text-mode-login"]], "Kernel, Init and Services": [[30, "kernel-init-and-services"]], "/sbin/init and services": [[30, "sbin-init-and-services"]], "Upstart": [[30, "upstart"]], "systemd": [[30, "systemd"]], "Enabling or disabling a system service from starting up at system boot": [[30, "enabling-or-disabling-a-system-service-from-starting-up-at-system-boot"]], "Listing all services": [[30, "listing-all-services"]], "Linux Runlevels": [[30, "linux-runlevels"]], "Linux Filesystem": [[30, "linux-filesystem"]], "Data Distinctions": [[30, "data-distinctions"]], "Shareable vs Non-shareable data": [[30, "shareable-vs-non-shareable-data"]], "Variable vs. Static": [[30, "variable-vs-static"]], "Linux Directories": [[30, "linux-directories"]], "/bin": [[30, "bin"]], "/sbin": [[30, "sbin"]], "/proc": [[30, "proc"]], "/dev": [[30, "dev"]], "/var": [[30, "var"]], "/etc": [[30, "etc"]], "/boot": [[30, "boot"]], "/lib": [[30, "lib"]], "Other Information": [[30, "other-information"]], "File System Superblock": [[30, "file-system-superblock"]], "View superblock information": [[30, "view-superblock-information"]], "du": [[30, "du"]], "Estimate file space usage": [[30, "estimate-file-space-usage"]], "Show disk usage": [[30, "show-disk-usage"]], "mkfs": [[30, "mkfs"]], "GUI and Terminal": [[30, "gui-and-terminal"]], "Current screen resolution": [[30, "current-screen-resolution"]], "Turn off the graphical desktop": [[30, "turn-off-the-graphical-desktop"]], "Terminal Emulator": [[30, "terminal-emulator"]], "Virtual Terminal": [[30, "virtual-terminal"]], "Screen Multiplexer": [[30, "screen-multiplexer"]], "tmux": [[30, "tmux"]], "Windows (Tabs)": [[30, "windows-tabs"]], "tmux.conf": [[30, "tmux-conf"]], "Reloading tmux config": [[30, "reloading-tmux-config"]], "Tmux Copy Paste": [[30, "tmux-copy-paste"]], "Basic Utilities and Operations": [[30, "basic-utilities-and-operations"]], "Binary Locations": [[30, "binary-locations"]], "Command-line Parameters": [[30, "command-line-parameters"]], "Getting Help": [[30, "getting-help"]], "man": [[30, "man"]], "GNU Info": [[30, "gnu-info"]], "help": [[30, "help"]], "Graphical Help System": [[30, "graphical-help-system"]], "Package Documentation": [[30, "package-documentation"]], "Locating Applications": [[30, "locating-applications"]], "Exploring Filesystem and Directories": [[30, "exploring-filesystem-and-directories"]], "cd": [[30, "cd"]], "tree": [[30, "tree"]], "ls": [[30, "ls"]], "ls showing full path": [[30, "ls-showing-full-path"]], "Creating and deleting files and directories": [[30, "creating-and-deleting-files-and-directories"]], "Creating a simple file": [[30, "creating-a-simple-file"]], "echo": [[30, "echo"], [30, "id2"]], "cat": [[30, "cat"], [30, "id3"]], "Editing text files using Vi": [[30, "editing-text-files-using-vi"]], "Open file with vi": [[30, "open-file-with-vi"]], "Vi Modes": [[30, "vi-modes"]], "Command Mode": [[30, "command-mode"]], "Cursor Positions": [[30, "cursor-positions"]], "Searching text in vi": [[30, "searching-text-in-vi"]], "Working with text in vi": [[30, "working-with-text-in-vi"]], "Insert Mode": [[30, "insert-mode"]], "Line Mode": [[30, "line-mode"]], "Using external commands in vi": [[30, "using-external-commands-in-vi"]], "Vi Configuration Files": [[30, "vi-configuration-files"]], ".vimrc": [[30, "vimrc"]], ".viminfo": [[30, "viminfo"]], "Replace text in Vi": [[30, "replace-text-in-vi"]], "Other Info": [[30, "other-info"]], "Manipulating Text": [[30, "manipulating-text"]], "cut - remove sections from each line of files": [[30, "cut-remove-sections-from-each-line-of-files"]], "sed": [[30, "sed"]], "awk": [[30, "awk"]], "Awk converting to normal output to csv": [[30, "awk-converting-to-normal-output-to-csv"]], "sort": [[30, "sort"]], "uniq": [[30, "uniq"]], "paste": [[30, "paste"]], "join": [[30, "join"]], "split": [[30, "split"]], "tr": [[30, "tr"]], "tee": [[30, "tee"]], "wc": [[30, "wc"]], "cut": [[30, "cut"]], "alias": [[30, "alias"]], "Viewing Files": [[30, "viewing-files"]], "xxd": [[30, "xxd"]], "hexdump": [[30, "hexdump"]], "View large files": [[30, "view-large-files"]], "less": [[30, "less"]], "head": [[30, "head"]], "tail": [[30, "tail"]], "Viewing compressed files": [[30, "viewing-compressed-files"]], "Searching Files": [[30, "searching-files"]], "locate": [[30, "locate"]], "find": [[30, "find"], [36, "find"], [39, "find"]], "Example: Remove all files that end with .swp": [[30, "example-remove-all-files-that-end-with-swp"]], "Example: Delete empty file and directories": [[30, "example-delete-empty-file-and-directories"]], "Searching for text using Global Regular Expression Print (grep)": [[30, "searching-for-text-using-global-regular-expression-print-grep"]], "Ways to provide input to grep": [[30, "ways-to-provide-input-to-grep"]], "Syntax": [[30, "syntax"]], "Using regular expressions": [[30, "using-regular-expressions"]], "grep -e / grep -E": [[30, "grep-e-grep-e"]], "Search a specific string": [[30, "search-a-specific-string"]], "Line and word anchors": [[30, "line-and-word-anchors"]], "Shell expansions - input to Grep": [[30, "shell-expansions-input-to-grep"]], "Compressing Files": [[30, "compressing-files"]], "tar": [[30, "tar"]], "gzip": [[30, "gzip"]], "bzip": [[30, "bzip"]], "xz": [[30, "xz"]], "zip": [[30, "zip"], [36, "zip"], [39, "zip"]], "Backing up data": [[30, "backing-up-data"]], "cp": [[30, "cp"]], "Comparing files with diff": [[30, "comparing-files-with-diff"]], "Identifying Users": [[30, "identifying-users"]], "Builtins": [[30, "builtins"]], "Other commands": [[30, "other-commands"], [30, "other-commands-1"]], "Regular Expressions and search patterns": [[30, "regular-expressions-and-search-patterns"]], "Environment Variables": [[30, "environment-variables"], [35, "environment-variables"], [36, "environment-variables"], [39, "environment-variables"]], "Home": [[30, "home"]], "Path": [[30, "path"]], "SHELL": [[30, "id5"]], "PS1 & Command Line Prompt": [[30, "ps1-command-line-prompt"]], "ip": [[30, "ip"], [30, "id6"], [37, "ip"], [39, "ip"]], "ping": [[30, "ping"]], "route": [[30, "route"]], "Show current routing table": [[30, "show-current-routing-table"]], "Add static route": [[30, "add-static-route"]], "Delete static route": [[30, "delete-static-route"]], "traceroute": [[30, "traceroute"]], "wget": [[30, "wget"], [36, "wget"], [39, "wget"]], "curl": [[30, "curl"], [35, "curl"], [37, "curl"], [39, "curl"]], "ftp": [[30, "ftp"]], "ssh": [[30, "ssh"]], "Generating new SSH host keys": [[30, "generating-new-ssh-host-keys"]], "scp": [[30, "scp"]], "Other tools": [[30, "other-tools"]], "Setting up IP address": [[30, "setting-up-ip-address"]], "ifupdown": [[30, "ifupdown"]], "ifupdown\u2019s configuration file": [[30, "ifupdown-s-configuration-file"]], "systemd-networkd": [[30, "systemd-networkd"]], "netplan": [[30, "netplan"]], "Important concepts": [[30, "important-concepts"]], "Pipes": [[30, "pipes"]], "Special Characters": [[30, "special-characters"]], "Understanding Absolute and Relative Paths": [[30, "understanding-absolute-and-relative-paths"]], "Absolute pathname": [[30, "absolute-pathname"]], "Relative pathname": [[30, "relative-pathname"]], "Hard and Soft Links": [[30, "hard-and-soft-links"]], "Hard Links": [[30, "hard-links"]], "Soft Links": [[30, "soft-links"]], "Information": [[30, "information"]], "Confidentiality, Integrity, Availability": [[30, "confidentiality-integrity-availability"]], "Non-repudiation": [[30, "non-repudiation"]], "Important File Formats": [[30, "important-file-formats"]], "/etc/passwd": [[30, "etc-passwd"]], "/etc/shadow": [[30, "etc-shadow"]], "/etc/group": [[30, "etc-group"]], "Read passwd/shadow file": [[30, "read-passwd-shadow-file"]], "Gathering Information": [[30, "gathering-information"]], "From Files": [[30, "from-files"]], "From Commands": [[30, "from-commands"]], "Keyboard shortcuts": [[30, "keyboard-shortcuts"]], "Moving": [[30, "moving"]], "Erasing": [[30, "erasing"]], "Window": [[30, "window"]], "Other shortcuts": [[30, "other-shortcuts"]], "Searching History": [[30, "searching-history"]], "Difference between su and sudo": [[30, "difference-between-su-and-sudo"]], "su": [[30, "su"]], "su -c": [[30, "su-c"]], "sudo": [[30, "sudo"]], "Command logging": [[30, "command-logging"]], "Adding user to sudoers groups": [[30, "adding-user-to-sudoers-groups"]], "Disk-to-Disk Copying (dd)": [[30, "disk-to-disk-copying-dd"]], "Process and Process attributes": [[30, "process-and-process-attributes"]], "Static and Shared Libraries": [[30, "static-and-shared-libraries"]], "Finding Shared Libraries": [[30, "finding-shared-libraries"]], "Controlling processes with ulimit": [[30, "controlling-processes-with-ulimit"]], "Hard Limit": [[30, "hard-limit"]], "Soft Limit": [[30, "soft-limit"]], "Process Scheduling and states": [[30, "process-scheduling-and-states"]], "Execution modes": [[30, "execution-modes"]], "User Mode": [[30, "user-mode"]], "Kernel Mode": [[30, "kernel-mode"]], "Process and Thread IDs": [[30, "process-and-thread-ids"]], "Creating processes in command shell": [[30, "creating-processes-in-command-shell"]], "Signals": [[30, "signals"]], "Kill the process": [[30, "kill-the-process"]], "User and Group IDs": [[30, "user-and-group-ids"]], "Priorities": [[30, "priorities"]], "nice": [[30, "nice"]], "renice": [[30, "renice"]], "Load average": [[30, "load-average"]], "Background and Foreground Processes": [[30, "background-and-foreground-processes"]], "Managing Jobs": [[30, "managing-jobs"]], "System V IPC": [[30, "system-v-ipc"]], "PS Command": [[30, "ps-command"]], "System V style": [[30, "system-v-style"]], "BSD Style": [[30, "bsd-style"]], "Process Tree": [[30, "process-tree"]], "Scheduling process": [[30, "scheduling-process"]], "at": [[30, "at"]], "cron": [[30, "cron"]], "sleep": [[30, "sleep"]], "Bash": [[30, "bash"]], "Important configuration files - For Debian/Ubuntu based Systems": [[30, "important-configuration-files-for-debian-ubuntu-based-systems"]], "User Startup files": [[30, "user-startup-files"]], "Command history": [[30, "command-history"]], "Recalling Previous commands": [[30, "recalling-previous-commands"]], "Finding and using previous commands": [[30, "finding-and-using-previous-commands"]], "Executing previous command": [[30, "executing-previous-command"]], "Bash Command Substitution": [[30, "bash-command-substitution"]], "Bash Case Modification": [[30, "bash-case-modification"]], "Example: Parameter ^": [[30, "example-parameter"]], "Example: Parameter ,": [[30, "example-parameter-1"]], "Example: Parameter ~": [[30, "example-parameter-2"]], "Bash Programming": [[30, "bash-programming"]], "Conditional statements": [[30, "conditional-statements"]], "For Loop": [[30, "for-loop"]], "Bash loop thru array of strings": [[30, "bash-loop-thru-array-of-strings"]], "Value of the variable": [[30, "value-of-the-variable"]], "While loop": [[30, "while-loop"]], "Until loop": [[30, "until-loop"]], "If Statement": [[30, "if-statement"]], "elif statement": [[30, "elif-statement"]], "case statement": [[30, "case-statement"]], "Bash functions": [[30, "bash-functions"]], "Shell script": [[30, "shell-script"]], "shell script arguments": [[30, "shell-script-arguments"]], "Debugging bash scripts": [[30, "debugging-bash-scripts"]], "Return values": [[30, "return-values"]], "Viewing return values": [[30, "viewing-return-values"]], "Script Syntax": [[30, "script-syntax"]], "Shellcheck": [[30, "shellcheck"]], "Creating Temp Directory and files": [[30, "creating-temp-directory-and-files"]], "Discarding output with /dev/null": [[30, "discarding-output-with-dev-null"]], "Random number": [[30, "random-number"]], "Multiple commands on a single line": [[30, "multiple-commands-on-a-single-line"]], "I/O Redirection": [[30, "i-o-redirection"]], "Output redirection": [[30, "output-redirection"]], "Input redirection": [[30, "input-redirection"]], "Equality Tests": [[30, "equality-tests"]], "List of equality tests": [[30, "list-of-equality-tests"]], "Checks equality between numbers": [[30, "checks-equality-between-numbers"]], "Checks equality between strings": [[30, "checks-equality-between-strings"]], "Arithmetic expressions": [[30, "arithmetic-expressions"]], "Using the expr": [[30, "using-the-expr"]], "Using the $((\u2026)) syntax": [[30, "using-the-syntax"]], "Using the built-in shell command let": [[30, "using-the-built-in-shell-command-let"]], "System Administration": [[30, "system-administration"]], "Package Management": [[30, "package-management"]], "Package Types": [[30, "package-types"]], "Updating Linux System using a low-level tool": [[30, "updating-linux-system-using-a-low-level-tool"]], "Using dpkg (Debian/Ubuntu)": [[30, "using-dpkg-debian-ubuntu"]], "Installing/Upgrading/Uninstalling Packages": [[30, "installing-upgrading-uninstalling-packages"]], "Install/upgrade": [[30, "install-upgrade"]], "Remove a package except for its configuration files": [[30, "remove-a-package-except-for-its-configuration-files"]], "Remove all of an installed package, including its configuration files": [[30, "remove-all-of-an-installed-package-including-its-configuration-files"]], "Using RPM (Red hat and Fedora)": [[30, "using-rpm-red-hat-and-fedora"]], "Installing packages": [[30, "installing-packages"]], "Uninstalling packages": [[30, "uninstalling-packages"]], "Updating packages": [[30, "updating-packages"]], "Freshening Packages": [[30, "freshening-packages"]], "Verifying packages": [[30, "verifying-packages"]], "Upgrading the kernel": [[30, "upgrading-the-kernel"]], "Updating Linux System using a high-level tool": [[30, "updating-linux-system-using-a-high-level-tool"]], "Using apt-get": [[30, "using-apt-get"]], "Queries": [[30, "queries"], [30, "queries-1"]], "Installing/Removing/Upgrading Packages": [[30, "installing-removing-upgrading-packages"], [30, "installingremovingupgrading-packages-1"], [30, "installingremovingupgrading-packages-2"]], "apt configuration": [[30, "apt-configuration"]], "Package Priorities": [[30, "package-priorities"]], "Working with different distributions": [[30, "working-with-different-distributions"]], "Tracking automatically installed packages": [[30, "tracking-automatically-installed-packages"]], "Multi-Arch Support": [[30, "multi-arch-support"]], "Validating Package authority": [[30, "validating-package-authority"]], "Deep-dive APT": [[30, "deep-dive-apt"]], "The control file": [[30, "the-control-file"]], "Configuration Scripts": [[30, "configuration-scripts"]], "The pkg database": [[30, "the-pkg-database"]], "Using dnf": [[30, "using-dnf"]], "Query packages": [[30, "query-packages"]], "Using yum": [[30, "using-yum"]], "Using zypper": [[30, "using-zypper"]], "Adding/Deleting/Modifying Users/Groups": [[30, "adding-deleting-modifying-users-groups"]], "Working with several groups": [[30, "working-with-several-groups"]], "Changing Group/Owner/Permission": [[30, "changing-group-owner-permission"]], "File Permissions Modes and chmod": [[30, "file-permissions-modes-and-chmod"]], "setuid and setgid": [[30, "setuid-and-setgid"]], "stickybit": [[30, "stickybit"]], "Mounting/Unmounting": [[30, "mounting-unmounting"]], "Mounting Windows share on Linux": [[30, "mounting-windows-share-on-linux"]], "NFS": [[30, "nfs"]], "Client": [[30, "client"]], "Explore Mounted FileSystem": [[30, "explore-mounted-filesystem"]], "Sysctl - configure kernel parameters": [[30, "sysctl-configure-kernel-parameters"]], "Kernel Modules": [[30, "kernel-modules"]], "Manage Runlevels": [[30, "manage-runlevels"]], "update-rc.d": [[30, "update-rc-d"]], "systemctl": [[30, "systemctl"]], "Printing": [[30, "printing"]], "CUPS": [[30, "cups"]], "Configuration files": [[30, "configuration-files"], [10, "configuration-files"]], "Scheduler": [[30, "scheduler"]], "Log files": [[30, "log-files"]], "Filter, Printer Drivers, Backend": [[30, "filter-printer-drivers-backend"]], "Managing CUPS": [[30, "managing-cups"]], "Adding printers from CUPS Web interface": [[30, "adding-printers-from-cups-web-interface"]], "Printing document": [[30, "printing-document"]], "Printing from GUI": [[30, "printing-from-gui"]], "Printing from Command line": [[30, "printing-from-command-line"]], "Managing Printing jobs": [[30, "managing-printing-jobs"]], "PostScript and PDF": [[30, "postscript-and-pdf"]], "Converting between PostScript and PDF": [[30, "converting-between-postscript-and-pdf"]], "Linux PDF Reader": [[30, "linux-pdf-reader"]], "Manipulating PDF": [[30, "manipulating-pdf"]], "qpdf": [[30, "qpdf"]], "Encrypting PDF files with qpdf": [[30, "encrypting-pdf-files-with-qpdf"]], "pdftk": [[30, "pdftk"]], "Encrypting PDF Files with pdftk": [[30, "encrypting-pdf-files-with-pdftk"]], "Ghost script": [[30, "ghost-script"]], "Other pdf tool": [[30, "other-pdf-tool"]], "pdfinfo": [[30, "pdfinfo"]], "flpsed": [[30, "flpsed"]], "pdfmod": [[30, "pdfmod"]], "Programming": [[30, "programming"]], "GIT": [[30, "git"]], "Command-line substitute for gitk": [[30, "command-line-substitute-for-gitk"]], "List all commits for a specific file": [[30, "list-all-commits-for-a-specific-file"]], "See the changes in a Git commit?": [[30, "see-the-changes-in-a-git-commit"]], "cc - GNU Compile Collection": [[30, "cc-gnu-compile-collection"]], "GDB: GNU debugger": [[30, "gdb-gnu-debugger"]], "Basic Linux Security": [[30, "basic-linux-security"]], "General Tips": [[30, "general-tips"]], "Firewall": [[30, "firewall"]], "Netfilter Behavior": [[30, "netfilter-behavior"]], "Chains": [[30, "chains"]], "Actions": [[30, "actions"]], "iptables syntax": [[30, "iptables-syntax"]], "Rules": [[30, "rules"]], "fwbuilder": [[30, "fwbuilder"]], "Operations requiring root privileges": [[30, "operations-requiring-root-privileges"]], "Operations not requiring root privileges": [[30, "operations-not-requiring-root-privileges"]], "SUID": [[30, "suid"]], "Process Isolation": [[30, "process-isolation"]], "Password storage": [[30, "password-storage"]], "Password Algorithm": [[30, "password-algorithm"]], "Good Password Practices": [[30, "good-password-practices"]], "Requiring Boot Loader Passwords": [[30, "requiring-boot-loader-passwords"]], "Hardware Security": [[30, "hardware-security"]], "Automatic Linux Install": [[30, "automatic-linux-install"]], "Preseeding answers": [[30, "preseeding-answers"]], "With Boot Parameters": [[30, "with-boot-parameters"]], "With a Preseed File in the Initrd": [[30, "with-a-preseed-file-in-the-initrd"]], "With a Preseed File in the Boot Media": [[30, "with-a-preseed-file-in-the-boot-media"]], "With a Preseed File Loaded from the Network": [[30, "with-a-preseed-file-loaded-from-the-network"]], "Delaying the Language, Country, Keyboard Questions": [[30, "delaying-the-language-country-keyboard-questions"]], "Creating a Preseed file": [[30, "creating-a-preseed-file"]], "Debugging failed installations": [[30, "debugging-failed-installations"]], "Monitoring and Logging": [[30, "monitoring-and-logging"]], "Detecting changes": [[30, "detecting-changes"]], "Auditing Packages with dpkg \u2013verify": [[30, "auditing-packages-with-dpkg-verify"]], "Monitoring Files: AIDE": [[30, "monitoring-files-aide"]], "Monitoring /etc directory": [[30, "monitoring-etc-directory"]], "Tips and tricks": [[30, "tips-and-tricks"]], "Apt-get error?": [[30, "apt-get-error"]], "Finding most open ports in nmap scan": [[30, "finding-most-open-ports-in-nmap-scan"]], "Interesting Stuff": [[30, "interesting-stuff"]], "Cloud Infrastructure Technologies": [[31, "cloud-infrastructure-technologies"]], "Initial cloud concepts": [[31, "initial-cloud-concepts"]], "Cloud computing": [[31, "cloud-computing"]], "Virtualization": [[31, "virtualization"]], "Type-1, native or bare-metal hypervisors": [[31, "type-1-native-or-bare-metal-hypervisors"]], "Type-2 or hosted hypervisors": [[31, "type-2-or-hosted-hypervisors"]], "Type-1/2 Hypervisor Example: Linux KVM": [[31, "type-1-2-hypervisor-example-linux-kvm"]], "Manage KVM VMs": [[31, "manage-kvm-vms"]], "Type-2 Hypervisor Example: Virtualbox": [[31, "type-2-hypervisor-example-virtualbox"]], "VM Management": [[31, "vm-management"]], "Vagrant": [[31, "vagrant"]], "Vagrant file": [[31, "vagrant-file"]], "Boxes": [[31, "boxes"]], "Providers": [[31, "providers"]], "Synced Folders": [[31, "synced-folders"]], "Provisioning": [[31, "provisioning"]], "Plugins": [[31, "plugins"]], "Multi-Machine": [[31, "multi-machine"]], "Deployment Models": [[31, "deployment-models"]], "Infrastructure as a Service": [[31, "infrastructure-as-a-service"]], "IaaS providers": [[31, "iaas-providers"]], "Platform as a Service": [[31, "platform-as-a-service"]], "PaaS providers": [[31, "paas-providers"]], "Cloud Foundry (CF)": [[31, "cloud-foundry-cf"]], "OpenShift/OKD": [[31, "openshift-okd"]], "Heroku": [[31, "heroku"]], "Containers": [[31, "containers"]], "Containers vs VM": [[31, "containers-vs-vm"]], "Images and Containers": [[31, "images-and-containers"]], "Container Technology: Building Blocks": [[31, "container-technology-building-blocks"]], "Namespaces": [[31, "namespaces"]], "pid": [[31, "pid"]], "network": [[31, "network"]], "user": [[31, "user"]], "mnt": [[31, "mnt"]], "ipc": [[31, "ipc"]], "uts": [[31, "uts"]], "cgroups": [[31, "cgroups"]], "Union filesystem": [[31, "union-filesystem"]], "Container Runtimes": [[31, "container-runtimes"]], "runC": [[31, "runc"]], "containerd": [[31, "containerd"]], "CRI-O": [[31, "cri-o"]], "Docker": [[31, "docker"], [31, "docker-1"]], "Project Moby": [[31, "project-moby"]], "Containers: Micro OSes for Containers": [[31, "containers-micro-oses-for-containers"]], "Alpine Linux": [[31, "alpine-linux"]], "Fedora CoreOS": [[31, "fedora-coreos"]], "Ubuntu Core": [[31, "ubuntu-core"]], "Photon OS": [[31, "photon-os"]], "Containers: Container Orchestration": [[31, "containers-container-orchestration"]], "Docker Swarm": [[31, "docker-swarm"]], "Kubernetes": [[31, "kubernetes"]], "Apache Mesos/DC-OS/Marathon": [[31, "apache-mesos-dc-os-marathon"]], "Apache Mesos": [[31, "apache-mesos"]], "DC/OS": [[31, "dc-os"]], "Marathon": [[31, "marathon"]], "Hashicorp Nomad": [[31, "hashicorp-nomad"]], "Kubernetes Hosted Solutions": [[31, "kubernetes-hosted-solutions"]], "Cloud Container Orchestration Services": [[31, "cloud-container-orchestration-services"]], "Amazon Elastic Container Service": [[31, "amazon-elastic-container-service"]], "Azure Container Instances": [[31, "azure-container-instances"]], "Unikernels": [[31, "unikernels"]], "Microservices": [[31, "microservices"]], "Benefits": [[31, "benefits"]], "Disadvantages": [[31, "disadvantages"], [10, "disadvantages"]], "Software-Defined Networking": [[31, "software-defined-networking"]], "Networking for containers": [[31, "networking-for-containers"]], "Single Host": [[31, "single-host"]], "Multi Host": [[31, "multi-host"]], "Container Networking Standards": [[31, "container-networking-standards"]], "Service Discovery": [[31, "service-discovery"]], "Docker Networking": [[31, "docker-networking"]], "Single-Host Networking": [[31, "single-host-networking"]], "Bridge Network": [[31, "bridge-network"]], "Creating a network bridge": [[31, "creating-a-network-bridge"]], "Null Driver": [[31, "null-driver"]], "Host Driver": [[31, "host-driver"]], "Multi-Host Networking": [[31, "multi-host-networking"]], "Docker Plugins": [[31, "docker-plugins"]], "Kubernetes Networking": [[31, "kubernetes-networking"]], "Cloud Foundry: Container to Container Networking": [[31, "cloud-foundry-container-to-container-networking"]], "Software-Defined Storage and Storage Management": [[31, "software-defined-storage-and-storage-management"]], "Software-Defined Storage": [[31, "software-defined-storage"]], "Ceph": [[31, "ceph"]], "GlusterFS": [[31, "glusterfs"]], "Storage Management for Containers": [[31, "storage-management-for-containers"]], "Docker Storage Backends": [[31, "docker-storage-backends"]], "Managing Data in Docker": [[31, "managing-data-in-docker"]], "Creating a container with volumes": [[31, "creating-a-container-with-volumes"]], "Creating a named volume": [[31, "creating-a-named-volume"]], "Mounting a host directory inside the container": [[31, "mounting-a-host-directory-inside-the-container"]], "Volume plugins for docker": [[31, "volume-plugins-for-docker"]], "Volume Management in Kubernetes": [[31, "volume-management-in-kubernetes"]], "Volume types": [[31, "volume-types"]], "Persistant Volumes": [[31, "persistant-volumes"]], "Persistent Volumes Claim": [[31, "persistent-volumes-claim"]], "Container Storage Interface (CSI)": [[31, "container-storage-interface-csi"]], "Cloud Foundry Volume Service": [[31, "cloud-foundry-volume-service"]], "DevOps and CI/CD": [[31, "devops-and-ci-cd"]], "Why CI": [[31, "why-ci"]], "CI/CD Tools": [[31, "ci-cd-tools"]], "Travis CI": [[31, "travis-ci"]], "Shippable": [[31, "shippable"]], "Consource": [[31, "consource"]], "CI/CD Kubernetes Tools": [[31, "ci-cd-kubernetes-tools"]], "Tools for Cloud Infrastructure": [[31, "tools-for-cloud-infrastructure"]], "Configuration Management": [[31, "configuration-management"]], "Ansible": [[31, "ansible"]], "Puppet Agent": [[31, "puppet-agent"]], "Puppet Master": [[31, "puppet-master"]], "Catalog File": [[31, "catalog-file"]], "Puppet Tools": [[31, "puppet-tools"]], "Chef": [[31, "chef"]], "Salt Stack": [[31, "salt-stack"]], "Build and Release": [[31, "build-and-release"]], "Terraform": [[31, "terraform"]], "Terraform Providers": [[31, "terraform-providers"]], "CloudFormation": [[31, "cloudformation"]], "BOSH": [[31, "bosh"]], "Key-Value Pair Store": [[31, "key-value-pair-store"]], "etcd": [[31, "etcd"]], "etcd use-cases": [[31, "etcd-use-cases"]], "Consul": [[31, "consul"], [31, "id3"]], "Consul use-cases": [[31, "consul-use-cases"]], "ZooKeeper": [[31, "zookeeper"]], "Zookeeper use-cases": [[31, "zookeeper-use-cases"]], "Container Image Building": [[31, "container-image-building"]], "Multi-stage Dockerfile": [[31, "multi-stage-dockerfile"]], "Packer": [[31, "packer"]], "Debugging, Logging and Monitoring for Containerized Applications": [[31, "debugging-logging-and-monitoring-for-containerized-applications"]], "Docker - Debugging": [[31, "docker-debugging"]], "Sysdig": [[31, "sysdig"]], "cAdvisor": [[31, "cadvisor"]], "Elasticsearch": [[31, "elasticsearch"]], "Fluentd": [[31, "fluentd"]], "Others - Commercial": [[31, "others-commercial"]], "Service Mesh": [[31, "service-mesh"]], "Features and Implementation of Service Mesh": [[31, "features-and-implementation-of-service-mesh"]], "Data Plane and Control Plane": [[31, "data-plane-and-control-plane"]], "Envoy": [[31, "envoy"]], "Istio": [[31, "istio"]], "Istio Architecture": [[31, "istio-architecture"]], "Istio Components": [[31, "istio-components"]], "Key features and benefits": [[31, "key-features-and-benefits"]], "Kuma": [[31, "kuma"]], "Kuma Architecture": [[31, "kuma-architecture"]], "Kuma Modes": [[31, "kuma-modes"]], "Linkerd": [[31, "linkerd"]], "Mesh": [[31, "mesh"]], "Mesh Architecture": [[31, "mesh-architecture"]], "Tanzu Service Mesh - Commercial": [[31, "tanzu-service-mesh-commercial"]], "Internet of Things": [[31, "internet-of-things"]], "Serverless Computing": [[31, "serverless-computing"], [31, "serverless-computing-1"]], "AWS Lambda": [[31, "aws-lambda"]], "Google Cloud Functions": [[31, "google-cloud-functions"]], "Azure Functions": [[31, "azure-functions"]], "Projects That Use Containers to Execute Serverless Applications": [[31, "projects-that-use-containers-to-execute-serverless-applications"]], "Distributed Tracing": [[31, "distributed-tracing"]], "Hosting Providers: GitHub and More": [[31, "hosting-providers-github-and-more"]], "GitHub Repositories - Types": [[31, "github-repositories-types"]], "Advanced Git Interfaces: Gerrit": [[31, "advanced-git-interfaces-gerrit"]], "Secure Software Development Fundamentals": [[32, "secure-software-development-fundamentals"]], "Privacy": [[32, "privacy"]], "GDPR": [[32, "gdpr"]], "Telemetry": [[32, "telemetry"]], "Risk Management": [[32, "risk-management"]], "Development Processes/Defense-in-Breadth: Individual Software Development & Deployment Processes": [[32, "development-processes-defense-in-breadth-individual-software-development-deployment-processes"]], "Mistakes": [[32, "mistakes"]], "Recommendation": [[32, "recommendation"]], "Protect, Detect, Respond": [[32, "protect-detect-respond"]], "Reporting and Handling Vulnerabilities - A Brief Summary": [[32, "reporting-and-handling-vulnerabilities-a-brief-summary"]], "Common Vulnerabilities and Exposures (CVEs)": [[32, "common-vulnerabilities-and-exposures-cves"]], "Top kind of vulns": [[32, "top-kind-of-vulns"]], "Secure Design Principles": [[32, "secure-design-principles"]], "What Are Security Design Principles?": [[32, "what-are-security-design-principles"]], "Reused software": [[32, "reused-software"]], "Downloading and Installing Reusable Software": [[32, "downloading-and-installing-reusable-software"]], "Secure software": [[32, "secure-software"]], "Good material": [[32, "good-material"]], "Verification": [[32, "verification"]], "Generic Bug-Finding Tools: Quality Tools, Compiler Warnings, and Type-Checking Tools": [[32, "generic-bug-finding-tools-quality-tools-compiler-warnings-and-type-checking-tools"]], "Static analysis": [[32, "static-analysis"]], "Software Composition Analysis (SCA)/Dependency Analysis": [[32, "software-composition-analysis-sca-dependency-analysis"]], "Dynamic Analysis": [[32, "dynamic-analysis"]], "Traditional testing": [[32, "traditional-testing"]], "Test coverage": [[32, "test-coverage"]], "Fuzz testing": [[32, "fuzz-testing"]], "Dynamic Application Security Testing": [[32, "dynamic-application-security-testing"]], "Penetration Testing": [[32, "penetration-testing"]], "Security Audit": [[32, "security-audit"]], "Threat Modelling": [[32, "threat-modelling"]], "Microsoft Threat Modelling": [[32, "microsoft-threat-modelling"]], "S2: Create an application diagram": [[32, "s2-create-an-application-diagram"]], "S3: Identify threats": [[32, "s3-identify-threats"]], "Symmetric/Shared Key Encryption Algorithms": [[32, "symmetric-shared-key-encryption-algorithms"]], "Cryptographic Hashes (Digital Fingerprints)": [[32, "cryptographic-hashes-digital-fingerprints"]], "Public-Key (Asymmetric) Cryptography": [[32, "public-key-asymmetric-cryptography"]], "Encryption": [[32, "encryption"]], "Digital signatures (authentication)": [[32, "digital-signatures-authentication"]], "Cryptographically Secure Pseudo-Random Number Generator (CSPRNG)": [[32, "cryptographically-secure-pseudo-random-number-generator-csprng"]], "Storing Passwords": [[32, "storing-passwords"]], "Transport Layer Security": [[32, "transport-layer-security"]], "Ciphersuites": [[32, "ciphersuites"]], "Constant Time Algorithms": [[32, "constant-time-algorithms"]], "Minimizing the Time Keys/Decrypted Data Exists": [[32, "minimizing-the-time-keys-decrypted-data-exists"]], "Incident Response and Vulnerability Disclosure": [[32, "incident-response-and-vulnerability-disclosure"]], "Monitor for Vulnerabilities, Including Vulnerable Dependencies": [[32, "monitor-for-vulnerabilities-including-vulnerable-dependencies"]], "Bug Bounty Program": [[32, "bug-bounty-program"]], "Limiting Disclosure and the FIRST Traffic Light Protocol (TLP)": [[32, "limiting-disclosure-and-the-first-traffic-light-protocol-tlp"]], "Get a CVE and Compute CVSS": [[32, "get-a-cve-and-compute-cvss"]], "Release the Update and Tell the World": [[32, "release-the-update-and-tell-the-world"]], "Sending Vulnerability Reports to Others": [[32, "sending-vulnerability-reports-to-others"]], "Reporting Models": [[32, "reporting-models"]], "Assurance": [[32, "assurance"]], "Open Source Concepts": [[33, "open-source-concepts"]], "Proprietary Software": [[33, "proprietary-software"]], "Open Source Software": [[33, "open-source-software"]], "Open Source Governance Models": [[33, "open-source-governance-models"]], "Company Led (mostly closed source)": [[33, "company-led-mostly-closed-source"]], "Benevolent Dictatorship (strong leadership)": [[33, "benevolent-dictatorship-strong-leadership"]], "Governing Board (tighter control by smaller groups)": [[33, "governing-board-tighter-control-by-smaller-groups"]], "Reasons for Using Open-Source Software": [[33, "reasons-for-using-open-source-software"]], "Collaborative development": [[33, "collaborative-development"]], "Security and Quality of Source Code": [[33, "security-and-quality-of-source-code"]], "OSS Advantage for different stakeholders": [[33, "oss-advantage-for-different-stakeholders"]], "Individual": [[33, "individual"]], "Business": [[33, "business"]], "Education": [[33, "education"]], "OSS Projects Examples": [[33, "oss-projects-examples"]], "Developing OSS Strategy": [[33, "developing-oss-strategy"]], "Strategic Considerations": [[33, "strategic-considerations"]], "OSS Licensing and Legal Issues": [[33, "oss-licensing-and-legal-issues"]], "Software Patents": [[33, "software-patents"]], "Choosing a license": [[33, "choosing-a-license"]], "TODO (talk openly, develop openly) Group": [[33, "todo-talk-openly-develop-openly-group"]], "OpenChain": [[33, "openchain"]], "Working in OSS Projects": [[33, "working-in-oss-projects"]], "Contributing to OSS Projects": [[33, "contributing-to-oss-projects"]], "Open Source Licensing Basics for software developers": [[33, "open-source-licensing-basics-for-software-developers"]], "What Are Licenses?": [[33, "what-are-licenses"]], "License Types": [[33, "license-types"]], "Permissive or Copyleft License": [[33, "permissive-or-copyleft-license"]], "Patent": [[33, "patent"]], "Properties to Consider": [[33, "properties-to-consider"]], "Help Available": [[33, "help-available"]], "Additional Resources": [[33, "additional-resources"]], "What Does a Reference to a License Look Like in a File?": [[33, "what-does-a-reference-to-a-license-look-like-in-a-file"]], "Copyright": [[33, "copyright"]], "What Is a Copyright?": [[33, "what-is-a-copyright"]], "Who Is a Copyright Holder?": [[33, "who-is-a-copyright-holder"]], "REUSE Software Guidelines for Copyright Notices": [[33, "reuse-software-guidelines-for-copyright-notices"]], "File Notice": [[33, "file-notice"]], "Contributing to Projects": [[33, "contributing-to-projects"]], "Contribution Mechanisms": [[33, "contribution-mechanisms"]], "Contributor License Agreements (CLAs)": [[33, "contributor-license-agreements-clas"]], "Copyright Assignment": [[33, "copyright-assignment"]], "Developer\u2019s Certificate of Origin": [[33, "developer-s-certificate-of-origin"]], "Things to Remember": [[33, "things-to-remember"]], "Compliance Projects": [[33, "compliance-projects"]], "FOSSology": [[33, "fossology"]], "Software Package Data Exchange (SPDX)": [[33, "software-package-data-exchange-spdx"]], "SPDX File": [[33, "spdx-file"]], "Community Health Analytics Open Source Software (CHAOSS)": [[33, "community-health-analytics-open-source-software-chaoss"]], "Automated Compliance Tooling": [[33, "automated-compliance-tooling"]], "Introduction to Leadership vs Control and Why Projects Fail": [[33, "introduction-to-leadership-vs-control-and-why-projects-fail"]], "Leading vs Controlling a Project": [[33, "leading-vs-controlling-a-project"]], "Why Do Many OSS Projects Fail?": [[33, "why-do-many-oss-projects-fail"]], "Introduction to Respecting and Encouraging Diversity in OSS": [[33, "introduction-to-respecting-and-encouraging-diversity-in-oss"]], "Initial Recon": [[34, "initial-recon"]], "Finding the IP address": [[34, "finding-the-ip-address"], [39, "finding-the-ip-address"]], "Netdiscover": [[34, "netdiscover"], [39, "netdiscover"]], "Unicornscan": [[34, "unicornscan"], [39, "unicornscan"]], "Netcat": [[34, "netcat"], [39, "netcat"]], "TCP Scan": [[34, "tcp-scan"], [39, "tcp-scan"]], "UDP Scan": [[34, "udp-scan"], [39, "udp-scan"]], "Amap - Application mapper": [[34, "amap-application-mapper"], [39, "amap-application-mapper"]], "Rabbit Holes": [[34, "rabbit-holes"], [39, "rabbit-holes"]], "Listen to the interface": [[34, "listen-to-the-interface"], [39, "listen-to-the-interface"]], "DNS Server": [[34, "dns-server"], [39, "dns-server"]], "SSL Certificate": [[34, "ssl-certificate"], [39, "ssl-certificate"]], "From Nothing to a Unprivileged Shell": [[35, "from-nothing-to-a-unprivileged-shell"], [39, "from-nothing-to-a-unprivileged-shell"]], "Initial Enumeration": [[35, "initial-enumeration"]], "searchsploit": [[35, "searchsploit"], [39, "searchsploit"]], "SecLists.Org Security Mailing List Archive": [[35, "seclists-org-security-mailing-list-archive"], [39, "seclists-org-security-mailing-list-archive"]], "Google-Vulns": [[35, "google-vulns"], [39, "google-vulns"]], "Webservices": [[35, "webservices"], [39, "webservices"]], "whatweb": [[35, "whatweb"], [39, "whatweb"]], "nikto": [[35, "nikto"], [39, "nikto"]], "dirb, wfuzz, dirbuster": [[35, "dirb-wfuzz-dirbuster"], [39, "dirb-wfuzz-dirbuster"]], "BurpSuite Spider": [[35, "burpsuite-spider"], [39, "burpsuite-spider"]], "Parameter Fuzz?": [[35, "parameter-fuzz"], [39, "parameter-fuzz"]], "PUT Method": [[35, "put-method"], [39, "put-method"]], "Wordpress": [[35, "wordpress"], [39, "wordpress"]], "Names? Possible Usernames & Passwords?": [[35, "names-possible-usernames-passwords"], [39, "names-possible-usernames-passwords"]], "Brute forcing: hydra": [[35, "brute-forcing-hydra"], [39, "brute-forcing-hydra"]], "Help for module http-post-form": [[35, "help-for-module-http-post-form"]], "Reverse Shells": [[35, "reverse-shells"], [39, "reverse-shells"]], "netcat (nc)": [[35, "netcat-nc"], [39, "netcat-nc"]], "TCP Mode": [[35, "tcp-mode"]], "with the -e option": [[35, "with-the-e-option"]], "without -e option": [[35, "without-e-option"]], "UDP Mode": [[35, "udp-mode"]], "PHP Web Shell": [[35, "php-web-shell"]], "PHP Meterpreter": [[35, "php-meterpreter"]], "PHP Reverse Shell": [[35, "php-reverse-shell"]], "Weevely": [[35, "weevely"], [39, "weevely"]], "Ruby": [[35, "ruby"], [35, "id11"], [39, "ruby"], [39, "id17"]], "Perl": [[35, "perl"], [35, "id10"], [39, "perl"], [39, "id16"]], "TCP": [[35, "tcp"]], "UDP": [[35, "udp"]], "Java": [[35, "java"], [39, "java"]], "JSP": [[35, "jsp"], [39, "jsp"]], "Bash /dev/tcp": [[35, "bash-dev-tcp"], [39, "bash-dev-tcp"]], "Method 3": [[35, "method-3"]], "Telnet Reverse Shell": [[35, "telnet-reverse-shell"], [39, "telnet-reverse-shell"]], "XTerm": [[35, "xterm"], [39, "xterm"]], "Lynx": [[35, "lynx"], [39, "lynx"]], "MYSQL": [[35, "mysql"], [39, "mysql"]], "Reverse Shell from Windows": [[35, "reverse-shell-from-windows"], [39, "reverse-shell-from-windows"]], "MSF Meterpreter ELF": [[35, "msf-meterpreter-elf"], [39, "msf-meterpreter-elf"]], "Metasploit MSFVenom": [[35, "metasploit-msfvenom"], [39, "metasploit-msfvenom"]], "ICMP Shell": [[35, "icmp-shell"], [39, "icmp-shell"]], "SSH Tunneling": [[35, "ssh-tunneling"], [39, "ssh-tunneling"]], "Local Port Forwarding": [[35, "local-port-forwarding"], [39, "local-port-forwarding"]], "Remote Port Forwarding": [[35, "remote-port-forwarding"], [39, "remote-port-forwarding"]], "SSH as SOCKS Proxy": [[35, "ssh-as-socks-proxy"], [39, "ssh-as-socks-proxy"]], "VPN-like tunnelling?": [[35, "vpn-like-tunnelling"], [39, "vpn-like-tunnelling"]], "SCP": [[35, "scp"], [39, "scp"]], "Plink": [[35, "plink"], [39, "plink"]], "OpenVPN Configuration File Reverse Shell?": [[35, "openvpn-configuration-file-reverse-shell"], [39, "openvpn-configuration-file-reverse-shell"]], "Spawning a TTY Shell": [[35, "spawning-a-tty-shell"], [39, "spawning-a-tty-shell"]], "sh": [[35, "sh"], [39, "sh"]], "Lua": [[35, "lua"], [39, "lua"]], "IRB": [[35, "irb"], [39, "irb"]], "VI": [[35, "vi"], [39, "vi"]], "Expect": [[35, "expect"], [39, "expect"]], "Sneaky Stealthy SU in (Web) Shells": [[35, "sneaky-stealthy-su-in-web-shells"], [39, "sneaky-stealthy-su-in-web-shells"]], "Spawning a Fully Interactive TTYs Shell": [[35, "spawning-a-fully-interactive-ttys-shell"], [39, "spawning-a-fully-interactive-ttys-shell"]], "Socat": [[35, "socat"], [39, "socat"]], "stty": [[35, "stty"], [39, "stty"]], "ssh-key": [[35, "ssh-key"], [39, "ssh-key"]], "Restricted Shell": [[35, "restricted-shell"], [39, "restricted-shell"]], "Getting out of restricted shell": [[35, "getting-out-of-restricted-shell"]], "Reconnaissance": [[35, "reconnaissance"], [39, "reconnaissance"]], "Quick Wins": [[35, "quick-wins"], [39, "quick-wins"]], "Taking help of binaries": [[35, "taking-help-of-binaries"], [39, "taking-help-of-binaries"]], "SSHing from outside": [[35, "sshing-from-outside"], [39, "sshing-from-outside"]], "Getting out of rvim": [[35, "getting-out-of-rvim"], [39, "getting-out-of-rvim"]], "Gather information from files": [[35, "gather-information-from-files"], [39, "gather-information-from-files"]], "Operating System": [[35, "operating-system"], [39, "operating-system"]], "/Proc Variables": [[35, "proc-variables"], [39, "proc-variables"]], "Configuration Files": [[35, "configuration-files"], [39, "configuration-files"]], "User History": [[35, "user-history"], [39, "user-history"]], "Private SSH Keys / SSH Configuration": [[35, "private-ssh-keys-ssh-configuration"], [39, "private-ssh-keys-ssh-configuration"]], "Logs Files": [[35, "logs-files"], [39, "logs-files"]], "Programs": [[36, "programs"], [10, "programs"]], "Unprivileged Shell to Privileged Shell": [[36, "unprivileged-shell-to-privileged-shell"], [39, "unprivileged-shell-to-privileged-shell"]], "SystemInfo": [[36, "systeminfo"], [39, "systeminfo"]], "Metasploit Local Exploit Suggestor": [[36, "metasploit-local-exploit-suggestor"], [39, "metasploit-local-exploit-suggestor"]], "Sherlock and PowerUp Powershell Script": [[36, "sherlock-and-powerup-powershell-script"], [39, "sherlock-and-powerup-powershell-script"]], "Windows Exploit Suggestor": [[36, "windows-exploit-suggestor"], [39, "windows-exploit-suggestor"]], "Windows Kernel Exploits": [[36, "windows-kernel-exploits"], [39, "windows-kernel-exploits"]], "Abusing Token Privileges": [[36, "abusing-token-privileges"], [39, "abusing-token-privileges"]], "Credential Manager": [[36, "credential-manager"], [39, "credential-manager"]], "Other Enumeration": [[36, "other-enumeration"], [39, "other-enumeration"]], "Connected Drives": [[36, "connected-drives"]], "Users": [[36, "users"]], "Processes/ Services": [[36, "processes-services"]], "Startup?": [[36, "startup"]], "Firewall Configuration": [[36, "firewall-configuration"]], "SNMP Configuration": [[36, "snmp-configuration"]], "Sensitive Files": [[36, "sensitive-files"]], "Passwords in the registry": [[36, "passwords-in-the-registry"]], "Interesting files to look at? Possibly inside User directories (Desktop, Documents, etc)?": [[36, "interesting-files-to-look-at-possibly-inside-user-directories-desktop-documents-etc"]], "Files containing password inside them?": [[36, "files-containing-password-inside-them"]], "Linux Privilege Escalation": [[36, "linux-privilege-escalation"], [39, "linux-privilege-escalation"]], "Privilege escalation from g0tm1lk blog": [[36, "privilege-escalation-from-g0tm1lk-blog"], [39, "privilege-escalation-from-g0tm1lk-blog"]], "What \u201cAdvanced Linux File Permissions\u201d are used?": [[36, "what-advanced-linux-file-permissions-are-used"], [39, "what-advanced-linux-file-permissions-are-used"]], "Where can written to and executed from?": [[36, "where-can-written-to-and-executed-from"], [39, "where-can-written-to-and-executed-from"]], "Any \u201cproblem\u201d files?": [[36, "any-problem-files"], [39, "any-problem-files"]], "Find files/ folder owned by the user": [[36, "find-files-folder-owned-by-the-user"], [39, "find-files-folder-owned-by-the-user"]], "Other Linux Privilege Escalation": [[36, "other-linux-privilege-escalation"], [39, "other-linux-privilege-escalation"]], "Execution of binary from Relative location than Absolute": [[36, "execution-of-binary-from-relative-location-than-absolute"], [39, "execution-of-binary-from-relative-location-than-absolute"]], "Environment Variable Abuse": [[36, "environment-variable-abuse"], [39, "environment-variable-abuse"]], "World-Writable Folder with a Script executing any file in that folder using crontab": [[36, "world-writable-folder-with-a-script-executing-any-file-in-that-folder-using-crontab"], [39, "world-writable-folder-with-a-script-executing-any-file-in-that-folder-using-crontab"]], "Symlink Creation": [[36, "symlink-creation"], [39, "symlink-creation"]], "Directory Symlink": [[36, "directory-symlink"], [39, "directory-symlink"]], "Time of check to time of use": [[36, "time-of-check-to-time-of-use"], [39, "time-of-check-to-time-of-use"]], "Learning": [[36, "learning"]], "Writable /etc/passwd or account credentials came from a legacy unix system": [[36, "writable-etc-passwd-or-account-credentials-came-from-a-legacy-unix-system"], [39, "writable-etc-passwd-or-account-credentials-came-from-a-legacy-unix-system"]], "Elevating privilege from a suid binary": [[36, "elevating-privilege-from-a-suid-binary"], [39, "elevating-privilege-from-a-suid-binary"]], "Executing Python script with sudo": [[36, "executing-python-script-with-sudo"], [39, "executing-python-script-with-sudo"]], "MySQL Privileged Escalation": [[36, "mysql-privileged-escalation"], [39, "mysql-privileged-escalation"]], "More Information": [[36, "more-information"], [39, "more-information"]], "Cron.d": [[36, "cron-d"], [39, "cron-d"]], "pspy": [[36, "pspy"], [39, "pspy"]], "Unattended APT - Upgrade": [[36, "unattended-apt-upgrade"], [39, "unattended-apt-upgrade"]], "DPKG": [[36, "dpkg"], [39, "dpkg"]], "APT": [[36, "apt"], [39, "apt"]], "SUDO -l Permissions": [[36, "sudo-l-permissions"], [39, "sudo-l-permissions"]], "vi": [[36, "vi"]], "nmap suid": [[36, "nmap-suid"], [39, "nmap-suid"]], "tee suid": [[36, "tee-suid"], [39, "tee-suid"]], "tcpdump": [[36, "tcpdump"], [39, "tcpdump"]], "Package Installation": [[36, "package-installation"], [39, "package-installation"]], "pip": [[36, "pip"]], "npm": [[36, "npm"]], "Unix Wildcards": [[36, "unix-wildcards"], [39, "unix-wildcards"]], "Chown file reference trick (file owner hijacking)": [[36, "chown-file-reference-trick-file-owner-hijacking"], [39, "chown-file-reference-trick-file-owner-hijacking"]], "Chmod file reference trick": [[36, "chmod-file-reference-trick"], [39, "chmod-file-reference-trick"]], "Tar arbitrary command execution": [[36, "tar-arbitrary-command-execution"], [39, "tar-arbitrary-command-execution"]], "Rsync arbitrary command execution": [[36, "rsync-arbitrary-command-execution"], [39, "rsync-arbitrary-command-execution"]], "Get-ChildItem Mode Values": [[37, "get-childitem-mode-values"], [39, "get-childitem-mode-values"]], "Zip or unzip using ONLY Windows\u2019 built-in capabilities?": [[37, "zip-or-unzip-using-only-windows-built-in-capabilities"], [39, "zip-or-unzip-using-only-windows-built-in-capabilities"]], "Alternate Data Stream": [[37, "alternate-data-stream"], [39, "alternate-data-stream"]], "Redirecting Standard Out and Standard Error from PowerShell Start-Process": [[37, "redirecting-standard-out-and-standard-error-from-powershell-start-process"], [39, "redirecting-standard-out-and-standard-error-from-powershell-start-process"]], "NTDS.dit and SYSTEM hive": [[37, "ntds-dit-and-system-hive"], [39, "ntds-dit-and-system-hive"]], "Recovering password from System.Security.SecureString": [[37, "recovering-password-from-system-security-securestring"], [39, "recovering-password-from-system-security-securestring"]], "Copy To or From a PowerShell Session": [[37, "copy-to-or-from-a-powershell-session"], [39, "copy-to-or-from-a-powershell-session"]], "Get-Hash": [[37, "get-hash"], [39, "get-hash"]], "Active Directory Enumeration and Remote Code Execution": [[37, "active-directory-enumeration-and-remote-code-execution"], [39, "active-directory-enumeration-and-remote-code-execution"]], "Wget": [[37, "wget"], [39, "id26"]], "FTP via Wget": [[37, "ftp-via-wget"], [39, "ftp-via-wget"]], "wgetrc Commands": [[37, "wgetrc-commands"], [39, "wgetrc-commands"]], "Tricks": [[37, "tricks"], [39, "tricks"]], "SSH": [[37, "ssh"], [39, "ssh"]], "ssh_config": [[37, "ssh-config"], [39, "ssh-config"]], "First things": [[37, "first-things"], [39, "first-things"]], "CSC Austria: CTF Tips and Tricks": [[37, "csc-austria-ctf-tips-and-tricks"], [39, "csc-austria-ctf-tips-and-tricks"]], "htaccess - UserAgent": [[37, "htaccess-useragent"], [39, "htaccess-useragent"]], "CGI-BIN Shellshock": [[37, "cgi-bin-shellshock"], [39, "cgi-bin-shellshock"]], "XSS/ HTML Injection": [[37, "xss-html-injection"], [39, "xss-html-injection"]], "HTTP Referer": [[37, "http-referer"], [39, "http-referer"]], "Data-URI": [[37, "data-uri"], [39, "data-uri"]], "Login-Pages": [[37, "login-pages"], [39, "login-pages"]], "Delete Tags": [[37, "delete-tags"], [39, "delete-tags"]], "HTTP 404 Custom Page": [[37, "http-404-custom-page"], [39, "http-404-custom-page"]], "Password Protected File": [[37, "password-protected-file"], [39, "password-protected-file"]], "ZIP File": [[37, "zip-file"], [39, "zip-file"]], "rar2john": [[37, "rar2john"], [39, "rar2john"]], "keepass2john": [[37, "keepass2john"], [39, "keepass2john"]], "Encrypted Files": [[37, "encrypted-files"], [39, "encrypted-files"]], "Symmetric Key": [[37, "symmetric-key"], [39, "symmetric-key"]], "RSA Public-Private Key encryption": [[37, "rsa-public-private-key-encryption"], [39, "rsa-public-private-key-encryption"]], "RSA given q, p and e?": [[37, "rsa-given-q-p-and-e"], [39, "rsa-given-q-p-and-e"]], "SECCURE Elliptic Curve Crypto Utility for Reliable Encryption": [[37, "seccure-elliptic-curve-crypto-utility-for-reliable-encryption"], [39, "seccure-elliptic-curve-crypto-utility-for-reliable-encryption"]], "GPG": [[37, "gpg"], [39, "gpg"]], "Network Information": [[37, "network-information"], [39, "network-information"]], "hostname": [[37, "hostname"], [39, "hostname"]], "ss": [[37, "ss"], [39, "ss"]], "User Home Directory": [[37, "user-home-directory"], [39, "user-home-directory"]], "Firefox/ Thunderbird/ Seabird": [[37, "firefox-thunderbird-seabird"], [39, "firefox-thunderbird-seabird"]], "Sudoers file": [[37, "sudoers-file"], [39, "sudoers-file"]], "secure_path": [[37, "secure-path"], [39, "secure-path"]], "env_reset": [[37, "env-reset"], [39, "env-reset"]], "mail_badpass": [[37, "mail-badpass"], [39, "mail-badpass"]], "run-parts": [[37, "run-parts"], [39, "run-parts"]], "Java keystore file": [[37, "java-keystore-file"], [39, "java-keystore-file"]], "Cracking MD5 Hashes": [[37, "cracking-md5-hashes"], [39, "cracking-md5-hashes"]], "Steghide": [[37, "steghide"], [39, "steghide"]], "Git client Privilege Escalation": [[37, "git-client-privilege-escalation"], [39, "git-client-privilege-escalation"]], "GIT_SSH": [[37, "git-ssh"], [39, "git-ssh"]], "GIT_TEMPLATE_DIR": [[37, "git-template-dir"], [39, "git-template-dir"]], "Metasploit shell upgrade": [[37, "metasploit-shell-upgrade"], [39, "metasploit-shell-upgrade"]], "Truecrypt Files": [[37, "truecrypt-files"], [39, "truecrypt-files"]], "Grep in input box?": [[37, "grep-in-input-box"], [39, "grep-in-input-box"]], "Wordpot": [[37, "wordpot"], [39, "wordpot"]], "FakeSMTP": [[37, "fakesmtp"], [39, "fakesmtp"]], "Rubberglue": [[37, "rubberglue"], [39, "rubberglue"]], "Knockd": [[37, "knockd"], [39, "knockd"]], "DCEPT": [[37, "dcept"], [39, "dcept"]], "A1: Local File Inclusion": [[38, "a1-local-file-inclusion"]], "Filtering in LFI": [[38, "filtering-in-lfi"], [39, "filtering-in-lfi"]], "LFI to Remote Code Execution": [[38, "lfi-to-remote-code-execution"], [39, "lfi-to-remote-code-execution"]], "File upload forms/ functions": [[38, "file-upload-forms-functions"], [39, "file-upload-forms-functions"]], "PHP wrapper expect://command": [[38, "php-wrapper-expect-command"], [39, "php-wrapper-expect-command"]], "PHP Wrapper zip": [[38, "php-wrapper-zip"], [39, "php-wrapper-zip"]], "PHP Wrapper phar": [[38, "php-wrapper-phar"], [39, "php-wrapper-phar"]], "PHP wrapper php://file": [[38, "php-wrapper-php-file"], [39, "php-wrapper-php-file"]], "PHP wrapper php://filter": [[38, "php-wrapper-php-filter"], [39, "php-wrapper-php-filter"]], "PHP input:// stream": [[38, "php-input-stream"], [39, "php-input-stream"]], "data://text/plain;base64,command": [[38, "data-text-plain-base64-command"], [39, "data-text-plain-base64-command"]], "/proc/self/environ": [[38, "proc-self-environ"], [39, "proc-self-environ"]], "/proc/self/fd": [[38, "proc-self-fd"], [39, "proc-self-fd"]], "Control over PHP Session Values": [[38, "control-over-php-session-values"], [39, "control-over-php-session-values"]], "Email Server": [[38, "email-server"], [39, "email-server"]], "A2: File Upload": [[38, "a2-file-upload"]], "Simple File Upload": [[38, "simple-file-upload"], [39, "simple-file-upload"]], "Simple File Upload - With verifying image type": [[38, "simple-file-upload-with-verifying-image-type"], [39, "simple-file-upload-with-verifying-image-type"]], "Modifying File Upload Page": [[38, "modifying-file-upload-page"], [39, "modifying-file-upload-page"]], "IIS - Web.config Upload": [[38, "iis-web-config-upload"], [39, "iis-web-config-upload"]], "A3: Transferring Files from Linux to Windows (post-exploitation)": [[38, "a3-transferring-files-from-linux-to-windows-post-exploitation"]], "SMB": [[38, "smb"], [39, "smb"]], "SMB Server - Attacker": [[38, "smb-server-attacker"], [39, "smb-server-attacker"]], "Accessing the share - Linux": [[38, "accessing-the-share-linux"], [39, "accessing-the-share-linux"]], "Accessing the share - Windows": [[38, "accessing-the-share-windows"], [39, "accessing-the-share-windows"]], "Copying the Files - Windows": [[38, "copying-the-files-windows"], [39, "copying-the-files-windows"]], "Setting up the Server": [[38, "setting-up-the-server"], [38, "id2"], [38, "id3"], [39, "setting-up-the-server"], [39, "id42"], [39, "id43"]], "Accessing the Server - Windows": [[38, "accessing-the-server-windows"], [39, "accessing-the-server-windows"]], "FTP": [[38, "ftp"], [39, "ftp"]], "Access using FTP": [[38, "access-using-ftp"], [39, "access-using-ftp"]], "TFTP": [[38, "tftp"], [39, "tftp"]], "Accessing the Share": [[38, "accessing-the-share"], [39, "accessing-the-share"]], "Installing tftp - Windows": [[38, "installing-tftp-windows"], [39, "installing-tftp-windows"]], "A4: Linux Group Membership Issues": [[38, "a4-linux-group-membership-issues"]], "Docker Group": [[38, "docker-group"], [39, "docker-group"]], "Create a Dockerfile": [[38, "create-a-dockerfile"], [39, "create-a-dockerfile"]], "Build the Docker": [[38, "build-the-docker"], [39, "build-the-docker"]], "Become root?": [[38, "become-root"], [39, "become-root"]], "Video": [[38, "video"], [39, "video"]], "Disk": [[38, "disk"], [39, "disk"]], "Set file system": [[38, "set-file-system"], [39, "set-file-system"]], "List files": [[38, "list-files"], [39, "list-files"]], "List the files with a long listing": [[38, "list-the-files-with-a-long-listing"], [39, "list-the-files-with-a-long-listing"]], "Dump the contents of file1": [[38, "dump-the-contents-of-file1"], [39, "dump-the-contents-of-file1"]], "Dump an inode to a file": [[38, "dump-an-inode-to-a-file"], [39, "dump-an-inode-to-a-file"]], "LXD": [[38, "lxd"], [39, "lxd"]], "Exploiting": [[38, "exploiting"], [39, "exploiting"]], "A5: Coding Languages Tricks": [[38, "a5-coding-languages-tricks"]], "Pickle": [[38, "pickle"], [39, "pickle"]], "Preg_Replace": [[38, "preg-replace"], [39, "preg-replace"]], "Complex Curly Syntax": [[38, "complex-curly-syntax"], [39, "complex-curly-syntax"]], "Xdebug": [[38, "xdebug"], [39, "xdebug"]], "Type Juggling/ Magic Bytes": [[38, "type-juggling-magic-bytes"], [39, "type-juggling-magic-bytes"]], "LUA": [[38, "lua"], [39, "id47"]], "A6: Metasploit Module Writing?": [[38, "a6-metasploit-module-writing"]], "Vulnerable Machines": [[39, "vulnerable-machines"], [40, null]], "Cyber-Deception": [[39, "cyber-deception"]], "Useful Tools": [[39, "useful-tools"]], "Appendix-I : Local File Inclusion": [[39, "appendix-i-local-file-inclusion"]], "Appendix-II : File Upload": [[39, "appendix-ii-file-upload"]], "Appendix-III Transferring Files from Linux to Windows (post-exploitation)": [[39, "appendix-iii-transferring-files-from-linux-to-windows-post-exploitation"]], "Appendix-IV Linux Group Membership Issues": [[39, "appendix-iv-linux-group-membership-issues"]], "Appendix-V Coding Languages Tricks": [[39, "appendix-v-coding-languages-tricks"]], "Appendix-VI Metasploit Module Writing?": [[39, "appendix-vi-metasploit-module-writing"]], "Reverse Engineering": [[4, "reverse-engineering"]], "ObjDump": [[4, "objdump"]], "IDA": [[4, "ida"]], "Appendix-I Assembly Basics": [[4, "appendix-i-assembly-basics"]], "Assembly Program": [[4, "assembly-program"]], "Memory and Addressing Modes": [[4, "memory-and-addressing-modes"]], "Jump Statements": [[4, "jump-statements"]], "Industrial Control Systems": [[10, "industrial-control-systems"]], "Purpose": [[10, "purpose"]], "IT": [[10, "it"]], "OT": [[10, "ot"]], "ICS": [[10, "ics"]], "Embedded Systems": [[10, "embedded-systems"]], "Field Controllers": [[10, "field-controllers"]], "Memory": [[10, "memory"]], "Input/Output": [[10, "input-output"]], "User interface": [[10, "user-interface"]], "Internal": [[10, "internal"]], "External": [[10, "external"]], "Programmable Logic Controller": [[10, "programmable-logic-controller"]], "Program Execution": [[10, "program-execution"]], "Programming Concepts": [[10, "programming-concepts"]], "Data Flow": [[10, "data-flow"]], "Network Discovery and Mapping": [[10, "network-discovery-and-mapping"]], "Passive Discovery": [[10, "passive-discovery"]], "What?": [[10, "what"], [10, "id9"], [10, "id12"]], "Why?": [[10, "why"], [10, "id10"], [10, "id13"]], "Artifacts": [[10, "artifacts"]], "History + Logs": [[10, "history-logs"]], "Cache": [[10, "cache"]], "How?": [[10, "how"], [10, "id11"], [10, "id14"]], "ARP": [[10, "arp"]], "IP": [[10, "ip"]], "DNS": [[10, "dns"]], "TCP/UDP Ports": [[10, "tcp-udp-ports"]], "netstat": [[10, "netstat"]], "Routing Table": [[10, "routing-table"]], "netBIOS": [[10, "netbios"]], "TCPDump/Windump": [[10, "tcpdump-windump"]], "wireshark": [[10, "wireshark"]], "Files and Others": [[10, "files-and-others"]], "Browser history": [[10, "browser-history"]], ".bash_history": [[10, "bash-history"]], "Active Discovery": [[10, "active-discovery"]], "arp-scan": [[10, "arp-scan"]], "nmap": [[10, "nmap"]], "nmap - Discovery methods": [[10, "nmap-discovery-methods"]], "Three-way handshake": [[10, "three-way-handshake"]], "Host Discovery": [[10, "host-discovery"]], "Timing and Performance options": [[10, "timing-and-performance-options"]], "Nmap results": [[10, "nmap-results"]], "OS and Version detection": [[10, "os-and-version-detection"]], "Nmap Address Schemes": [[10, "nmap-address-schemes"]], "ICS challenges": [[10, "ics-challenges"]], "Nessus Vulnerablity Scanner": [[10, "nessus-vulnerablity-scanner"]], "Nessus ICS Plugins": [[10, "nessus-ics-plugins"]], "Network Defense, Detection and Analysis": [[10, "network-defense-detection-and-analysis"]], "Identify": [[10, "identify"]], "Asset and Information inventory": [[10, "asset-and-information-inventory"]], "Who?": [[10, "who"]], "Field Devices": [[10, "field-devices"]], "Least Functionality": [[10, "least-functionality"]], "Least Privileges": [[10, "least-privileges"]], "GrassMarlin (Retired)": [[10, "grassmarlin-retired"]], "Protect": [[10, "protect"]], "IT-OT Convergence": [[10, "it-ot-convergence"]], "Human element": [[10, "human-element"]], "OPSEC": [[10, "opsec"]], "Secure Passwords": [[10, "secure-passwords"]], "Vendor Access": [[10, "vendor-access"]], "Vendor connections to the ICS Network": [[10, "vendor-connections-to-the-ics-network"]], "Removable Media": [[10, "removable-media"]], "Secure Authentication": [[10, "secure-authentication"]], "Multi-factor Authentication": [[10, "multi-factor-authentication"]], "Secure VPN access": [[10, "secure-vpn-access"]], "VPN Logs": [[10, "vpn-logs"]], "Lessons Learned": [[10, "lessons-learned"]], "ICS Network segmentation": [[10, "ics-network-segmentation"]], "Firewall Implementation": [[10, "firewall-implementation"]], "Firewall Rules": [[10, "firewall-rules"]], "Firewall Logs": [[10, "firewall-logs"]], "Data Diode": [[10, "data-diode"]], "Data Diode vs. Firewalls": [[10, "data-diode-vs-firewalls"]], "Data Diodes": [[10, "data-diodes"]], "Patch Management": [[10, "patch-management"]], "Patching Considerations": [[10, "patching-considerations"]], "Potential Patch Complications": [[10, "potential-patch-complications"]], "Application whitelisting": [[10, "application-whitelisting"]], "Advantages": [[10, "advantages"]], "Limitations": [[10, "limitations"]], "Detect": [[10, "detect"]], "Intrusion Detection System": [[10, "intrusion-detection-system"]], "IDS Types": [[10, "ids-types"]], "IDS/IPS Functions": [[10, "ids-ips-functions"]], "HIDS": [[10, "hids"]], "HIDS Deployment": [[10, "hids-deployment"]], "Network Intrusion Detection (NIDS)": [[10, "network-intrusion-detection-nids"]], "IDS Sensor Placement": [[10, "ids-sensor-placement"]], "NIDS Signature vs. Anomaly Detection": [[10, "nids-signature-vs-anomaly-detection"]], "Netflow Anomaly Detection": [[10, "netflow-anomaly-detection"]], "Example Alerts for Anomaly Detection": [[10, "example-alerts-for-anomaly-detection"]], "Zeek IDS": [[10, "zeek-ids"]], "IDS vs. IPS": [[10, "ids-vs-ips"]], "SNORT": [[10, "snort"]], "Snort Preprocessors for ICS": [[10, "snort-preprocessors-for-ics"]], "DNP3 Preprocessor Rule Options": [[10, "dnp3-preprocessor-rule-options"]], "DNP3 Preprocessor Examples": [[10, "dnp3-preprocessor-examples"]], "Modbus Preprocessor Rule Options": [[10, "modbus-preprocessor-rule-options"]], "Modbus Preprocessor Rule Examples": [[10, "modbus-preprocessor-rule-examples"]], "Example Rule Variables": [[10, "example-rule-variables"]], "Example Rules": [[10, "example-rules"]], "Log Sources and Management": [[10, "log-sources-and-management"]], "Logging Architecture": [[10, "logging-architecture"]], "Log sources": [[10, "log-sources"]], "Log Transport": [[10, "log-transport"]], "syslog": [[10, "syslog"]], "Operating System Logs": [[10, "operating-system-logs"]], "Security Audit Logging Web Server Logs": [[10, "security-audit-logging-web-server-logs"]], "Security Audit Logging Database Logs": [[10, "security-audit-logging-database-logs"]], "Security Information and Event Management": [[10, "security-information-and-event-management"]], "Honeypots & Canaries": [[10, "honeypots-canaries"]], "Respond and Recover": [[10, "respond-and-recover"]], "Preparation": [[10, "preparation"]], "Incident Response Team": [[10, "incident-response-team"]], "Identification": [[10, "identification"]], "Containment": [[10, "containment"]], "Clean-up and Recovery": [[10, "clean-up-and-recovery"]], "Follow-up": [[10, "follow-up"]], "YARA": [[10, "yara"]], "Protocols": [[10, "protocols"]], "Modbus": [[10, "modbus"]], "Feedback": [[25, "feedback"]], "About Me": [[26, "about-me"]], "Completed": [[26, "completed"]], "The Magic of Learning": [[27, "the-magic-of-learning"], [40, "the-magic-of-learning"]], "Table of Contents": [[27, null]], "Infrastructure Pentest": [[40, null]], "CTF - Challenges": [[40, null]], "Critical Infrastructure": [[40, null]], "Contributors, Blog Archive and About Me": [[40, "contributors-blog-archive-and-about-me"]], "Obligatory Disclaimer": [[40, "obligatory-disclaimer"]]}, "indexentries": {}}) \ No newline at end of file +Search.setIndex({"alltitles": {".bash_history": [[11, "bash-history"]], ".viminfo": [[31, "viminfo"]], ".vimrc": [[31, "vimrc"]], "/Proc Variables": [[36, "proc-variables"], [40, "proc-variables"]], "/bin": [[31, "bin"]], "/boot": [[31, "boot"]], "/dev": [[31, "dev"]], "/etc": [[31, "etc"]], "/etc/group": [[31, "etc-group"]], "/etc/passwd": [[31, "etc-passwd"]], "/etc/shadow": [[31, "etc-shadow"]], "/lib": [[31, "lib"]], "/proc": [[31, "proc"]], "/proc/self/environ": [[39, "proc-self-environ"], [40, "proc-self-environ"]], "/proc/self/fd": [[39, "proc-self-fd"], [40, "proc-self-fd"]], "/sbin": [[31, "sbin"]], "/sbin/init and services": [[31, "sbin-init-and-services"]], "/var": [[31, "var"]], "A-I : Interesting Stories": [[20, "a-i-interesting-stories"]], "A-I : Windows Credentials": [[21, "a-i-windows-credentials"]], "A-II Cracking Hashes": [[21, "a-ii-cracking-hashes"]], "A-III Interesting Stories": [[21, "a-iii-interesting-stories"]], "A1: Local File Inclusion": [[39, "a1-local-file-inclusion"]], "A2: File Upload": [[39, "a2-file-upload"]], "A3: Transferring Files from Linux to Windows (post-exploitation)": [[39, "a3-transferring-files-from-linux-to-windows-post-exploitation"]], "A4: Linux Group Membership Issues": [[39, "a4-linux-group-membership-issues"]], "A5: Coding Languages Tricks": [[39, "a5-coding-languages-tricks"]], "A6: Metasploit Module Writing?": [[39, "a6-metasploit-module-writing"]], "ABB": [[10, "abb"], [10, "id14"]], "ABB - AC31": [[10, "abb-ac31"]], "ABT/ AMR Server": [[10, "abt-amr-server"]], "AD Reconnaissance with PowerShell": [[20, "ad-reconnaissance-with-powershell"]], "AD-Computer": [[8, "ad-computer"]], "APCI Format": [[10, "apci-format"]], "APT": [[37, "apt"], [40, "apt"]], "ARP": [[11, "arp"]], "ARTICLE": [[19, "article"]], "ASDU Format": [[10, "asdu-format"]], "ASN Number": [[18, "asn-number"]], "AWS Lambda": [[32, "aws-lambda"]], "About Me": [[27, "about-me"]], "Absolute pathname": [[31, "absolute-pathname"]], "Abusing Token Privileges": [[37, "abusing-token-privileges"], [40, "abusing-token-privileges"]], "Acccheck": [[5, "acccheck"], [6, "acccheck"]], "Accepting Client certificates": [[14, "accepting-client-certificates"]], "Access Control": [[11, "access-control"]], "Access Risk": [[11, "access-risk"]], "Access using FTP": [[39, "access-using-ftp"], [40, "access-using-ftp"]], "AccessEnum": [[23, "accessenum"]], "Accessing Remote machines": [[20, "accessing-remote-machines"]], "Accessing the Server - Windows": [[39, "accessing-the-server-windows"], [40, "accessing-the-server-windows"]], "Accessing the Share": [[39, "accessing-the-share"], [40, "accessing-the-share"]], "Accessing the share - Linux": [[39, "accessing-the-share-linux"], [40, "accessing-the-share-linux"]], "Accessing the share - Windows": [[39, "accessing-the-share-windows"], [40, "accessing-the-share-windows"]], "Account Operators elevate to privileged group via nested group": [[21, "account-operators-elevate-to-privileged-group-via-nested-group"]], "Actions": [[31, "actions"]], "Active Directory Built-In Groups Self-Elevation": [[21, "active-directory-built-in-groups-self-elevation"]], "Active Directory Database Credentials": [[21, "active-directory-database-credentials"]], "Active Directory Enumeration and Remote Code Execution": [[38, "active-directory-enumeration-and-remote-code-execution"], [40, "active-directory-enumeration-and-remote-code-execution"]], "Active Directory Explorer (ADExplorer)": [[20, "active-directory-explorer-adexplorer"]], "Active Directory Hardening": [[30, "active-directory-hardening"]], "Active Directory Reconnaissance": [[20, "active-directory-reconnaissance"]], "Active Discovery": [[11, "active-discovery"]], "Active Fingerprinting": [[18, "active-fingerprinting"]], "Add / remove a local user to administrator group": [[20, "add-remove-a-local-user-to-administrator-group"]], "Add Cgroup": [[15, "add-cgroup"]], "Add Wifi": [[15, "add-wifi"]], "Add a domain user": [[20, "add-a-domain-user"]], "Add a local computer to the domain": [[8, "add-a-local-computer-to-the-domain"]], "Add a remote computer to the domain": [[8, "add-a-remote-computer-to-the-domain"]], "Add an entry": [[20, "add-an-entry"]], "Add puppet host entry to /etc/hosts": [[15, "add-puppet-host-entry-to-etc-hosts"]], "Add static route": [[31, "add-static-route"]], "Add/ remove/ a local user": [[20, "add-remove-a-local-user"]], "Adding Computer to Domain": [[8, "adding-computer-to-domain"]], "Adding Trusted Host in WinRM": [[20, "adding-trusted-host-in-winrm"]], "Adding Worker nodes": [[14, "adding-worker-nodes"]], "Adding printers from CUPS Web interface": [[31, "adding-printers-from-cups-web-interface"]], "Adding user": [[14, "adding-user"]], "Adding user to sudoers groups": [[31, "adding-user-to-sudoers-groups"]], "Adding/Deleting/Modifying Users/Groups": [[31, "adding-deleting-modifying-users-groups"]], "Additional Resources": [[34, "additional-resources"]], "Additional guidance for applications in the control room": [[11, "additional-guidance-for-applications-in-the-control-room"]], "Advanced Git Interfaces: Gerrit": [[32, "advanced-git-interfaces-gerrit"]], "Advanced information about users": [[20, "advanced-information-about-users"]], "Advantages": [[11, "advantages"]], "Agents": [[14, "agents"]], "Alpine Linux": [[32, "alpine-linux"]], "Alternate Data Stream": [[38, "alternate-data-stream"], [40, "alternate-data-stream"]], "Amap - Application mapper": [[35, "amap-application-mapper"], [40, "amap-application-mapper"]], "Amazon Elastic Container Service": [[32, "amazon-elastic-container-service"]], "Amplitude?": [[3, "amplitude"]], "Analyse the Threat": [[11, "analyse-the-threat"]], "Analyse the vulnerablities": [[11, "analyse-the-vulnerablities"]], "Analyzing Hardware": [[16, "analyzing-hardware"]], "Analyzing the Web application": [[5, "analyzing-the-web-application"]], "Annual Report": [[25, "annual-report"]], "Anonymous FTP Access Detection": [[19, "anonymous-ftp-access-detection"]], "Ansible": [[32, "ansible"]], "Anti-Virus and Anti-Malware": [[11, "anti-virus-and-anti-malware"]], "Any \u201cproblem\u201d files?": [[37, "any-problem-files"], [40, "any-problem-files"]], "Apache Mesos": [[32, "apache-mesos"]], "Apache Mesos/DC-OS/Marathon": [[32, "apache-mesos-dc-os-marathon"]], "Apache Tomcat": [[19, "apache-tomcat"]], "Appendix": [[0, "appendix"], [39, "appendix"]], "Appendix - Extra": [[14, "appendix-extra"]], "Appendix - I : FreeIPA": [[14, "appendix-i-freeipa"]], "Appendix - II K3S Server and Agents": [[14, "appendix-ii-k3s-server-and-agents"]], "Appendix - III OpenFaaS Serverless": [[14, "appendix-iii-openfaas-serverless"]], "Appendix - IV Securing Kubernetes": [[14, "appendix-iv-securing-kubernetes"]], "Appendix - Installation of Applications": [[13, "appendix-installation-of-applications"]], "Appendix - Installation of Cluster Applications": [[14, "appendix-installation-of-cluster-applications"]], "Appendix - Removal of Cluster Applications": [[14, "appendix-removal-of-cluster-applications"]], "Appendix - X PXE Boot": [[14, "appendix-x-pxe-boot"]], "Appendix-I : Interesting Stories": [[18, "appendix-i-interesting-stories"]], "Appendix-I : Local File Inclusion": [[40, "appendix-i-local-file-inclusion"]], "Appendix-I Assembly Basics": [[4, "appendix-i-assembly-basics"]], "Appendix-II : File Upload": [[40, "appendix-ii-file-upload"]], "Appendix-II LD_PRELOAD": [[0, "appendix-ii-ld-preload"]], "Appendix-III Basic Concepts": [[0, "appendix-iii-basic-concepts"]], "Appendix-III Transferring Files from Linux to Windows (post-exploitation)": [[40, "appendix-iii-transferring-files-from-linux-to-windows-post-exploitation"]], "Appendix-IV Linux Group Membership Issues": [[40, "appendix-iv-linux-group-membership-issues"]], "Appendix-V Coding Languages Tricks": [[40, "appendix-v-coding-languages-tricks"]], "Appendix-VI Metasploit Module Writing?": [[40, "appendix-vi-metasploit-module-writing"]], "Appendix-VII SQL-Injection": [[5, "appendix-vii-sql-injection"]], "Appendix-VIII Hack Steps": [[5, "appendix-viii-hack-steps"]], "Apple Filing Protocol Info Enumerator": [[19, "apple-filing-protocol-info-enumerator"]], "Apple Filing Protocol Login Utility": [[19, "apple-filing-protocol-login-utility"]], "Application Data Objects": [[10, "application-data-objects"]], "Application Whitelist/Blacklisting": [[30, "application-whitelist-blacklisting"]], "Application whitelisting": [[11, "application-whitelisting"]], "Applications installed": [[23, "applications-installed"]], "Apply countermeasures": [[11, "apply-countermeasures"]], "Approaches to Browser Extensions": [[5, "approaches-to-browser-extensions"]], "Apt-get error?": [[31, "apt-get-error"]], "Aquatone: A tool for domain flyovers": [[18, "aquatone-a-tool-for-domain-flyovers"]], "Architecture": [[10, "architecture"]], "ArgoCD": [[13, "argocd"]], "Arithmetic expressions": [[31, "arithmetic-expressions"]], "Artifacts": [[11, "artifacts"]], "Assembly Program": [[4, "assembly-program"]], "Asset Management": [[11, "asset-management"]], "Asset and Information inventory": [[11, "asset-and-information-inventory"]], "Assets": [[25, "assets"]], "Assurance": [[33, "assurance"]], "Asymmetric Encryption": [[2, "asymmetric-encryption"]], "Attack Surface Area - Reconnaissance Tools": [[18, "attack-surface-area-reconnaissance-tools"]], "Attack Surface Mapping": [[16, "attack-surface-mapping"]], "Attacker Tools and Techniques": [[11, "attacker-tools-and-techniques"]], "Attacking Authentication": [[5, "attacking-authentication"]], "Attributes": [[11, "attributes"]], "Auditing Packages with dpkg \u2013verify": [[31, "auditing-packages-with-dpkg-verify"]], "Auth-owners": [[19, "auth-owners"]], "Authentication Technologies": [[5, "authentication-technologies"]], "Authentication center (AuC)": [[12, "authentication-center-auc"]], "Automated Compliance Tooling": [[34, "automated-compliance-tooling"]], "Automatic Linux Install": [[31, "automatic-linux-install"]], "Automatic Meter Reading": [[10, "automatic-meter-reading"]], "Automatic installation using Puppet-FreeIPA": [[14, "automatic-installation-using-puppet-freeipa"]], "Automation Tools Addition": [[30, "automation-tools-addition"]], "Availability-Based Tariff": [[10, "availability-based-tariff"]], "Awk converting to normal output to csv": [[31, "awk-converting-to-normal-output-to-csv"]], "Azure Container Instances": [[32, "azure-container-instances"]], "Azure Functions": [[32, "azure-functions"]], "BACNet-discover-enumerate": [[19, "bacnet-discover-enumerate"]], "BIOS": [[31, "bios"]], "BLE": [[16, "ble"]], "BMP": [[3, "bmp"]], "BNG": [[12, "bng"]], "BOSH": [[32, "bosh"]], "BRAS": [[12, "bras"]], "BSC": [[12, "bsc"]], "BSD Style": [[31, "bsd-style"]], "BTS": [[12, "bts"]], "Backdooring a Firmware": [[16, "backdooring-a-firmware"]], "Background and Foreground Processes": [[31, "background-and-foreground-processes"]], "Backing up data": [[31, "backing-up-data"]], "Balance sheet": [[25, "balance-sheet"]], "Balancing supply and demand": [[10, "balancing-supply-and-demand"]], "Base64 Encoding": [[5, "base64-encoding"]], "Bash": [[31, "bash"]], "Bash /dev/tcp": [[36, "bash-dev-tcp"], [40, "bash-dev-tcp"]], "Bash Case Modification": [[31, "bash-case-modification"]], "Bash Command Substitution": [[31, "bash-command-substitution"]], "Bash Programming": [[31, "bash-programming"]], "Bash functions": [[31, "bash-functions"]], "Bash loop thru array of strings": [[31, "bash-loop-thru-array-of-strings"]], "Basic Concepts": [[11, "basic-concepts"]], "Basic Hygiene": [[10, "basic-hygiene"]], "Basic IO": [[1, "basic-io"]], "Basic Linux Security": [[31, "basic-linux-security"]], "Basic Utilities and Operations": [[31, "basic-utilities-and-operations"]], "Basics": [[0, "basics"], [17, "basics"]], "Batch": [[11, "batch"]], "Baud Rate": [[16, "baud-rate"]], "Bay Control Unit": [[10, "bay-control-unit"]], "BeautifulSoup": [[1, "beautifulsoup"]], "Become root?": [[39, "become-root"], [40, "become-root"]], "Behaviour of the format function": [[0, "behaviour-of-the-format-function"]], "Benefits": [[32, "benefits"]], "Benefits of IDM": [[14, "benefits-of-idm"]], "Benevolent Dictatorship (strong leadership)": [[34, "benevolent-dictatorship-strong-leadership"]], "Best Practices for using public Wi-Fi": [[11, "best-practices-for-using-public-wi-fi"]], "Binary Architecture": [[0, "binary-architecture"]], "Binary Exploitation": [[0, "binary-exploitation"]], "Binary Help?": [[0, "binary-help"]], "Binary Locations": [[31, "binary-locations"]], "Binary Protection": [[0, "binary-protection"]], "Bittorrent": [[3, "bittorrent"]], "Blind Boolean": [[5, "blind-boolean"]], "Blind SQL Injections": [[5, "blind-sql-injections"]], "Block": [[31, "block"]], "Blogs": [[19, "blogs"]], "BloodHound Group Memberships": [[20, "bloodhound-group-memberships"]], "BloodHound users_sessions": [[20, "bloodhound-users-sessions"]], "Boarding Pass Format": [[3, "boarding-pass-format"]], "Boot loader": [[31, "boot-loader"]], "Boot loader in action": [[31, "boot-loader-in-action"]], "Boundary Scan": [[16, "boundary-scan"]], "Boundary Scan Instructions": [[16, "boundary-scan-instructions"]], "Boxes": [[32, "boxes"]], "Bridge Network": [[32, "bridge-network"]], "Broadcast-dns-service-discovery": [[19, "broadcast-dns-service-discovery"]], "Browser Forensics": [[3, "browser-forensics"]], "Browser extension": [[3, "browser-extension"]], "Browser history": [[11, "browser-history"]], "Brute forcing: hydra": [[36, "brute-forcing-hydra"], [40, "brute-forcing-hydra"]], "Buffer": [[0, "buffer"]], "Buffer Overflow Examples": [[0, "buffer-overflow-examples"]], "Buffer overflow": [[0, "buffer-overflow"]], "Bug Bounty Program": [[33, "bug-bounty-program"]], "Build and Release": [[32, "build-and-release"]], "Build the Docker": [[39, "build-the-docker"], [40, "build-the-docker"]], "Built-In Administrators to EA/DA": [[21, "built-in-administrators-to-ea-da"]], "Builtins": [[31, "builtins"]], "Bull vs Bears": [[25, "bull-vs-bears"]], "BurpSuite": [[1, "burpsuite"]], "BurpSuite Spider": [[36, "burpsuite-spider"], [40, "burpsuite-spider"]], "Bus": [[11, "bus"]], "Business": [[34, "business"]], "Business Continuity": [[11, "business-continuity"]], "Bypassing Client-Side Controls": [[5, "bypassing-client-side-controls"], [5, "id3"]], "Bypassing Login Screens (SMO+)": [[5, "bypassing-login-screens-smo"]], "C Programming": [[1, "c-programming"]], "C-Level Executive - Webcam, Microphone, User Activity Recording": [[21, "c-level-executive-webcam-microphone-user-activity-recording"]], "CAPABILITIES": [[19, "capabilities"]], "CASM": [[10, "casm"]], "CGI-BIN Shellshock": [[38, "cgi-bin-shellshock"], [40, "cgi-bin-shellshock"]], "CI/CD Kubernetes Tools": [[32, "ci-cd-kubernetes-tools"]], "CI/CD Tools": [[32, "ci-cd-tools"]], "CIKR Interdependencies": [[11, "cikr-interdependencies"]], "CMD": [[31, "cmd"]], "CRI-O": [[32, "cri-o"]], "CSC Austria: CTF Tips and Tricks": [[38, "csc-austria-ctf-tips-and-tricks"], [40, "csc-austria-ctf-tips-and-tricks"]], "CTF - Challenges": [[41, null]], "CUPS": [[31, "cups"]], "Cache": [[11, "cache"]], "Calling Conventions": [[0, "calling-conventions"]], "Calling the targetted binary multiple times": [[0, "calling-the-targetted-binary-multiple-times"]], "Cameradar": [[19, "cameradar"]], "Capability": [[11, "capability"]], "Capturing User Data: Browser Extensions": [[5, "capturing-user-data-browser-extensions"]], "Capturing User Data: HTML Forms": [[5, "capturing-user-data-html-forms"]], "Carrier Ethernet Architecture": [[12, "carrier-ethernet-architecture"]], "Cascading Effects": [[11, "cascading-effects"]], "Cash Flow Statement": [[25, "cash-flow-statement"]], "Cassandra-brute": [[19, "cassandra-brute"]], "Cassandra-info": [[19, "cassandra-info"]], "Catalog File": [[32, "catalog-file"]], "Ceph": [[32, "ceph"]], "Chains": [[31, "chains"]], "Challenges": [[3, "challenges"]], "Change Hostname": [[15, "change-hostname"]], "Change Management": [[11, "change-management"]], "Change local user password": [[20, "change-local-user-password"]], "Changelog": [[0, "changelog"], [10, "changelog"], [30, "changelog"], [40, "changelog"]], "Changing Group/Owner/Permission": [[31, "changing-group-owner-permission"]], "Character": [[31, "character"]], "Chart": [[25, "chart"]], "CheckPoint Firewall-1 SecuRemote Topology Service Hostname Disclosure": [[19, "checkpoint-firewall-1-securemote-topology-service-hostname-disclosure"]], "Checking the status of user": [[14, "checking-the-status-of-user"]], "Checklist": [[25, "checklist"]], "Checklist for fundamental analysis": [[25, "checklist-for-fundamental-analysis"]], "Checks equality between numbers": [[31, "checks-equality-between-numbers"]], "Checks equality between strings": [[31, "checks-equality-between-strings"]], "Chef": [[32, "chef"]], "Chemical": [[11, "chemical"]], "Chmod file reference trick": [[37, "chmod-file-reference-trick"], [40, "chmod-file-reference-trick"]], "Choosing a license": [[34, "choosing-a-license"]], "Chown file reference trick (file owner hijacking)": [[37, "chown-file-reference-trick-file-owner-hijacking"], [40, "chown-file-reference-trick-file-owner-hijacking"]], "Chunk layout": [[3, "chunk-layout"]], "Ciphers": [[2, "ciphers"]], "Ciphersuites": [[33, "ciphersuites"]], "Cisco Devices": [[23, "cisco-devices"]], "Cisco Kvasir": [[22, "cisco-kvasir"]], "Clean-up and Recovery": [[11, "clean-up-and-recovery"]], "Client": [[31, "client"]], "Client-Server Relationship": [[11, "client-server-relationship"]], "Clients": [[11, "clients"]], "Cloud (AWS/Azure/OpenStack)": [[14, "cloud-aws-azure-openstack"]], "Cloud Container Orchestration Services": [[32, "cloud-container-orchestration-services"]], "Cloud Foundry (CF)": [[32, "cloud-foundry-cf"]], "Cloud Foundry Volume Service": [[32, "cloud-foundry-volume-service"]], "Cloud Foundry: Container to Container Networking": [[32, "cloud-foundry-container-to-container-networking"]], "Cloud Infrastructure Technologies": [[32, "cloud-infrastructure-technologies"]], "Cloud Tier": [[14, "cloud-tier"]], "Cloud computing": [[32, "cloud-computing"]], "CloudFormation": [[32, "cloudformation"]], "Codes and Substitution": [[2, "codes-and-substitution"]], "Coding Quick Reference": [[1, "coding-quick-reference"]], "Collaborative development": [[34, "collaborative-development"]], "Colonial Pipeline": [[11, "colonial-pipeline"]], "Command Line": [[31, "command-line"]], "Command Mode": [[31, "command-mode"]], "Command history": [[31, "command-history"]], "Command logging": [[31, "command-logging"]], "Command-line Parameters": [[31, "command-line-parameters"]], "Command-line substitute for gitk": [[31, "command-line-substitute-for-gitk"]], "Commands": [[19, "commands"], [31, "commands"]], "Commercial facilities": [[11, "commercial-facilities"]], "Common Browser Extension Technologies": [[5, "common-browser-extension-technologies"]], "Common Vulnerabilities and Exposures (CVEs)": [[33, "common-vulnerabilities-and-exposures-cves"]], "Communication": [[10, "communication"], [11, "communication"]], "Communication Dependencies": [[11, "communication-dependencies"]], "Communication Ports": [[10, "communication-ports"], [11, "communication-ports"]], "Communication Principles": [[10, "communication-principles"]], "Communication channels": [[11, "communication-channels"]], "Communications": [[11, "communications"]], "Communications and Operational": [[11, "communications-and-operational"]], "Community Health Analytics Open Source Software (CHAOSS)": [[34, "community-health-analytics-open-source-software-chaoss"]], "Company Led (mostly closed source)": [[34, "company-led-mostly-closed-source"]], "Compare IT and ICS communication": [[11, "compare-it-and-ics-communication"]], "Comparing files with diff": [[31, "comparing-files-with-diff"]], "Completed": [[27, "completed"]], "Complex Curly Syntax": [[39, "complex-curly-syntax"], [40, "complex-curly-syntax"]], "Compliance": [[11, "compliance"]], "Compliance Projects": [[34, "compliance-projects"]], "Component Package": [[16, "component-package"]], "Compressing Files": [[31, "compressing-files"]], "Computers": [[11, "computers"]], "Conclusion": [[11, "conclusion"], [25, "conclusion"]], "Conditional statements": [[31, "conditional-statements"]], "Confidentiality, Integrity, Availability": [[31, "confidentiality-integrity-availability"]], "Configuration Files": [[36, "configuration-files"], [40, "configuration-files"]], "Configuration Management": [[32, "configuration-management"]], "Configuration Review": [[23, "configuration-review"]], "Configuration Scripts": [[31, "configuration-scripts"]], "Configuration files": [[11, "configuration-files"], [31, "configuration-files"]], "Configuration for undefined PAM applications": [[7, "configuration-for-undefined-pam-applications"]], "Configuring PuppetServer": [[14, "configuring-puppetserver"]], "Configuring and Securing Series : Windows Environment": [[8, "configuring-and-securing-series-windows-environment"]], "Connected Drives": [[37, "connected-drives"]], "Connection": [[20, "connection"]], "Connection String": [[19, "connection-string"]], "Connections for UART Exploitation": [[16, "connections-for-uart-exploitation"]], "Consequences": [[11, "consequences"]], "Consource": [[32, "consource"]], "Constant Time Algorithms": [[33, "constant-time-algorithms"]], "Consul": [[32, "consul"], [32, "id3"]], "Consul use-cases": [[32, "consul-use-cases"]], "Container Image Building": [[32, "container-image-building"]], "Container Networking Standards": [[32, "container-networking-standards"]], "Container Runtimes": [[32, "container-runtimes"]], "Container Storage Interface (CSI)": [[32, "container-storage-interface-csi"]], "Container Technology: Building Blocks": [[32, "container-technology-building-blocks"]], "Containers": [[32, "containers"]], "Containers vs VM": [[32, "containers-vs-vm"]], "Containers: Container Orchestration": [[32, "containers-container-orchestration"]], "Containers: Micro OSes for Containers": [[32, "containers-micro-oses-for-containers"]], "Containment": [[11, "containment"]], "Continuous": [[11, "continuous"]], "Contributing to OSS Projects": [[34, "contributing-to-oss-projects"]], "Contributing to Projects": [[34, "contributing-to-projects"]], "Contribution Mechanisms": [[34, "contribution-mechanisms"]], "Contributor License Agreements (CLAs)": [[34, "contributor-license-agreements-clas"]], "Contributors": [[29, "contributors"]], "Contributors, Blog Archive and About Me": [[41, "contributors-blog-archive-and-about-me"]], "Control of su in PAM": [[7, "control-of-su-in-pam"]], "Control over PHP Session Values": [[39, "control-over-php-session-values"], [40, "control-over-php-session-values"]], "Controlling processes with ulimit": [[31, "controlling-processes-with-ulimit"]], "Controlling uninitialized memory with LD_PRELOAD": [[0, "controlling-uninitialized-memory-with-ld-preload"]], "Converting between PostScript and PDF": [[31, "converting-between-postscript-and-pdf"]], "Cookies": [[5, "cookies"]], "Copy To or From a PowerShell Session": [[38, "copy-to-or-from-a-powershell-session"], [40, "copy-to-or-from-a-powershell-session"]], "Copying the Files - Windows": [[39, "copying-the-files-windows"], [40, "copying-the-files-windows"]], "Copyright": [[34, "copyright"]], "Copyright Assignment": [[34, "copyright-assignment"]], "Corporate Security Hole: Employees Forwarding Email to Personal Accounts": [[11, "corporate-security-hole-employees-forwarding-email-to-personal-accounts"]], "Cover Tracks": [[19, "cover-tracks"]], "Covering Your Tracks": [[5, "covering-your-tracks"]], "Cracking MD5 Hashes": [[38, "cracking-md5-hashes"], [40, "cracking-md5-hashes"]], "Crashing the Program": [[0, "crashing-the-program"]], "Create a Dockerfile": [[39, "create-a-dockerfile"], [40, "create-a-dockerfile"]], "Create a new logon session": [[21, "create-a-new-logon-session"]], "Create a new service": [[20, "create-a-new-service"]], "Creating Temp Directory and files": [[31, "creating-temp-directory-and-files"]], "Creating a Domain Controller": [[8, "creating-a-domain-controller"]], "Creating a New OU": [[8, "creating-a-new-ou"]], "Creating a Preseed file": [[31, "creating-a-preseed-file"]], "Creating a container with volumes": [[32, "creating-a-container-with-volumes"]], "Creating a named volume": [[32, "creating-a-named-volume"]], "Creating a network bridge": [[32, "creating-a-network-bridge"]], "Creating a simple file": [[31, "creating-a-simple-file"]], "Creating and deleting files and directories": [[31, "creating-and-deleting-files-and-directories"]], "Creating processes in command shell": [[31, "creating-processes-in-command-shell"]], "Creation of exploit": [[0, "creation-of-exploit"]], "Credential Manager": [[37, "credential-manager"], [40, "credential-manager"]], "Credential Storage": [[21, "credential-storage"]], "Credentials in Windows operating systems": [[21, "credentials-in-windows-operating-systems"]], "Credmap: The credential Mapper": [[21, "credmap-the-credential-mapper"]], "Critical Infrastructure": [[41, null]], "Critical infrastructure and Key Resources (CIKR) Sectors": [[11, "critical-infrastructure-and-key-resources-cikr-sectors"]], "Critical manufacturing": [[11, "critical-manufacturing"]], "Cron.d": [[37, "cron-d"], [40, "cron-d"]], "Cryptographic Hashes (Digital Fingerprints)": [[33, "cryptographic-hashes-digital-fingerprints"]], "Cryptographically Secure Pseudo-Random Number Generator (CSPRNG)": [[33, "cryptographically-secure-pseudo-random-number-generator-csprng"]], "Cryptography": [[2, "cryptography"], [33, "cryptography"]], "Cultural - People (Owner, IT, etc.)": [[11, "cultural-people-owner-it-etc"]], "Cultural - Policies & Procedures": [[11, "cultural-policies-procedures"]], "Cultural Factors": [[11, "cultural-factors"]], "Current Setup": [[30, "current-setup"], [30, "id2"], [30, "id5"], [30, "id13"]], "Current Trends": [[11, "current-trends"]], "Current Users": [[30, "current-users"], [30, "id1"], [30, "id4"], [30, "id12"]], "Current domain": [[20, "current-domain"]], "Current screen resolution": [[31, "current-screen-resolution"]], "Cursor Positions": [[31, "cursor-positions"]], "Custom Settings": [[8, "custom-settings"]], "Customer Substation": [[10, "customer-substation"]], "Cyber-Deception": [[40, "cyber-deception"]], "CyberChef": [[3, "cyberchef"]], "Cybersecurity": [[10, "cybersecurity"]], "Cybersecurity Practices": [[11, "cybersecurity-practices"]], "Cybersecurity Tenets": [[11, "cybersecurity-tenets"], [11, "id2"]], "Cybersecurity in an Enterprise": [[30, "cybersecurity-in-an-enterprise"]], "DART": [[22, "dart"]], "DC": [[20, "dc"]], "DC/OS": [[32, "dc-os"]], "DCEPT": [[38, "dcept"], [40, "dcept"]], "DCERPC TCP Service Auditor": [[19, "dcerpc-tcp-service-auditor"]], "DCOM": [[20, "dcom"]], "DCOM applications via MMC Application Class (MMC20.Application)": [[20, "dcom-applications-via-mmc-application-class-mmc20-application"]], "DCOM via ShellBrowserWindow": [[20, "dcom-via-shellbrowserwindow"]], "DCOM via ShellExecute": [[20, "dcom-via-shellexecute"]], "DHCP Server": [[30, "dhcp-server"]], "DLMS/ COSEC": [[10, "dlms-cosec"]], "DNP3 Preprocessor Examples": [[11, "dnp3-preprocessor-examples"]], "DNP3 Preprocessor Rule Options": [[11, "dnp3-preprocessor-rule-options"]], "DNP3 \u2013 DNP3 Application": [[11, "dnp3-dnp3-application"]], "DNS": [[11, "dns"]], "DNS Amplification Scanner": [[19, "dns-amplification-scanner"]], "DNS Basic Information Enumeration": [[19, "dns-basic-information-enumeration"]], "DNS Bruteforce Enumeration": [[19, "dns-bruteforce-enumeration"]], "DNS Common Service Record Enumeration": [[19, "dns-common-service-record-enumeration"]], "DNS Dumpster API": [[18, "dns-dumpster-api"]], "DNS Enumeration": [[18, "dns-enumeration"]], "DNS Non-Recursive Record Scraper": [[19, "dns-non-recursive-record-scraper"]], "DNS Record Scanner and Enumerator": [[19, "dns-record-scanner-and-enumerator"]], "DNS Reverse Lookup Enumeration": [[19, "dns-reverse-lookup-enumeration"]], "DNS Server": [[35, "dns-server"], [40, "dns-server"]], "DNS Tunneling?": [[3, "dns-tunneling"]], "DNS Zone Transfer": [[18, "dns-zone-transfer"]], "DNS-Cache-snoop": [[19, "dns-cache-snoop"]], "DNS-Check-zone": [[19, "dns-check-zone"]], "DNS-SRV-Enum": [[19, "dns-srv-enum"]], "DNS-Service-Discovery": [[19, "dns-service-discovery"]], "DNS-Zone-Transfer": [[19, "dns-zone-transfer"]], "DNS-blacklist": [[19, "dns-blacklist"]], "DNS-brute": [[19, "dns-brute"]], "DNS-nsid": [[19, "dns-nsid"]], "DNS-recursion": [[19, "dns-recursion"]], "DNSEnum": [[18, "dnsenum"]], "DPKG": [[37, "dpkg"], [40, "dpkg"]], "Dams": [[11, "dams"]], "Data Diode": [[11, "data-diode"]], "Data Diode vs. Firewalls": [[11, "data-diode-vs-firewalls"]], "Data Diodes": [[11, "data-diodes"]], "Data Distinctions": [[31, "data-distinctions"]], "Data Exchange Requirements Between Control Centers and Power Pools or ISOs/ RTOs": [[10, "data-exchange-requirements-between-control-centers-and-power-pools-or-isos-rtos"]], "Data Plane and Control Plane": [[32, "data-plane-and-control-plane"]], "Data conversion": [[1, "data-conversion"]], "Data-URI": [[38, "data-uri"], [40, "data-uri"]], "DataSploit": [[18, "datasploit"]], "Database List": [[19, "database-list"]], "Database Structure Queries": [[5, "database-structure-queries"]], "Databases": [[11, "databases"]], "Debian Family": [[31, "debian-family"]], "Debugging bash scripts": [[31, "debugging-bash-scripts"]], "Debugging failed installations": [[31, "debugging-failed-installations"]], "Debugging over JTAG with GDB": [[16, "debugging-over-jtag-with-gdb"]], "Debugging with JTAG": [[16, "debugging-with-jtag"]], "Debugging, Logging and Monitoring for Containerized Applications": [[32, "debugging-logging-and-monitoring-for-containerized-applications"]], "Decompiling Browser Extensions": [[5, "decompiling-browser-extensions"]], "Decrypting traffic": [[3, "decrypting-traffic"]], "Dedicated Lines": [[11, "dedicated-lines"]], "Deep-dive APT": [[31, "deep-dive-apt"]], "Default MS-SQL System Tables": [[19, "default-ms-sql-system-tables"]], "Defense Industrial Base": [[11, "defense-industrial-base"]], "Defense-in-Depth Approach": [[11, "defense-in-depth-approach"]], "Define username, password, Domain, etc.": [[20, "define-username-password-domain-etc"]], "Definition": [[0, "definition"], [0, "id1"], [34, "definition"], [36, "definition"], [40, "definition"]], "Definitions": [[10, "definitions"], [25, "definitions"], [32, "definitions"]], "Delaying the Language, Country, Keyboard Questions": [[31, "delaying-the-language-country-keyboard-questions"]], "Delete Tags": [[38, "delete-tags"], [40, "delete-tags"]], "Delete static route": [[31, "delete-static-route"]], "Delete the remote registry": [[20, "delete-the-remote-registry"]], "Delete the service": [[20, "delete-the-service"]], "Deleteing a user": [[14, "deleteing-a-user"]], "Deployment Models": [[32, "deployment-models"]], "Design Flaws in Authentication Mechanisms": [[5, "design-flaws-in-authentication-mechanisms"]], "Desktop Environment": [[31, "desktop-environment"]], "Detect": [[11, "detect"]], "Detecting Lateral Movement": [[30, "detecting-lateral-movement"]], "Detecting Vulnerable Functions": [[5, "detecting-vulnerable-functions"]], "Detecting changes": [[31, "detecting-changes"]], "Detection Mechanism": [[30, "detection-mechanism"]], "Detection of host discovery (recon)": [[3, "detection-of-host-discovery-recon"]], "Detection of network attacks": [[3, "detection-of-network-attacks"]], "Detection of network port scanning": [[3, "detection-of-network-port-scanning"]], "Detection of reverse shell port": [[3, "detection-of-reverse-shell-port"]], "Detection of wireless network attacks": [[3, "detection-of-wireless-network-attacks"]], "Determine Oracle SID": [[19, "determine-oracle-sid"]], "Determine Oracle Version": [[19, "determine-oracle-version"]], "Determine the PDC emulator for a domain": [[20, "determine-the-pdc-emulator-for-a-domain"]], "Determinism": [[11, "determinism"]], "DevOps and CI/CD": [[32, "devops-and-ci-cd"]], "DevSec Hardening Framework": [[30, "devsec-hardening-framework"]], "Developer\u2019s Certificate of Origin": [[34, "developer-s-certificate-of-origin"]], "Developing OSS Strategy": [[34, "developing-oss-strategy"]], "Development Processes/Defense-in-Breadth: Individual Software Development & Deployment Processes": [[33, "development-processes-defense-in-breadth-individual-software-development-deployment-processes"]], "Device Candidates for Sanitization": [[11, "device-candidates-for-sanitization"]], "Device files": [[31, "device-files"]], "Device supervision via SNMP V3": [[10, "device-supervision-via-snmp-v3"]], "Diameter Routing Agent - DRA or Probe DRA?": [[12, "diameter-routing-agent-dra-or-probe-dra"]], "Difference between su and sudo": [[31, "difference-between-su-and-sudo"]], "Different Base": [[2, "different-base"]], "Different ICS Terms": [[11, "different-ics-terms"]], "Different public exponent (e) and the same modulus (N)": [[2, "different-public-exponent-e-and-the-same-modulus-n"]], "Dig": [[18, "dig"]], "Digital signatures (authentication)": [[33, "digital-signatures-authentication"]], "Direct Parameter Access": [[0, "direct-parameter-access"]], "Directory Symlink": [[37, "directory-symlink"], [40, "directory-symlink"]], "Disable Net Session Enumeration ( NetCease )": [[8, "disable-net-session-enumeration-netcease"]], "Disable Powershell Remoting": [[20, "disable-powershell-remoting"]], "Disable drivers": [[7, "disable-drivers"]], "Disabled Elements": [[5, "disabled-elements"]], "Disabling/ Enabling a user": [[14, "disabling-enabling-a-user"]], "Disadvantages": [[11, "disadvantages"], [32, "disadvantages"]], "Discarding output with /dev/null": [[31, "discarding-output-with-dev-null"]], "Discovering Hidden Content": [[5, "discovering-hidden-content"]], "Discovering ICF Services with Metasploit": [[24, "discovering-icf-services-with-metasploit"]], "Discovering the Computers and Domain Controllers without scanning the network": [[20, "discovering-the-computers-and-domain-controllers-without-scanning-the-network"]], "Discovering the Service Accounts": [[20, "discovering-the-service-accounts"]], "Discrete": [[11, "discrete"]], "Disk": [[39, "disk"], [40, "disk"]], "Disk Forensics": [[3, "disk-forensics"]], "Disk-to-Disk Copying (dd)": [[31, "disk-to-disk-copying-dd"]], "Displaying user info": [[14, "displaying-user-info"]], "Distributed Control System (DCS)": [[11, "distributed-control-system-dcs"]], "Distributed Network Protocol 3 (DNP3)": [[11, "distributed-network-protocol-3-dnp3"]], "Distributed Tracing": [[32, "distributed-tracing"]], "Distribution": [[11, "distribution"], [31, "distribution"]], "Distribution Architecture": [[10, "distribution-architecture"]], "Distribution Substation Architecture": [[10, "distribution-substation-architecture"]], "Docker": [[32, "docker"], [32, "docker-1"]], "Docker - Debugging": [[32, "docker-debugging"]], "Docker Group": [[39, "docker-group"], [40, "docker-group"]], "Docker Networking": [[32, "docker-networking"]], "Docker Plugins": [[32, "docker-plugins"]], "Docker Storage Backends": [[32, "docker-storage-backends"]], "Docker Swarm": [[32, "docker-swarm"]], "Document List": [[19, "document-list"]], "Domain Information": [[20, "domain-information"]], "Domain Name Server": [[30, "domain-name-server"]], "Domain Password Policy": [[20, "domain-password-policy"], [20, "id8"]], "Domain Trusts": [[20, "domain-trusts"]], "DomainTools Reverse IP Lookup": [[18, "domaintools-reverse-ip-lookup"]], "Downloading and Installing Reusable Software": [[33, "downloading-and-installing-reusable-software"]], "Dump Lsass.exe (Local Security Authority Subsystem Service)": [[21, "dump-lsass-exe-local-security-authority-subsystem-service"]], "Dump an inode to a file": [[39, "dump-an-inode-to-a-file"], [40, "dump-an-inode-to-a-file"]], "Dump logon cleartext passwords with WCE?": [[21, "dump-logon-cleartext-passwords-with-wce"]], "Dump the contents of file1": [[39, "dump-the-contents-of-file1"], [40, "dump-the-contents-of-file1"]], "Dumpster Driving": [[11, "dumpster-driving"]], "Dynamic Analysis": [[33, "dynamic-analysis"]], "Dynamic Application Security Testing": [[33, "dynamic-application-security-testing"]], "EIP Offsets?": [[0, "eip-offsets"]], "ELK (Elasticsearch, Logstash, and Kibana)": [[30, "elk-elasticsearch-logstash-and-kibana"]], "EMS Functions": [[10, "ems-functions"]], "Editing text files using Vi": [[31, "editing-text-files-using-vi"]], "Education": [[34, "education"]], "Elasticsearch": [[32, "elasticsearch"]], "Electric Vehicle Charging Infrastructure": [[9, "electric-vehicle-charging-infrastructure"]], "Electrical Grid": [[10, "electrical-grid"]], "Electrical parameters of a substation": [[10, "electrical-parameters-of-a-substation"]], "Electricity": [[10, "electricity"]], "Electricity Distribution Network": [[10, "electricity-distribution-network"]], "Electricity consumption": [[10, "electricity-consumption"]], "Elevated Risk": [[11, "elevated-risk"]], "Elevating privilege from a suid binary": [[37, "elevating-privilege-from-a-suid-binary"], [40, "elevating-privilege-from-a-suid-binary"]], "Email Server": [[39, "email-server"], [40, "email-server"]], "Embedded Devices Vulns": [[16, "embedded-devices-vulns"]], "Embedded Systems": [[11, "embedded-systems"]], "Emergency Services": [[11, "emergency-services"]], "Emulating a Firmware Binary": [[16, "emulating-a-firmware-binary"]], "Enabling PS-Remoting": [[20, "enabling-ps-remoting"]], "Enabling or disabling a system service from starting up at system boot": [[31, "enabling-or-disabling-a-system-service-from-starting-up-at-system-boot"]], "Encoding Schemes": [[5, "encoding-schemes"]], "Encrypted Files": [[38, "encrypted-files"], [40, "encrypted-files"]], "Encrypted Firmware?": [[16, "encrypted-firmware"]], "Encrypting PDF Files with pdftk": [[31, "encrypting-pdf-files-with-pdftk"]], "Encrypting PDF files with qpdf": [[31, "encrypting-pdf-files-with-qpdf"]], "Encryption": [[33, "encryption"]], "End-Point Review": [[23, "end-point-review"]], "Endpoint Mapper Service Discovery": [[19, "endpoint-mapper-service-discovery"]], "Energy": [[11, "energy"]], "Engineering Workstations": [[11, "engineering-workstations"]], "Enhanced Subscriber Management ESM": [[12, "enhanced-subscriber-management-esm"]], "Enterprise Services without scanning of Network": [[20, "enterprise-services-without-scanning-of-network"]], "Enum Domain groups": [[20, "enum-domain-groups"]], "Enum Domain info": [[20, "enum-domain-info"]], "Enum Domain users": [[20, "enum-domain-users"]], "Enum Group Information and Group Membership": [[20, "enum-group-information-and-group-membership"]], "Enum commands": [[20, "enum-commands"]], "Enum4linux": [[20, "enum4linux"]], "Enumerate SAP Systems": [[24, "enumerate-sap-systems"]], "Enumerate specific User/ computer information by RID": [[20, "enumerate-specific-user-computer-information-by-rid"]], "Enumeration with Domain Name (e.g. example.com) using external websites": [[18, "enumeration-with-domain-name-e-g-example-com-using-external-websites"]], "Environment Variable Abuse": [[37, "environment-variable-abuse"], [40, "environment-variable-abuse"]], "Environment Variables": [[31, "environment-variables"], [36, "environment-variables"], [37, "environment-variables"], [40, "environment-variables"]], "Envoy": [[32, "envoy"]], "Equality Tests": [[31, "equality-tests"]], "Equipment identity register (EIR)": [[12, "equipment-identity-register-eir"]], "Equities and Liabilities": [[25, "equities-and-liabilities"]], "Erasing": [[31, "erasing"]], "Error Based": [[5, "error-based"]], "Esoteric programming language": [[2, "esoteric-programming-language"]], "Estimate file space usage": [[31, "estimate-file-space-usage"]], "EternalBlue": [[3, "eternalblue"]], "EventLog AD?": [[20, "eventlog-ad"]], "Examining Data": [[0, "examining-data"], [0, "id2"]], "Examining Frames": [[0, "examining-frames"]], "Examining Memory": [[0, "examining-memory"]], "Examining Registers": [[0, "examining-registers"]], "Examining functions": [[0, "examining-functions"]], "Example": [[0, "example"], [5, "example"], [6, "example"], [10, "example"], [20, "example"], [20, "id17"], [31, "example"], [37, "example"]], "Example Alerts for Anomaly Detection": [[11, "example-alerts-for-anomaly-detection"]], "Example Rule Variables": [[11, "example-rule-variables"]], "Example Rules": [[11, "example-rules"]], "Example: Delete empty file and directories": [[31, "example-delete-empty-file-and-directories"]], "Example: Parameter ,": [[31, "example-parameter-1"]], "Example: Parameter ^": [[31, "example-parameter"]], "Example: Parameter ~": [[31, "example-parameter-2"]], "Example: Remove all files that end with .swp": [[31, "example-remove-all-files-that-end-with-swp"]], "Examples": [[4, "examples"], [10, "examples"], [20, "examples"], [20, "id16"], [31, "examples"], [39, "examples"], [40, "examples"]], "Examples of ICS attacks": [[11, "examples-of-ics-attacks"]], "Executable Stack": [[0, "executable-stack"]], "Executing Python script with sudo": [[37, "executing-python-script-with-sudo"], [40, "executing-python-script-with-sudo"]], "Executing previous command": [[31, "executing-previous-command"]], "Execution modes": [[31, "execution-modes"]], "Execution of binary from Relative location than Absolute": [[37, "execution-of-binary-from-relative-location-than-absolute"], [40, "execution-of-binary-from-relative-location-than-absolute"]], "Expect": [[36, "expect"], [40, "expect"]], "Exploitation": [[20, "exploitation"]], "Exploitation using I2C and SPI": [[16, "exploitation-using-i2c-and-spi"]], "Exploiting": [[39, "exploiting"], [40, "exploiting"]], "Exploiting I2C Security": [[16, "exploiting-i2c-security"]], "Explore Mounted FileSystem": [[31, "explore-mounted-filesystem"]], "Exploring Filesystem and Directories": [[31, "exploring-filesystem-and-directories"]], "Exploring SAP": [[24, "exploring-sap"]], "Exploring the Network Further": [[18, "exploring-the-network-further"]], "Export a environment variable": [[0, "export-a-environment-variable"]], "External": [[11, "external"]], "Extra Hardening": [[8, "extra-hardening"]], "Extracting RAW pictures from memory dumps": [[3, "extracting-raw-pictures-from-memory-dumps"]], "FEP Server": [[10, "fep-server"]], "FOSSology": [[34, "fossology"]], "FSMO": [[20, "fsmo"]], "FTP": [[39, "ftp"], [40, "ftp"]], "FTP Authentication Scanner": [[19, "ftp-authentication-scanner"]], "FTP Bounce Port Scanner": [[19, "ftp-bounce-port-scanner"]], "FTP Version Scanner": [[19, "ftp-version-scanner"]], "FTP via Wget": [[38, "ftp-via-wget"], [40, "ftp-via-wget"]], "FakeSMTP": [[38, "fakesmtp"], [40, "fakesmtp"]], "Falco": [[14, "falco"]], "Features and Implementation of Service Mesh": [[32, "features-and-implementation-of-service-mesh"]], "Fedora CoreOS": [[32, "fedora-coreos"]], "Feedback": [[26, "feedback"]], "Field Controllers": [[11, "field-controllers"], [11, "id4"]], "Field Devices": [[11, "field-devices"], [11, "id19"]], "Field Devices - Input": [[11, "field-devices-input"]], "Field Devices - Output": [[11, "field-devices-output"]], "Field RTU": [[10, "field-rtu"]], "Fieldbus": [[11, "fieldbus"]], "Fieldbus \u2013 Levels": [[11, "fieldbus-levels"]], "Fieldbus \u2013 OSI vs Fieldbus Model": [[11, "fieldbus-osi-vs-fieldbus-model"]], "Figure out the network adapters": [[8, "figure-out-the-network-adapters"]], "Figuring out different OS in Domain": [[8, "figuring-out-different-os-in-domain"]], "File Forensics": [[3, "file-forensics"]], "File Formats": [[3, "file-formats"]], "File Notice": [[34, "file-notice"]], "File Permissions Modes and chmod": [[31, "file-permissions-modes-and-chmod"]], "File Servers": [[21, "file-servers"]], "File System Superblock": [[31, "file-system-superblock"]], "File upload forms/ functions": [[39, "file-upload-forms-functions"], [40, "file-upload-forms-functions"]], "Files and Others": [[11, "files-and-others"]], "Files containing password inside them?": [[37, "files-containing-password-inside-them"]], "Filesystem": [[31, "filesystem"]], "Filter Evasion": [[5, "filter-evasion"]], "Filter, Printer Drivers, Backend": [[31, "filter-printer-drivers-backend"]], "Filtering in LFI": [[39, "filtering-in-lfi"], [40, "filtering-in-lfi"]], "Finance": [[11, "finance"]], "Find all registered SQL Servers, Dcom, dnscache etc.": [[20, "find-all-registered-sql-servers-dcom-dnscache-etc"]], "Find files/ folder owned by the user": [[37, "find-files-folder-owned-by-the-user"], [40, "find-files-folder-owned-by-the-user"]], "Find the offset of system, exit and /bin/sh": [[0, "find-the-offset-of-system-exit-and-bin-sh"]], "Finding DNS, MX, AAAA, A using": [[18, "finding-dns-mx-aaaa-a-using"]], "Finding Shared Libraries": [[31, "finding-shared-libraries"]], "Finding User": [[14, "finding-user"]], "Finding and using previous commands": [[31, "finding-and-using-previous-commands"]], "Finding information": [[3, "finding-information"]], "Finding most open ports in nmap scan": [[31, "finding-most-open-ports-in-nmap-scan"]], "Finding the Admin Groups": [[20, "finding-the-admin-groups"]], "Finding the Computers": [[20, "finding-the-computers"]], "Finding the Domain Name": [[20, "finding-the-domain-name"]], "Finding the IP address": [[35, "finding-the-ip-address"], [40, "finding-the-ip-address"]], "Finding the Users:": [[20, "finding-the-users"]], "Finger": [[19, "finger"]], "Finger Service User Enumerator": [[19, "finger-service-user-enumerator"]], "Fingerprinting": [[18, "fingerprinting"]], "Firefox/ Thunderbird/ Seabird": [[38, "firefox-thunderbird-seabird"], [40, "firefox-thunderbird-seabird"]], "Firewall": [[11, "firewall"], [31, "firewall"]], "Firewall Configuration": [[37, "firewall-configuration"]], "Firewall Implementation": [[11, "firewall-implementation"]], "Firewall Logs": [[11, "firewall-logs"]], "Firewall Rules": [[11, "firewall-rules"]], "Firewalls": [[11, "firewalls"], [23, "firewalls"]], "Firmware Diffing": [[16, "firmware-diffing"]], "Firmware Internals": [[16, "firmware-internals"]], "Firmware Reverse Engineering and Exploitation": [[16, "firmware-reverse-engineering-and-exploitation"]], "Firmware, Software and Applications": [[16, "firmware-software-and-applications"]], "First stage": [[31, "first-stage"]], "First things": [[38, "first-things"], [40, "first-things"]], "Fluentd": [[32, "fluentd"]], "Follow-up": [[11, "follow-up"]], "Food and Agricultrual": [[11, "food-and-agricultrual"]], "For Debian-based OS, we use": [[14, "for-debian-based-os-we-use"]], "For ICCP data": [[10, "for-iccp-data"]], "For Loop": [[31, "for-loop"]], "For RTU data": [[10, "for-rtu-data"]], "For Redhat/CentOS, we use": [[14, "for-redhat-centos-we-use"]], "For systems using the BIOS/MBR method": [[31, "for-systems-using-the-bios-mbr-method"]], "For systems using the EFI/UEFI method": [[31, "for-systems-using-the-efi-uefi-method"]], "Foreign Architectures": [[1, "foreign-architectures"]], "Forensics": [[3, "forensics"]], "Forensics Tools used": [[3, "forensics-tools-used"]], "Forest Global Catalogs": [[20, "forest-global-catalogs"]], "Forest Information": [[20, "forest-information"]], "Forest Trusts": [[20, "forest-trusts"]], "Format String Examples": [[0, "format-string-examples"]], "Format String Vulnerability": [[0, "format-string-vulnerability"]], "Formats": [[3, "formats"]], "Freshening Packages": [[31, "freshening-packages"]], "From Commands": [[31, "from-commands"]], "From Files": [[31, "from-files"]], "From FreeIPA": [[14, "from-freeipa"]], "From Nothing to a Unprivileged Shell": [[36, "from-nothing-to-a-unprivileged-shell"], [40, "from-nothing-to-a-unprivileged-shell"]], "From Puppet": [[14, "from-puppet"]], "From Puppet Node": [[14, "from-puppet-node"]], "From PuppetServer": [[14, "from-puppetserver"]], "From the breaker to the user": [[10, "from-the-breaker-to-the-user"]], "From the meter to the breaker": [[10, "from-the-meter-to-the-breaker"]], "Full access to the targeted user\u2019s mailbox": [[21, "full-access-to-the-targeted-user-s-mailbox"]], "Functions": [[1, "functions"]], "Functions implemented in SCADA/ EMS at RLDC and SLDC levels": [[10, "functions-implemented-in-scada-ems-at-rldc-and-sldc-levels"]], "Fundamental Analysis": [[25, "fundamental-analysis"]], "Fundamental Rule 1": [[25, "fundamental-rule-1"]], "Fuzz testing": [[33, "fuzz-testing"]], "GDB Basics": [[0, "gdb-basics"]], "GDB: GNU debugger": [[31, "gdb-gnu-debugger"]], "GDPR": [[33, "gdpr"]], "GE": [[10, "ge"], [10, "id5"], [10, "id6"]], "GIT": [[31, "git"]], "GIT_SSH": [[38, "git-ssh"], [40, "git-ssh"]], "GIT_TEMPLATE_DIR": [[38, "git-template-dir"], [40, "git-template-dir"]], "GNU Info": [[31, "gnu-info"]], "GOMSFE": [[10, "gomsfe"]], "GOOSE": [[10, "goose"]], "GOOSE Communication": [[10, "goose-communication"]], "GOOSE, Why?": [[10, "goose-why"]], "GPG": [[38, "gpg"], [40, "gpg"]], "GUI and Terminal": [[31, "gui-and-terminal"]], "Gather Windows Credentials": [[21, "gather-windows-credentials"]], "Gather information from files": [[36, "gather-information-from-files"], [40, "gather-information-from-files"]], "Gathering Information": [[31, "gathering-information"]], "Gathering Screenshots for http* services": [[18, "gathering-screenshots-for-http-services"]], "General Concepts": [[25, "general-concepts"]], "General IT Security": [[11, "general-it-security"]], "General Tips": [[31, "general-tips"]], "Generating Wordlists": [[1, "generating-wordlists"]], "Generating new SSH host keys": [[31, "generating-new-ssh-host-keys"]], "Generation": [[10, "generation"], [11, "generation"]], "Generation to the Consumption": [[10, "generation-to-the-consumption"]], "Generic Bug-Finding Tools: Quality Tools, Compiler Warnings, and Type-Checking Tools": [[33, "generic-bug-finding-tools-quality-tools-compiler-warnings-and-type-checking-tools"]], "Geographical Information System": [[10, "geographical-information-system"]], "Get a CVE and Compute CVSS": [[33, "get-a-cve-and-compute-cvss"]], "Get sessions of remote machines": [[20, "get-sessions-of-remote-machines"]], "Get-ChildItem Mode Values": [[38, "get-childitem-mode-values"], [40, "get-childitem-mode-values"]], "Get-Hash": [[38, "get-hash"], [40, "get-hash"]], "Getting Help": [[31, "getting-help"]], "Getting inputs": [[0, "getting-inputs"]], "Getting inputs from a file": [[0, "getting-inputs-from-a-file"]], "Getting inputs from char *argv[]": [[0, "getting-inputs-from-char-argv"]], "Getting inputs from network": [[0, "getting-inputs-from-network"]], "Getting inputs from stdin": [[0, "getting-inputs-from-stdin"]], "Getting out of restricted shell": [[36, "getting-out-of-restricted-shell"]], "Getting out of rvim": [[36, "getting-out-of-rvim"], [40, "getting-out-of-rvim"]], "Ghost script": [[31, "ghost-script"]], "Git client Privilege Escalation": [[38, "git-client-privilege-escalation"], [40, "git-client-privilege-escalation"]], "GitHub Repositories - Types": [[32, "github-repositories-types"]], "GitLab": [[13, "gitlab"], [13, "gitlab-1"]], "Global Offset Table": [[0, "global-offset-table"]], "GlusterFS": [[32, "glusterfs"]], "Golden Ratio Base": [[2, "golden-ratio-base"]], "Good Password Practices": [[31, "good-password-practices"]], "Good material": [[33, "good-material"]], "Google Cloud Functions": [[32, "google-cloud-functions"]], "Google Dorks (search operators)": [[18, "google-dorks-search-operators"]], "Google-Vulns": [[36, "google-vulns"], [40, "google-vulns"]], "Governing Board (tighter control by smaller groups)": [[34, "governing-board-tighter-control-by-smaller-groups"]], "Government Facilities": [[11, "government-facilities"]], "Gpresult": [[23, "gpresult"]], "Grafana": [[13, "grafana"], [13, "grafana-1"]], "Graphical Help System": [[31, "graphical-help-system"]], "GrassMarlin (Retired)": [[11, "grassmarlin-retired"]], "Grep in input box?": [[38, "grep-in-input-box"], [40, "grep-in-input-box"]], "Guess/Bruteforce USER/PASS": [[19, "guess-bruteforce-user-pass"]], "HIDS": [[11, "hids"]], "HIDS Deployment": [[11, "hids-deployment"]], "HTML Encoding": [[5, "html-encoding"]], "HTTP": [[19, "http"], [38, "http"], [39, "http"], [40, "http"], [40, "id41"]], "HTTP 404 Custom Page": [[38, "http-404-custom-page"], [40, "http-404-custom-page"]], "HTTP Authentication": [[5, "http-authentication"]], "HTTP Cookies": [[5, "http-cookies"]], "HTTP Headers": [[5, "http-headers"]], "HTTP Methods": [[5, "http-methods"]], "HTTP Referer": [[38, "http-referer"], [40, "http-referer"]], "HTTP Requests": [[5, "http-requests"]], "HTTP Response": [[5, "http-response"]], "HTTP SSL Certificate Information": [[19, "http-ssl-certificate-information"]], "HTTP SSL/TLS Version Detection (POODLE scanner)": [[19, "http-ssl-tls-version-detection-poodle-scanner"]], "HackRF": [[16, "hackrf"]], "Handling Serialized Data": [[5, "handling-serialized-data"]], "Hard Limit": [[31, "hard-limit"]], "Hard Links": [[31, "hard-links"]], "Hard and Soft Links": [[31, "hard-and-soft-links"]], "Hardcoded Secrets": [[16, "hardcoded-secrets"]], "Harden compilers": [[7, "harden-compilers"]], "Hardware": [[16, "hardware"]], "Hardware Security": [[31, "hardware-security"]], "Hashicorp Nomad": [[32, "hashicorp-nomad"]], "Hazards": [[11, "hazards"]], "Hazards vs. Threats": [[11, "hazards-vs-threats"]], "Healthcare and Public Health": [[11, "healthcare-and-public-health"]], "Heap Exploitation": [[0, "heap-exploitation"]], "Helm": [[14, "helm"]], "Help Available": [[34, "help-available"]], "Help for module http-post-form": [[36, "help-for-module-http-post-form"]], "Heroku": [[32, "heroku"]], "Hex": [[1, "hex"]], "Hex Encoding": [[5, "hex-encoding"]], "Hex File Header and ASCII Equivalent": [[3, "hex-file-header-and-ascii-equivalent"]], "Hex from little endian to big-endian": [[1, "hex-from-little-endian-to-big-endian"]], "Hex to ASCII": [[1, "hex-to-ascii"]], "Hidden DCERPC Service Discovery": [[19, "hidden-dcerpc-service-discovery"]], "Hidden Form Fields": [[5, "hidden-form-fields"]], "Hierarchical Structure": [[10, "hierarchical-structure"]], "Hierarchy at Regional Level": [[10, "hierarchy-at-regional-level"]], "High Impact Exploitation": [[21, "high-impact-exploitation"]], "Hijack the Global Offset Table with pointers": [[0, "hijack-the-global-offset-table-with-pointers"]], "Hijacking Functions": [[0, "hijacking-functions"]], "Historian": [[10, "historian"]], "Historian Server": [[10, "historian-server"]], "History + Logs": [[11, "history-logs"]], "Home": [[31, "home"]], "Home Router with builtin Wi-Fi": [[30, "home-router-with-builtin-wi-fi"]], "Home location register (HLR)": [[12, "home-location-register-hlr"]], "Honeypots & Canaries": [[11, "honeypots-canaries"]], "Host": [[14, "host"]], "Host Discovery": [[11, "host-discovery"]], "Host Driver": [[32, "host-driver"]], "Hosting Providers: GitHub and More": [[32, "hosting-providers-github-and-more"]], "Hosts, Services, Machine Identity and Authentication": [[14, "hosts-services-machine-identity-and-authentication"]], "How SSSD Manages Host Keys": [[14, "how-sssd-manages-host-keys"]], "How SSSD Manages User Keys": [[14, "how-sssd-manages-user-keys"]], "How does SPI work?": [[16, "how-does-spi-work"]], "How to Sanitize your Data": [[11, "how-to-sanitize-your-data"]], "How to get Firmware Binary": [[16, "how-to-get-firmware-binary"]], "How?": [[11, "how"], [11, "id15"], [11, "id18"]], "Human Resources": [[11, "human-resources"]], "Human element": [[11, "human-element"]], "Human-Machine Interface (HMI)": [[11, "human-machine-interface-hmi"]], "Hunting for a particular User?": [[20, "hunting-for-a-particular-user"]], "Hybrid": [[11, "hybrid"]], "Hydra": [[5, "hydra"], [6, "hydra"]], "Hydroelectric generating station": [[10, "hydroelectric-generating-station"]], "Hypervisor": [[21, "hypervisor"], [32, "hypervisor"]], "I/O Redirection": [[31, "i-o-redirection"]], "I2C (Inter-Intergrate Circuit)": [[16, "i2c-inter-intergrate-circuit"]], "ICCP": [[10, "iccp"]], "ICCP Conformance Blocks": [[10, "iccp-conformance-blocks"]], "ICCP Security": [[11, "iccp-security"]], "ICCP Server": [[10, "iccp-server"]], "ICMP Shell": [[36, "icmp-shell"], [40, "icmp-shell"]], "ICS": [[11, "ics"]], "ICS Common Protocols": [[11, "ics-common-protocols"]], "ICS Communication Channels": [[11, "ics-communication-channels"]], "ICS Control Loop \u2013 Cascading Control": [[11, "ics-control-loop-cascading-control"]], "ICS Cybersecurity Risk": [[11, "ics-cybersecurity-risk"]], "ICS Data Flow": [[11, "ics-data-flow"]], "ICS Network segmentation": [[11, "ics-network-segmentation"]], "ICS Process Flow": [[11, "ics-process-flow"]], "ICS Process Flow \u2013 Control Loop": [[11, "ics-process-flow-control-loop"]], "ICS Process Flow \u2013 Diagram": [[11, "ics-process-flow-diagram"]], "ICS Segments In-Depth": [[11, "ics-segments-in-depth"]], "ICS challenges": [[11, "ics-challenges"]], "ICS components": [[11, "ics-components"]], "ICS topology": [[11, "ics-topology"]], "IDA": [[4, "ida"]], "IDS Sensor Placement": [[11, "ids-sensor-placement"]], "IDS Types": [[11, "ids-types"]], "IDS vs. IPS": [[11, "ids-vs-ips"]], "IDS/IPS Functions": [[11, "ids-ips-functions"]], "IEC 61850 GOOSE, What?": [[10, "iec-61850-goose-what"]], "IEC-60870-5-104": [[10, "iec-60870-5-104"]], "IED": [[10, "ied"]], "IED Interfaces": [[10, "ied-interfaces"]], "IIS": [[19, "iis"]], "IIS - Web.config Upload": [[39, "iis-web-config-upload"], [40, "iis-web-config-upload"]], "IP": [[11, "ip"]], "IPoE": [[12, "ipoe"]], "IRB": [[36, "irb"], [40, "irb"]], "IT": [[11, "it"]], "IT Infrastructure Components": [[11, "it-infrastructure-components"]], "IT Network": [[10, "it-network"]], "IT Vulnerabilities": [[11, "it-vulnerabilities"]], "IT and ICS": [[11, "it-and-ics"]], "IT and ICS Communication": [[11, "it-and-ics-communication"]], "IT and ICS Operations": [[11, "it-and-ics-operations"]], "IT and ICS Security": [[11, "it-and-ics-security"]], "IT and ICS Support": [[11, "it-and-ics-support"]], "IT vs. ICS Priorities": [[11, "it-vs-ics-priorities"]], "IT-OT Convergence": [[11, "it-ot-convergence"]], "IaaS providers": [[32, "iaas-providers"]], "Ident-user-enum": [[19, "ident-user-enum"]], "Identification": [[11, "identification"]], "Identify": [[11, "identify"]], "Identify Critical Information": [[11, "identify-critical-information"]], "Identify security focuses with integration of IT and ICS": [[11, "identify-security-focuses-with-integration-of-it-and-ics"]], "Identifying Alive IP Addresses": [[18, "identifying-alive-ip-addresses"]], "Identifying Entry Points for User Input": [[5, "identifying-entry-points-for-user-input"]], "Identifying JTAG pinouts": [[16, "identifying-jtag-pinouts"]], "Identifying Server-Side Functionality": [[5, "identifying-server-side-functionality"]], "Identifying Server-Side Technologies": [[5, "identifying-server-side-technologies"]], "Identifying Users": [[31, "identifying-users"]], "Identifying service versions": [[18, "identifying-service-versions"]], "Identifying the Admin Accounts": [[20, "identifying-the-admin-accounts"]], "Identifying the Groups with Local Admin Rights to windows machines": [[20, "identifying-the-groups-with-local-admin-rights-to-windows-machines"]], "Identities - usernames": [[21, "identities-usernames"]], "Identity Management Clients": [[14, "identity-management-clients"]], "Identity Management Servers": [[14, "identity-management-servers"]], "Identity management domain": [[14, "identity-management-domain"]], "Identity of a parameter": [[10, "identity-of-a-parameter"]], "If Statement": [[31, "if-statement"]], "Images": [[3, "images"]], "Images and Containers": [[32, "images-and-containers"]], "Images type": [[3, "images-type"]], "Impacket psexec": [[20, "impacket-psexec"]], "Impacket psexec/ smbexe/ wmiexec": [[20, "impacket-psexec-smbexe-wmiexec"]], "Impacket smbexec": [[20, "impacket-smbexec"]], "Impacket wmiexec": [[20, "impacket-wmiexec"]], "Important File Formats": [[31, "important-file-formats"]], "Important concepts": [[31, "important-concepts"]], "Important configuration files - For Debian/Ubuntu based Systems": [[31, "important-configuration-files-for-debian-ubuntu-based-systems"]], "Important things to note": [[0, "important-things-to-note"]], "Incident Response Team": [[11, "incident-response-team"]], "Incident Response and Forensics": [[11, "incident-response-and-forensics"]], "Incident Response and Vulnerability Disclosure": [[33, "incident-response-and-vulnerability-disclosure"]], "Individual": [[34, "individual"]], "Industrial Control Systems": [[11, "industrial-control-systems"]], "Industry": [[11, "industry"]], "InfluxDB": [[13, "influxdb"]], "InfluxDB2": [[13, "influxdb2"]], "Information": [[31, "information"]], "Information Elements": [[10, "information-elements"]], "Information Gathering for http* Services": [[18, "information-gathering-for-http-services"]], "Information Objects": [[10, "information-objects"]], "Information Protection": [[11, "information-protection"]], "Information Systems Acquisition, Development, and Maintenance": [[11, "information-systems-acquisition-development-and-maintenance"]], "Information Technology": [[11, "information-technology"]], "Information collection techniques": [[11, "information-collection-techniques"]], "Infrastructure Automation Tools": [[30, "infrastructure-automation-tools"]], "Infrastructure Pentest": [[41, null]], "Infrastructure as a Service": [[32, "infrastructure-as-a-service"]], "Initial Checks?": [[0, "initial-checks"]], "Initial Compromise": [[18, "initial-compromise"]], "Initial Configuration": [[14, "initial-configuration"]], "Initial Enumeration": [[36, "initial-enumeration"]], "Initial RAM Disk": [[31, "initial-ram-disk"]], "Initial Recon": [[35, "initial-recon"]], "Initial cloud concepts": [[32, "initial-cloud-concepts"]], "Initial recon": [[3, "initial-recon"]], "Initialize the connection": [[20, "initialize-the-connection"]], "Inline Comments": [[5, "inline-comments"]], "Input redirection": [[31, "input-redirection"]], "Input/Output": [[11, "input-output"]], "Insert Mode": [[31, "insert-mode"]], "Inside - Internal": [[18, "inside-internal"]], "Insider Threats": [[11, "insider-threats"]], "Install AD-Domain-Services": [[8, "install-ad-domain-services"]], "Install ADDS-Forest": [[8, "install-adds-forest"]], "Install Puppet": [[14, "install-puppet"]], "Install Puppet Agent": [[15, "install-puppet-agent"]], "Install Starboard Security Tool": [[14, "install-starboard-security-tool"]], "Install/upgrade": [[31, "install-upgrade"]], "Installing Pwntools": [[1, "installing-pwntools"]], "Installing packages": [[31, "installing-packages"]], "Installing software for JTAG debugging": [[16, "installing-software-for-jtag-debugging"]], "Installing tftp - Windows": [[39, "installing-tftp-windows"], [40, "installing-tftp-windows"]], "Installing the Domain Services": [[8, "installing-the-domain-services"]], "Installing/Removing/Upgrading Packages": [[31, "installing-removing-upgrading-packages"], [31, "installingremovingupgrading-packages-1"], [31, "installingremovingupgrading-packages-2"]], "Installing/Upgrading/Uninstalling Packages": [[31, "installing-upgrading-uninstalling-packages"]], "Integar Overflow": [[0, "integar-overflow"]], "Integrated firewall": [[10, "integrated-firewall"]], "Intelligence Gathering": [[18, "intelligence-gathering"]], "Intelligent Electronic Device (IED)": [[11, "intelligent-electronic-device-ied"]], "Intelligent Electronic Devices": [[10, "intelligent-electronic-devices"]], "Intent": [[11, "intent"]], "Intentional Threats": [[11, "intentional-threats"]], "Inter-Control Center Communications Protocol (ICCP)": [[11, "inter-control-center-communications-protocol-iccp"]], "Interactive PowerShell session": [[20, "interactive-powershell-session"]], "Interactive Sessions": [[1, "interactive-sessions"]], "Interesting Blog": [[3, "interesting-blog"]], "Interesting Stuff": [[31, "interesting-stuff"]], "Interesting files to look at? Possibly inside User directories (Desktop, Documents, etc)?": [[37, "interesting-files-to-look-at-possibly-inside-user-directories-desktop-documents-etc"]], "Internal": [[11, "internal"]], "Internal Infrastructure Mapping": [[18, "internal-infrastructure-mapping"]], "Internal Network Range Identification": [[18, "internal-network-range-identification"]], "Internal Portal Links": [[18, "internal-portal-links"]], "International Standards/ Protocols": [[10, "international-standards-protocols"]], "Internet Proxy Server": [[30, "internet-proxy-server"]], "Internet and Intranet Access": [[11, "internet-and-intranet-access"]], "Internet of Things": [[32, "internet-of-things"]], "Intrigue.io": [[18, "intrigue-io"]], "Introduction": [[3, "introduction"], [5, "introduction"], [23, "introduction"], [25, "introduction"]], "Introduction to Leadership vs Control and Why Projects Fail": [[34, "introduction-to-leadership-vs-control-and-why-projects-fail"]], "Introduction to Respecting and Encouraging Diversity in OSS": [[34, "introduction-to-respecting-and-encouraging-diversity-in-oss"]], "Intrusion Detection System": [[11, "intrusion-detection-system"]], "Inventory": [[30, "inventory"]], "Investing in stock markets": [[25, "investing-in-stock-markets"]], "IoT Pentest": [[16, "iot-pentest"]], "Istio": [[32, "istio"]], "Istio Architecture": [[32, "istio-architecture"]], "Istio Components": [[32, "istio-components"]], "JBoss": [[19, "jboss"]], "JSP": [[36, "jsp"], [40, "jsp"]], "JTAG": [[16, "jtag"]], "JXplorer": [[20, "jxplorer"]], "Java": [[36, "java"], [40, "java"]], "Java RMI Server Insecure Default Configuration Java Code Execution": [[19, "java-rmi-server-insecure-default-configuration-java-code-execution"]], "Java RMI Server Insecure Endpoint Code Execution Scanner": [[19, "java-rmi-server-insecure-endpoint-code-execution-scanner"]], "Java keystore file": [[38, "java-keystore-file"], [40, "java-keystore-file"]], "Jenkins": [[19, "jenkins"], [32, "jenkins"]], "John The Ripper": [[21, "john-the-ripper"]], "Jump Statements": [[4, "jump-statements"]], "JupyterHub": [[13, "jupyterhub"], [13, "jupyterhub-1"]], "Kaitai Struct": [[3, "kaitai-struct"]], "Keep the stdin open after injection": [[0, "keep-the-stdin-open-after-injection"]], "Kernel": [[31, "kernel"]], "Kernel Hardening: Sysctl Values": [[7, "kernel-hardening-sysctl-values"]], "Kernel Mode": [[31, "kernel-mode"]], "Kernel Modules": [[31, "kernel-modules"]], "Kernel, Init and Services": [[31, "kernel-init-and-services"]], "Key features and benefits": [[32, "key-features-and-benefits"]], "Key-Value Pair Store": [[32, "key-value-pair-store"]], "Keyboard Report Format": [[3, "keyboard-report-format"]], "Keyboard shortcuts": [[31, "keyboard-shortcuts"]], "Keycloak": [[13, "keycloak"]], "Kill the process": [[31, "kill-the-process"]], "Knockd": [[38, "knockd"], [40, "knockd"]], "Know your environment": [[11, "know-your-environment"]], "Korelogic Rules": [[21, "korelogic-rules"]], "Kubeadm Token": [[14, "kubeadm-token"]], "Kubectl": [[14, "kubectl"]], "Kubernetes": [[32, "kubernetes"]], "Kubernetes Additional Features": [[14, "kubernetes-additional-features"]], "Kubernetes Hosted Solutions": [[32, "kubernetes-hosted-solutions"]], "Kubernetes Networking": [[32, "kubernetes-networking"]], "Kuma": [[32, "kuma"]], "Kuma Architecture": [[32, "kuma-architecture"]], "Kuma Modes": [[32, "kuma-modes"]], "LAN/ WAN": [[11, "lan-wan"]], "LDAP-rootdse": [[19, "ldap-rootdse"]], "LD_DEBUG environment variable": [[0, "ld-debug-environment-variable"]], "LFI to Remote Code Execution": [[39, "lfi-to-remote-code-execution"], [40, "lfi-to-remote-code-execution"]], "LI": [[12, "li"]], "LIBC - Rpath": [[0, "libc-rpath"]], "LISTGROUP": [[19, "listgroup"]], "LM:NT/ NT-Hashes": [[21, "lm-nt-nt-hashes"]], "LSAT": [[23, "lsat"]], "LSB Stegonagraphy": [[3, "lsb-stegonagraphy"]], "LSB Stegonagraphy in Images": [[3, "lsb-stegonagraphy-in-images"]], "LTE": [[12, "lte"]], "LUA": [[39, "lua"], [40, "id47"]], "LXD": [[39, "lxd"], [40, "lxd"]], "Layers in IoT": [[16, "layers-in-iot"]], "Leading vs Controlling a Project": [[34, "leading-vs-controlling-a-project"]], "Learning": [[37, "learning"]], "Learning from the CTF : Web Exploitation": [[5, "learning-from-the-ctf-web-exploitation"], [6, "learning-from-the-ctf-web-exploitation"]], "Learning from the field : Securing your Debian": [[7, "learning-from-the-field-securing-your-debian"]], "Learning from the field : Wireless Pentesting": [[17, "learning-from-the-field-wireless-pentesting"]], "Leased Line": [[11, "leased-line"]], "Least Functionality": [[11, "least-functionality"]], "Least Privileges": [[11, "least-privileges"]], "Legal Banner": [[7, "legal-banner"]], "Length Limits": [[5, "length-limits"]], "Lessons Learned": [[11, "lessons-learned"]], "Liability": [[25, "liability"]], "License Types": [[34, "license-types"]], "Limitations": [[11, "limitations"]], "Limiting Disclosure and the FIRST Traffic Light Protocol (TLP)": [[33, "limiting-disclosure-and-the-first-traffic-light-protocol-tlp"]], "Line Comments": [[5, "line-comments"]], "Line Mode": [[31, "line-mode"]], "Line and word anchors": [[31, "line-and-word-anchors"]], "Linkerd": [[32, "linkerd"]], "Linters": [[30, "linters"]], "Linux": [[11, "linux"], [11, "id8"], [11, "id10"], [11, "id12"], [20, "linux"], [36, "linux"], [40, "linux"]], "Linux Applications": [[31, "linux-applications"]], "Linux Basics": [[31, "linux-basics"]], "Linux Binary pth-winexe": [[20, "linux-binary-pth-winexe"]], "Linux Boot Process": [[31, "linux-boot-process"]], "Linux Concepts": [[31, "linux-concepts"]], "Linux Development Process": [[31, "linux-development-process"]], "Linux Directories": [[31, "linux-directories"]], "Linux Families": [[31, "linux-families"]], "Linux Filesystem": [[31, "linux-filesystem"]], "Linux Operating systems": [[23, "linux-operating-systems"]], "Linux PDF Reader": [[31, "linux-pdf-reader"]], "Linux Privilege Escalation": [[37, "linux-privilege-escalation"], [40, "linux-privilege-escalation"]], "Linux Runlevels": [[31, "linux-runlevels"]], "List NTLM credentials in memory": [[21, "list-ntlm-credentials-in-memory"]], "List Rsync Modules": [[19, "list-rsync-modules"]], "List all commits for a specific file": [[31, "list-all-commits-for-a-specific-file"]], "List files": [[39, "list-files"], [40, "list-files"]], "List of equality tests": [[31, "list-of-equality-tests"]], "List the files with a long listing": [[39, "list-the-files-with-a-long-listing"], [40, "list-the-files-with-a-long-listing"]], "Listen to the interface": [[35, "listen-to-the-interface"], [40, "listen-to-the-interface"]], "Listing all services": [[31, "listing-all-services"]], "Load average": [[31, "load-average"]], "Local Administrator Password Solution LAPS": [[8, "local-administrator-password-solution-laps"]], "Local Port Forwarding": [[36, "local-port-forwarding"], [40, "local-port-forwarding"]], "Local Users": [[20, "local-users"]], "Local Virtualization": [[14, "local-virtualization"]], "Local code execution": [[20, "local-code-execution"]], "Locate Oracle Systems": [[19, "locate-oracle-systems"]], "Locating Applications": [[31, "locating-applications"]], "Log Sources and Management": [[11, "log-sources-and-management"]], "Log Transport": [[11, "log-transport"]], "Log files": [[31, "log-files"]], "Log files Permissions": [[7, "log-files-permissions"]], "Log sources": [[11, "log-sources"]], "Logging Architecture": [[11, "logging-architecture"]], "Login-Pages": [[38, "login-pages"], [40, "login-pages"]], "Logs Files": [[36, "logs-files"], [40, "logs-files"]], "Loopback?": [[21, "loopback"]], "Lotus Domino httpd": [[19, "lotus-domino-httpd"]], "Lua": [[36, "lua"], [40, "lua"]], "Lynis": [[23, "lynis"]], "Lynx": [[36, "lynx"], [40, "lynx"]], "MODE READER": [[19, "mode-reader"]], "MSB Steganography": [[3, "msb-steganography"]], "MSC": [[12, "msc"]], "MSF Meterpreter ELF": [[36, "msf-meterpreter-elf"], [40, "msf-meterpreter-elf"]], "MSSQL Login Utility": [[19, "mssql-login-utility"]], "MSSQL Ping Utility": [[19, "mssql-ping-utility"]], "MSSQL Schema Dump": [[19, "mssql-schema-dump"]], "MSSQL-MITM": [[19, "mssql-mitm"]], "MYSQL": [[36, "mysql"], [40, "mysql"]], "MYSQL Password Hashdump": [[19, "mysql-password-hashdump"]], "Mainstream": [[11, "mainstream"]], "Maintaining integrity": [[11, "maintaining-integrity"]], "Malbolge": [[2, "malbolge"]], "Manage KVM VMs": [[32, "manage-kvm-vms"]], "Manage Runlevels": [[31, "manage-runlevels"]], "Managing CUPS": [[31, "managing-cups"]], "Managing Data in Docker": [[32, "managing-data-in-docker"]], "Managing Jobs": [[31, "managing-jobs"]], "Managing Printing jobs": [[31, "managing-printing-jobs"]], "Managing Public SSH Keys for Hosts": [[14, "managing-public-ssh-keys-for-hosts"]], "Managing services": [[14, "managing-services"]], "Manipulate Data/Post Exploitation": [[19, "manipulate-data-post-exploitation"]], "Manipulating PDF": [[31, "manipulating-pdf"]], "Manipulating Text": [[31, "manipulating-text"]], "Manipulating integers": [[1, "manipulating-integers"]], "Manipulation protection": [[10, "manipulation-protection"]], "Manual Installation": [[14, "manual-installation-1"]], "Manual installation": [[14, "manual-installation"]], "Manufacturing (Discrete and Process)": [[11, "manufacturing-discrete-and-process"]], "Manufacturing Message Specification (MMS)": [[10, "manufacturing-message-specification-mms"]], "Mapping the Application": [[5, "mapping-the-application"], [5, "id2"]], "Mapping the Attack Surface": [[5, "mapping-the-attack-surface"]], "Marathon": [[32, "marathon"]], "Master Boot Record (MBR) and Boot Loader": [[31, "master-boot-record-mbr-and-boot-loader"]], "Master/Field Controller Relationships": [[11, "master-field-controller-relationships"]], "Mattermost": [[13, "mattermost"]], "Measurement and acquisition of electrical parameters": [[10, "measurement-and-acquisition-of-electrical-parameters"]], "Medium Enterprise": [[30, "medium-enterprise"]], "Member of Backup Operators elevate to Administrators": [[21, "member-of-backup-operators-elevate-to-administrators"]], "Memory": [[11, "memory"]], "Memory Forensics": [[3, "memory-forensics"]], "Memory and Addressing Modes": [[4, "memory-and-addressing-modes"]], "Mesh": [[32, "mesh"]], "Mesh Architecture": [[32, "mesh-architecture"]], "Metadata": [[3, "metadata"]], "MetalLB LoadBalancer (If the infrastructure is deployed on Bare Metal)": [[14, "metallb-loadbalancer-if-the-infrastructure-is-deployed-on-bare-metal"]], "Metasploit": [[19, "metasploit"], [19, "id1"], [19, "id3"], [19, "id5"], [19, "id7"], [19, "id9"], [19, "id14"], [19, "id15"], [19, "id17"], [19, "id20"], [19, "id26"], [19, "id27"], [19, "id31"], [19, "id32"], [19, "id35"], [19, "id36"], [19, "id38"], [19, "id40"], [19, "id42"], [19, "id48"], [19, "id51"], [19, "id53"], [19, "id59"], [19, "id62"], [19, "id63"], [19, "id65"], [19, "id69"], [19, "id71"], [19, "id81"]], "Metasploit Local Exploit Suggestor": [[37, "metasploit-local-exploit-suggestor"], [40, "metasploit-local-exploit-suggestor"]], "Metasploit MSFVenom": [[36, "metasploit-msfvenom"], [40, "metasploit-msfvenom"]], "Metasploit Web Delivery": [[21, "metasploit-web-delivery"]], "Metasploit psexec": [[20, "metasploit-psexec"]], "Metasploit shell upgrade": [[38, "metasploit-shell-upgrade"], [40, "metasploit-shell-upgrade"]], "Meter Data Acquisition System (MDAS)": [[10, "meter-data-acquisition-system-mdas"]], "Metering": [[10, "metering"]], "Method 1": [[3, "method-1"], [31, "method-1"], [36, "method-1"]], "Method 2": [[3, "method-2"], [31, "method-2"], [36, "method-2"]], "Method 3": [[36, "method-3"]], "Metrics Server": [[14, "metrics-server"]], "Micro Enterprise": [[30, "micro-enterprise"]], "Microservices": [[32, "microservices"]], "Microsoft Active Directory Topology Diagrammer": [[20, "microsoft-active-directory-topology-diagrammer"]], "Microsoft SQL Server Configuration Enumerator": [[19, "microsoft-sql-server-configuration-enumerator"]], "Microsoft SQL Server Find and Sample Data": [[19, "microsoft-sql-server-find-and-sample-data"]], "Microsoft SQL Server Generic Query": [[19, "microsoft-sql-server-generic-query"]], "Microsoft SQL Server Management": [[19, "microsoft-sql-server-management"]], "Microsoft SQL Server SUSER_SNAME Windows Domain Account Enumeration": [[19, "microsoft-sql-server-suser-sname-windows-domain-account-enumeration"]], "Microsoft SQL Server xp_cmdshell Command Execution": [[19, "microsoft-sql-server-xp-cmdshell-command-execution"]], "Microsoft System Center Operations Manager": [[21, "microsoft-system-center-operations-manager"]], "Microsoft Threat Modelling": [[33, "microsoft-threat-modelling"]], "Microsoft Windows RPC Services | Port 135 and Microsoft RPC Services over HTTP | Port 593": [[19, "microsoft-windows-rpc-services-port-135-and-microsoft-rpc-services-over-http-port-593"]], "Microsoft\u2019s System Center Configuration Manager": [[21, "microsoft-s-system-center-configuration-manager"]], "Microwave and cellular": [[11, "microwave-and-cellular"]], "Mimikatz PTH/ PTT": [[20, "mimikatz-pth-ptt"]], "Minimizing the Time Keys/Decrypted Data Exists": [[33, "minimizing-the-time-keys-decrypted-data-exists"]], "Minimum Baseline Security Standard (MBSS)": [[30, "minimum-baseline-security-standard-mbss"]], "Miscellanous Examples": [[0, "miscellanous-examples"]], "Mistakes": [[33, "mistakes"]], "Modbus": [[11, "modbus"]], "Modbus Preprocessor Rule Examples": [[11, "modbus-preprocessor-rule-examples"]], "Modbus Preprocessor Rule Options": [[11, "modbus-preprocessor-rule-options"]], "Modbus \u2013 Authentication & Authorization": [[11, "modbus-authentication-authorization"]], "Modbus \u2013 Master/Slave Architecture": [[11, "modbus-master-slave-architecture"]], "Modbus \u2013 Protocol Versions": [[11, "modbus-protocol-versions"]], "Modbus \u2013 Vulnerabilities": [[11, "modbus-vulnerabilities"]], "Modifying File Upload Page": [[39, "modifying-file-upload-page"], [40, "modifying-file-upload-page"]], "Modifying a user": [[14, "modifying-a-user"]], "Modules": [[20, "modules"]], "Mongo-shell": [[19, "mongo-shell"]], "MongoDB Login Utility": [[19, "mongodb-login-utility"]], "Mongodb-BruteForce": [[19, "mongodb-bruteforce"]], "Mongodb-database": [[19, "mongodb-database"]], "Mongodb-info": [[19, "mongodb-info"]], "Monitor for Vulnerabilities, Including Vulnerable Dependencies": [[33, "monitor-for-vulnerabilities-including-vulnerable-dependencies"]], "Monitoring /etc directory": [[31, "monitoring-etc-directory"]], "Monitoring Files: AIDE": [[31, "monitoring-files-aide"]], "Monitoring and Logging": [[31, "monitoring-and-logging"]], "More Information": [[37, "more-information"], [40, "more-information"]], "Mosquitto server": [[14, "mosquitto-server"]], "Mounting Windows share on Linux": [[31, "mounting-windows-share-on-linux"]], "Mounting a host directory inside the container": [[32, "mounting-a-host-directory-inside-the-container"]], "Mounting the disk": [[3, "mounting-the-disk"]], "Mounting/Unmounting": [[31, "mounting-unmounting"]], "Moving": [[31, "moving"]], "Moving ADComputer Object to a specific OU": [[8, "moving-adcomputer-object-to-a-specific-ou"]], "Moving Computer to OUs": [[8, "moving-computer-to-ous"]], "Multi Host": [[32, "multi-host"]], "Multi-Arch Support": [[31, "multi-arch-support"]], "Multi-Host Networking": [[32, "multi-host-networking"]], "Multi-Machine": [[32, "multi-machine"]], "Multi-factor Authentication": [[11, "multi-factor-authentication"]], "Multi-stage Dockerfile": [[32, "multi-stage-dockerfile"]], "Multiple commands on a single line": [[31, "multiple-commands-on-a-single-line"]], "MySQL (M)": [[5, "mysql-m"]], "MySQL Login Utility": [[19, "mysql-login-utility"]], "MySQL Privileged Escalation": [[37, "mysql-privileged-escalation"], [40, "mysql-privileged-escalation"]], "MySQL Server Version Enumeration": [[19, "mysql-server-version-enumeration"]], "NBTSCAN": [[18, "nbtscan"]], "NFS": [[31, "nfs"]], "NFS Mount Scanner": [[19, "nfs-mount-scanner"]], "NIDS Signature vs. Anomaly Detection": [[11, "nids-signature-vs-anomaly-detection"]], "NMap": [[19, "id74"]], "NNTP Network News Transfer Protocol": [[19, "nntp-network-news-transfer-protocol"]], "NSS": [[12, "nss"]], "NTDS.dit and SYSTEM hive": [[38, "ntds-dit-and-system-hive"], [40, "ntds-dit-and-system-hive"]], "NTLM/ NTLMv1/v2 / Net-NTLMv1/v2": [[18, "ntlm-ntlmv1-v2-net-ntlmv1-v2"]], "NTR": [[12, "ntr"]], "Names? Possible Usernames & Passwords?": [[36, "names-possible-usernames-passwords"], [40, "names-possible-usernames-passwords"]], "Namespaces": [[32, "namespaces"]], "National Grid": [[10, "national-grid"]], "Nessus (Professional version)": [[23, "nessus-professional-version"]], "Nessus ICS Plugins": [[11, "nessus-ics-plugins"]], "Nessus Vulnerablity Scanner": [[11, "nessus-vulnerablity-scanner"]], "Net Accounts": [[23, "net-accounts"]], "Net group / domain": [[20, "net-group-domain"]], "NetBIOS Service": [[18, "netbios-service"]], "NetBios": [[19, "netbios"]], "Netcat": [[35, "netcat"], [40, "netcat"]], "Netdiscover": [[35, "netdiscover"], [40, "netdiscover"]], "Netfilter Behavior": [[31, "netfilter-behavior"]], "Netflow Anomaly Detection": [[11, "netflow-anomaly-detection"]], "Network Access Control": [[30, "network-access-control"]], "Network Defense, Detection and Analysis": [[11, "network-defense-detection-and-analysis"]], "Network Discovery and Mapping": [[11, "network-discovery-and-mapping"]], "Network Forensics": [[3, "network-forensics"], [11, "network-forensics"]], "Network Information": [[38, "network-information"], [40, "network-information"]], "Network Intrusion Detection (NIDS)": [[11, "network-intrusion-detection-nids"]], "Network Planning Toolkit": [[10, "network-planning-toolkit"]], "Network Structure": [[12, "network-structure"]], "Network access control (Authentication)": [[10, "network-access-control-authentication"]], "Network and Transport": [[12, "network-and-transport"]], "Network attack Detection": [[3, "network-attack-detection"]], "Networking": [[1, "networking"], [31, "networking"], [32, "networking"], [37, "networking"]], "Networking for containers": [[32, "networking-for-containers"]], "New Company": [[30, "new-company"]], "New-ADUser": [[8, "new-aduser"]], "New-ADUser creation with CSV": [[8, "new-aduser-creation-with-csv"]], "New-ADUser with Password": [[8, "new-aduser-with-password"]], "Nginx Ingress Controller": [[14, "nginx-ingress-controller"]], "Nipper": [[23, "nipper"]], "Nmap": [[19, "nmap"], [19, "id2"], [19, "id4"], [19, "id8"], [19, "id10"], [19, "id16"], [19, "id18"], [19, "id22"], [19, "id25"], [19, "id28"], [19, "id34"], [19, "id39"], [19, "id43"], [19, "id45"], [19, "id49"], [19, "id52"], [19, "id56"], [19, "id68"], [19, "id72"], [19, "id76"], [19, "id78"], [19, "id82"], [19, "id84"], [35, "nmap"], [35, "id2"], [36, "nmap"], [36, "id12"], [40, "nmap"], [40, "id4"], [40, "id18"]], "Nmap Address Schemes": [[11, "nmap-address-schemes"]], "Nmap NSE": [[19, "nmap-nse"]], "Nmap Scripts": [[18, "nmap-scripts"]], "Nmap results": [[11, "nmap-results"]], "Node Feature Discovery": [[14, "node-feature-discovery"]], "Nomenclature": [[30, "nomenclature"]], "Nomenclature of control centre servers": [[10, "nomenclature-of-control-centre-servers"]], "Nomenclature/ Identification": [[10, "nomenclature-identification"]], "Non-Executable Stack, ASLR Enabled": [[0, "non-executable-stack-aslr-enabled"]], "Non-executable stack, ASLR Disabled": [[0, "non-executable-stack-aslr-disabled"]], "Non-repudiation": [[31, "non-repudiation"]], "Nuclear Reactors": [[11, "nuclear-reactors"]], "Null Driver": [[32, "null-driver"]], "Numpy": [[1, "numpy"]], "OPC Classic Specification": [[11, "opc-classic-specification"]], "OPC Relationships": [[11, "opc-relationships"]], "OPC Unified Architecture (UA)": [[11, "opc-unified-architecture-ua"]], "OPSEC": [[11, "opsec"]], "OS and Version detection": [[11, "os-and-version-detection"]], "OSI": [[10, "osi"]], "OSS Advantage for different stakeholders": [[34, "oss-advantage-for-different-stakeholders"]], "OSS Licensing and Legal Issues": [[34, "oss-licensing-and-legal-issues"]], "OSS Projects Examples": [[34, "oss-projects-examples"]], "OT": [[11, "ot"]], "OT Infrastructure Components": [[11, "ot-infrastructure-components"]], "OT/ICS": [[11, "ot-ics"]], "OU": [[20, "ou"]], "ObjDump": [[4, "objdump"]], "Obligatory Disclaimer": [[41, "obligatory-disclaimer"]], "Oldsmar Water Treatment plant": [[11, "oldsmar-water-treatment-plant"]], "On IPA Server": [[14, "on-ipa-server"]], "On Node": [[14, "on-node"]], "Opaque Data": [[5, "opaque-data"]], "Open Platform Communication (OPC)": [[11, "open-platform-communication-opc"]], "Open Source Concepts": [[34, "open-source-concepts"]], "Open Source Governance Models": [[34, "open-source-governance-models"]], "Open Source Licensing Basics for software developers": [[34, "open-source-licensing-basics-for-software-developers"]], "Open Source Software": [[34, "open-source-software"]], "Open file with vi": [[31, "open-file-with-vi"]], "Open-Source Data-Management Tools": [[22, "open-source-data-management-tools"]], "Open-Source Reporting Tools": [[22, "open-source-reporting-tools"]], "OpenChain": [[34, "openchain"]], "OpenSSL Heartbeat (Heartbleed) Information Leak": [[19, "openssl-heartbeat-heartbleed-information-leak"]], "OpenSSL Server-Side ChangeCipherSpec Injection Scanner": [[19, "openssl-server-side-changecipherspec-injection-scanner"]], "OpenShift/OKD": [[32, "openshift-okd"]], "OpenVPN Configuration File Reverse Shell?": [[36, "openvpn-configuration-file-reverse-shell"], [40, "openvpn-configuration-file-reverse-shell"]], "Operating System": [[36, "operating-system"], [40, "operating-system"]], "Operating System Logs": [[11, "operating-system-logs"]], "Operations": [[14, "operations"]], "Operations Additions": [[30, "operations-additions"], [30, "id15"]], "Operations Issues": [[30, "operations-issues"], [30, "id6"], [30, "id14"]], "Operations not requiring root privileges": [[31, "operations-not-requiring-root-privileges"]], "Operations requiring root privileges": [[31, "operations-requiring-root-privileges"]], "Opportunity": [[11, "opportunity"]], "Oracle (O)": [[5, "oracle-o"]], "Oracle Attack Methodology": [[19, "oracle-attack-methodology"]], "Organized": [[11, "organized"]], "Other": [[10, "other"], [11, "other"], [19, "other"], [19, "id11"], [19, "id19"], [19, "id21"], [19, "id23"], [19, "id29"], [19, "id33"], [19, "id37"], [19, "id41"], [19, "id46"], [19, "id50"], [19, "id54"], [19, "id57"], [19, "id60"], [19, "x11-port-6000"], [19, "id66"], [19, "id70"], [19, "id80"], [19, "id83"], [31, "other"]], "Other Enumeration": [[37, "other-enumeration"], [40, "other-enumeration"]], "Other Facts": [[10, "other-facts"]], "Other Info": [[31, "other-info"]], "Other Information": [[31, "other-information"]], "Other Linux Privilege Escalation": [[37, "other-linux-privilege-escalation"], [40, "other-linux-privilege-escalation"]], "Other Stuff": [[5, "other-stuff"]], "Other Tools": [[18, "other-tools"]], "Other commands": [[31, "other-commands"], [31, "other-commands-1"]], "Other pdf tool": [[31, "other-pdf-tool"]], "Other shortcuts": [[31, "other-shortcuts"]], "Other tools": [[31, "other-tools"]], "Others": [[3, "others"], [19, "others"], [19, "id86"], [20, "others"], [30, "others"], [31, "others"], [31, "others-1"], [31, "id15"], [38, "others"], [38, "id9"], [40, "others"], [40, "id34"]], "Others - Commercial": [[32, "others-commercial"]], "Others?": [[12, "others"]], "Outlook data file .pst": [[21, "outlook-data-file-pst"]], "Output Options": [[18, "output-options"]], "Output redirection": [[31, "output-redirection"]], "Outside - External": [[18, "outside-external"]], "Outsourcing": [[11, "outsourcing"]], "Overwriting of Arbitrary Memory": [[0, "overwriting-of-arbitrary-memory"]], "PDC": [[20, "pdc"]], "PDF Files": [[3, "pdf-files"]], "PGW": [[12, "pgw"]], "PHP": [[1, "php"], [5, "php"], [6, "php"], [36, "php"], [39, "php"], [40, "php"], [40, "id45"]], "PHP Meterpreter": [[36, "php-meterpreter"]], "PHP Reverse Shell": [[36, "php-reverse-shell"]], "PHP Web Shell": [[36, "php-web-shell"]], "PHP Wrapper phar": [[39, "php-wrapper-phar"], [40, "php-wrapper-phar"]], "PHP Wrapper zip": [[39, "php-wrapper-zip"], [40, "php-wrapper-zip"]], "PHP input:// stream": [[39, "php-input-stream"], [40, "php-input-stream"]], "PHP wrapper expect://command": [[39, "php-wrapper-expect-command"], [40, "php-wrapper-expect-command"]], "PHP wrapper php://file": [[39, "php-wrapper-php-file"], [40, "php-wrapper-php-file"]], "PHP wrapper php://filter": [[39, "php-wrapper-php-filter"], [40, "php-wrapper-php-filter"]], "PI Architecture": [[10, "pi-architecture"]], "PI Interface Server": [[10, "pi-interface-server"]], "PI Server": [[10, "pi-server"], [10, "id12"]], "PIE Enabled": [[0, "pie-enabled"]], "PJL-ready-message": [[19, "pjl-ready-message"]], "PLC": [[10, "plc"]], "PLT": [[0, "plt"]], "PNG": [[3, "png"], [3, "id3"]], "POP3 Banner Grabber": [[19, "pop3-banner-grabber"]], "POP3 Commands": [[19, "pop3-commands"]], "POP3 Login Utility": [[19, "pop3-login-utility"]], "POP3-brute": [[19, "pop3-brute"]], "POP3-capabilities": [[19, "pop3-capabilities"]], "POST": [[19, "post"]], "PPoE": [[12, "ppoe"]], "PS Command": [[31, "ps-command"]], "PS1 & Command Line Prompt": [[31, "ps1-command-line-prompt"]], "PUT Method": [[36, "put-method"], [40, "put-method"]], "PaaS providers": [[32, "paas-providers"]], "Package Documentation": [[31, "package-documentation"]], "Package Installation": [[37, "package-installation"], [40, "package-installation"]], "Package Management": [[31, "package-management"]], "Package Priorities": [[31, "package-priorities"]], "Package Types": [[31, "package-types"]], "Packer": [[32, "packer"]], "Parameter Fuzz?": [[36, "parameter-fuzz"], [40, "parameter-fuzz"]], "Part 1: (un)Trustworthy Databases": [[19, "part-1-un-trustworthy-databases"]], "Part 2: User Impersonation": [[19, "part-2-user-impersonation"]], "Part 3: SQL Injection": [[19, "part-3-sql-injection"]], "Part 4: Enumerating Domain Accounts": [[19, "part-4-enumerating-domain-accounts"]], "Partition": [[31, "partition"]], "Pass the Hash": [[20, "pass-the-hash"]], "Pass the Hash with Remote Desktop": [[20, "pass-the-hash-with-remote-desktop"]], "Pass the ticket": [[20, "pass-the-ticket"]], "Passive Discovery": [[11, "passive-discovery"]], "Passive Fingerprinting:": [[18, "passive-fingerprinting"]], "PassiveTotal": [[18, "passivetotal"]], "Password Algorithm": [[31, "password-algorithm"]], "Password Protected File": [[38, "password-protected-file"], [40, "password-protected-file"]], "Password Statistics": [[21, "password-statistics"]], "Password security in PAM": [[7, "password-security-in-pam"]], "Password storage": [[31, "password-storage"]], "Passwords in the registry": [[37, "passwords-in-the-registry"]], "Patch Management": [[11, "patch-management"]], "Patch Mangement": [[11, "patch-mangement"]], "Patching Considerations": [[11, "patching-considerations"]], "Patent": [[34, "patent"]], "Path": [[31, "path"]], "Patterns": [[1, "patterns"], [3, "patterns"]], "Penetration Testing": [[33, "penetration-testing"]], "Performance": [[18, "performance"]], "Perl": [[36, "perl"], [36, "id10"], [40, "perl"], [40, "id16"]], "Permission Reporter": [[23, "permission-reporter"]], "Permissive or Copyleft License": [[34, "permissive-or-copyleft-license"]], "Persistant Volumes": [[32, "persistant-volumes"]], "Persistent Volumes Claim": [[32, "persistent-volumes-claim"]], "Phishing": [[11, "phishing"]], "Photon OS": [[32, "photon-os"]], "Physical Media": [[11, "physical-media"]], "Physical Security": [[11, "physical-security"]], "Physical and Environmental": [[11, "physical-and-environmental"]], "Pickle": [[39, "pickle"], [40, "pickle"]], "Piet": [[2, "piet"]], "Pillage Exchange": [[21, "pillage-exchange"]], "Ping Gateway IP Addresses": [[18, "ping-gateway-ip-addresses"]], "Ping IP Address": [[31, "ping-ip-address"]], "Pipes": [[31, "pipes"]], "Platform as a Service": [[32, "platform-as-a-service"]], "Plink": [[36, "plink"], [40, "plink"]], "Plugins": [[32, "plugins"]], "PolicyAnalyzer": [[23, "policyanalyzer"]], "Polling Methods": [[11, "polling-methods"]], "Port 10000 - ndmp (Network Data Management Protocol)": [[19, "port-10000-ndmp-network-data-management-protocol"]], "Port 1099 - Java RMI": [[19, "port-1099-java-rmi"]], "Port 110 - POP3": [[19, "port-110-pop3"]], "Port 111 - RPCInfo": [[19, "port-111-rpcinfo"]], "Port 11211 - Memcache": [[19, "port-11211-memcache"]], "Port 113 - Ident": [[19, "port-113-ident"]], "Port 1433 - MS-SQL": [[19, "port-1433-ms-sql"]], "Port 1521 - Oracle": [[19, "port-1521-oracle"]], "Port 161 - SNMP": [[19, "port-161-snmp"]], "Port 2049 - NFS": [[19, "port-2049-nfs"]], "Port 21 - FTP": [[19, "port-21-ftp"]], "Port 22 - SSH": [[19, "port-22-ssh"]], "Port 23 - Telnet": [[19, "port-23-telnet"]], "Port 25 - SMTP | Port 587 - Submission": [[19, "port-25-smtp-port-587-submission"]], "Port 264 - Check Point FireWall-1 Topology": [[19, "port-264-check-point-firewall-1-topology"]], "Port 27017/27018 - MongoDB": [[19, "port-27017-27018-mongodb"]], "Port 3260 - ISCSI": [[19, "port-3260-iscsi"]], "Port 3299 - SAP Router": [[19, "port-3299-sap-router"]], "Port 3306 - MySQL": [[19, "port-3306-mysql"]], "Port 389 - LDAP": [[19, "port-389-ldap"]], "Port 443/8443 - HTTPS": [[19, "port-443-8443-https"]], "Port 445 - SMB": [[19, "port-445-smb"]], "Port 44818 - EthernetIP-TCP-UDP": [[19, "port-44818-ethernetip-tcp-udp"]], "Port 47808 - UDP BACNet": [[19, "port-47808-udp-bacnet"]], "Port 512 - rexec": [[19, "port-512-rexec"]], "Port 513 - rlogin": [[19, "port-513-rlogin"]], "Port 514 - RSH": [[19, "port-514-rsh"]], "Port 53 - DNS": [[19, "port-53-dns"]], "Port 5432 - Postgresql": [[19, "port-5432-postgresql"]], "Port 548 - AFP (Apple Filing Protocol)": [[19, "port-548-afp-apple-filing-protocol"]], "Port 554/8554 - RTSP": [[19, "port-554-8554-rtsp"]], "Port 5555 - HPDataProtector RCE": [[19, "port-5555-hpdataprotector-rce"]], "Port 5900 - VNC": [[19, "port-5900-vnc"]], "Port 5984 - CouchDB": [[19, "port-5984-couchdb"]], "Port 6000 - X11": [[19, "port-6000-x11"]], "Port 6379 - Redis": [[19, "port-6379-redis"]], "Port 79 - Finger": [[19, "port-79-finger"]], "Port 8009 - AJP (Apache JServ Protocol)": [[19, "port-8009-ajp-apache-jserv-protocol"]], "Port 873 - Rsync": [[19, "port-873-rsync"]], "Port 88 - Kerberos": [[19, "port-88-kerberos"]], "Port 9100 - PJL": [[19, "port-9100-pjl"]], "Port 9160 - Apache Cassandra": [[19, "port-9160-apache-cassandra"]], "Port Scanning": [[11, "port-scanning"], [18, "port-scanning"], [35, "port-scanning"], [40, "port-scanning"]], "Post Exploitation": [[21, "post-exploitation"]], "PostScript and PDF": [[31, "postscript-and-pdf"]], "PostgreSQL Database Name Command Line Flag Injection": [[19, "postgresql-database-name-command-line-flag-injection"]], "PostgreSQL Login Utility": [[19, "postgresql-login-utility"]], "PostgreSQL Version Probe": [[19, "postgresql-version-probe"]], "Potential Patch Complications": [[11, "potential-patch-complications"]], "Power": [[11, "power"]], "Power Quality Monitoring": [[10, "power-quality-monitoring"]], "PowerLine2": [[11, "powerline2"]], "PowerLines": [[11, "powerlines"]], "PowerShell Invoke-Command": [[20, "powershell-invoke-command"]], "PowerShell [adsiSearcher] Type Accelerator": [[20, "powershell-adsisearcher-type-accelerator"]], "Powershell": [[31, "powershell"]], "Powershell Empire": [[21, "powershell-empire"]], "Powershell Out-MiniDump": [[21, "powershell-out-minidump"]], "Powershell Steganography": [[3, "powershell-steganography"]], "Powerview Get-NetComputers": [[20, "powerview-get-netcomputers"]], "Powerview Get-NetGroupMember": [[20, "powerview-get-netgroupmember"]], "Powerview Get-NetSession": [[20, "powerview-get-netsession"]], "Powerview Get-NetUser": [[20, "powerview-get-netuser"]], "Powerview Invoke-UserHunter": [[20, "powerview-invoke-userhunter"]], "Preg_Replace": [[39, "preg-replace"], [40, "preg-replace"]], "Preparation": [[11, "preparation"]], "Preseeding answers": [[31, "preseeding-answers"]], "Printer Version Information Scanner": [[19, "printer-version-information-scanner"]], "Printing": [[31, "printing"]], "Printing document": [[31, "printing-document"]], "Printing from Command line": [[31, "printing-from-command-line"]], "Printing from GUI": [[31, "printing-from-gui"]], "Priorities": [[31, "priorities"]], "Privacy": [[33, "privacy"]], "Private SSH Keys / SSH Configuration": [[36, "private-ssh-keys-ssh-configuration"], [40, "private-ssh-keys-ssh-configuration"]], "Privilege Escalation via SQL Injection": [[19, "privilege-escalation-via-sql-injection"]], "Privilege escalation from g0tm1lk blog": [[37, "privilege-escalation-from-g0tm1lk-blog"], [40, "privilege-escalation-from-g0tm1lk-blog"]], "Privileged Identity Management (PIM)": [[30, "privileged-identity-management-pim"]], "Procdump": [[21, "procdump"]], "Process": [[11, "process"]], "Process Control Systems (PCS)": [[11, "process-control-systems-pcs"]], "Process Data": [[11, "process-data"]], "Process Dependencies": [[11, "process-dependencies"]], "Process Isolation": [[31, "process-isolation"]], "Process Scheduling and states": [[31, "process-scheduling-and-states"]], "Process Tree": [[31, "process-tree"]], "Process and Process attributes": [[31, "process-and-process-attributes"]], "Process and Thread IDs": [[31, "process-and-thread-ids"]], "Processes and Basic Features": [[1, "processes-and-basic-features"]], "Processes/ Services": [[37, "processes-services"]], "Profibus": [[11, "profibus"]], "Program Execution": [[11, "program-execution"]], "Programmable Automation Controller (PAC)": [[11, "programmable-automation-controller-pac"]], "Programmable Logic Controller": [[11, "programmable-logic-controller"]], "Programmable Logic Controller (PLC)": [[11, "programmable-logic-controller-plc"]], "Programming": [[31, "programming"]], "Programming Concepts": [[11, "programming-concepts"]], "Programs": [[11, "programs"], [37, "programs"]], "Project Moby": [[32, "project-moby"]], "Projects That Use Containers to Execute Serverless Applications": [[32, "projects-that-use-containers-to-execute-serverless-applications"]], "Properties of the object": [[20, "properties-of-the-object"]], "Properties to Consider": [[34, "properties-to-consider"]], "Proprietary Software": [[34, "proprietary-software"]], "Protect": [[11, "protect"]], "Protect, Detect, Respond": [[33, "protect-detect-respond"]], "Protecting Critical Assets": [[11, "protecting-critical-assets"]], "Protection Measures At Home": [[11, "protection-measures-at-home"]], "Protection Measures At Work": [[11, "protection-measures-at-work"]], "Protection Measures When Travelling": [[11, "protection-measures-when-travelling"]], "Providers": [[32, "providers"]], "Providing secure user access": [[7, "providing-secure-user-access"]], "Provisioning": [[32, "provisioning"]], "Public-Key (Asymmetric) Cryptography": [[33, "public-key-asymmetric-cryptography"]], "Publicly available scans of IP Addresses": [[18, "publicly-available-scans-of-ip-addresses"]], "Puppet": [[21, "puppet"], [32, "puppet"]], "Puppet Agent": [[32, "puppet-agent"]], "Puppet Master": [[32, "puppet-master"]], "Puppet Tools": [[32, "puppet-tools"]], "Puppet agent": [[15, "puppet-agent"]], "Puppet server": [[14, "puppet-server"]], "Puppet-Kubernetes": [[14, "puppet-kubernetes"]], "Purpose": [[11, "purpose"]], "Pwn Templates": [[1, "pwn-templates"]], "PwnTools": [[1, "pwntools"]], "Python": [[1, "python"], [36, "python"], [36, "id9"], [39, "python"], [40, "python"], [40, "id15"], [40, "id44"]], "QRCodes?": [[3, "qrcodes"]], "QUIT": [[19, "quit"]], "Qualitative Analysis": [[25, "qualitative-analysis"]], "Queries": [[31, "queries"], [31, "queries-1"]], "Query packages": [[31, "query-packages"]], "Query the remote registry": [[20, "query-the-remote-registry"]], "Quick Wins": [[36, "quick-wins"], [40, "quick-wins"]], "RAID": [[3, "raid"]], "RAN": [[12, "ran"]], "REST": [[5, "rest"]], "REUSE Software Guidelines for Copyright Notices": [[34, "reuse-software-guidelines-for-copyright-notices"]], "RNC": [[12, "rnc"]], "RPATH": [[0, "rpath"]], "RSA": [[2, "rsa"]], "RSA Public-Private Key encryption": [[38, "rsa-public-private-key-encryption"], [40, "rsa-public-private-key-encryption"]], "RSA given q, p and e?": [[38, "rsa-given-q-p-and-e"], [40, "rsa-given-q-p-and-e"]], "RTU": [[10, "rtu"], [11, "rtu"]], "RTUs and PLCs Difference?": [[10, "rtus-and-plcs-difference"]], "Rabbit Holes": [[35, "rabbit-holes"], [40, "rabbit-holes"]], "Radare2 Basics": [[0, "radare2-basics"]], "Radio Communications": [[16, "radio-communications"]], "Radio Frequency": [[11, "radio-frequency"]], "Random Password Creation": [[8, "random-password-creation"]], "Random Seed": [[1, "random-seed"]], "Random number": [[31, "random-number"]], "Randomization": [[1, "randomization"]], "Raspberry Pi": [[15, "raspberry-pi"]], "Read": [[1, "read"]], "Read PCAP": [[1, "read-pcap"]], "Read Value Document": [[19, "read-value-document"]], "Read passwd/shadow file": [[31, "read-passwd-shadow-file"]], "Read/Write File": [[1, "read-write-file"]], "Reading and Writing from SPI EEPROM": [[16, "reading-and-writing-from-spi-eeprom"]], "Reasons for Using Open-Source Software": [[34, "reasons-for-using-open-source-software"]], "Recalling Previous commands": [[31, "recalling-previous-commands"]], "Receiving data": [[1, "receiving-data"]], "Recommendation": [[33, "recommendation"]], "Recommended Practices": [[11, "recommended-practices"]], "Recon-ng": [[18, "recon-ng"]], "Reconnaissance": [[36, "reconnaissance"], [40, "reconnaissance"]], "Record_Mic": [[21, "record-mic"]], "Recovering password from System.Security.SecureString": [[38, "recovering-password-from-system-security-securestring"], [40, "recovering-password-from-system-security-securestring"]], "Redacted PDF": [[3, "redacted-pdf"]], "Redhat Family": [[31, "redhat-family"]], "Redirecting Standard Out and Standard Error from PowerShell Start-Process": [[38, "redirecting-standard-out-and-standard-error-from-powershell-start-process"], [40, "redirecting-standard-out-and-standard-error-from-powershell-start-process"]], "Reference - Hacking SQL Server Stored Procedures": [[19, "reference-hacking-sql-server-stored-procedures"]], "Reference - Other Blogs": [[19, "reference-other-blogs"]], "References": [[10, "references"]], "Registers": [[0, "registers"], [4, "registers"]], "Registry Hives": [[21, "registry-hives"]], "Regular Expressions and search patterns": [[31, "regular-expressions-and-search-patterns"]], "Relationship": [[11, "relationship"]], "Relative pathname": [[31, "relative-pathname"]], "Release the Update and Tell the World": [[33, "release-the-update-and-tell-the-world"]], "Reloading tmux config": [[31, "reloading-tmux-config"]], "Remediation": [[10, "remediation"]], "Remote Access": [[11, "remote-access"], [11, "id23"]], "Remote Code Execution Methods": [[20, "remote-code-execution-methods"]], "Remote File Access": [[20, "remote-file-access"]], "Remote Function Calls (RFC), SAP GUI, and the DIAG Protocol": [[24, "remote-function-calls-rfc-sap-gui-and-the-diag-protocol"]], "Remote Management Interface Discovery": [[19, "remote-management-interface-discovery"]], "Remote Port Forwarding": [[36, "remote-port-forwarding"], [40, "remote-port-forwarding"]], "Remote Registry": [[20, "remote-registry"]], "Remote Server Administration Tools": [[20, "remote-server-administration-tools"]], "Remote Terminal Unit": [[10, "remote-terminal-unit"]], "Remote code execution": [[20, "remote-code-execution"]], "Removable Media": [[11, "removable-media"], [11, "id24"]], "Remove Nodes": [[14, "remove-nodes"]], "Remove a package except for its configuration files": [[31, "remove-a-package-except-for-its-configuration-files"]], "Remove all of an installed package, including its configuration files": [[31, "remove-all-of-an-installed-package-including-its-configuration-files"]], "Remove systemd resolv.conf": [[15, "remove-systemd-resolv-conf"]], "Renaming the Computer": [[8, "renaming-the-computer"]], "Renewable Energy": [[10, "renewable-energy"]], "Replace text in Vi": [[31, "replace-text-in-vi"]], "Reporting": [[22, "reporting"]], "Reporting Models": [[33, "reporting-models"]], "Reporting and Handling Vulnerabilities - A Brief Summary": [[33, "reporting-and-handling-vulnerabilities-a-brief-summary"]], "Requiring Boot Loader Passwords": [[31, "requiring-boot-loader-passwords"]], "Reset AD user password": [[20, "reset-ad-user-password"]], "Respond and Recover": [[11, "respond-and-recover"]], "Responder/ Inveigh": [[18, "responder-inveigh"]], "Restricted Shell": [[36, "restricted-shell"], [40, "restricted-shell"]], "Return value": [[1, "return-value"]], "Return values": [[31, "return-values"]], "Return-Oriented Programming": [[0, "return-oriented-programming"]], "Return2libc": [[0, "return2libc"]], "Reused software": [[33, "reused-software"]], "Reverse DNS Lookup": [[18, "reverse-dns-lookup"]], "Reverse DNS Lookup using External Websites": [[18, "reverse-dns-lookup-using-external-websites"]], "Reverse Engineering": [[4, "reverse-engineering"]], "Reverse Shell from Windows": [[36, "reverse-shell-from-windows"], [40, "reverse-shell-from-windows"]], "Reverse Shells": [[36, "reverse-shells"], [40, "reverse-shells"]], "Ring": [[11, "ring"]], "Risk Assessment": [[11, "risk-assessment"]], "Risk Management": [[33, "risk-management"]], "Robtex": [[18, "robtex"]], "Rockstar": [[2, "rockstar"]], "Routers": [[23, "routers"]], "Routing Table": [[11, "routing-table"]], "Rsync arbitrary command execution": [[37, "rsync-arbitrary-command-execution"], [40, "rsync-arbitrary-command-execution"]], "Rubberglue": [[38, "rubberglue"], [40, "rubberglue"]], "Ruby": [[36, "ruby"], [36, "id11"], [40, "ruby"], [40, "id17"]], "Rules": [[31, "rules"]], "Running Automated firmware scanning tools": [[16, "running-automated-firmware-scanning-tools"]], "S1: Create the Virtual Machines": [[14, "s1-create-the-virtual-machines"]], "S2: Create an application diagram": [[33, "s2-create-an-application-diagram"]], "S2: Virtual Machines: Initial Configuration": [[14, "s2-virtual-machines-initial-configuration"]], "S2A: Hostname": [[14, "s2a-hostname"]], "S2B: Install Puppet Repo": [[14, "s2b-install-puppet-repo"]], "S3: Configure the Virtual Machines": [[14, "s3-configure-the-virtual-machines"]], "S3: Identify threats": [[33, "s3-identify-threats"]], "SCADA Architecture": [[10, "scada-architecture"]], "SCADA Cybersecurity Related Blogs": [[10, "scada-cybersecurity-related-blogs"]], "SCADA Functions": [[10, "scada-functions"]], "SCADA Server": [[10, "scada-server"]], "SCADA vs DCS": [[11, "scada-vs-dcs"]], "SCADA/ EMS Server": [[10, "scada-ems-server"]], "SCAPY": [[1, "scapy"]], "SCL Substation Configuration Language": [[10, "scl-substation-configuration-language"]], "SCL \u2013 Benefits": [[10, "scl-benefits"]], "SCP": [[36, "scp"], [40, "scp"]], "SECCURE Elliptic Curve Crypto Utility for Reliable Encryption": [[38, "seccure-elliptic-curve-crypto-utility-for-reliable-encryption"], [40, "seccure-elliptic-curve-crypto-utility-for-reliable-encryption"]], "SERVER/ WORKSTATION": [[20, "server-workstation"]], "SHELL": [[31, "id5"]], "SICAM Protocol Test System": [[10, "sicam-protocol-test-system"]], "SIGTRAN": [[12, "sigtran"]], "SMB": [[39, "smb"], [40, "smb"]], "SMB Server - Attacker": [[39, "smb-server-attacker"], [40, "smb-server-attacker"]], "SMB Version Detection": [[19, "smb-version-detection"]], "SMBRelay": [[20, "smbrelay"]], "SMTP Commands": [[19, "id6"]], "SMTP Open Relays": [[19, "smtp-open-relays"]], "SMTP User Enumeration Utility": [[19, "smtp-user-enumeration-utility"]], "SMTP-Commands": [[19, "smtp-commands"]], "SMTP-brute": [[19, "smtp-brute"]], "SMTP-enum-users": [[19, "smtp-enum-users"]], "SMTP-open-relay": [[19, "smtp-open-relay"]], "SMTP_Version": [[19, "smtp-version"]], "SNMP Community Scanner": [[19, "snmp-community-scanner"]], "SNMP Configuration": [[37, "snmp-configuration"]], "SNMP Enumeration": [[18, "snmp-enumeration"]], "SNMP Enumeration Module": [[19, "snmp-enumeration-module"]], "SNORT": [[11, "snort"]], "SPDX File": [[34, "spdx-file"]], "SPI": [[16, "spi"]], "SPN Scanning using Powershell": [[20, "spn-scanning-using-powershell"]], "SPN-Scanning": [[20, "spn-scanning"]], "SQL Server (S)": [[5, "sql-server-s"]], "SQL Server -sp_password log bypass (S)": [[5, "sql-server-sp-password-log-bypass-s"]], "SRV Records": [[18, "srv-records"]], "SSH": [[38, "ssh"], [40, "ssh"]], "SSH Brute force": [[19, "ssh-brute-force"]], "SSH Tunneling": [[36, "ssh-tunneling"], [40, "ssh-tunneling"]], "SSH Version Scanner": [[19, "ssh-version-scanner"]], "SSH as SOCKS Proxy": [[36, "ssh-as-socks-proxy"], [40, "ssh-as-socks-proxy"]], "SSH-Hostkey": [[19, "ssh-hostkey"]], "SSHing from outside": [[36, "sshing-from-outside"], [40, "sshing-from-outside"]], "SSHv1": [[19, "sshv1"]], "SSL Certificate": [[35, "ssl-certificate"], [40, "ssl-certificate"]], "SSSD": [[14, "sssd"]], "SUDO -l Permissions": [[37, "sudo-l-permissions"], [40, "sudo-l-permissions"]], "SUID": [[31, "suid"]], "SUSE Family": [[31, "suse-family"]], "SVG": [[3, "svg"]], "Safety Systems": [[11, "safety-systems"]], "Salesforce Vulnreport": [[22, "salesforce-vulnreport"]], "Salt Stack": [[32, "salt-stack"]], "Sanitation, Destruction, and Reuse": [[11, "sanitation-destruction-and-reuse"]], "Scenarios": [[18, "scenarios"]], "Scheduled Tasks": [[20, "scheduled-tasks"], [37, "scheduled-tasks"]], "Scheduler": [[31, "scheduler"]], "Scheduling": [[10, "scheduling"]], "Scheduling process": [[31, "scheduling-process"]], "Schneider Electric": [[10, "schneider-electric"], [10, "id9"], [10, "id13"]], "Screen Multiplexer": [[31, "screen-multiplexer"]], "Script Syntax": [[31, "script-syntax"]], "Script-Based Validation": [[5, "script-based-validation"]], "Search a specific string": [[31, "search-a-specific-string"]], "Search-Mailbox cmdlet": [[21, "search-mailbox-cmdlet"]], "Searching Files": [[31, "searching-files"]], "Searching History": [[31, "searching-history"]], "Searching for text using Global Regular Expression Print (grep)": [[31, "searching-for-text-using-global-regular-expression-print-grep"]], "Searching text in vi": [[31, "searching-text-in-vi"]], "SecLists.Org Security Mailing List Archive": [[36, "seclists-org-security-mailing-list-archive"], [40, "seclists-org-security-mailing-list-archive"]], "Second stage": [[31, "second-stage"]], "Secure Authentication": [[11, "secure-authentication"]], "Secure Coding Guidelines": [[30, "secure-coding-guidelines"]], "Secure Design Principles": [[33, "secure-design-principles"]], "Secure Passwords": [[11, "secure-passwords"]], "Secure Shell": [[1, "secure-shell"]], "Secure Software Development Fundamentals": [[33, "secure-software-development-fundamentals"]], "Secure System Development": [[11, "secure-system-development"]], "Secure VPN access": [[11, "secure-vpn-access"]], "Secure communication": [[10, "secure-communication"]], "Secure software": [[33, "secure-software"]], "Security Additions": [[30, "security-additions"], [30, "id3"], [30, "id9"], [30, "id11"], [30, "id17"], [30, "id18"]], "Security Advisory Feeds": [[10, "security-advisory-feeds"]], "Security Audit": [[33, "security-audit"]], "Security Audit Logging Database Logs": [[11, "security-audit-logging-database-logs"]], "Security Audit Logging Web Server Logs": [[11, "security-audit-logging-web-server-logs"]], "Security Breach 1": [[30, "security-breach-1"]], "Security Breach 2": [[30, "security-breach-2"]], "Security Compliance Manager": [[8, "security-compliance-manager"], [30, "security-compliance-manager"]], "Security Compliance Toolkit": [[30, "security-compliance-toolkit"]], "Security Goals": [[11, "security-goals"]], "Security Governance": [[11, "security-governance"]], "Security Incident Management": [[11, "security-incident-management"]], "Security Information and Event Management": [[11, "security-information-and-event-management"]], "Security Mitigations": [[11, "security-mitigations"]], "Security Policy": [[11, "security-policy"]], "Security and Quality of Source Code": [[34, "security-and-quality-of-source-code"]], "Security logging": [[10, "security-logging"]], "Security testing": [[11, "security-testing"]], "Security/CIKR Compliance": [[11, "security-cikr-compliance"]], "See the changes in a Git commit?": [[31, "see-the-changes-in-a-git-commit"]], "Sending Vulnerability Reports to Others": [[33, "sending-vulnerability-reports-to-others"]], "Sending data": [[1, "sending-data"]], "Sensitive Files": [[37, "sensitive-files"]], "Serial Ports": [[1, "serial-ports"]], "Serpico": [[22, "serpico"]], "Server": [[14, "server"], [31, "server"]], "Server Operators elevate to EA/DA/BA": [[21, "server-operators-elevate-to-ea-da-ba"]], "Server-Sniff": [[18, "server-sniff"]], "Serverless Computing": [[32, "serverless-computing"], [32, "serverless-computing-1"]], "Servers": [[11, "servers"], [11, "id1"]], "Service": [[31, "service"]], "Service Controller (SC)": [[20, "service-controller-sc"]], "Service Discovery": [[32, "service-discovery"]], "Service Mesh": [[32, "service-mesh"]], "Service User for FreeIPA": [[14, "service-user-for-freeipa"]], "Services Hosted by IdM Clients": [[14, "services-hosted-by-idm-clients"]], "Services hosted by idM Servers": [[14, "services-hosted-by-idm-servers"]], "Services on Kubernetes Server?": [[14, "services-on-kubernetes-server"]], "Set file system": [[39, "set-file-system"], [40, "set-file-system"]], "Set up a GRUB password": [[7, "set-up-a-grub-password"]], "Setting program variable": [[0, "setting-program-variable"]], "Setting the IP Address": [[8, "setting-the-ip-address"]], "Setting up IP address": [[31, "setting-up-ip-address"]], "Setting up the Server": [[39, "setting-up-the-server"], [39, "id2"], [39, "id3"], [40, "setting-up-the-server"], [40, "id42"], [40, "id43"]], "Setting up the Static IP": [[8, "setting-up-the-static-ip"]], "Setting up the lab": [[16, "setting-up-the-lab"]], "Setting users umasks": [[7, "setting-users-umasks"]], "Shareable vs Non-shareable data": [[31, "shareable-vs-non-shareable-data"]], "Shared Library": [[0, "shared-library"]], "Sharing Threat Intelligence": [[30, "sharing-threat-intelligence"]], "Shell": [[31, "shell"]], "Shell expansions - input to Grep": [[31, "shell-expansions-input-to-grep"]], "Shell script": [[31, "shell-script"]], "Shellcheck": [[31, "shellcheck"]], "Sherlock and PowerUp Powershell Script": [[37, "sherlock-and-powerup-powershell-script"], [40, "sherlock-and-powerup-powershell-script"]], "Shippable": [[32, "shippable"]], "Show current routing table": [[31, "show-current-routing-table"]], "Show disk usage": [[31, "show-disk-usage"]], "Show trust relationships for a domain": [[20, "show-trust-relationships-for-a-domain"]], "Siemens": [[10, "siemens"], [10, "id8"], [10, "id10"]], "Siemens SICAM TM/ AK": [[10, "siemens-sicam-tm-ak"]], "Signals": [[31, "signals"]], "Simple File Upload": [[39, "simple-file-upload"], [40, "simple-file-upload"]], "Simple File Upload - With verifying image type": [[39, "simple-file-upload-with-verifying-image-type"], [40, "simple-file-upload-with-verifying-image-type"]], "Single Host": [[32, "single-host"]], "Single-Host Networking": [[32, "single-host-networking"]], "Site": [[11, "site"]], "Slow-Scan Television transmissions (SSTV)": [[3, "slow-scan-television-transmissions-sstv"]], "Small Enterprise": [[30, "small-enterprise"]], "Smbmap": [[20, "smbmap"]], "Sneaky Stealthy SU in (Web) Shells": [[36, "sneaky-stealthy-su-in-web-shells"], [40, "sneaky-stealthy-su-in-web-shells"]], "Sniffing BLE Packets": [[16, "sniffing-ble-packets"]], "Snort Preprocessors for ICS": [[11, "snort-preprocessors-for-ics"]], "Socat": [[36, "socat"], [40, "socat"]], "Social Engineering": [[11, "social-engineering"]], "Soft Limit": [[31, "soft-limit"]], "Soft Links": [[31, "soft-links"]], "Software Composition Analysis (SCA)/Dependency Analysis": [[33, "software-composition-analysis-sca-dependency-analysis"]], "Software Defined Radio": [[16, "software-defined-radio"]], "Software Package Data Exchange (SPDX)": [[34, "software-package-data-exchange-spdx"]], "Software Patents": [[34, "software-patents"]], "Software-Defined Networking": [[32, "software-defined-networking"]], "Software-Defined Storage": [[32, "software-defined-storage"]], "Software-Defined Storage and Storage Management": [[32, "software-defined-storage-and-storage-management"]], "Softwares for Siemens": [[10, "softwares-for-siemens"]], "SolarWinds Permission Analyzer": [[23, "solarwinds-permission-analyzer"]], "Solarwinds FSM": [[23, "solarwinds-fsm"]], "Solarwinds Network Configuration Manager": [[23, "solarwinds-network-configuration-manager"]], "Solutions": [[12, "solutions"]], "Solutions/ Softwares?": [[10, "solutions-softwares"]], "Sound Files": [[3, "sound-files"]], "Sources of data": [[10, "sources-of-data"]], "Spawning a Fully Interactive TTYs Shell": [[36, "spawning-a-fully-interactive-ttys-shell"], [40, "spawning-a-fully-interactive-ttys-shell"]], "Spawning a TTY Shell": [[36, "spawning-a-tty-shell"], [40, "spawning-a-tty-shell"]], "Special Characters": [[31, "special-characters"]], "Spectrum Analysis": [[3, "spectrum-analysis"]], "Spiderfoot": [[18, "spiderfoot"]], "Springbok": [[23, "springbok"]], "Stack": [[0, "stack"]], "Stacking Queries": [[5, "stacking-queries"]], "Star": [[11, "star"]], "Start the service": [[20, "start-the-service"]], "Startup?": [[37, "startup"]], "Static analysis": [[33, "static-analysis"]], "Static and Shared Libraries": [[31, "static-and-shared-libraries"]], "Status Codes": [[5, "status-codes"]], "Steganography": [[3, "steganography"]], "Steghide": [[38, "steghide"], [40, "steghide"]], "Stock Market": [[25, "stock-market"]], "Stock picking": [[25, "stock-picking"]], "Storage Management for Containers": [[32, "storage-management-for-containers"]], "Storing Passwords": [[33, "storing-passwords"]], "Strategic Considerations": [[34, "strategic-considerations"]], "String Operations": [[5, "string-operations"]], "Strings without Quotes": [[5, "strings-without-quotes"]], "Structure of the mobile phone cellular network": [[12, "structure-of-the-mobile-phone-cellular-network"]], "Stuxnet": [[11, "stuxnet"]], "Subscriber Profile Repository?": [[12, "subscriber-profile-repository"]], "Substation Communication Example": [[10, "substation-communication-example"]], "Substation Data Flow": [[10, "substation-data-flow"]], "Substation Flow?": [[10, "substation-flow"]], "Substations": [[10, "substations"]], "Sudo": [[14, "sudo"]], "Sudoers file": [[38, "sudoers-file"], [40, "sudoers-file"]], "Summarize": [[16, "summarize"]], "Summary": [[10, "summary"]], "Summary of chunks": [[3, "summary-of-chunks"]], "Supervisory Control & Data Acquisition (SCADA)": [[11, "supervisory-control-data-acquisition-scada"]], "Support Personal": [[11, "support-personal"]], "Switches": [[23, "switches"]], "Switches and Routers": [[11, "switches-and-routers"]], "Symlink Creation": [[37, "symlink-creation"], [40, "symlink-creation"]], "Symmetric Encryption": [[2, "symmetric-encryption"]], "Symmetric Key": [[38, "symmetric-key"], [40, "symmetric-key"]], "Symmetric/Shared Key Encryption Algorithms": [[33, "symmetric-shared-key-encryption-algorithms"]], "Synced Folders": [[32, "synced-folders"]], "Syntax": [[31, "syntax"]], "SysV": [[0, "sysv"]], "Sysctl - configure kernel parameters": [[31, "sysctl-configure-kernel-parameters"]], "Sysdig": [[32, "sysdig"]], "Sysinternal PSExec with hashes": [[20, "sysinternal-psexec-with-hashes"]], "Sysinternals psexec": [[20, "sysinternals-psexec"]], "System Administration": [[31, "system-administration"]], "System Operators": [[10, "system-operators"]], "System V IPC": [[31, "system-v-ipc"]], "System V style": [[31, "system-v-style"]], "System operations": [[10, "system-operations"]], "System/ Security /SAM File": [[21, "system-security-sam-file"]], "SystemInfo": [[37, "systeminfo"], [40, "systeminfo"]], "TCP": [[36, "tcp"]], "TCP Mode": [[36, "tcp-mode"]], "TCP Scan": [[35, "tcp-scan"], [40, "tcp-scan"]], "TCP/UDP Ports": [[11, "tcp-udp-ports"]], "TCPDump/Windump": [[11, "tcpdump-windump"]], "TFTP": [[39, "tftp"], [40, "tftp"]], "TFTP Filter": [[3, "tftp-filter"]], "TLS": [[3, "tls"]], "TODO (talk openly, develop openly) Group": [[34, "todo-talk-openly-develop-openly-group"]], "TRUST": [[20, "trust"]], "Table of Contents": [[28, null]], "Taking help of binaries": [[36, "taking-help-of-binaries"], [40, "taking-help-of-binaries"]], "Tanzu Service Mesh - Commercial": [[32, "tanzu-service-mesh-commercial"]], "Tar arbitrary command execution": [[37, "tar-arbitrary-command-execution"], [40, "tar-arbitrary-command-execution"]], "Target 1, powershell": [[20, "target-1-powershell"]], "Target 2: Native upload": [[20, "target-2-native-upload"]], "Target 3: MOF Upload": [[20, "target-3-mof-upload"]], "Targeted Hunting": [[21, "targeted-hunting"]], "Targeting Domain Administrator!": [[20, "targeting-domain-administrator"]], "Task Scheduler": [[20, "task-scheduler"]], "Tearing down the cluster": [[14, "tearing-down-the-cluster"]], "Technical - Cybersecurity": [[11, "technical-cybersecurity"]], "Technical - Increasing Threats": [[11, "technical-increasing-threats"]], "Technical - Interconnected Networks": [[11, "technical-interconnected-networks"]], "Technical - Vendors": [[11, "technical-vendors"]], "Technical Analysis": [[25, "technical-analysis"]], "Technical Factors": [[11, "technical-factors"]], "Telemetry": [[33, "telemetry"]], "Telnet Login Check Scanner": [[19, "telnet-login-check-scanner"]], "Telnet Reverse Shell": [[36, "telnet-reverse-shell"], [40, "telnet-reverse-shell"]], "Telnet version": [[19, "telnet-version"]], "Telnet-brute": [[19, "telnet-brute"]], "Telnet-encryption": [[19, "telnet-encryption"]], "Temporary directories in PAM": [[7, "temporary-directories-in-pam"]], "Terminal Emulator": [[31, "terminal-emulator"]], "Terminology": [[31, "terminology"]], "Terminology: authentication, credentials, and authenticators": [[21, "terminology-authentication-credentials-and-authenticators"]], "Terms": [[12, "terms"]], "Terraform": [[32, "terraform"]], "Terraform Providers": [[32, "terraform-providers"]], "Terrorist/Nation State": [[11, "terrorist-nation-state"]], "Test Access Port": [[16, "test-access-port"]], "Test coverage": [[33, "test-coverage"]], "Test process": [[16, "test-process"]], "Testing the WinRM Connection": [[20, "testing-the-winrm-connection"]], "Text-Mode Login": [[31, "text-mode-login"]], "The ASP.NET ViewState": [[5, "the-asp-net-viewstate"]], "The Changing Landscape": [[11, "the-changing-landscape"]], "The Essentials": [[12, "the-essentials"], [41, null]], "The HTTP Protocol": [[5, "the-http-protocol"]], "The Harvester": [[18, "the-harvester"]], "The Magic of Learning": [[28, "the-magic-of-learning"], [41, "the-magic-of-learning"]], "The OPSEC process": [[11, "the-opsec-process"]], "The Referer Header": [[5, "the-referer-header"]], "The SAP Internet Communication Framework (ICF)": [[24, "the-sap-internet-communication-framework-icf"]], "The SAP Internet Communication Manager (ICM)": [[24, "the-sap-internet-communication-manager-icm"]], "The control file": [[31, "the-control-file"]], "The pkg database": [[31, "the-pkg-database"]], "Thermal Generating Station": [[10, "thermal-generating-station"]], "Things to Remember": [[34, "things-to-remember"]], "Threadfix": [[22, "threadfix"]], "Threat": [[11, "threat"]], "Threat Actor Categories": [[11, "threat-actor-categories"]], "Threat Hunting": [[30, "threat-hunting"]], "Threat Intelligence": [[30, "threat-intelligence"]], "Threat Modelling": [[33, "threat-modelling"]], "Threats": [[11, "threats"]], "Three-way handshake": [[11, "three-way-handshake"]], "Tiger": [[23, "tiger"]], "Time of check to time of use": [[37, "time-of-check-to-time-of-use"], [40, "time-of-check-to-time-of-use"]], "Time-Based Blind": [[5, "time-based-blind"]], "Timeline Patterns": [[3, "timeline-patterns"]], "Timestamps": [[3, "timestamps"]], "Timing and Performance options": [[11, "timing-and-performance-options"]], "Tips and Tricks": [[0, "tips-and-tricks"], [38, "tips-and-tricks"], [40, "tips-and-tricks"]], "Tips and tricks": [[31, "tips-and-tricks"]], "Tmux Copy Paste": [[31, "tmux-copy-paste"]], "ToDo": [[13, "todo"], [13, "todo-1"]], "ToWrite": [[10, "towrite"]], "Todo": [[8, "id1"], [8, "id2"], [18, "id1"], [18, "id2"], [18, "id3"], [18, "id4"], [18, "id5"], [18, "id6"], [18, "id7"], [18, "id8"], [18, "id9"], [18, "id10"], [18, "id11"], [18, "id14"], [18, "id15"], [18, "id16"], [18, "id17"], [18, "id18"], [18, "id19"], [18, "id20"], [18, "id21"], [18, "id22"], [18, "id24"], [18, "id25"], [18, "id28"], [18, "id29"], [18, "id30"], [18, "id31"], [19, "id30"], [19, "id61"], [20, "id19"], [21, "id7"], [27, "id1"], [31, "id4"], [36, "id2"], [36, "id3"], [36, "id4"], [36, "id5"], [36, "id6"], [38, "id10"], [40, "id8"], [40, "id9"], [40, "id10"], [40, "id11"], [40, "id12"], [40, "id35"]], "Tools": [[11, "tools"], [11, "id20"], [21, "tools"], [23, "tools"], [39, "tools"], [40, "tools"]], "Tools for Cloud Infrastructure": [[32, "tools-for-cloud-infrastructure"]], "Top kind of vulns": [[33, "top-kind-of-vulns"]], "Tower Wires not straight?": [[10, "tower-wires-not-straight"]], "Towers": [[10, "towers"]], "Towers Wires?": [[10, "towers-wires"]], "Tracking automatically installed packages": [[31, "tracking-automatically-installed-packages"]], "Traditional testing": [[33, "traditional-testing"]], "Tranmission": [[11, "tranmission"]], "Transmission": [[10, "transmission"]], "Transmission Architecture": [[10, "transmission-architecture"]], "Transmission Substation Architecture": [[10, "transmission-substation-architecture"]], "Transmission/ Distribution": [[10, "transmission-distribution"]], "Transmitting Data Via the Client": [[5, "transmitting-data-via-the-client"]], "Transport Layer Security": [[33, "transport-layer-security"]], "Transportation": [[11, "transportation"], [11, "id3"]], "Travis CI": [[32, "travis-ci"]], "Trends": [[11, "trends"]], "Tricks": [[38, "tricks"], [40, "tricks"]], "Truecrypt Files": [[38, "truecrypt-files"], [40, "truecrypt-files"]], "Tubes": [[1, "tubes"]], "Tuffin Orchestration Suite": [[23, "tuffin-orchestration-suite"]], "Turn off the graphical desktop": [[31, "turn-off-the-graphical-desktop"]], "Type Juggling/ Magic Bytes": [[39, "type-juggling-magic-bytes"], [40, "type-juggling-magic-bytes"]], "Type of UART Ports": [[16, "type-of-uart-ports"]], "Type of Update Locations": [[12, "type-of-update-locations"]], "Type-1, native or bare-metal hypervisors": [[32, "type-1-native-or-bare-metal-hypervisors"]], "Type-1/2 Hypervisor Example: Linux KVM": [[32, "type-1-2-hypervisor-example-linux-kvm"]], "Type-2 Hypervisor Example: Virtualbox": [[32, "type-2-hypervisor-example-virtualbox"]], "Type-2 or hosted hypervisors": [[32, "type-2-or-hosted-hypervisors"]], "Types of Facilities": [[11, "types-of-facilities"]], "Types of Injection": [[5, "types-of-injection"]], "Typical applications of RTU in Electrical Grid": [[10, "typical-applications-of-rtu-in-electrical-grid"]], "UART Communication": [[16, "uart-communication"]], "UART Data Packet": [[16, "uart-data-packet"]], "UDP": [[36, "udp"]], "UDP Mode": [[36, "udp-mode"]], "UDP Scan": [[35, "udp-scan"], [40, "udp-scan"]], "UPS Battery Backup": [[11, "ups-battery-backup"]], "URL Encoding": [[5, "url-encoding"]], "URL Parameters": [[5, "url-parameters"]], "URLs": [[5, "urls"]], "USB Forensics": [[3, "usb-forensics"]], "USB HID Keyboard Scan Codes": [[3, "usb-hid-keyboard-scan-codes"]], "USB-Keyboard": [[3, "usb-keyboard"]], "USB-Mouse": [[3, "usb-mouse"]], "USB-Storage-Device": [[3, "usb-storage-device"]], "Ubuntu Core": [[32, "ubuntu-core"]], "Unattended APT - Upgrade": [[37, "unattended-apt-upgrade"], [40, "unattended-apt-upgrade"]], "Understading EEPROM": [[16, "understading-eeprom"]], "Understading ZigBee Communication": [[16, "understading-zigbee-communication"]], "Understanding Absolute and Relative Paths": [[31, "understanding-absolute-and-relative-paths"]], "Unicode Encoding": [[5, "unicode-encoding"]], "Unicornscan": [[35, "unicornscan"], [40, "unicornscan"]], "Unikernels": [[32, "unikernels"]], "Uninstalling packages": [[31, "uninstalling-packages"]], "Unintentional Threats": [[11, "unintentional-threats"]], "Union Based": [[5, "union-based"]], "Union filesystem": [[32, "union-filesystem"]], "Unix Wildcards": [[37, "unix-wildcards"], [40, "unix-wildcards"]], "Unlocking a user account": [[14, "unlocking-a-user-account"]], "Unprivileged Shell to Privileged Shell": [[37, "unprivileged-shell-to-privileged-shell"], [40, "unprivileged-shell-to-privileged-shell"]], "Until loop": [[31, "until-loop"]], "Updating Linux System using a high-level tool": [[31, "updating-linux-system-using-a-high-level-tool"]], "Updating Linux System using a low-level tool": [[31, "updating-linux-system-using-a-low-level-tool"]], "Updating packages": [[31, "updating-packages"]], "Updating the DNS Server": [[8, "updating-the-dns-server"]], "Upgrading the Rook and Ceph cluster": [[14, "upgrading-the-rook-and-ceph-cluster"]], "Upgrading the kernel": [[31, "upgrading-the-kernel"]], "Upstart": [[31, "upstart"]], "Upstream, Downstream, Processes, Safety": [[11, "upstream-downstream-processes-safety"]], "Urban Monitoring Architecture - Edge Side": [[15, "urban-monitoring-architecture-edge-side"]], "Usage": [[5, "id1"], [6, "id1"], [20, "usage"], [20, "id5"], [20, "id6"], [20, "id13"]], "Useful Information": [[21, "useful-information"]], "Useful Stuff": [[20, "useful-stuff"]], "Useful Tools": [[40, "useful-tools"]], "Useful packages": [[7, "useful-packages"]], "User": [[14, "user"]], "User Activity": [[21, "user-activity"]], "User Creation": [[8, "user-creation"]], "User History": [[36, "user-history"], [40, "user-history"]], "User Home Directory": [[38, "user-home-directory"], [40, "user-home-directory"]], "User Mode": [[31, "user-mode"]], "User Startup files": [[31, "user-startup-files"]], "User access control": [[10, "user-access-control"]], "User and Group IDs": [[31, "user-and-group-ids"]], "User interface": [[11, "user-interface"]], "User login actions": [[7, "user-login-actions"]], "User password policies": [[20, "user-password-policies"]], "Users": [[37, "users"]], "Userspace": [[31, "userspace"]], "Uses": [[0, "uses"]], "Uses of ICS": [[11, "uses-of-ics"]], "Using Integers": [[5, "using-integers"]], "Using RPM (Red hat and Fedora)": [[31, "using-rpm-red-hat-and-fedora"]], "Using apt-get": [[31, "using-apt-get"]], "Using dnf": [[31, "using-dnf"]], "Using dpkg (Debian/Ubuntu)": [[31, "using-dpkg-debian-ubuntu"]], "Using external commands in vi": [[31, "using-external-commands-in-vi"]], "Using nfsshell": [[19, "using-nfsshell"]], "Using regular expressions": [[31, "using-regular-expressions"]], "Using the $((\u2026)) syntax": [[31, "using-the-syntax"]], "Using the built-in shell command let": [[31, "using-the-built-in-shell-command-let"]], "Using the expr": [[31, "using-the-expr"]], "Using yum": [[31, "using-yum"]], "Using zypper": [[31, "using-zypper"]], "Util.fiddling": [[1, "id1"]], "VI": [[36, "vi"], [40, "vi"]], "VM Management": [[32, "vm-management"]], "VM1: PuppetServer": [[14, "vm1-puppetserver"]], "VM2: FreeIPA Server": [[14, "vm2-freeipa-server"]], "VM2A: Rancher Server": [[14, "vm2a-rancher-server"]], "VM3: Teleport Server": [[14, "vm3-teleport-server"]], "VM4: Cloudcore Server": [[14, "vm4-cloudcore-server"]], "VM4A: Kubernetes Server": [[14, "vm4a-kubernetes-server"]], "VM4B: KubeEdge": [[14, "vm4b-kubeedge"]], "VM5 Vault Server": [[14, "vm5-vault-server"]], "VM5: Kafka Server": [[14, "vm5-kafka-server"]], "VM6: CEPH Server": [[14, "vm6-ceph-server"]], "VM7 Keycloak server": [[14, "vm7-keycloak-server"]], "VMware ESXi": [[19, "vmware-esxi"]], "VNC Authentication None Detection": [[19, "vnc-authentication-none-detection"]], "VNC Authentication Scanner": [[19, "vnc-authentication-scanner"]], "VNC Password": [[19, "vnc-password"]], "VPN Logs": [[11, "vpn-logs"]], "VPN-like tunnelling?": [[36, "vpn-like-tunnelling"], [40, "vpn-like-tunnelling"]], "Vagrant": [[32, "vagrant"]], "Vagrant file": [[32, "vagrant-file"]], "Validate the Domain Controller": [[8, "validate-the-domain-controller"]], "Validating Package authority": [[31, "validating-package-authority"]], "Value of the variable": [[31, "value-of-the-variable"]], "Variable vs. Static": [[31, "variable-vs-static"]], "Vendor Access": [[11, "vendor-access"]], "Vendor Security Configuration Tools": [[10, "vendor-security-configuration-tools"]], "Vendor connections to the ICS Network": [[11, "vendor-connections-to-the-ics-network"]], "Verification": [[33, "verification"]], "Verify domain controllers in a domain": [[20, "verify-domain-controllers-in-a-domain"]], "Verifying Installation": [[1, "verifying-installation"]], "Verifying packages": [[31, "verifying-packages"]], "Version Reference": [[0, "version-reference"]], "Version of the target Windows machine": [[20, "version-of-the-target-windows-machine"]], "Vi Configuration Files": [[31, "vi-configuration-files"]], "Vi Modes": [[31, "vi-modes"]], "Video": [[39, "video"], [40, "video"]], "View group in Domain / Workgroup": [[20, "view-group-in-domain-workgroup"]], "View large files": [[31, "view-large-files"]], "View machines affected by GPP vulnerability": [[20, "view-machines-affected-by-gpp-vulnerability"]], "View machines in Domain/ Workgroup": [[20, "view-machines-in-domain-workgroup"]], "View superblock information": [[31, "view-superblock-information"]], "View users in Domain / Workgroup": [[20, "view-users-in-domain-workgroup"]], "Viewing Files": [[31, "viewing-files"]], "Viewing Memory at any location": [[0, "viewing-memory-at-any-location"]], "Viewing compressed files": [[31, "viewing-compressed-files"]], "Viewing return values": [[31, "viewing-return-values"]], "Viewing the stack": [[0, "viewing-the-stack"]], "Virtual Machine Snapshots And Suspended States - Vmss2core": [[21, "virtual-machine-snapshots-and-suspended-states-vmss2core"]], "Virtual Machines created using Terraform": [[14, "virtual-machines-created-using-terraform"]], "Virtual Machines created using cloud": [[14, "virtual-machines-created-using-cloud"]], "Virtual Terminal": [[31, "virtual-terminal"]], "Virtualization": [[11, "virtualization"], [32, "virtualization"]], "Visitor location register (VLR)": [[12, "visitor-location-register-vlr"]], "Vistors": [[11, "vistors"]], "Visual Inspection": [[16, "visual-inspection"]], "Volatility": [[3, "volatility"]], "Volume Management in Kubernetes": [[32, "volume-management-in-kubernetes"]], "Volume plugins for docker": [[32, "volume-plugins-for-docker"]], "Volume types": [[32, "volume-types"]], "Vulnerabilities": [[10, "vulnerabilities"], [33, "vulnerabilities"]], "Vulnerability": [[11, "vulnerability"]], "Vulnerability Analysis": [[19, "vulnerability-analysis"]], "Vulnerability Assessment": [[30, "vulnerability-assessment"]], "Vulnerability Feeds": [[10, "vulnerability-feeds"]], "Vulnerable Machines": [[40, "vulnerable-machines"], [41, null]], "WEP": [[17, "wep"]], "WMI": [[20, "wmi"], [20, "id9"], [20, "id18"]], "WMI user groups": [[20, "wmi-user-groups"]], "WMIC.exe": [[23, "wmic-exe"]], "Water Supply:": [[11, "water-supply"]], "Water and waste": [[11, "water-and-waste"]], "Ways to provide input to grep": [[31, "ways-to-provide-input-to-grep"]], "Web Application Firewall": [[30, "web-application-firewall"]], "Web Application Technologies": [[5, "web-application-technologies"]], "Web-Application Pentration Testing": [[30, "web-application-pentration-testing"]], "Webcam": [[21, "webcam"]], "Webmin": [[19, "webmin"]], "Webserver logs": [[3, "webserver-logs"]], "Webservices": [[36, "webservices"], [40, "webservices"]], "Weevely": [[36, "weevely"], [40, "weevely"]], "Wget": [[38, "wget"], [40, "id26"]], "What Are Licenses?": [[34, "what-are-licenses"]], "What Are Security Design Principles?": [[33, "what-are-security-design-principles"]], "What Does a Reference to a License Look Like in a File?": [[34, "what-does-a-reference-to-a-license-look-like-in-a-file"]], "What Is a Copyright?": [[34, "what-is-a-copyright"]], "What is OpenOCD": [[16, "what-is-openocd"]], "What \u201cAdvanced Linux File Permissions\u201d are used?": [[37, "what-advanced-linux-file-permissions-are-used"], [40, "what-advanced-linux-file-permissions-are-used"]], "What?": [[11, "what"], [11, "id13"], [11, "id16"]], "Where can written to and executed from?": [[37, "where-can-written-to-and-executed-from"], [40, "where-can-written-to-and-executed-from"]], "While loop": [[31, "while-loop"]], "Who Is a Copyright Holder?": [[34, "who-is-a-copyright-holder"]], "Who?": [[11, "who"]], "Whois": [[18, "whois"]], "Why CI": [[32, "why-ci"]], "Why Do Many OSS Projects Fail?": [[34, "why-do-many-oss-projects-fail"]], "Why is OPC so Popular?": [[11, "why-is-opc-so-popular"]], "Why?": [[11, "why"], [11, "id14"], [11, "id17"]], "Wi-Fi": [[11, "wi-fi"]], "WinRM": [[20, "winrm"]], "Window": [[31, "window"]], "Windows": [[11, "windows"], [11, "id7"], [11, "id9"], [11, "id11"], [20, "windows"], [31, "windows"], [36, "windows"], [38, "windows"], [40, "windows"], [40, "id31"]], "Windows (Tabs)": [[31, "windows-tabs"]], "Windows Binary win-exe": [[20, "windows-binary-win-exe"]], "Windows Credential Editor (WCE)": [[21, "windows-credential-editor-wce"]], "Windows Domain Controller": [[30, "windows-domain-controller"]], "Windows Event Forwarding": [[30, "windows-event-forwarding"]], "Windows Exploit Suggestor": [[37, "windows-exploit-suggestor"], [40, "windows-exploit-suggestor"]], "Windows Kernel Exploits": [[37, "windows-kernel-exploits"], [40, "windows-kernel-exploits"]], "Windows Operating Systems": [[23, "windows-operating-systems"]], "Windows Privilege Escalation": [[20, "windows-privilege-escalation"], [37, "windows-privilege-escalation"], [40, "windows-privilege-escalation"]], "Windows Resource Kit Local/ Global executable": [[20, "windows-resource-kit-local-global-executable"]], "Windows Security Hardening": [[8, "windows-security-hardening"]], "Windows Server Update Services (WSUS) Server": [[30, "windows-server-update-services-wsus-server"]], "Windows authentication protocols": [[21, "windows-authentication-protocols"]], "Windows authenticators": [[21, "windows-authenticators"]], "Winexe": [[20, "winexe"]], "Wired LAN": [[18, "wired-lan"]], "Wired Media \u2013 Copper and Fiber": [[11, "wired-media-copper-and-fiber"]], "Wired PCAP": [[3, "wired-pcap"]], "Wireless Access": [[11, "wireless-access"]], "Wireless LAN": [[18, "wireless-lan"]], "Wireless PCAP": [[3, "wireless-pcap"]], "Wireless Security": [[11, "wireless-security"]], "Wireshark": [[3, "wireshark"]], "Wireshark tips": [[3, "wireshark-tips"]], "With Boot Parameters": [[31, "with-boot-parameters"]], "With Foreman": [[14, "with-foreman"]], "With a Preseed File Loaded from the Network": [[31, "with-a-preseed-file-loaded-from-the-network"]], "With a Preseed File in the Boot Media": [[31, "with-a-preseed-file-in-the-boot-media"]], "With a Preseed File in the Initrd": [[31, "with-a-preseed-file-in-the-initrd"]], "Without Foreman": [[14, "without-foreman"]], "Word/Powerpoint and others? Macro": [[3, "word-powerpoint-and-others-macro"]], "Wordpot": [[38, "wordpot"], [40, "wordpot"]], "Wordpress": [[36, "wordpress"], [40, "wordpress"]], "Working in OSS Projects": [[34, "working-in-oss-projects"]], "Working of MSF PSExec - Powershell": [[20, "working-of-msf-psexec-powershell"]], "Working of MSF PSexec - Native Upload": [[20, "working-of-msf-psexec-native-upload"]], "Working of Microsoft PSExec": [[20, "working-of-microsoft-psexec"]], "Working with different distributions": [[31, "working-with-different-distributions"]], "Working with several groups": [[31, "working-with-several-groups"]], "Working with text in vi": [[31, "working-with-text-in-vi"]], "World-Writable Folder with a Script executing any file in that folder using crontab": [[37, "world-writable-folder-with-a-script-executing-any-file-in-that-folder-using-crontab"], [40, "world-writable-folder-with-a-script-executing-any-file-in-that-folder-using-crontab"]], "Writable /etc/passwd or account credentials came from a legacy unix system": [[37, "writable-etc-passwd-or-account-credentials-came-from-a-legacy-unix-system"], [40, "writable-etc-passwd-or-account-credentials-came-from-a-legacy-unix-system"]], "Write four bytes": [[0, "write-four-bytes"]], "Write hashes obtained by WCE to a file?": [[21, "write-hashes-obtained-by-wce-to-a-file"]], "Write two bytes": [[0, "write-two-bytes"]], "X Window System": [[31, "x-window-system"], [31, "id1"]], "X11 Keyboard Command Injection": [[19, "x11-keyboard-command-injection"]], "X11 No-Auth Scanner": [[19, "x11-no-auth-scanner"]], "XSS/ HTML Injection": [[38, "xss-html-injection"], [40, "xss-html-injection"]], "XTerm": [[36, "xterm"], [40, "xterm"]], "XWatchwin": [[19, "xwatchwin"]], "Xdebug": [[39, "xdebug"], [40, "xdebug"]], "YARA": [[11, "yara"]], "Yum": [[14, "yum"]], "ZIP File": [[38, "zip-file"], [40, "zip-file"]], "ZIP Files": [[3, "zip-files"]], "Zeek IDS": [[11, "zeek-ids"]], "ZigBee": [[16, "zigbee"]], "Zip or unzip using ONLY Windows\u2019 built-in capabilities?": [[38, "zip-or-unzip-using-only-windows-built-in-capabilities"], [40, "zip-or-unzip-using-only-windows-built-in-capabilities"]], "ZooKeeper": [[32, "zookeeper"]], "Zookeeper use-cases": [[32, "zookeeper-use-cases"]], "afp-brute": [[19, "afp-brute"]], "afp-ls": [[19, "afp-ls"]], "afp-path-vuln": [[19, "afp-path-vuln"]], "afp-serverinfo": [[19, "afp-serverinfo"]], "afp-showmount": [[19, "afp-showmount"]], "alias": [[31, "alias"]], "apt configuration": [[31, "apt-configuration"]], "arkade": [[14, "arkade"]], "arp-scan": [[11, "arp-scan"]], "at": [[31, "at"]], "auditpol": [[23, "auditpol"]], "awk": [[31, "awk"]], "binwalk/foremost": [[3, "binwalk-foremost"]], "broadcast-netbios-master-browser": [[19, "broadcast-netbios-master-browser"]], "bzip": [[31, "bzip"]], "cAdvisor": [[32, "cadvisor"]], "case statement": [[31, "case-statement"]], "cat": [[31, "cat"], [31, "id3"]], "cc - GNU Compile Collection": [[31, "cc-gnu-compile-collection"]], "cd": [[31, "cd"]], "cdecl": [[0, "cdecl"]], "cert-manager": [[14, "cert-manager"]], "cewl": [[1, "cewl"]], "cgroups": [[32, "cgroups"]], "ciscoconfparse": [[23, "ciscoconfparse"]], "containerd": [[32, "containerd"]], "cp": [[31, "cp"]], "crackmapexec": [[20, "crackmapexec"]], "creddump7": [[21, "id3"]], "cron": [[31, "cron"]], "crunch": [[1, "crunch"]], "ctypes": [[1, "ctypes"]], "curl": [[31, "curl"], [36, "curl"], [38, "curl"], [40, "curl"]], "cut": [[31, "cut"]], "cut - remove sections from each line of files": [[31, "cut-remove-sections-from-each-line-of-files"]], "data://text/plain;base64,command": [[39, "data-text-plain-base64-command"], [40, "data-text-plain-base64-command"]], "dirb, wfuzz, dirbuster": [[36, "dirb-wfuzz-dirbuster"], [40, "dirb-wfuzz-dirbuster"]], "dnsrecon": [[18, "dnsrecon"]], "du": [[31, "du"]], "echo": [[31, "echo"], [31, "id2"]], "elif statement": [[31, "elif-statement"]], "enip-enumerate": [[19, "enip-enumerate"]], "enum4linux": [[18, "enum4linux"]], "env_reset": [[38, "env-reset"], [40, "env-reset"]], "etcd": [[32, "etcd"]], "etcd use-cases": [[32, "etcd-use-cases"]], "exiftool": [[3, "exiftool"]], "fgets": [[1, "fgets"]], "find": [[31, "find"], [37, "find"], [40, "find"]], "finger": [[19, "id12"]], "flpsed": [[31, "flpsed"]], "ftp": [[31, "ftp"]], "ftp-anon": [[19, "ftp-anon"]], "ftp-bounce": [[19, "ftp-bounce"]], "ftp-brute": [[19, "ftp-brute"]], "fwbuilder": [[31, "fwbuilder"]], "gmon_start": [[0, "gmon-start"]], "grep -e / grep -E": [[31, "grep-e-grep-e"]], "gzip": [[31, "gzip"]], "head": [[31, "head"]], "help": [[31, "help"]], "hexdump": [[31, "hexdump"]], "host": [[18, "host"], [18, "id13"]], "hostname": [[38, "hostname"], [40, "hostname"]], "htaccess - UserAgent": [[38, "htaccess-useragent"], [40, "htaccess-useragent"]], "ifconfig": [[31, "ifconfig"]], "ifupdown": [[31, "ifupdown"]], "ifupdown\u2019s configuration file": [[31, "ifupdown-s-configuration-file"]], "ip": [[31, "ip"], [31, "id6"], [38, "ip"], [40, "ip"]], "ipa-client-install and OpenSSh": [[14, "ipa-client-install-and-openssh"]], "ipc": [[32, "ipc"]], "iptables syntax": [[31, "iptables-syntax"]], "iscsi-info": [[19, "iscsi-info"]], "iscsiadm": [[19, "iscsiadm"]], "join": [[31, "join"]], "keepass2john": [[38, "keepass2john"], [40, "keepass2john"]], "krb5-enum-users": [[19, "krb5-enum-users"]], "ldap-brute": [[19, "ldap-brute"]], "ldap-search": [[19, "ldap-search"]], "ldapsearch": [[19, "ldapsearch"]], "less": [[31, "less"]], "libc_start_main": [[0, "libc-start-main"]], "locate": [[31, "locate"]], "ls": [[31, "ls"]], "ls showing full path": [[31, "ls-showing-full-path"]], "mail_badpass": [[38, "mail-badpass"], [40, "mail-badpass"]], "man": [[31, "man"]], "memcached-info": [[19, "memcached-info"]], "mkfs": [[31, "mkfs"]], "mnt": [[32, "mnt"]], "mysql": [[19, "mysql"]], "ndmp-fs-info": [[19, "ndmp-fs-info"]], "ndmp-version": [[19, "ndmp-version"]], "net session": [[20, "net-session"]], "net user /domain": [[20, "net-user-domain"]], "net view /domain": [[20, "net-view-domain"]], "netBIOS": [[11, "netbios"]], "netcat (nc)": [[36, "netcat-nc"], [40, "netcat-nc"]], "netdom": [[20, "netdom"]], "netplan": [[31, "netplan"]], "netstat": [[11, "netstat"]], "network": [[32, "network"]], "nfsshell": [[19, "nfsshell"]], "nice": [[31, "nice"]], "nikto": [[36, "nikto"], [40, "nikto"]], "nltest": [[20, "nltest"]], "nmap": [[11, "nmap"]], "nmap - Discovery methods": [[11, "nmap-discovery-methods"]], "nmap suid": [[37, "nmap-suid"], [40, "nmap-suid"]], "npm": [[37, "npm"]], "nslookup": [[18, "nslookup"]], "others": [[0, "others"]], "p,q,dp,dp": [[2, "p-q-dp-dp"]], "passthru": [[5, "passthru"], [6, "passthru"]], "paste": [[31, "paste"]], "pdfinfo": [[31, "pdfinfo"]], "pdfmod": [[31, "pdfmod"]], "pdftk": [[31, "pdftk"]], "pid": [[32, "pid"]], "ping": [[31, "ping"]], "pip": [[37, "pip"]], "pspy": [[37, "pspy"], [40, "pspy"]], "puppet-agent": [[14, "puppet-agent"]], "qpdf": [[31, "qpdf"]], "rConfig": [[23, "rconfig"]], "rand": [[1, "rand"]], "rar2john": [[38, "rar2john"], [40, "rar2john"]], "rdesktop": [[20, "rdesktop"]], "renice": [[31, "renice"]], "rexec Authentication Scanner": [[19, "rexec-authentication-scanner"]], "rexec-brute": [[19, "rexec-brute"]], "rlogin": [[19, "rlogin"]], "rlogin Authentication Scanner": [[19, "rlogin-authentication-scanner"]], "rmi-vuln-classloader": [[19, "rmi-vuln-classloader"]], "route": [[31, "route"]], "rpcdump": [[19, "rpcdump"]], "rpcinfo": [[19, "rpcinfo"]], "rpclient": [[20, "rpclient"]], "rsh": [[19, "rsh"]], "rsh Authentication Scanner": [[19, "rsh-authentication-scanner"]], "rsync": [[19, "rsync"], [31, "rsync"]], "rsync-list-modules": [[19, "rsync-list-modules"]], "rtsp-methods": [[19, "rtsp-methods"]], "rtsp-url-brute": [[19, "rtsp-url-brute"]], "run-parts": [[38, "run-parts"], [40, "run-parts"]], "runC": [[32, "runc"]], "scp": [[31, "scp"]], "searchsploit": [[36, "searchsploit"], [40, "searchsploit"]], "secure_path": [[38, "secure-path"], [40, "secure-path"]], "sed": [[31, "sed"]], "setuid and setgid": [[31, "setuid-and-setgid"]], "sh": [[36, "sh"], [40, "sh"]], "shell script arguments": [[31, "shell-script-arguments"]], "sleep": [[31, "sleep"]], "sort": [[31, "sort"]], "split": [[31, "split"]], "srand": [[1, "srand"]], "ss": [[38, "ss"], [40, "ss"]], "ssh": [[31, "ssh"]], "ssh-key": [[36, "ssh-key"], [40, "ssh-key"]], "ssh2-enum-algos": [[19, "ssh2-enum-algos"]], "ssh_config": [[38, "ssh-config"], [40, "ssh-config"]], "ssl-ccs-injection": [[19, "ssl-ccs-injection"]], "ssl-cert": [[19, "ssl-cert"]], "ssl-date": [[19, "ssl-date"]], "ssl-dh-params": [[19, "ssl-dh-params"]], "ssl-enum-ciphers": [[19, "ssl-enum-ciphers"]], "ssl-google-cert-catalog": [[19, "ssl-google-cert-catalog"]], "ssl-heartbleed": [[19, "ssl-heartbleed"]], "ssl-poodle": [[19, "ssl-poodle"]], "ssldump": [[3, "ssldump"]], "sslv2": [[19, "sslv2"]], "steghide": [[3, "steghide"]], "stegsolve": [[3, "stegsolve"]], "stickybit": [[31, "stickybit"]], "strings": [[3, "strings"], [31, "strings"]], "stty": [[36, "stty"], [40, "stty"]], "su": [[31, "su"]], "su -c": [[31, "su-c"]], "sudo": [[31, "sudo"]], "sudo Rules in Identity Management": [[14, "sudo-rules-in-identity-management"]], "sudo user": [[14, "sudo-user"]], "syslog": [[11, "syslog"]], "systemctl": [[31, "systemctl"]], "systemd": [[31, "systemd"]], "systemd-networkd": [[31, "systemd-networkd"]], "tail": [[31, "tail"]], "tar": [[31, "tar"]], "tcpdump": [[37, "tcpdump"], [40, "tcpdump"]], "tee": [[31, "tee"]], "tee suid": [[37, "tee-suid"], [40, "tee-suid"]], "tmux": [[31, "tmux"]], "tmux.conf": [[31, "tmux-conf"]], "tr": [[31, "tr"]], "traceroute": [[31, "traceroute"]], "tree": [[31, "tree"]], "tsql": [[19, "tsql"]], "ulimit": [[0, "ulimit"]], "uniq": [[31, "uniq"]], "unix-privesc-check": [[23, "unix-privesc-check"]], "update-rc.d": [[31, "update-rc-d"]], "usage": [[5, "usage"], [6, "usage"]], "user": [[32, "user"]], "uts": [[32, "uts"]], "vi": [[37, "vi"]], "wc": [[31, "wc"]], "wget": [[31, "wget"], [37, "wget"], [40, "wget"]], "wgetrc Commands": [[38, "wgetrc-commands"], [40, "wgetrc-commands"]], "whatweb": [[36, "whatweb"], [40, "whatweb"]], "wireshark": [[11, "wireshark"]], "with the -e option": [[36, "with-the-e-option"]], "without -e option": [[36, "without-e-option"]], "xdpyinfo": [[19, "xdpyinfo"]], "xfreerdp/ Remote Desktop": [[20, "xfreerdp-remote-desktop"]], "xspy": [[19, "xspy"]], "xwd": [[19, "xwd"]], "xwininfo": [[19, "xwininfo"]], "xxd": [[31, "xxd"]], "xz": [[31, "xz"]], "zip": [[31, "zip"], [37, "zip"], [40, "zip"]]}, "docnames": ["Series_Capture_The_Flag/LFC-BinaryExploitation", "Series_Capture_The_Flag/LFC-CodingQuickRef", "Series_Capture_The_Flag/LFC-Cryptography", "Series_Capture_The_Flag/LFC-Forensics", "Series_Capture_The_Flag/LFC-ReverseEngineering", "Series_Capture_The_Flag/LFC-WebExploitation", "Series_Capture_The_Flag/LFCWebExploitation", "Series_Configuration_Management/LFFSecuringDebian", "Series_Configuration_Management/LFL-CFG-SEC-Windows", "Series_Critical_Infrastructure/LFF-CIS-EVCI", "Series_Critical_Infrastructure/LFF-CIS-ElectricalGrid", "Series_Critical_Infrastructure/LFF-CIS-IndustrialControlSystems", "Series_Critical_Infrastructure/LFF-CIS-MobileNetworks", "Series_Home_Lab/LFF-HLSC-Applications", "Series_Home_Lab/LFF-HLSC-Cloud-Tier", "Series_Home_Lab/LFF-HLSC-Edge-Tier", "Series_In_Progress/LFF-IoT", "Series_In_Progress/LFFWirelessPentesting", "Series_Infrastructure_Pentest/LFF-IPS-P1-IntelligenceGathering", "Series_Infrastructure_Pentest/LFF-IPS-P2-VulnerabilityAnalysis", "Series_Infrastructure_Pentest/LFF-IPS-P3-Exploitation", "Series_Infrastructure_Pentest/LFF-IPS-P4-PostExploitation", "Series_Infrastructure_Pentest/LFF-IPS-P5-Reporting", "Series_Infrastructure_Pentest/LFF-IPS-P6-ConfigurationReview", "Series_Infrastructure_Pentest/LFF-IPS-P99-SAP-Pentesting", "Series_Investments/Stock_Market", "Series_Other_Information/Feedback", "Series_Other_Information/aboutme", "Series_Other_Information/content", "Series_Other_Information/contrib", "Series_The_Essentials/LFF-ESS-P0A-CyberSecurityEnterprise", "Series_The_Essentials/LFF-ESS-P0B-LinuxEssentials", "Series_The_Essentials/LFF-ESS-P0C-CloudEssentials", "Series_The_Essentials/LFF-ESS-P0D-SecureSoftware", "Series_The_Essentials/LFF-ESS-P0E-OpenSource", "Series_Vulnerable_Machines/LFC-VM-P0-InitialRecon", "Series_Vulnerable_Machines/LFC-VM-P1-FromNothingToUnprivilegedShell", "Series_Vulnerable_Machines/LFC-VM-P2-UnprivilegedToPrivilegedShell", "Series_Vulnerable_Machines/LFC-VM-P3-TipsAndTricks", "Series_Vulnerable_Machines/LFC-VM-P4-Appendix", "Series_Vulnerable_Machines/LFC-VulnerableMachines", "index"], "envversion": {"sphinx": 61, "sphinx.domains.c": 3, "sphinx.domains.changeset": 1, "sphinx.domains.citation": 1, "sphinx.domains.cpp": 9, "sphinx.domains.index": 1, "sphinx.domains.javascript": 3, "sphinx.domains.math": 2, "sphinx.domains.python": 4, "sphinx.domains.rst": 2, "sphinx.domains.std": 2, "sphinx.ext.intersphinx": 1, "sphinx.ext.todo": 2, "sphinx.ext.viewcode": 1}, "filenames": ["Series_Capture_The_Flag/LFC-BinaryExploitation.rst", "Series_Capture_The_Flag/LFC-CodingQuickRef.rst", "Series_Capture_The_Flag/LFC-Cryptography.rst", "Series_Capture_The_Flag/LFC-Forensics.rst", "Series_Capture_The_Flag/LFC-ReverseEngineering.rst", "Series_Capture_The_Flag/LFC-WebExploitation.rst", "Series_Capture_The_Flag/LFCWebExploitation.rst", "Series_Configuration_Management/LFFSecuringDebian.rst", "Series_Configuration_Management/LFL-CFG-SEC-Windows.rst", "Series_Critical_Infrastructure/LFF-CIS-EVCI.rst", "Series_Critical_Infrastructure/LFF-CIS-ElectricalGrid.rst", "Series_Critical_Infrastructure/LFF-CIS-IndustrialControlSystems.rst", "Series_Critical_Infrastructure/LFF-CIS-MobileNetworks.rst", "Series_Home_Lab/LFF-HLSC-Applications.rst", "Series_Home_Lab/LFF-HLSC-Cloud-Tier.rst", "Series_Home_Lab/LFF-HLSC-Edge-Tier.rst", "Series_In_Progress/LFF-IoT.rst", "Series_In_Progress/LFFWirelessPentesting.rst", "Series_Infrastructure_Pentest/LFF-IPS-P1-IntelligenceGathering.rst", "Series_Infrastructure_Pentest/LFF-IPS-P2-VulnerabilityAnalysis.rst", "Series_Infrastructure_Pentest/LFF-IPS-P3-Exploitation.rst", "Series_Infrastructure_Pentest/LFF-IPS-P4-PostExploitation.rst", "Series_Infrastructure_Pentest/LFF-IPS-P5-Reporting.rst", "Series_Infrastructure_Pentest/LFF-IPS-P6-ConfigurationReview.rst", "Series_Infrastructure_Pentest/LFF-IPS-P99-SAP-Pentesting.rst", "Series_Investments/Stock_Market.rst", "Series_Other_Information/Feedback.rst", "Series_Other_Information/aboutme.rst", "Series_Other_Information/content.rst", "Series_Other_Information/contrib.rst", "Series_The_Essentials/LFF-ESS-P0A-CyberSecurityEnterprise.rst", "Series_The_Essentials/LFF-ESS-P0B-LinuxEssentials.rst", "Series_The_Essentials/LFF-ESS-P0C-CloudEssentials.rst", "Series_The_Essentials/LFF-ESS-P0D-SecureSoftware.rst", "Series_The_Essentials/LFF-ESS-P0E-OpenSource.rst", "Series_Vulnerable_Machines/LFC-VM-P0-InitialRecon.rst", "Series_Vulnerable_Machines/LFC-VM-P1-FromNothingToUnprivilegedShell.rst", "Series_Vulnerable_Machines/LFC-VM-P2-UnprivilegedToPrivilegedShell.rst", "Series_Vulnerable_Machines/LFC-VM-P3-TipsAndTricks.rst", "Series_Vulnerable_Machines/LFC-VM-P4-Appendix.rst", "Series_Vulnerable_Machines/LFC-VulnerableMachines.rst", "index.rst"], "indexentries": {}, "objects": {}, "objnames": {}, "objtypes": {}, "terms": {"": [0, 1, 2, 3, 4, 6, 7, 8, 9, 10, 11, 12, 14, 15, 16, 18, 19, 20, 22, 23, 24, 25, 30, 32, 33, 35, 36, 37, 38, 39, 40], "0": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 14, 16, 17, 18, 19, 20, 21, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "00": [3, 4, 5, 8, 10, 18, 19, 20, 24, 30, 31, 32, 37, 38, 39, 40], "000": [0, 3, 10, 11, 18, 19, 20, 31, 33, 36, 37, 40], "0000": [1, 3, 11, 13, 19, 21], "000000": [3, 20], "0000000": [0, 3], "00000000": [0, 3, 19, 20], "0000000000": 3, "0000000001": 3, "00000000010100": 2, "00000003": 20, "00000004": 0, "00000005": 0, "00000007": 20, "00000010": [3, 19], "00000014": 20, "00000015": 20, "00000020": [3, 19, 20], "0000002047": 3, "0000002048": 3, "00000030": [3, 19], "00000040": [3, 19], "00000044": 20, "00000050": [3, 19], "00000060": [3, 19], "00000070": [3, 19], "00000080": [3, 19], "00000090": [3, 19], "0000009c": 20, "000000a0": [3, 19], "000000ac": 20, "000000b0": [3, 19], "000000c0": [3, 19], "000000c8": 0, "000000d0": [3, 19], "000000e0": [3, 19], "000000f0": [3, 19], "0000010": [0, 3], "00000100": 19, "00000100000001": 2, "00000100000010": 2, "00000100000100": 2, "00000100000101": 2, "00000100001000": 2, "00000100001010": 2, "00000100010001": 2, "00000100010010": 2, "00000100010100": 2, "00000101": 20, "00000110": 19, "00000120": 19, "00000130": 19, "00000140": 19, "000001a": 0, "0000020": 3, "00000201": 20, "00000220": 20, "000003eb": 20, "00000501": 20, "00000540": 4, "00000550": 4, "00000560": 4, "000008a2": 0, "00001001000100": 2, "00001001000101": 2, "00001001001000": 2, "00001001001010": 2, "00001001010000": 2, "00001001010001": 2, "00001010101000": 2, "0000260096": 3, "0000262143": 3, "0000500000000000": 3, "0001": [1, 31], "00010011": 20, "00010101": 3, "00011001": 20, "000118914h": 21, "0001283": [37, 40], "0002": [3, 19, 31, 37, 40], "00020044": 20, "0002035b": 20, "000220": 20, "00024e1bh": 20, "0002e7f0": 0, "0002e820": 0, "0002ea20": 0, "0002ebd0": 0, "0002ec00": 0, "0002ec30": 0, "0003": 14, "000306": 3, "00039": 19, "0003ab40": 0, "0004": [3, 14], "00047": 19, "00064": 19, "0009": 19, "000aaa": 0, "000b": 3, "000b1645": 0, "000f07ff": 20, "000f4130": 0, "000f54f0": 0, "001": [3, 19, 37, 40], "00100100000100": 2, "00100100010100": 2, "00100100100100": 2, "00101001000100": 2, "00101001010000": 2, "00101010010101": 2, "0011": 19, "00113d70": 0, "00116de0": 0, "00120b20": 0, "00120b60": 0, "00140000": 20, "0014c002": 20, "0015": 19, "00180000": 20, "001b3150": 0, "001b3204": 0, "002": 3, "00220": 20, "00239741": [39, 40], "00240000": 20, "00300002": 20, "004": [0, 7], "0040": 3, "004197458z": 32, "00496": [37, 40], "00580012": 20, "007": 11, "0073": 3, "008": 19, "0085": 19, "0088": 19, "00a": 19, "00a0c90a8f39": 20, "00a0c91f3880": 20, "00c04fb984f9": 20, "00dd010662da": 19, "00l": 19, "01": [3, 5, 10, 11, 13, 14, 15, 16, 17, 18, 19, 20, 31, 36, 37, 40], "010": 2, "01000000": 20, "01000000010100": 2, "01000100000001": 2, "01000100000010": 2, "01000100000100": 2, "01000100000101": 2, "01000100001000": 2, "01000100001010": 2, "01000100010000": 2, "01000100010001": 2, "01000100010010": 2, "01000100010100": 2, "01000100100100": 2, "01001001000100": 2, "01001001000101": 2, "01001001001000": 2, "01001001001010": 2, "01001001010000": 2, "01001001010001": 2, "01001001010101": 2, "01001010000010": 2, "01001010000100": 2, "01001010100010": 2, "0101": 3, "01010010100": 2, "01010110": 3, "01020304050607080900010203040506": 21, "01050000000000051500000016c0ea32f450ba7443170a32": 19, "01050045": 20, "011": [19, 24], "011783": [38, 40], "012314": [38, 40], "0123456789": 1, "0123456789abcdefghijklmnopqrstuvwxyz": [39, 40], "012827": [38, 40], "013": 19, "013330": [38, 40], "014179": 19, "014874": [38, 40], "015": 19, "015379": [38, 40], "015625gb": 19, "0160": 19, "016d": 20, "017": 19, "018": 19, "019": 19, "01_tc": 1, "01autoremov": 31, "01c0e577": 20, "01c0e947": 20, "01d3": [37, 39, 40], "01fc5a6be7bc6929aad3b435b51404e": [20, 21], "01t00": 19, "01t13": 19, "01t17": 32, "02": [0, 3, 5, 11, 15, 18, 19, 20, 31, 32, 35, 37, 40], "020": 0, "0200": [19, 21], "022": 7, "0224": 19, "024a": 8, "025": 0, "027": 7, "028": 19, "02m": 20, "02x": [39, 40], "03": [3, 5, 19, 31, 39, 40], "030226": [38, 40], "030746": [38, 40], "03t18": 19, "04": [1, 3, 13, 15, 18, 19, 21, 31, 32, 35, 36, 37, 38, 39, 40], "0400": 3, "042": 19, "043026": [38, 40], "043034": [38, 40], "046875gb": 19, "047468": 19, "047746": 19, "048": [37, 40], "05": [19, 20, 31, 35, 40], "05000": 20, "05000000": 20, "051x64": [37, 40], "0524": 3, "0530": [19, 20], "0533": 19, "054803": [38, 40], "056": [39, 40], "056338": [38, 40], "056859": [38, 40], "05_06_07_08_09_10_11_12_13_14_15_16_17_18": 19, "05d": 20, "05t22": 19, "06": [3, 11, 19, 20, 31, 38, 39, 40], "0600": 0, "064514": [38, 40], "0650": [8, 19], "065030": [38, 40], "0664": 8, "067": 19, "0699": 8, "07": [8, 19, 20, 31], "073": 18, "0750": 7, "0755": [7, 31], "077": 7, "0784": 19, "079878": [38, 40], "08": [3, 8, 13, 19, 20, 31, 35, 39, 40], "08048238": 0, "0804835c": 0, "080484cc": 0, "08048520": 0, "0804852b": 0, "0804871f": 0, "08049778": 0, "08049788": 0, "0804978c": 0, "08049790": 0, "08049794": 0, "08049798": 0, "080497a4": 0, "08049ff0": 0, "0804a000": 0, "0804a004": 0, "0804a008": 0, "0804a030": 0, "08059c04": 0, "080628c4": 0, "080901": [38, 40], "082": 19, "083": 19, "086": 19, "088": 19, "08ca45b7d7ea58e": 18, "08n": 0, "08x": 0, "09": [5, 17, 19, 20, 21, 31, 35, 36, 39, 40], "090": 19, "094": 19, "095": [37, 40], "096292": [35, 40], "096330": [35, 40], "097": 19, "0983a29cb2faaed59fa466afc5e04deb": 14, "098584": [35, 40], "099_sc": 1, "0_": 19, "0a": [0, 3, 5, 6, 19], "0a02": 0, "0a03": 0, "0a74ef1c": 19, "0aa": 0, "0b": 19, "0b110100001100101011011000110110001101111": 1, "0b6edbfa": 19, "0bb": 0, "0c": 19, "0cb6948805f797bf2a82807973b89537": [20, 21], "0d": [3, 5, 6, 19, 38, 40], "0e": [3, 19, 39, 40], "0e54062cbd94": 8, "0e9b9e96563": 20, "0f": 19, "0f3fa17eeacd53a9": 2, "0fbd": 19, "0ihnpbgvuy2ugc3vycm91bmrpbmcgew91lg0kww91igxvb2sgzwfzdcwgdghlbibzb3v0acwgdghlbib3zxn0lcbhbgwgew91ignhbibzzwugaxmgysbncmvhdcb3yxn0zwxh": [35, 40], "0m": 19, "0ubuntu0": 19, "0x": [0, 3, 5], "0x0": [0, 3, 19, 20], "0x00": [0, 3, 4, 16], "0x0000": 19, "0x00000": 0, "0x000000": 0, "0x00000000": [0, 3, 20], "0x00000000000005a0": 0, "0x00000000000005d0": 0, "0x00000000000005e0": 0, "0x00000000000005f0": 0, "0x0000000000000600": 0, "0x0000000000000620": 0, "0x0000000000000650": 0, "0x0000000000000690": 0, "0x00000000000006e0": 0, "0x0000000000000720": 0, "0x000000000000072a": 0, "0x0000000000000765": 0, "0x00000000000007c0": 0, "0x0000000000000830": 0, "0x0000000000000834": 0, "0x00000001": 0, "0x00000002": 0, "0x00000003": 0, "0x0000000c": 0, "0x0000000f": 0, "0x00000014": 0, "0x0000003b": 0, "0x0000ffffb2e8c000": 31, "0x0000ffffb2ea6000": 31, "0x0000ffffb2ee1000": 31, "0x0000ffffb2ef5000": 31, "0x0000ffffb2f1f000": 31, "0x0000ffffb2f56000": 31, "0x0000ffffb2f70000": 31, "0x0000ffffb2f98000": 31, "0x0000ffffb2fb1000": 31, "0x0000ffffb303f000": 31, "0x0000ffffb31b2000": 31, "0x0000ffffb31e2000": 31, "0x0000ffffb3738000": 31, "0x0000ffffb374c000": 31, "0x0000ffffb3762000": 31, "0x0000ffffb377b000": 31, "0x0000ffffb379d000": 31, "0x0000ffffb37d5000": 31, "0x0000ffffb3813000": 31, "0x0000ffffb3baa000": 31, "0x0000ffffb3bda000": 31, "0x0001000": 16, "0x0002e7f0": 0, "0x0003ab40": 0, "0x0009": 3, "0x000c": 16, "0x001": 3, "0x0015cdc8": 0, "0x0021": 16, "0x0032": 16, "0x00363836": 0, "0x00386169": 0, "0x003a": 16, "0x00414141": 0, "0x0068732f6e69622f": 0, "0x006d7265": 0, "0x00ca0000": 0, "0x01": 3, "0x011a": 3, "0x0200": 3, "0x03": 3, "0x04": [0, 3], "0x05": 3, "0x06": 3, "0x07": 3, "0x08": [0, 3], "0x08000000": 16, "0x0804": 0, "0x08048330": 0, "0x08048336": 0, "0x0804833b": 0, "0x080483e7": 0, "0x0804847d": 0, "0x0804847e": 0, "0x08048480": 0, "0x08048483": 0, "0x08048489": 0, "0x08048490": 0, "0x08048495": 0, "0x0804849a": 0, "0x0804849e": 0, "0x080484a0": 0, "0x080484a3": 0, "0x080484a6": 0, "0x080484a7": 0, "0x080484aa": 0, "0x080484ad": 0, "0x080484b2": 0, "0x080484b9": 0, "0x080484be": 0, "0x080484c2": 0, "0x080484c5": 0, "0x080484ca": 0, "0x080484cd": 0, "0x080484d1": 0, "0x080484d6": 0, "0x080484db": 0, "0x080484dc": 0, "0x080484fb": 0, "0x08048551": 0, "0x08048555": 0, "0x08048558": 0, "0x0804855d": 0, "0x08048565": 0, "0x08048569": 0, "0x08048580": 0, "0x08048588": 0, "0x0804859e": 0, "0x080485b3": 0, "0x080485c7": 0, "0x080485df": 0, "0x080485eb": 0, "0x080485f7": 0, "0x08048616": 0, "0x08048635": 0, "0x08048636": 0, "0x080486d2": 0, "0x080486d7": 0, "0x080486db": 0, "0x080486de": 0, "0x080486e2": 0, "0x080486e4": 0, "0x080486eb": 0, "0x08048700": 0, "0x0804874b": 0, "0x08048770": 0, "0x08048777": 0, "0x08048778": 0, "0x0804877c": 0, "0x0804877d": 0, "0x0804877e": 0, "0x0804877f": 0, "0x08049788": 0, "0x0804978d": 0, "0x08049790": 0, "0x08049791": 0, "0x08049795": 0, "0x08049799": 0, "0x0804979d": 0, "0x0804979f": 0, "0x080497a1": 0, "0x080497a3": 0, "0x080497a5": 0, "0x080497a7": 0, "0x0804a030": 0, "0x08480110": 0, "0x09": 3, "0x0a": 3, "0x0b": 3, "0x0b0051d0": 3, "0x0c": 3, "0x0d": 3, "0x0d696910": 0, "0x0e": 3, "0x0f": 3, "0x1": [0, 3, 20], "0x10": [0, 3, 7], "0x100": 7, "0x1000": 0, "0x10002": 20, "0x105b": 20, "0x11": 3, "0x1133": 20, "0x11433cf3": 0, "0x12": 3, "0x123": 0, "0x12345678": 0, "0x13": 3, "0x1337beef": 0, "0x13c3": 20, "0x14": 3, "0x15": 3, "0x1532": 3, "0x15468450": 21, "0x16": 3, "0x16d44752": [38, 40], "0x17": 3, "0x18": [0, 3, 20], "0x185000l": 21, "0x19": 3, "0x1a": 3, "0x1a2a5992": 0, "0x1b": 3, "0x1b6000": 0, "0x1ba000": 0, "0x1c": 3, "0x1d": 3, "0x1d000000": 0, "0x1e": 3, "0x1f": [0, 3, 19], "0x1f09f008": 21, "0x1f2": 20, "0x1f39e9c8": 21, "0x1f4": 20, "0x1f5": 20, "0x1f6": 20, "0x2": [0, 7], "0x20": [0, 3, 5, 7, 16, 19, 20], "0x200": 20, "0x2000": 0, "0x200000": 0, "0x201": 20, "0x202": 20, "0x203": 20, "0x20343731": 0, "0x204": 20, "0x2050": 19, "0x206": 20, "0x207": 20, "0x208": 20, "0x209": 20, "0x20a": 20, "0x20d": 20, "0x21": [3, 19], "0x210": 20, "0x22": [3, 19], "0x2227": 20, "0x23": 3, "0x231b7008": 21, "0x231cc518": 21, "0x24": 3, "0x24772008": 21, "0x24aec9c8": 21, "0x25": [3, 19], "0x26": 3, "0x27": 3, "0x27d4b6b0": 21, "0x27f9f008": 21, "0x28": [0, 3], "0x2802a5c0": 21, "0x28085260": 0, "0x280ed008": 21, "0x2930c28": 21, "0x2c": 3, "0x2d": 3, "0x2d3": 3, "0x2e": 3, "0x2e31362": 0, "0x2f": 3, "0x2f000000": 0, "0x2f2f6852": 0, "0x2f3d4c4c": 0, "0x2f61696e": 0, "0x2f686873": 0, "0x2f6e6962": 0, "0x3": 0, "0x30": 3, "0x3038302e": 0, "0x31": 0, "0x31312f73": 0, "0x32": 3, "0x32322032": 0, "0x3261696e": 0, "0x33": [3, 20], "0x34": 3, "0x34392e39": 0, "0x35343239": 0, "0x353d544e": 0, "0x36": 3, "0x3601": 20, "0x363b": 20, "0x36aa": 20, "0x36e0": 20, "0x37": 3, "0x37373835": 0, "0x37654136": 0, "0x38": 0, "0x3939383d": 0, "0x3945a9c8": 21, "0x3aa329c8": 21, "0x3b31303d": 0, "0x3c": 3, "0x3c23": 20, "0x3c3f70687020706870696e666f28293b203f3": [36, 40], "0x3d44495f": 0, "0x3d4c4c41": 0, "0x3d73723d": 0, "0x3eb": 20, "0x3ee": 20, "0x3f": 0, "0x3fa": 20, "0x4": [0, 7], "0x40": 7, "0x4000": 0, "0x400000": 0, "0x401000": 0, "0x40605446": 19, "0x41": 0, "0x41414100": 0, "0x41414141": 0, "0x424242": 0, "0x42424241": 0, "0x42424242": 0, "0x433e6584": 20, "0x43434343": 0, "0x43a": 20, "0x44444444": 0, "0x44495f4e": 0, "0x44580042": 0, "0x45": [0, 5, 19], "0x45485300": 0, "0x45494c43": 0, "0x45535f47": 0, "0x457578": 5, "0x46": 0, "0x47445800": 0, "0x47450043": 0, "0x48535300": 0, "0x4c003861": 0, "0x4d8": 20, "0x4e4f4953": 0, "0x4f": 3, "0x4f435f53": 0, "0x4f495353": 0, "0x50": [3, 5], "0x5045": 5, "0x50d": 20, "0x51": 3, "0x52": 3, "0x52455400": 0, "0x53003733": 0, "0x5345535f": 0, "0x53524f4c": 0, "0x53534553": 0, "0x53550080": 0, "0x5528": 20, "0x555555554000": 0, "0x555555556000": 0, "0x555555756000": 0, "0x555555757000": 0, "0x555555758000": 0, "0x56": 0, "0x56bc": 20, "0x573e": 20, "0x58": 0, "0x589": 20, "0x5954545f": 0, "0x5e5e": 20, "0x5f434c00": 0, "0x5f474458": 0, "0x5f485353": 0, "0x5f4e4f49": 0, "0x600000": 0, "0x600005": 19, "0x601000": 0, "0x602000": 0, "0x602e8c2947d56a95bf9cfxxxxxxxxxxx": 21, "0x61696e72": 0, "0x616e2f73": 0, "0x620": [38, 40], "0x633a5c626f6f742e696e69": 5, "0x65642f3d": 0, "0x656d6167": 0, "0x66": [0, 5], "0x672f0000": 0, "0x67f": 20, "0x68": 10, "0x68736162": 0, "0x694a71a2": 0, "0x69643a30": 0, "0x696e7261": 0, "0x6996cde4": 0, "0x6e3d5245": 0, "0x6e72616": 0, "0x7": 20, "0x72616e2f": 0, "0x73656d61": 0, "0x74702f76": 0, "0x74783d4d": 0, "0x76": 0, "0x77": 0, "0x78705f636d647368656c6c202764697227": 5, "0x7d9": 20, "0x7e": 5, "0x7e0": 19, "0x7f": 3, "0x7fa": 20, "0x7fe1": 20, "0x7ffff7a1c000": 0, "0x7ffff7b98489": 0, "0x7ffff7bd2000": 0, "0x7ffff7dd2000": 0, "0x7ffff7dd6000": 0, "0x7ffff7dd8000": 0, "0x8": [0, 7, 20], "0x80": 7, "0x801033": 20, "0x804": 0, "0x8048238": 0, "0x80482c0": 0, "0x8048320": 0, "0x8048330": 0, "0x8048340": 0, "0x8048350": 0, "0x80483e0": 0, "0x8048400": 0, "0x8048410": 0, "0x8048420": 0, "0x8048450": 0, "0x8048460": 0, "0x80484a3": 0, "0x80484cd": 0, "0x804852d": 4, "0x804856d": 0, "0x8048570": 0, "0x8048584": 0, "0x804858e": 0, "0x804859e": 0, "0x8048600": 4, "0x8048640": 0, "0x804868f": 0, "0x804869a": 0, "0x80486c0": 0, "0x80486d7": 0, "0x80486db": 0, "0x80486de": 0, "0x80486e0": 0, "0x80486e0goodfunct": 0, "0x80486e2": 0, "0x80486e4": 0, "0x80486eb": 0, "0x80486f0": 0, "0x80486f1": 0, "0x8048706": 0, "0x8048706hackedfunct": 0, "0x804871f": 0, "0x8048731": 0, "0x8048740": 0, "0x8048745": 0, "0x8048770": 0, "0x8048777": 0, "0x8048778": 0, "0x804877c": 0, "0x804877d": 0, "0x804877e": 0, "0x804877f": 0, "0x8049788": 0, "0x80497a4": 0, "0x80497a8": 0, "0x804a030": 0, "0x81": 3, "0x82806000": 21, "0x82850fa8": 21, "0x82948f18": 21, "0x82950850": 21, "0x82968a40": 21, "0x82970700": 21, "0x829c": 20, "0x83": 3, "0x83040": 0, "0x867314a9": 3, "0x86d9": 20, "0x86e0": 0, "0x87": 0, "0x8706": 0, "0x87a0c008": 21, "0x87a1c008": 21, "0x87a3a6b0": 21, "0x87abe5c0": 21, "0x880b5008": 21, "0x88164518": 21, "0x896e6962": 0, "0x8a": 1, "0x8a0": 20, "0x8bd019c8": 21, "0x8bdd2008": 21, "0x8d5": 20, "0x8d7": 20, "0x8f5549c8": 21, "0x903278": 0, "0x90903d47": 0, "0x90909090": 0, "0x90e83008": 21, "0x9367": 20, "0x955a9450": 21, "0x988069c8": 21, "0x988349c8": 21, "0x99580b6a": 0, "0x9bc623f046535fba50a2124909fb871e5daf198": 4, "0x9ea": 20, "0x9f5": 20, "0xa26": 20, "0xa444444": 1, "0xa9c79d1b": 0, "0xb65": 20, "0xb758f000": 0, "0xb75ae000": 0, "0xb75e6000": 0, "0xb75f7388": 0, "0xb75f738c": 0, "0xb75f7390": 0, "0xb75f73b0": 0, "0xb762f000": 0, "0xbfffc8c0": 0, "0xbffff954": 0, "0xc0defac": 0, "0xc19fc850": 0, "0xc46": 20, "0xc8": 0, "0xcccccccc": 0, "0xcdc931e3": 0, "0xd2": 0, "0xde000000": 0, "0xdeadbeef": 0, "0xe0": 0, "0xe1a67367": 0, "0xef53": 31, "0xf": [1, 38, 40], "0xf11444ea": 0, "0xf20": 0, "0xf7e3ba63": 0, "0xf7e54f53": 0, "0xf7e66e46": 0, "0xf7e81ee0": 0, "0xf7e8bc30": 0, "0xf7eb3360": 0, "0xf7fb0ff4": 0, "0xf7fca000": 0, "0xf7fcaac0": 0, "0xf7fde860": 0, "0xf7ffd000": 0, "0xf7ffda94": 0, "0xf8": 3, "0xf800": 19, "0xfc": 0, "0xff": [0, 3, 4], "0xff000000": 0, "0xffb4450c": 0, "0xffdf0000l": 21, "0xfffd3ea": 0, "0xffff4190": 0, "0xffff41a0": 0, "0xffff41b0": 0, "0xffffa5045d1653c0": 3, "0xffffd2ea": 0, "0xffffd2ec": 0, "0xffffd2f2": 0, "0xffffd2fa": 0, "0xffffd2fc": 0, "0xffffd302": 0, "0xffffd350": 0, "0xffffd360": 0, "0xffffd370": 0, "0xffffd380": 0, "0xffffd388": 0, "0xffffd3888": 0, "0xffffd390": 0, "0xffffd398": 0, "0xffffd3a0": 0, "0xffffd3ea": 0, "0xffffd3f2": 0, "0xffffd418": 0, "0xffffd444": 0, "0xffffd454": 0, "0xffffd5df": 0, "0xffffd61c": 0, "0xffffd61cbefor": 0, "0xffffd620": 0, "0xffffd64c": 0, "0xffffd65c": 0, "0xffffd660": 0, "0xffffd66c": 0, "0xffffd670": 0, "0xffffd678": 0, "0xffffd680": 0, "0xffffd688": 0, "0xffffd689": 0, "0xffffd690": 0, "0xffffd6a0": 0, "0xffffd6b0": 0, "0xffffd6b8": 0, "0xffffd6c8": 0, "0xffffd6cc": 0, "0xffffd754": 0, "0xffffd764": 0, "0xffffd774": 4, "0xffffd794": 0, "0xffffd7e0": 0, "0xffffd7e4": 0, "0xffffd7f0": 0, "0xffffd7f4": 0, "0xffffd800": 0, "0xffffd804": 0, "0xffffd80b": 0, "0xffffd810": 0, "0xffffd814": 0, "0xffffd820": 0, "0xffffd824": 0, "0xffffd828": 0, "0xffffd830": 0, "0xffffd834": 0, "0xffffd840": 0, "0xffffd844": 0, "0xffffd850": 0, "0xffffd854": 0, "0xffffd860": 0, "0xffffd864": 0, "0xffffd870": 0, "0xffffd874": 0, "0xffffd880": 0, "0xffffd884": 0, "0xffffd890": 0, "0xffffd894": 0, "0xffffd89c": 0, "0xffffd8a0": 0, "0xffffd8a4": 0, "0xffffd8ac": 0, "0xffffd8b0": 0, "0xffffd8b1": 0, "0xffffd8b4": 0, "0xffffd8bc": 0, "0xffffd8bf": 0, "0xffffd8c0": 0, "0xffffd8c1": 0, "0xffffd8c4": 0, "0xffffd8d4": 0, "0xffffd8e4": 0, "0xffffd8f0": 0, "0xffffd8f4": 0, "0xffffd904": 0, "0xffffd914": 0, "0xffffd924": 0, "0xffffd934": 0, "0xffffd944": 0, "0xfffffff0": 0, "0xhexnumb": 5, "0z": 19, "1": [0, 1, 2, 4, 5, 6, 7, 8, 9, 10, 11, 13, 14, 15, 16, 17, 18, 21, 23, 24, 33, 34, 35, 37, 38, 39, 40], "10": [0, 1, 2, 3, 4, 5, 6, 8, 10, 11, 14, 16, 17, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 35, 36, 37, 38, 39, 40], "100": [0, 1, 3, 4, 5, 10, 11, 18, 19, 20, 24, 25, 30, 31, 32, 39, 40], "1000": [0, 3, 5, 8, 18, 19, 20, 21, 25, 30, 31, 32, 36, 37, 38, 39, 40], "10000": [7, 36, 40], "100000": [0, 19], "1000000": 5, "1000000000": 5, "10000100000001": 2, "10000100000100": 2, "10000100001010": 2, "10000100010000": 2, "10000100010010": 2, "10000100010100": 2, "10000100100100": 2, "100003": 19, "10001001000100": 2, "10001001000101": 2, "10001001010000": 2, "1001": [10, 21, 31], "1003": [21, 37, 40], "10042": 18, "100600": [39, 40], "10063": 31, "1007": 0, "100773": [35, 40], "1008": 0, "100m": [3, 10], "100xw": 0, "101": [5, 10, 18, 20, 34, 35, 36, 37, 39, 40], "10101100": 3, "10101101": 3, "101119": 21, "1014": 20, "1017": 0, "102": [10, 11], "1022n": 19, "1023": 11, "1024": [3, 11, 18, 19, 20, 31, 35, 38, 40], "1024k": 14, "1024x768": 19, "1025": 2, "103": [0, 10, 19, 20], "104": [0, 1, 5], "1048": 0, "105": [0, 5, 19, 36, 38, 40], "1050": 20, "1053": 21, "106": [3, 10, 31], "10600": 14, "1065491": 19, "1067": 19, "106y023a0073": 3, "108": [3, 5, 18, 19], "108096": [38, 40], "109": [5, 19], "1090660992520643446103273789680343": [38, 40], "1092": 31, "10_armhf": 31, "10b": 19, "10g": [14, 19], "10gr1": 19, "10gr2": 19, "10m": [10, 31], "10px": 3, "10xb": 0, "10xw": 0, "11": [0, 3, 4, 5, 7, 10, 11, 14, 18, 19, 20, 21, 23, 31, 32, 36, 37, 38, 39, 40], "110": [10, 36, 37, 38, 40], "1100": 19, "11000": 10, "110144": [38, 40], "11026": [38, 40], "1106": 8, "11066": 0, "1107": 8, "110kv": 10, "111": [18, 35, 36, 37, 40], "1111": 21, "11111110": 3, "112": [0, 5, 10], "1122": 19, "11223344": 5, "1128162692": 20, "113": [0, 10, 18, 31], "113251": 19, "11344": 19, "113730": 19, "114": [0, 5], "1149049d6df9": 8, "115": [5, 19], "115200": [1, 15, 16], "11550948": 3, "115jx4q4v48a7bnnuuqi": [36, 40], "116": [5, 19, 20, 36, 40], "1162435056374824133712043309728653": [38, 40], "117": [0, 3, 10, 19, 37, 38, 40], "1176": [39, 40], "1189": 19, "119": 19, "1199": 3, "119e36d8": 19, "11cf": 20, "11d1": 20, "11d2": 20, "11g": 19, "11gr1": 19, "11i": 11, "12": [0, 3, 5, 7, 8, 11, 18, 19, 20, 31, 33, 36, 37, 38, 39, 40], "120": [5, 10, 19, 38, 40], "1208180748": 0, "1209600": 19, "120kv": 10, "121": 19, "122": [3, 8, 19, 25, 36, 40], "123": [5, 6, 10, 19, 20, 21, 36, 40], "1232": 1, "1234": [5, 36, 37, 38, 40], "123456": 19, "12380": [35, 40], "124": 19, "1245678": 3, "124939": 3, "125": [10, 11, 19], "1257": [36, 40], "125933": 19, "125934": 19, "126": [0, 10, 11, 36, 40], "127": [3, 8, 10, 11, 14, 19, 20, 21, 32, 36, 38, 40], "1278": [37, 39, 40], "128": [0, 3, 7, 10, 19, 20, 21, 31, 32, 36, 38, 40], "129": [36, 40], "1292": 0, "1292u": 0, "129m": 3, "12px": 3, "13": [0, 3, 5, 8, 9, 10, 13, 18, 19, 20, 21, 31, 37, 38, 39, 40], "130": [8, 32], "130150432350834365": 19, "131": 21, "1311": 19, "131467140289373056": 8, "131471756690576604": 8, "131471983161372555": 8, "131493063003466404": 8, "1322": 19, "1332": 19, "1333": 0, "1333u": 0, "1333uaa": 0, "1337": [0, 1, 5, 6, 36, 40], "13373": 0, "1337_p455w0rd": 0, "1337u": 0, "1338": 19, "1339": 19, "134": [19, 39, 40], "1340": 19, "1341": 19, "134217728": 3, "134514299": 0, "135": [10, 18], "136": [10, 19, 31], "137": [18, 35, 40], "1374": 19, "138": [0, 19, 21, 39, 40], "13800": 10, "139": [18, 19, 35, 38, 40], "1398": 0, "1399": 32, "14": [3, 4, 5, 8, 18, 19, 20, 21, 31, 33, 36, 37, 38, 39, 40], "140": [0, 19, 21], "1400": 19, "140272": [38, 40], "1406": 20, "141": [0, 39, 40], "14118": 0, "1413": 19, "143": [19, 31], "145": [20, 32], "1458938079849": 19, "1459027205": 19, "1460": [18, 35, 40], "1461": 0, "147": [0, 19], "148": [38, 40], "149": 16, "1495599": 19, "14rc19": 19, "15": [0, 1, 2, 3, 8, 10, 11, 14, 16, 19, 20, 21, 25, 31, 36, 37, 38, 39, 40], "150": [11, 25, 39, 40], "1500": [32, 38, 40], "15019": 19, "15026": 33, "1504": 19, "150px": [39, 40], "151": [38, 40], "1510": 0, "15118": 9, "152": 19, "15408": 11, "156": [18, 35, 40], "1560": 19, "157": 19, "1582276": 19, "1582386": 19, "159": 3, "15cdc8": 0, "15d5ceb9443": 32, "15th": [2, 30], "16": [0, 1, 3, 4, 5, 6, 7, 10, 11, 14, 16, 18, 19, 20, 31, 32, 35, 36, 37, 38, 39, 40], "160": [39, 40], "1600": 20, "1601": 31, "16064": 19, "1608806": [39, 40], "161": 18, "16176": [39, 40], "1623387": 19, "16259": 3, "163": 19, "16364": [39, 40], "16384": [35, 40], "164": [39, 40], "164005815": 19, "164084": 1, "1653": 19, "166": [19, 39, 40], "167": 19, "1670": [19, 37, 39, 40], "16776192": 19, "16777216": 19, "168": [5, 6, 8, 11, 14, 18, 19, 20, 21, 31, 32, 35, 36, 37, 38, 40], "169": [0, 19], "16e458537602f5ef2a710089dffd9453": 19, "17": [0, 3, 5, 6, 7, 9, 13, 19, 20, 31, 32, 36, 37, 38, 39, 40], "1703": 10, "171": [38, 40], "17122197504": 19, "17134": [36, 40], "17159001651": 19, "172": [3, 10, 11, 19, 24, 32, 36, 38, 40], "1727263102": 8, "173": 3, "174": 19, "17432": [38, 40], "175": [31, 38, 40], "17514": 21, "1761": 19, "1766": 19, "177": 19, "1785": 31, "179": 31, "1791": 19, "18": [0, 3, 4, 5, 8, 13, 18, 19, 20, 31, 35, 37, 38, 39, 40], "180": 20, "1800": 19, "181": 0, "182": 19, "18290": 3, "18291": 3, "184": 19, "1840": 19, "1850": 21, "1852": 19, "18622": 31, "187": [37, 40], "187245": [38, 40], "1875": 19, "1886": 34, "189": 19, "1893": 19, "1899": 19, "19": [0, 3, 7, 8, 11, 19, 20, 21, 24, 31, 36, 37, 39, 40], "1907": 19, "191": 19, "1911": 0, "1912": 19, "192": [5, 6, 8, 11, 14, 18, 19, 20, 21, 31, 32, 35, 36, 37, 38, 40], "19200": 16, "19245": 11, "192775346": 19, "1930659670": 8, "1935": 19, "1937befc_3": 3, "194": [38, 40], "1946": 19, "1948": 19, "195": 19, "196": [36, 40], "1960": 11, "1968": 11, "1970": [5, 20, 31], "1971769256": 20, "1974": 19, "19752": 19, "1980": 2, "19800": 24, "1985": 1, "1986": 19, "1988": 34, "199": 19, "19900": 0, "1992": 19, "1997": [36, 40], "1998": [2, 21, 34], "19eb": 19, "1_1a110935ec70b63ad09fec68c89dfacb": 3, "1_49": 19, "1_amd64": 31, "1a": 3, "1b": [3, 19], "1bfmqycow0caweaaaob": 19, "1c": [4, 19], "1c1a": 19, "1cc964d9": 8, "1d": 3, "1e": [3, 19], "1f": [3, 19], "1i": 19, "1kb": [39, 40], "1r": 31, "1st": [3, 10, 31], "1ubuntu2": 31, "1x": 10, "1xx": 5, "2": [0, 1, 2, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 15, 16, 18, 21, 23, 25, 33, 34, 35, 37, 38, 39, 40], "20": [0, 3, 4, 5, 6, 7, 9, 11, 15, 18, 19, 20, 21, 24, 25, 31, 33, 36, 38, 39, 40], "200": [0, 1, 5, 10, 19, 31, 36, 39, 40], "2000": [0, 3, 5, 6, 11, 19, 37, 38, 39, 40], "20000": [10, 11], "2001": [10, 19, 20, 34, 39, 40], "2002": [19, 20, 21, 36, 37, 39, 40], "2003": [11, 20, 34], "2004": 34, "2006": [19, 31, 34], "2007": 19, "2008": [5, 11, 18, 19, 20, 21, 31, 37, 40], "2009": [5, 19, 20], "201": [0, 5, 19, 31, 37, 40], "2010": [5, 19, 20, 21, 34], "20100101": [39, 40], "2011": [5, 19, 20, 21, 31, 33, 34], "2012": [0, 8, 18, 19, 20, 21, 31, 33], "2013": [3, 19, 20, 21], "2014": [1, 3, 10, 11, 19, 21, 31, 34, 38, 40], "2015": [7, 19, 20, 39, 40], "20152": 10, "2016": [8, 18, 19, 20, 35, 36, 37, 38, 39, 40], "20160403185025_default_10": 19, "20160413": 19, "20160503173447": 19, "2017": [5, 6, 8, 11, 18, 19, 20, 30, 36, 37, 40], "2018": [10, 11, 18, 31, 36, 37, 39, 40], "2019": [33, 34], "201b8248ebf062ec": 14, "202": [14, 19, 31], "2020": [3, 11, 14, 19, 31, 32], "2021": [3, 11, 31], "2022": 13, "2023": 3, "20230504": 3, "2024": 11, "2025": 33, "2026": 19, "203": [0, 19, 38, 40], "2038": 19, "204": 18, "20400086134": 7, "2044": 0, "2044x": 0, "2048": [3, 19, 36, 40], "20480": [37, 40], "204800": 3, "205": [38, 40], "206": [0, 19], "2064": 19, "2065": 19, "2066": [3, 19], "206847": 3, "206848": 3, "207": [19, 32, 39, 40], "2079967355": 21, "208": [36, 40], "2080": 19, "2090": 19, "2097152001": 19, "20applic": 5, "20catalogu": 5, "20d1": 31, "20me": 5, "20of": 5, "20one": 5, "20user": 5, "20wx": 0, "20xw": 0, "20your": 5, "21": [0, 1, 3, 5, 6, 8, 18, 20, 21, 35, 38, 39, 40], "2100": [10, 37, 40], "211": [0, 14], "2112": 0, "2121": [39, 40], "2123": 19, "213": 0, "213e": 0, "214": [0, 18], "21415067648": 19, "216": 18, "217": [3, 19], "218": [36, 40], "2180": 3, "21st": 11, "22": [0, 3, 5, 6, 11, 13, 18, 20, 31, 36, 37, 38, 39, 40], "220": [10, 16, 19, 36, 39, 40], "22000": 10, "2204": 19, "2205": 19, "2206": 19, "220kv": 10, "2211": 19, "222": [37, 38, 40], "2222": 11, "223": 19, "2237": 19, "2239": 19, "22435": [38, 40], "225": [37, 40], "2255": 19, "2256": 19, "226": [36, 39, 40], "2267": 0, "228": 19, "228d": 31, "22cat": [39, 40], "22cd": 20, "22f7": 31, "22h": 20, "22x": 19, "23": [0, 3, 5, 6, 8, 16, 18, 20, 31, 35, 36, 38, 39, 40], "230": [0, 3, 10, 18, 19, 39, 40], "2321": 1, "233": 31, "234": 0, "235": 19, "2352": 19, "237": 0, "23a": 3, "23c7": 32, "23m": 10, "23shell": [39, 40], "23z": 19, "24": [0, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 14, 16, 17, 18, 19, 20, 25, 31, 32, 35, 36, 37, 38, 40], "240": [3, 10, 17, 19], "2404": 10, "2404999": 19, "2410": 0, "241172480": 3, "243": [0, 19], "243052379": 19, "244": 14, "245": [19, 36, 40], "245425793": 13, "24574": [36, 40], "245b": 0, "246": 0, "24601": 8, "24674": [36, 40], "247": [11, 36, 40], "2474": 31, "248": 19, "24_01": 19, "24g": 19, "24t": 19, "25": [1, 2, 3, 4, 5, 6, 10, 11, 13, 14, 18, 20, 24, 25, 31, 32, 33, 35, 39, 40], "250": [0, 19, 30], "2500": 5, "25000": 10, "251": 19, "2525": [38, 40], "253": 3, "2536": 19, "253e2": 5, "254": [11, 19, 20], "255": [3, 10, 11, 17, 18, 19, 20, 31, 32, 38, 40], "2557": 31, "256": [0, 3, 7, 11, 20, 36, 37, 40], "256283": 3, "256color": [36, 40], "257": 19, "259637": 19, "25964": 19, "259919": 19, "25bd785b8ff1b7fa3a9b9e069a5e7de7": 21, "25c8": 19, "26": [0, 1, 3, 5, 6, 7, 8, 13, 19, 20, 32, 37, 39, 40], "2600": [35, 40], "2601": [39, 40], "2605": [39, 40], "2606": 19, "26158": 19, "2616": 20, "262140": 19, "262144": [3, 19], "2639208": 3, "264": [36, 40], "2640268": 3, "26417": 3, "264192": 3, "2660": 19, "266155": 19, "266794": 19, "266801": 19, "267": 0, "267h": 0, "268": 0, "268003": 19, "269318": 19, "26t21": 19, "27": [0, 1, 3, 5, 6, 8, 13, 18, 19, 20, 31, 37, 38, 40], "27002": 11, "274": 24, "275206": 19, "277": 0, "277\u0579": 0, "278": 20, "279017": 19, "2790777": [39, 40], "2790778": [39, 40], "2790781": [39, 40], "2790782": [39, 40], "2798848": 19, "27dc": 31, "28": [0, 3, 5, 6, 8, 11, 18, 19, 20, 31, 35, 36, 37, 39, 40], "280": [3, 18], "2800": 19, "2893454": 3, "28debug_iphoneo": 3, "29": [0, 3, 4, 5, 6, 7, 8, 18, 19, 20, 31, 33, 36, 37, 39, 40], "290": [19, 36, 40], "2911": 19, "292054": 18, "29769": 5, "2989": 19, "299": 5, "299604539773691895576847697095098784338054746292313044353582078965": [38, 40], "29a7": 19, "2_amd64": 31, "2a": [3, 5, 6], "2a00": 32, "2a01": 19, "2a5e": 19, "2b": [3, 4, 5, 6, 18, 38, 40], "2b1": 10, "2b3be507": 20, "2bc0": 31, "2c": [3, 5, 6, 18, 19, 32], "2cff": 32, "2d": [3, 5, 6, 18, 39, 40], "2e": [3, 5, 6, 19], "2e8": 19, "2ee61c9a": 20, "2f": [3, 5, 6, 19, 36, 40], "2f03": 5, "2f09": 5, "2f2010": 5, "2f2011": 5, "2fa": 33, "2fb3672702973ac1b9adxxxxxxxxxx": 21, "2fetc": [39, 40], "2fexchang": [36, 40], "2fpasswd": [39, 40], "2ftfymkdfssf": 21, "2g": 12, "2john": [38, 40], "2uf2ndm": 14, "2xx": 5, "2zukaebomsrt2h4sq": 19, "3": [0, 1, 2, 3, 4, 5, 6, 8, 10, 13, 16, 17, 18, 23, 25, 31, 32, 33, 34, 35, 37, 38, 39, 40], "30": [0, 1, 3, 10, 11, 17, 18, 19, 20, 21, 23, 25, 31, 38, 39, 40], "300": [10, 11, 19], "3000": [0, 5, 19, 25], "30000": 4, "3000001": 11, "3000002": 11, "3000003": 11, "3000004": 11, "3000005": 11, "3000006": 11, "3001": 10, "3002": [38, 40], "301": [5, 19], "3012798916": 20, "3017": 31, "302": [5, 38, 40], "3030302e": 0, "304": 5, "3050": 19, "306055": 19, "307": 20, "3073146": 19, "30828": 20, "30857": 31, "30g": 31, "30i": 31, "30th": 31, "30xw": 0, "31": [0, 3, 4, 5, 8, 10, 11, 18, 19, 20, 31, 37, 40], "310": 11, "3128": [31, 38, 40], "31339": 18, "3137": 19, "315359969sec": 32, "3157536": 21, "3164": 8, "3169663337": 21, "316e773cde064c1ed": 19, "319": 19, "31b2f340": 20, "31c3": 4, "31d6cfe0d16ae931b73c59d7e0c089c0": 21, "31d6cfe0d16ae931b73c59dxxxxxxxxx": 21, "32": [0, 1, 3, 4, 5, 6, 7, 8, 10, 18, 19, 20, 21, 31, 32, 35, 37, 40], "3200": 24, "3200x1080": 31, "3201": 24, "323": 31, "32302": 5, "323940": 19, "32514": 0, "32514x": 0, "326": 10, "32641": [39, 40], "32767": 10, "32768": 10, "327852233": 20, "3296943937": 21, "32ff": 32, "32x32": 19, "33": [0, 3, 18, 19, 20, 35, 37, 40], "330": 0, "3300": [3, 24], "33000": 10, "3306": [36, 40], "331": [39, 40], "3327": 31, "333257": 20, "3339083": 19, "3344810": 19, "334810": 19, "335": 0, "335544320": [38, 40], "335544321": [38, 40], "335544323": [38, 40], "339": 0, "33kv": 10, "34": [5, 7, 8, 13, 14, 19, 20, 31, 37, 38, 40], "340": 19, "342": 0, "344": 19, "3445": [35, 40], "3455635": 19, "346": 0, "34664": 31, "3478": 31, "347x260": 19, "348": [0, 31], "3487298933": 19, "3487299": 19, "349044": 19, "35": [3, 7, 19, 20, 31, 37, 38, 40], "350": 0, "3500sf": 19, "352": 0, "353": 0, "355": 0, "355px": [39, 40], "3566": 19, "357": [37, 40], "358bb269": 8, "359": 3, "35c0eaaed4c9efb9": [38, 40], "36": [3, 8, 19, 20, 31, 32, 37, 38, 39, 40], "3600": [19, 24], "3610": [37, 39, 40], "361100": 18, "36327": [35, 40], "364": 0, "365": 11, "366": 8, "36656": 0, "36656436": 0, "367": 0, "36752": 19, "367b": 32, "37": [0, 3, 8, 19, 31, 37, 40], "370": 0, "371": 0, "374": 0, "377": 0, "3790": 19, "37912a0de47813b4b3": 19, "37972376": 13, "37m": 10, "38": [0, 3, 8, 13, 19, 20, 36, 37, 40], "3830252e": 0, "38400": [16, 36, 40], "3845281945283805284526053525260547380516453748164748478317454508": 2, "38537265152": 19, "38537265153": 19, "38635": 18, "3874365421971": 2, "387x": 19, "389": [5, 20], "3899": 19, "38df": 31, "39": [0, 3, 4, 5, 18, 19, 31], "3900": 12, "39366": 18, "394": [39, 40], "39519": [35, 40], "3979": 19, "3994420539": 18, "3994420540": 18, "3995": 31, "399929": 19, "3a": [3, 5, 6, 17, 19, 36, 40], "3a8": 31, "3b": [3, 5, 6, 18, 19, 39, 40], "3beta": 21, "3bpc13b0843": 19, "3bwk14f0040": 19, "3c": [5, 6, 39, 40], "3c01": [35, 40], "3c3f70687020706870696e666f28293b203f3": [36, 40], "3com": [19, 30], "3d": [3, 5, 6, 10, 39, 40], "3de": 19, "3e": [5, 6, 38, 39, 40], "3e2": 5, "3e24dcead23468ce597d68xxxxxxxxxx": 21, "3e97": 19, "3everyth": 21, "3f": [5, 6, 19, 39, 40], "3f51c5ac43ad11e0096d59bb82a59dd09cfd8d2791cadbdb85ed3020d14c8fea": [38, 40], "3f759d7011f43b30679a5ac650991caa": [38, 40], "3fda": 19, "3fo": 31, "3fphp": [39, 40], "3g": [10, 11, 12], "3m": 10, "3plkqhn": [36, 40], "3rc2": 19, "3rd": [11, 16, 31], "3v": 16, "3w": 31, "3xx": 5, "4": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 16, 18, 20, 21, 23, 24, 25, 30, 31, 32, 35, 36, 37, 38, 39, 40], "40": [0, 3, 5, 6, 10, 18, 19, 20, 21, 25, 31, 32, 37, 39, 40], "400": [0, 5], "4000": [19, 20, 35, 36, 37, 40], "4000001": 11, "4000002": 11, "4000003": 11, "4000004": 11, "4000005": 11, "4000007": 11, "4000008": 11, "4000009": 11, "40012980": 0, "4002": 19, "400px": [39, 40], "401": [5, 19], "403": [5, 19, 38, 40], "404": [5, 36], "40435": 19, "4044": [39, 40], "404b": 19, "405": 5, "4059": 10, "40700": [39, 40], "40755": [39, 40], "407x": 19, "408a": 8, "4096": [8, 19, 31, 35, 37, 39, 40], "4099": 32, "40_custom": 7, "40ff": 19, "41": [0, 3, 10, 19, 20, 31, 36, 37, 40], "4100347": [37, 40], "4102": 24, "4103": 24, "4127458640": [35, 40], "4128": 0, "413": 5, "413088": 19, "414": 5, "4141": 0, "41414141": 0, "415": 10, "4156": 19, "4163040": [39, 40], "417": 19, "417088": 19, "41a4": 19, "41h": 4, "42": [1, 3, 8, 13, 19, 20, 21, 31, 32, 39, 40], "4203": 19, "4252": 19, "4294967294": 31, "42e6": 19, "43": [3, 8, 19, 20, 31, 37, 38, 39, 40], "430": [37, 40], "43059": [38, 40], "431": 19, "432234": 31, "4338364c4e355635463948350069672d": 19, "43392000": 16, "4343669": [37, 40], "4343902": [37, 40], "4366": 19, "4367": [39, 40], "4369": 8, "436b": 19, "436e": 19, "43852": 19, "43x": 19, "44": [3, 4, 19, 31, 37, 38, 39, 40], "440": 31, "4415": 19, "443": [18, 35, 36, 40], "4431": 10, "4444": [19, 20, 35, 36, 37, 39, 40], "4445": [36, 40], "4446": [36, 40], "445": [18, 20, 37, 39, 40], "44531": 19, "44818": 11, "4487": 19, "449": 5, "4495": 19, "44d5": 19, "45": [0, 3, 10, 18, 19, 30, 31, 35, 37, 40], "45066": 18, "451": 0, "4546": 20, "4567890": 19, "45741": 19, "45m": 11, "46": [3, 5, 10, 19, 31, 36, 37, 40], "463323be": [38, 40], "4675": 19, "468x": 0, "469": [18, 39, 40], "46c3f87e345a": [37, 39, 40], "46h": 4, "47": [3, 8, 10, 19, 20, 31, 36, 37, 39, 40], "471039": 3, "471040": 3, "473": 19, "474": 19, "4754": 31, "4755": [38, 40], "4777": [37, 40], "4780": 8, "47808": 11, "4796": 0, "479b075b2891b": 5, "48": [0, 3, 10, 11, 19, 20, 35, 36, 38, 40], "481319": 19, "481519": 19, "483": 0, "485": 11, "48af": 19, "49": [3, 19, 20, 31, 37, 40], "49000": 10, "490698": 19, "49151": 11, "49152": 11, "49154": 19, "49155": 20, "4995": 31, "4_x64": 21, "4a24": 19, "4aoqa3ac4amqazadealgaxadmaoaa6adgamaa4adaalwbpag4azablahgalgbhahmacaaiackakqapahwajqb7acqaxwataeiawabpafiajablafsajabjacsakwalacqaswauaewazqboaecadabiaf0afqa7aekarqbyacaakaakaeialqbkag8asqboaccajwapaa": 21, "4arbitrari": 0, "4arbitrarybyt": 0, "4b": 3, "4b324fc8": [37, 39, 40], "4b579a266f697c2xxxxxxxxx": 20, "4c": 3, "4c69": 3, "4ch": 4, "4d": 3, "4d22486521cc": 19, "4e": [3, 8, 19], "4e06": 19, "4e14": 20, "4e18": 19, "4e36": 19, "4e44": 19, "4e56": 19, "4e58a478": 20, "4ebb": 19, "4ec9": 19, "4f": 3, "4f1e": 19, "4f6a": 19, "4fc0": 8, "4fc6": 19, "4fd0": 19, "4fe7": 19, "4g": [9, 10, 11, 12], "4h49m42": 19, "4th": 10, "4u": 11, "4xx": 5, "5": [0, 2, 3, 5, 6, 8, 11, 13, 14, 16, 18, 19, 20, 21, 23, 31, 32, 35, 36, 37, 38, 39, 40], "50": [0, 3, 5, 10, 11, 15, 19, 21, 25, 30, 31, 33, 36, 38, 39, 40], "500": [0, 5, 19, 20, 21, 31], "5000": 25, "50000": 33, "500mw": 17, "501": [21, 31], "502": [11, 19], "503": 5, "50331648": 19, "506": 31, "5060": 19, "5061": 19, "50623": 19, "5070": 30, "509": 10, "5095": 20, "50k": 21, "50xw": 0, "51": [0, 3, 5, 8, 10, 18, 19, 20, 31, 32], "51082": [36, 40], "511": 4, "511111318": 13, "51142bc1": 5, "512": [0, 3, 31, 37, 39, 40], "512k": 3, "515": [8, 10, 19, 20], "516": 20, "51b": 19, "52": [0, 3, 18, 19, 20, 31, 37, 38, 39, 40], "521": 19, "521b": 20, "5222sec": [38, 40], "5230": 34, "52360103": 13, "524": 3, "524288": 19, "528": 19, "529": 19, "53": [0, 1, 3, 11, 18, 20, 35, 39, 40], "53029": 19, "53434": 3, "535": [35, 40], "5351": 3, "5353": 19, "535a85ef5c9da14611ab1c1edc4f00a045840152975a4d277b3b5c4edc1cd7da": [38, 40], "54": [3, 5, 19, 24, 31, 37, 38, 40], "5409763072e46c4586": 19, "544": 21, "544__member": 21, "544__memberof": 21, "54836": [36, 40], "55": [0, 3, 7, 8, 11, 19, 20, 31, 39, 40], "550": 20, "551": 10, "552d076a": 19, "55503x": 0, "559": 0, "56": [0, 3, 8, 18, 19, 20, 31, 35, 36, 37, 38, 40], "560a": 10, "560d": 10, "562": 24, "5678": [38, 40], "57": [3, 11, 19, 20, 31], "576": [37, 40], "57600": 16, "58": [0, 3, 8, 10, 19, 20], "580": 19, "58593a7522257f2a95cce9a68886ff78546784ad7db4473dbd91aecd9eefd508": 2, "58b06195": 15, "59": [3, 5, 9, 19, 20, 21, 31, 36, 40], "591": [18, 38, 40], "59246": 18, "593": 18, "5985": 20, "5986": 20, "5a": [3, 10, 17], "5a47bf6ee188": [37, 39, 40], "5a68": 19, "5b": [5, 6, 39, 40], "5c": [5, 6, 36, 40], "5c7830315c7830310000000000000b45c67103d07d7b95acd12ffa11230e0000000052920b85f78d013c31cdb3b92f5d765c783030": 18, "5c7e7e09": 20, "5cf5": 19, "5d": [3, 5, 6], "5e": [3, 5, 6, 38, 40], "5e14f2c53cbc04b82a35414dc670a8a474ee0021349f280bfef215e23d40601a": [38, 40], "5f": [3, 5, 6, 38, 40], "5f5j9c2qnhfl5xkmclv7yjuw8lywn1ac": 19, "5f8d": 19, "5p6": 19, "5sz1wzenmhyai": 20, "5v": 16, "5x5": 2, "5xx": 5, "6": [0, 3, 4, 5, 8, 10, 11, 12, 13, 14, 16, 17, 18, 19, 20, 21, 23, 31, 35, 36, 37, 38, 39, 40], "60": [0, 3, 5, 6, 8, 10, 11, 18, 19, 25, 31, 36, 40], "600": [10, 11, 19], "6000": [10, 38, 40], "60001": 14, "6001": [36, 40], "601": [37, 40], "60850": 10, "61": [0, 3, 19, 31], "61131": [10, 11], "61383030": 0, "616": 20, "617": 0, "61803399": 2, "619": 19, "62": [3, 31], "62351": [10, 11], "6251": 19, "62653766": 0, "628": 0, "62cf9a": 19, "63": [0, 3, 4, 10, 19], "631": [19, 31], "63319sec": 32, "6386xxxxx": [36, 40], "63b": 11, "64": [0, 1, 3, 4, 5, 7, 10, 18, 19, 20, 21, 31, 32, 37, 40], "640": [7, 37, 40], "642646": 19, "644": 23, "6443": 14, "647": [0, 19], "64783": 20, "648": 0, "64f12cddaa88057e06a81b5xxxxxxxxx": 21, "65": [0, 3, 4, 8, 19, 20, 35, 40], "651e0d7b": 8, "652": 0, "65337": 2, "654": 0, "65527x": 0, "65535": [11, 19, 35, 40], "65536": [31, 32, 38, 40], "65537": [38, 40], "65k": [35, 40], "66": [3, 4, 19, 37, 39, 40], "660": 7, "665": [37, 40], "666": 0, "6666": 0, "6666662e": 0, "669": 19, "67": [0, 4, 19, 20], "670": 10, "67108864": 19, "67c": 19, "68": [0, 19, 36, 37, 40], "6837": 19, "6842": 19, "69": [0, 3, 38, 39, 40], "696": [39, 40], "6977e22136b6": 19, "69_openssl": 19, "69ab": 19, "6a": [3, 19], "6a440754d5fa": 19, "6a48f82d8e828ce82b82": [1, 38, 40], "6a6c8d9d2a5ba871a04c2556d7453b7f2b2aef8579abde201233fa93512ccc0b": 14, "6b": [3, 19], "6b29dfa157face3f3d8db489aec5cc12": 21, "6bffd098": [37, 39, 40], "6c": [3, 4], "6cad": 19, "6d": [3, 19], "6d61": 3, "6e": [3, 19], "6ec74661650377df488415415bf10321": 21, "6f": [3, 4, 19], "6f5c": 19, "6f72": 3, "6fe073b02f77230c092415032f0ff0951fxxxxxx": 19, "6fe073b02f77230c092415032f0ff0951xxxxxx": 19, "6r9z": 19, "6th": [0, 10], "7": [0, 1, 2, 3, 5, 6, 7, 8, 10, 11, 13, 14, 16, 18, 19, 20, 21, 31, 36, 37, 38, 39, 40], "70": [0, 3, 10, 11, 19], "700": 30, "700g": 19, "7020": 11, "7022": 31, "7069636f": 1, "70892": 19, "71": [3, 17, 19], "710": 24, "7112b3f1": 20, "71735056": 19, "72": [0, 3, 4, 19, 37, 40], "7200": 11, "73": [3, 4, 36, 38, 39, 40], "731": 18, "735": 10, "7357": 20, "735kv": 10, "73790966211": 19, "738e": 19, "73rd": 3, "74": [0, 3, 4, 19, 31], "740": 24, "741824": 19, "7420": 3, "742180": 18, "742222": 18, "742234": 18, "742241": 18, "7432": 19, "743994": 5, "743995": 5, "7449": 5, "745": 24, "7465": 3, "7498": 4, "75": [3, 5, 8, 19, 38, 40], "755": 31, "75905e": 19, "75ac21092c755e42b2129a224eb328dd": 19, "75x75": 19, "76": [0, 3, 4, 5, 19, 37, 38, 40], "7600": [37, 40], "7601": [8, 19, 20, 21], "7610": 19, "768": 19, "768525": 18, "77": [0, 3, 5, 19], "7728": 10, "775": 19, "777": [37, 38, 40], "78": [0, 4, 8, 18], "78465013": 19, "78517212": 19, "79": [18, 37, 40], "791055": 1, "795": 19, "798f": 19, "799733": 19, "7a": 3, "7a12fd4dc1898efcd997a1b9496e7591": 2, "7b": [5, 6, 19, 32], "7c": [5, 6, 8], "7c00": 32, "7c12c8787d25": 8, "7d": [5, 6], "7d65996108fccae892d38134a2310a4": 21, "7e": [3, 5, 6], "7ea70bcf": 19, "7f": 3, "7f02": 0, "7f9d11bf": 19, "7fb9": 19, "7fc": 0, "7fffffff": 20, "7nxexwa0uitw2qbk6fklk": 14, "7sd61": 10, "7sj63": 10, "7sj64": 10, "7sr2x": 10, "7th": 0, "7ut63": 10, "7z": 3, "7z2john": 38, "8": [0, 1, 2, 3, 4, 5, 6, 7, 8, 10, 11, 14, 16, 18, 19, 20, 30, 31, 32, 35, 36, 37, 38, 39, 40], "80": [0, 1, 3, 11, 18, 19, 20, 25, 31, 32, 33, 35, 36, 37, 38, 40], "800": [11, 19, 32], "8000": [18, 24, 36, 37, 39, 40], "8001": 24, "8004": 20, "80040e07": 5, "80040e14": 5, "8005": 18, "80070005": 20, "8008": 18, "801": 19, "801243": 18, "80140001": 20, "801930": 18, "802": [3, 10, 11, 16, 19, 38, 39, 40], "80386": 0, "804121": 19, "805": 19, "805083": 18, "805306369": 8, "805930": 18, "8080": [1, 18, 19, 21, 35, 36, 38, 40], "8081": [19, 36, 38, 40], "808610": 3, "80xw": 0, "81": [3, 19], "8119935c5f7fa5f57135620c8073aaca": 21, "8140": 14, "814486": 31, "8180": 19, "8181": [19, 36, 40], "8192": [20, 31, 38, 40], "819200": 31, "81a342ac": 20, "81dc9bdb52d04dc20036dbd8313ed055": 5, "82": 3, "82000856_f6": 19, "826098": 18, "82f9": 8, "83": [3, 19], "8333": 19, "834590": 19, "838": 31, "83ae": 19, "83ec": 19, "83ryyzkgmfkwob63ovp8d78ufyspxql8o49o": 19, "84": [0, 3, 19], "841": 19, "8439": 31, "8443": [18, 21], "8455": 20, "84782": [37, 40], "847x286": 31, "84c2": 20, "85": [0, 3, 18, 19], "86": [3, 38, 40], "8600": 19, "86161": 8, "861815232": [35, 40], "861815233": [35, 40], "86m": 11, "87": [3, 19], "8719": 31, "8728": 20, "878": 0, "87b7": 31, "881617": 19, "885": [39, 40], "8859": [36, 40], "8876427863578": 2, "888": 19, "8888": 5, "889618": 19, "88dcbe4446168966a153a0064958dac6": 18, "89": [0, 3, 5], "890625gb": 19, "894": 12, "8968": 19, "8999": 14, "8a": 3, "8a23": 19, "8a7d37867537db78a74a473792928f14edcb3948b9eb11a48d6de38b3dd30eec": [38, 40], "8a86": 32, "8a9cde424a04": 8, "8b": [3, 8, 38, 40], "8b23": 19, "8b6a": 19, "8c": [3, 18, 19], "8d": [3, 19, 32], "8ddc": 32, "8e": 3, "8ef5wkl05ttmi": 19, "8f": 3, "8f96": 19, "8gb": 32, "8n1": 16, "8vfrwb": 19, "8x": 21, "9": [0, 2, 3, 5, 7, 8, 10, 11, 14, 16, 18, 19, 20, 21, 23, 25, 31, 33, 35, 36, 37, 38, 39, 40], "90": [0, 3, 8, 10, 18, 19, 20, 25, 31, 33], "900": 0, "9000": [19, 36, 39, 40], "9001": [36, 40], "90277": 11, "9043": 20, "9050": [21, 36, 40], "906b0ce0": 19, "9179": 14, "91ff": [35, 40], "92": 17, "9200": 5, "922176": [38, 40], "9223372036854775807": [8, 19], "922688": [38, 40], "9229": 20, "923157": [38, 40], "924224": [38, 40], "924736": [38, 40], "925723": [38, 40], "9272": 19, "93": [0, 3, 19, 39, 40], "930": 0, "933402": [38, 40], "933908": [38, 40], "934427": [38, 40], "937436522": 8, "9390": [38, 40], "94": [0, 3, 18, 19, 37, 40], "942b1eca65d1": 19, "945f": 20, "95": [0, 5, 19, 38, 39, 40], "9550": 11, "957487": 20, "95b4": 19, "96": [10, 19], "9600": [8, 16], "964768": 19, "967a00dff5e02add41819138abb3284d": 19, "969": 31, "97": [0, 1, 3, 5, 8, 21, 38, 40], "970": 19, "97d0": 19, "98": [3, 19, 37, 38, 40], "9833": [37, 39, 40], "989": 8, "98971234567865019812734576890102": 21, "9898006990106": 2, "99": [1, 3, 5, 11, 15, 19, 31], "990": 31, "991250": [38, 40], "99171": 31, "991b": 31, "992274": [38, 40], "992282": [38, 40], "992787": [38, 40], "992795": [38, 40], "993667": 19, "994834": [38, 40], "994843": [38, 40], "996": 19, "996882": [38, 40], "996890": [38, 40], "997": [37, 40], "997e": 19, "999": 11, "9999": [1, 8], "99999": [31, 39, 40], "999999": 20, "99b7": 19, "99local": 31, "99x": 19, "9a": [8, 19, 31], "9a42": 19, "9b": 3, "9ba05972": 20, "9c": [3, 38, 40], "9d": 3, "9dad5428": 20, "9e": 3, "9e13": 19, "9gilxjmnelkyoe61": 14, "9i": 19, "9mzdpfhgqryd04o2jvjzc6hlmwztoulurzwgt0": 19, "9nrol": 19, "A": [0, 1, 3, 4, 5, 8, 9, 10, 11, 12, 13, 14, 16, 19, 23, 24, 25, 30, 31, 32, 34, 35, 36, 37, 38, 39, 40], "AND": [3, 5, 6, 11, 20, 31], "AS": [5, 6, 11, 18, 19, 21, 32], "AT": [8, 10, 20], "And": [0, 1, 5, 7, 10, 11, 20, 23, 31, 32, 34, 37, 40], "As": [0, 1, 3, 5, 7, 8, 10, 11, 13, 14, 16, 18, 19, 20, 21, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "At": [0, 3, 5, 8, 9, 10, 18, 19, 20, 21, 25, 30, 31, 32, 33, 36, 39, 40, 41], "BUT": 31, "BY": 5, "BYs": 5, "Be": [5, 11, 31, 33, 34], "Being": 11, "But": [0, 3, 10, 11, 18, 23, 33], "By": [0, 3, 5, 6, 7, 8, 10, 11, 14, 16, 18, 19, 20, 21, 25, 31, 32, 33, 34, 35, 36, 37, 38, 40], "FOR": [5, 11], "For": [0, 1, 3, 4, 5, 6, 8, 9, 11, 12, 13, 18, 19, 20, 21, 23, 32, 33, 34, 35, 36, 37, 38, 39, 40], "IF": [5, 11, 31], "IN": [3, 10, 19, 35, 36, 40], "IT": [14, 20, 21, 23, 30, 31, 33, 35, 38, 40], "If": [0, 1, 2, 3, 4, 5, 6, 7, 8, 10, 11, 12, 15, 16, 17, 18, 19, 20, 21, 23, 25, 26, 27, 30, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "In": [0, 1, 3, 5, 6, 7, 8, 9, 10, 12, 14, 16, 17, 18, 19, 20, 23, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "Into": 30, "It": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14, 16, 17, 18, 19, 20, 21, 22, 23, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "Its": [4, 9, 10, 11, 18, 19, 23, 30, 31, 32, 33], "NO": [10, 19, 32, 35, 40], "NOT": [3, 16, 19, 31], "Near": 31, "No": [0, 3, 4, 5, 7, 10, 11, 18, 20, 23, 25, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40], "Not": [0, 5, 10, 11, 19, 20, 25, 30, 31, 33, 34], "OF": 4, "ON": [10, 20, 39, 40], "OR": [3, 5, 6, 11], "Of": [0, 5, 7, 11, 31, 33], "On": [0, 1, 9, 10, 11, 16, 20, 21, 23, 31, 32, 36, 37, 40], "One": [0, 1, 10, 11, 12, 14, 16, 18, 19, 30, 31, 33, 34, 35, 36, 37, 38, 40], "Ones": 4, "Or": [0, 5, 11, 19, 31, 34], "Such": [5, 11, 20, 25, 31, 32, 38, 40], "THAT": 5, "THE": [11, 31], "THEN": 5, "TO": [11, 16, 19, 36, 39, 40], "That": [0, 5, 7, 11, 16, 33, 34, 37, 40], "The": [0, 1, 2, 3, 4, 6, 7, 8, 9, 10, 14, 15, 16, 17, 19, 20, 22, 23, 25, 27, 30, 32, 33, 34, 35, 36, 37, 38, 39, 40], "Their": [10, 11, 31, 34], "Then": [0, 1, 3, 5, 11, 14, 20, 31, 33, 36, 39, 40], "There": [0, 1, 2, 3, 5, 7, 9, 10, 11, 12, 13, 14, 16, 18, 19, 20, 23, 24, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "These": [0, 3, 4, 5, 7, 9, 10, 11, 12, 14, 16, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 38, 39, 40], "To": [0, 3, 5, 7, 8, 9, 10, 11, 13, 14, 15, 16, 18, 19, 20, 21, 23, 24, 25, 31, 32, 33, 34, 36, 37, 39], "ToS": 31, "WITH": 19, "Will": [0, 5, 11, 33, 34], "With": [5, 7, 9, 10, 11, 19, 20, 23, 32, 33, 34, 36, 37], "_": [0, 1, 3, 4, 5, 6, 7, 8, 14, 16, 18, 19, 20, 31, 33, 36, 37, 38, 40], "_089134": [38, 40], "_192": 19, "_333512": [38, 40], "__": [1, 11], "_______": 10, "________": 10, "___________": 34, "__asm__": 0, "__base__": 1, "__builtins__": 1, "__class__": 1, "__cxa_at_quick_exit": 0, "__cxa_atexit": 0, "__cxa_thread_atexit_impl": 0, "__cyg_profile_func_exit": 0, "__do_global_dtors_aux": 0, "__dso_handl": 0, "__globals__": 1, "__gmon_start__": 0, "__import__": 1, "__init__": 1, "__libc_csu_fini": 0, "__libc_csu_init": 0, "__libc_start_main": [0, 4], "__libc_system": 0, "__lxstat": 0, "__main__": [2, 38, 40], "__mro__": 1, "__name__": [1, 2, 38, 40], "__output": 20, "__paramet": 20, "__reduce__": [39, 40], "__subclasses__": 1, "_a": 0, "_abc_data": 1, "_all_db": 19, "_all_doc": 19, "_baseexitstack": 1, "_bytesiobuff": 1, "_cassandra": 19, "_codenam": [38, 40], "_collect": 1, "_data": 32, "_deque_iter": 1, "_deque_reverse_iter": 1, "_dn": 19, "_drwxr": 19, "_dummymodulelock": 1, "_exit": 0, "_file": [39, 40], "_fini": 0, "_flag": 0, "_frozen_importlib": 1, "_frozen_importlib_extern": 1, "_generatorcontextmanagerbas": 1, "_generatorwrapp": 1, "_get": [19, 36, 39, 40], "_good": 0, "_grouper": 1, "_helper": 1, "_http": [36, 40], "_id": [19, 38, 40], "_idea": 0, "_importlockcontext": 1, "_init": 0, "_installed_saf": 1, "_io": 1, "_io_stdin_us": 0, "_iobas": 1, "_layout": [38, 40], "_libcstart_main": 0, "_like": [38, 40], "_link": 1, "_loaderbas": 1, "_local": 1, "_localdummi": 1, "_lru_cache_wrapp": 1, "_minecraft": 18, "_modul": 1, "_modulelock": 1, "_modulelockmanag": 1, "_mongodb": 19, "_name": [38, 40], "_namespaceload": 1, "_namespacepath": 1, "_pickl": [39, 40], "_pjl": 19, "_post": [5, 6, 39, 40], "_printer": 1, "_proto": 18, "_report": [38, 40], "_request": [36, 39, 40], "_rtsp": 19, "_same_": 21, "_servic": [18, 19], "_shell": 0, "_sip": [18, 19], "_sipfederationtl": 19, "_sitebuiltin": 1, "_sshv1": 19, "_ssl": 19, "_standard": 20, "_start": [0, 4], "_t": 0, "_tcp": [18, 19], "_tee": 1, "_tee_dataobject": 1, "_thought": 0, "_thread": 1, "_tl": 18, "_udp": 19, "_unknown": 19, "_updat": 19, "_url": [38, 40], "_wa": 0, "_wrap_clos": 1, "_zonetransf": 19, "a0": [3, 5], "a000045": 3, "a1": [31, 36, 40], "a112": [37, 39, 40], "a1uddwqeawif4danbgkqhkig9w0baqufaaobgqaentishyi": 19, "a1udeqqcmbqcggfzdgfyb3vmbgv4lmzszxhmawxtlmnvbtajbgnvhrmeajaamasg": 19, "a23f7c2": 8, "a2enmod": 19, "a3": 3, "a31b8f449706c32558abc788ddabf62dccxxxxxx": 19, "a3f0": 31, "a442": 20, "a4c51cdfa2069f3e905c431114001aff": 19, "a56beb30e27fe2f7d119e8defd6a8049e4300734bb139a5dd08e668ba434792b8ab45a285ac88b95dd16658ac7ec0xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx": 7, "a6": 32, "a738e25a": 19, "a758": 19, "a8": 19, "a812": 19, "a9": [3, 5, 19], "aa": [0, 3], "aa0aa1aa2aa3aa4aa5aa6aa7aa8aa9ab0ab1ab2ab3ab4ab5ab6ab7ab8ab9ac0ac1ac2ac3ac4ac5ac6ac7ac8ac9ad0ad1ad2ad3ad4ad5ad6ad7ad8ad9ae0ae1ae2ae3ae4ae5ae6ae7ae8ae9af0af1af2af3af4af5af6af7af8af9ag0ag1ag2ag3ag4ag5ag": 0, "aa23f7c2": 8, "aaa": [12, 23], "aaa0": 0, "aaa0aaa1_": 0, "aaaa": [0, 14, 19, 35, 36, 40], "aaaa31254141": 0, "aaaa41410074": 0, "aaaa41414141": 0, "aaaaaaa": [38, 40], "aaaaaaaaaaaa": [0, 38, 40], "aaaaaaaaaaaaaaaaaaaa": 0, "aaaaaaaaaaaaaaaaaaaa7": 0, "aaaaaaaaaaaaaaaaaaaaaa": 0, "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa": 0, "aaaab3nza": 14, "aaaab3nzac1kc3maaacbaoohto8bessafi78mctp7vz1etkdsxnj8wgrymd": 19, "aaaab3nzac1yc2eaaaadaqa": [39, 40], "aaaab3nzac1yc2eaaaadaqabaaabaqc": [36, 40], "aaaab3nzac1yc2eaaaadaqabaaabaqdirocxkgi0l3kzevneplmxbbdj4wyapfzngf63": 19, "aaaaf7eb6de6": 0, "aaaand": 0, "aabbccdd": 1, "aad": 19, "aad3b435b51404eeaad3b435b51404e": [18, 20, 21], "aalaakag8adqb0ac4atablag4azwb0aggakqanaaoajabvahuadaagad0aiaakag4adqbsagwaowagacqazabvag4azqagad0aiaakagyayqbsahmazqa7acaajab0aguacwb0agkabgbnacaapqagadaaowanaaoadwboagkabablacaakaatag4abwb0acaajabkag8abgblackaiab7aa0acgbpagyaiaaoacqaywbsa": [36, 40], "aaoajabwahiabwbjaguacwbzacaapqagae4azqb3ac0atwbiagoazqbjahqaiabtahkacwb0aguabqauaeqaaqbhagcabgbvahmadabpagmacwauafaacgbvagmazqbzahmadqakacqacabyag8aywblahmacwauafmadabhahiadabjag4azgbvac4argbpagwazqboageabqblacaapqagaccaqwa6afwaxab3agkabgb": [36, 40], "aaqyv": 19, "aarch64": 31, "aaron": 29, "ab": [3, 31], "abandon": 11, "abap": 24, "abbmak": 10, "abbrev": [17, 31], "abbrevi": [5, 19, 31], "abc": [1, 20, 34], "abc123": 21, "abcd": [5, 20, 31, 38, 39, 40], "abcdc01": 20, "abcdc02": 20, "abcdc03": 20, "abcdc04": 20, "abcdefg": [19, 20], "abcdefg1": 20, "abcdefg2": 20, "abcdefg5": 20, "abcdefghijklmnopqrstuvwxi": 2, "abcdefghijklmnopqrstuvwxyz": 31, "abcn": 20, "abcroot": 20, "abcxxx": 20, "abid": [4, 34], "abil": [5, 8, 9, 10, 11, 16, 19, 20, 21, 30, 31, 32, 33, 36, 37, 38, 39, 40], "abl": [0, 1, 3, 5, 7, 10, 11, 15, 16, 18, 19, 20, 21, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "ablacgajabzahqacgbpag4azwapaa0acgbzahqayqbyahqalqbzagwazqblahaaiaaxaa0acgbpagyaiaaoacqacabyag8aywblahmacwauaeuaeabpahqaqwbvagqazqagac0abgblacaajabuahuababsackaiab7agmabablageabgb1ahaafqanaaoazqbsahmazqagahsadqakacqabwb1ahqaiaa9acaajablag4a": [36, 40], "abnorm": [11, 12], "abort": [18, 19, 20, 31], "abort_timeout": 19, "about": [0, 1, 3, 4, 5, 9, 10, 11, 12, 14, 16, 18, 19, 21, 23, 25, 28, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "abov": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 18, 19, 20, 21, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40], "abovelin": [36, 40], "absolut": [0, 11, 19, 33, 36, 38], "absorb": [32, 34], "abstract": [2, 31, 32, 39, 40], "abus": [5, 11, 18, 30, 33, 39], "abwbkaguaiaatag4azqagacqabgb1agwabaapacaaewakahaacgbvagmazqbzahmalgbdagwabwbzaguakaapah0adqakaguaeabpahqafqanaaoajabhagqazabyaguacwbzacaapqagaccamqa5adialgaxadyaoaauadealgayadeaoaanaa0acgakahaabwbyahqaiaa9acaajwa4adeaoaaxaccadqakacqaywbsag": [36, 40], "ac": [9, 10, 12, 21, 32], "academ": 11, "academia": 11, "acb6ec59ea": 32, "acb6ec59eaedb2597092898acab922b53f45ba0243161917ab678bf8960bfc27": 32, "acc": [12, 21], "acccess": 12, "acceler": [11, 30, 39, 40], "accept": [5, 7, 11, 19, 20, 31, 33, 34, 36, 37, 38, 39, 40], "accept_redirect": 7, "accept_source_rout": 7, "accepteula": [20, 21], "accepting_conn": 19, "acceptula": 19, "access": [1, 3, 4, 5, 6, 8, 9, 12, 13, 14, 15, 17, 18, 23, 31, 32, 33, 34, 36, 37, 38], "access_deni": 20, "accesspolici": [39, 40], "accid": [10, 11], "accident": [11, 18, 31], "accommod": [9, 10, 31], "accompani": 34, "accomplish": [0, 3, 11, 31], "accord": [5, 8, 9, 10, 11, 16, 19, 21, 23, 24, 30, 31, 32, 34, 36, 37, 39, 40], "accordingli": [5, 11, 31, 32, 39, 40], "account": [0, 1, 3, 5, 6, 7, 8, 9, 10, 12, 18, 25, 30, 31, 32, 33, 36], "account_bal": 0, "accountexpir": [8, 20], "accountexpirationd": 8, "accountlockouttim": 8, "accountnam": 20, "accountnotdeleg": 8, "accountpassword": 8, "accr": 10, "accru": 25, "accumul": [1, 10], "accur": [5, 10, 11, 20, 21, 22, 33, 34], "accuraci": [11, 18, 32], "acd": 9, "acdfhlmnpsstuv": 0, "achiev": [0, 3, 5, 9, 10, 11, 18, 19, 20, 31, 32, 34, 35, 37, 40], "aci": 32, "acid": 11, "ack": [3, 11, 18, 19, 35, 40], "acknowledg": [38, 40], "acl": [8, 11, 14, 19, 23, 30, 36, 40], "acl_fil": 14, "acm": [13, 21], "acp": 10, "acquir": [10, 11, 12, 23, 24, 25, 31], "acquisit": 33, "acquist": [10, 11], "acronym": 11, "across": [3, 5, 9, 10, 11, 15, 23, 30, 31, 32, 37, 38, 40], "act": [0, 9, 10, 11, 14, 16, 18, 31, 32, 33, 34, 36, 38, 39, 40, 41], "action": [1, 5, 10, 11, 14, 16, 18, 19, 20, 21, 22, 23, 25, 32, 33, 37, 38, 39, 40], "action_opt": 31, "actionscript": 5, "activ": [0, 5, 8, 10, 12, 14, 16, 19, 23, 25, 31, 32, 33, 34, 35, 36, 39], "activate_subscript": 19, "activedirectori": [8, 20], "activedirectorysecur": 8, "activestor": 8, "activesupport": 33, "activeview": 20, "activex": 5, "actor": 34, "actual": [0, 3, 4, 5, 10, 11, 12, 16, 19, 31, 32, 33, 34, 37, 39, 40], "actuat": [11, 32], "acycl": 32, "ad": [0, 3, 5, 9, 10, 11, 12, 16, 18, 19, 21, 22, 23, 25, 30, 33, 34, 36, 37, 38, 39, 40], "ad2": 11, "ad70": 8, "adafruit": 16, "adapt": [11, 15, 16, 17, 19, 20, 21, 31, 36, 40], "adc": 16, "adcomput": 20, "add": [0, 1, 3, 4, 5, 7, 11, 13, 14, 18, 19, 21, 22, 23, 26, 27, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "addanewus": 5, "addba": [38, 40], "adddocu": 5, "addefaultdomainpasswordpolici": 20, "addefaultpasswordpolici": 20, "addflhpruvv": 3, "addgroup": 31, "addit": [0, 1, 3, 5, 6, 9, 10, 12, 16, 19, 20, 25, 31, 32, 33, 36, 37, 38, 39, 40], "addition": [9, 11, 18, 32, 35, 40], "addon": 14, "addr": [0, 3, 11, 18, 19, 31, 38, 40], "addr0": 3, "addr1": 3, "addrepo": 31, "addres": 10, "address": [0, 1, 3, 5, 6, 7, 9, 10, 12, 14, 15, 16, 17, 19, 20, 21, 23, 24, 30, 32, 33, 34, 36, 37, 38, 39], "address1": 20, "address2": 20, "address_list": 19, "addressfamili": 8, "addressst": 8, "addrofsystem": 0, "addsforest": 8, "addu": 5, "addus": [5, 7, 31], "addusr": 5, "addxxx": 5, "adequ": [11, 33, 34], "adexplor": [38, 40], "adfind": 20, "adgroup": 20, "adguard": 30, "adher": [9, 11, 30, 34], "adit": 16, "adjust": [0, 3, 7, 9, 11, 18, 38, 40], "adjustgroupcapacityforecast": 9, "adm": [7, 19, 31, 37, 40], "adm2": 21, "admin": [5, 6, 8, 10, 11, 14, 18, 19, 21, 30, 31, 35, 36, 37, 38, 39, 40], "admin01": 8, "admin_5f4dcc3b5aa765d61d8327deb882cf99": [38, 40], "admincount": 20, "admini": 20, "administ": [14, 21, 31], "administr": [5, 7, 10, 11, 12, 14, 19, 23, 30, 32, 34, 37, 38, 40], "administrat0r": [5, 6, 20], "adminus": 20, "admpwd": 8, "admpwdexpirationtim": 8, "admsi": 21, "admx": 8, "ado": [37, 40], "adob": 5, "adobject": 8, "adopt": [11, 31, 32, 34], "adorganizationalunit": 8, "adp": 12, "adqb0acaakwa9acaajablag4aywbvagqaaqbuagcalgbhaguadabtahqacgbpag4azwaoacqabwb1ahqacab1ahqacwb0ahiazqbhag0algbsaguayqbkacgakqapah0adqakacqacwb0ahiazqbhag0algbxahiaaqb0aguakaakaguabgbjag8azabpag4azwauaecazqb0aeiaeqb0aguacwaoacqabwb1ahqakqasad": [36, 40], "adsecur": [20, 21], "adsi": 20, "adsisearch": [38, 40], "adspath": 20, "adus": 20, "advanc": [5, 10, 11, 12, 18, 19, 30, 31, 33, 34], "advant": 10, "advantag": [0, 10, 19, 21, 25, 31, 33], "advers": 11, "adversari": [11, 30, 33], "adversi": 11, "advertis": [11, 31], "advfirewal": [37, 40], "advic": [25, 33], "advis": [10, 17, 18, 31], "advisor": 32, "advisori": [11, 33, 34], "adw": 8, "ae": [16, 20, 33, 38, 40], "aes128": [8, 19], "aes192": 19, "aes256": [2, 8, 19], "aeskei": 20, "af_inet": [36, 40], "affect": [10, 11, 12, 19, 30, 31, 32, 33, 34, 38, 39, 40], "affero": 34, "afford": 11, "aficio": 19, "afirev": 9, "afll": 0, "afoot": [36, 40], "aforement": 9, "afp3": 19, "afp_server_info": 19, "afraid": 5, "afresh": 32, "africa": 11, "afs670": 10, "afsdb": 19, "after": [1, 2, 3, 5, 6, 7, 10, 11, 14, 16, 18, 19, 20, 21, 25, 30, 31, 32, 33, 36, 37, 38, 39, 40], "after_deploi": 32, "after_failur": 32, "after_script": 32, "after_success": 32, "afterward": [0, 19, 31, 39, 40], "afvd": 0, "ag": [7, 11, 25, 31], "again": [0, 10, 11, 14, 18, 31, 32, 33, 36, 37, 38, 39, 40], "against": [5, 7, 8, 10, 11, 12, 16, 18, 19, 20, 23, 25, 30, 31, 33, 34, 36, 37, 39, 40], "agc": 10, "agenc": [11, 12, 30], "agent": [2, 5, 7, 11, 18, 19, 21, 36, 38, 39, 40], "agentless": 32, "agg": 12, "aggreg": [3, 5, 9, 10, 11, 12, 18, 19, 22, 32, 34], "aggress": [11, 31, 34], "agil": [10, 32], "agnost": 32, "ago": 11, "agora": 11, "agpl": 34, "agranat": 19, "agre": [0, 25, 34, 41], "agreement": [9, 10, 11, 33], "agricultur": [11, 25], "aguadab3ag8acgbragiadqbmagyazqbyac4atablag4azwb0aggakqapacaaewanaaoajabyaguayqbkacaapqagacqacwb0ahiazqbhag0algbsaguayqbkacgajabuaguadab3ag8acgbragiadqbmagyazqbyacwajabwag8acwasacqabgblahqadwbvahiaawbiahuazgbmaguacgauaewazqbuagcadaboacaalqa": [36, 40], "ah": 0, "ahdiemoo1j": 4, "ahead": [0, 11, 33], "ahsr": 20, "ahv": 32, "ai": [8, 10, 32], "aid": [11, 33, 38, 40], "aim": [3, 11, 12, 32, 33, 37, 40], "air": [11, 14, 16, 32, 33], "aircrack": [3, 38, 40], "aireplai": 3, "airlin": [3, 11], "airmon": 17, "airodump": 17, "airplan": 11, "airport": [3, 11, 19], "ajax": 5, "ajp13": 19, "ajpv13": 19, "ak": 32, "aka": [9, 10, 19, 21, 31, 33], "al": [0, 37, 40], "alarm": [10, 11, 12, 20, 31], "albino_lobst": [36, 40], "albinolobst": [36, 40], "album": 3, "alcatel": 30, "alert": [7, 10, 19, 20, 21, 32, 33], "alfa": 17, "alfresco": 19, "alft": 31, "alg": 19, "algebra": 1, "algorithm": [1, 3, 5, 9, 11, 16, 18, 19, 21, 34, 38, 40], "alia": 18, "alias": [19, 20, 31], "alibaba": 32, "alic": 30, "alien": 34, "align": [0, 11, 15, 30, 31], "alioth": [36, 40], "aliv": [0, 5], "alive_parrot": 1, "all": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14, 15, 16, 17, 18, 19, 21, 23, 24, 25, 27, 30, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "all_col_com": 5, "all_sourc": 5, "all_tabl": 5, "all_trust": 20, "alldatasheet": 16, "allegro": 19, "allen": [11, 19], "allianc": 9, "allintitl": 18, "allinurl": 18, "alloc": [0, 10, 11, 12, 16, 19, 31, 32, 36, 40], "allow": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 16, 18, 19, 20, 21, 22, 23, 24, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "allow_anonym": 14, "allowreversiblepasswordencrypt": 8, "allowsinglesignon": 13, "allowus": [38, 40], "allpag": [38, 40], "allsettingsen": 8, "alltcpportsopen": 19, "almost": [0, 3, 4, 5, 8, 10, 11, 19, 23, 30, 31, 33, 36, 39, 40], "alon": [11, 31, 33, 39, 40], "along": [0, 1, 4, 5, 9, 10, 11, 12, 18, 20, 31, 32, 34, 37, 40], "alongsid": [11, 31, 32], "alpha": 5, "alphabet": [2, 5, 31, 33, 38, 40], "alphanumer": [0, 11, 30], "alpin": 3, "alreadi": [0, 5, 6, 8, 10, 11, 13, 14, 18, 19, 20, 21, 30, 31, 32, 33, 34, 36, 39, 40], "also": [0, 1, 2, 3, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 18, 19, 20, 21, 23, 27, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "alstom": [10, 11], "alt": [3, 20, 31, 35, 40], "alt1": 19, "alt2": 19, "altadmin": 19, "alter": [5, 11, 31, 39, 40], "alter_autolog_change_sourc": 19, "alter_hotlog_internal_csourc": 19, "altern": [0, 5, 10, 11, 14, 15, 18, 20, 31, 32, 33, 35, 37, 39], "although": [3, 5, 7, 11, 19, 20, 23, 31, 34, 37, 40], "altogeth": 11, "alwai": [0, 1, 3, 5, 6, 10, 11, 14, 18, 19, 21, 23, 31, 32, 33, 34, 35, 36, 37, 38, 40], "am": [0, 8, 18, 19, 25, 27, 31, 39, 40], "amarok": 31, "amateur": 11, "amaz": [20, 38, 40], "amazon": 30, "ambassador": 11, "amber": 33, "ambient": 11, "ambigu": [31, 34], "amd": 32, "amd64": [7, 31, 32], "america": 11, "american": [11, 31], "amf": 5, "ami": 32, "amin": 31, "amlumq4wdaydvqqhewvob2lkyteomawga1uechmfvwzszxgxitafbgnvbamtggfz": 19, "among": [0, 5, 9, 11, 12, 31, 32, 37, 38, 40], "amongst": 16, "amount": [0, 3, 7, 10, 11, 18, 19, 20, 21, 22, 23, 25, 31, 33, 35, 36, 40], "amp": [5, 10], "amper": 10, "ampersand": 31, "amplia": [20, 21], "amplialab": [20, 21], "ampliasecur": [20, 21], "amplifi": 11, "amplitud": 16, "an": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14, 15, 16, 17, 18, 19, 21, 23, 24, 25, 32, 34, 35, 36, 37, 38, 41], "analog": [0, 10, 11, 16, 36, 40], "analogi": 11, "analyi": 12, "analys": [3, 16, 18, 25, 30, 36, 40], "analysi": [0, 2, 5, 10, 16, 18, 20, 23, 30, 31, 32, 34, 38, 40, 41], "analyst": [11, 18, 30], "analysz": 11, "analyt": [11, 18, 20, 30, 32, 36, 38, 40], "analyz": [0, 3, 8, 10, 11, 18, 19, 30, 31, 32, 33], "ancestor": 18, "anchor": 12, "ancient": 33, "ancillari": 3, "android": [3, 34], "ang": 10, "angel": 11, "ani": [1, 3, 4, 5, 6, 7, 8, 10, 11, 12, 14, 16, 18, 19, 20, 21, 23, 24, 25, 27, 30, 31, 32, 33, 34, 35, 36, 38, 39, 41], "anim": [3, 11], "annoi": 11, "annot": 13, "announc": [5, 33], "annual": 33, "annualreport2009": 5, "annualreport2010": 5, "ano": 11, "anob": 11, "anomal": 11, "anomali": [5, 10], "anonym": [1, 20, 38, 39, 40], "anoth": [0, 3, 5, 7, 9, 10, 11, 12, 14, 16, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40, 41], "anotherus": 5, "anpr": 14, "ansi": [0, 5, 11, 19], "ansibl": [21, 30], "answer": [3, 5, 6, 11, 18, 30, 33, 34], "ant": 32, "anteced": 20, "antenna": [11, 16], "anti": [5, 19, 20], "anticip": 30, "antisoci": 34, "antispam": 19, "antiviru": [10, 11, 19, 20, 21], "any_script": [37, 40], "anybodi": [7, 37, 40], "anymor": [7, 31], "anyon": [11, 18, 19, 31, 32, 33, 34, 37, 39, 40, 41], "anyth": [0, 3, 7, 11, 16, 18, 30, 31, 33, 34, 35, 36, 37, 40], "anytim": 31, "anywai": [5, 25], "anywher": [0, 9, 11, 31, 32, 38, 39, 40], "aoip": 12, "ap": [3, 17, 36, 40], "apach": [5, 7, 11, 14, 18, 30, 34, 35, 36, 38, 39, 40], "apache2": [19, 36, 40], "apani1": 19, "apart": [3, 10, 11, 18, 39, 40], "apc": 11, "apdrp": 10, "apdu": 10, "apex": 10, "api": [5, 13, 16, 19, 20, 21, 30, 32, 33, 34], "apk": [3, 32], "apktool": 3, "apm": 32, "apn": 10, "apo": 5, "apostroph": [5, 31], "app": [3, 5, 9, 11, 13, 16, 19, 20, 23, 30, 32, 34], "appar": [1, 5, 38, 40], "apparatu": [10, 11], "appconfig": 13, "appconsolekernel": [38, 40], "appdata": [21, 37, 40], "appeal": 11, "appear": [3, 4, 5, 11, 16, 18, 19, 20, 24, 31, 32, 33, 34, 36, 38, 40], "append": [0, 2, 5, 6, 15, 18, 31, 36, 37, 40], "appendix": [10, 35, 41], "appl": [5, 11], "applet": [5, 21, 31], "appli": [0, 3, 5, 7, 8, 10, 12, 14, 15, 16, 18, 19, 20, 25, 30, 31, 32, 33, 34, 36, 38, 39, 40], "applianc": [10, 11, 12, 23, 31, 32], "applic": [0, 1, 3, 8, 9, 12, 18, 19, 21, 22, 24, 25, 34, 36, 37, 38, 39], "applicationpartit": 20, "applock": 30, "appmgmt": 20, "appoint": 9, "apport": 10, "appreci": [19, 34], "approach": [9, 10, 12, 14, 16, 17, 18, 20, 23, 30, 31, 32, 33, 34], "appropi": [17, 19], "appropri": [0, 1, 3, 5, 7, 10, 11, 15, 19, 21, 31, 32, 33, 34], "approv": [10, 11, 14, 31, 32, 34], "approx": [3, 10, 11, 12, 18, 21], "approxim": [1, 10, 11], "apps03": 20, "appsec": 33, "appweb": 19, "apr": [20, 31, 36, 40], "april": [3, 10], "apropo": 31, "apt": [1, 3, 7, 11, 14, 15, 16, 19, 32, 36, 39], "apt_1": 31, "aptitud": 31, "apv": 19, "aqueduct": 11, "ar": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 30, 31, 32, 35, 36, 38, 39, 41], "arab": [36, 40], "arabian": 11, "arbitari": 0, "arbitrari": [5, 6, 7, 18, 19, 31, 33, 36, 38], "arbitrarili": 5, "arc": 10, "arcetl": 21, "arch": 30, "archer": 11, "architect": 11, "architectur": [5, 9, 13, 14, 16, 19, 21, 30, 31, 33, 36, 37, 40], "archiv": [3, 5, 11, 14, 21, 31, 34, 37, 38, 39], "arcmht": 21, "arcnet": 10, "arco": 10, "arcxml": 21, "ardunio": 16, "area": [5, 9, 10, 11, 12, 17, 19, 20, 34, 37, 40], "aren": [0, 11, 20, 31], "areva": [10, 11], "arg": [0, 18, 19, 31, 36, 40], "argc": 0, "argeu": 2, "arglist": 0, "argmax": 1, "argo": [13, 32], "argon2id": 33, "argp_err_exit_statu": 0, "argu": 11, "arguement": [0, 20], "argument": [0, 1, 3, 4, 5, 18, 19, 20, 32, 33, 36, 37, 38, 39, 40], "argz": 0, "aris": [9, 11, 32], "arithmet": 3, "arizona": 19, "arj": 16, "ark": 14, "arm": [3, 11, 16, 31, 32], "armhf": 31, "armi": [38, 40], "armitag": 20, "around": [0, 3, 4, 11, 12, 16, 18, 19, 20, 21, 31, 32, 36, 38, 40], "arp": [3, 18, 35, 36, 40], "arpa": [11, 19], "arpspoof": 3, "arr": [4, 31], "arra": 3, "arrai": [0, 1, 3, 4, 10, 11, 19, 33], "arrang": [2, 11, 25, 37, 39, 40], "array_key_exist": [39, 40], "arrestor": 10, "arriv": [1, 11, 21, 31], "arrow": [3, 31, 36, 40], "arsc": 3, "art": [2, 10, 34], "artefact": 33, "articl": [5, 8, 18, 20, 33, 34, 38, 40], "artifact": [3, 32, 34], "artifacthub": 13, "artifici": 32, "artisan": [38, 40], "artist": 34, "artwork": [38, 40], "aruba": 19, "as_whom": 31, "asan": 33, "asc": 31, "ascend": 31, "ascertain": [5, 31], "ascii": [0, 4, 5, 6, 7, 11, 19, 20, 21, 31, 36, 38, 39, 40], "asciiz": 0, "asdfghjkl": 3, "asdqwe123": 20, "asfdbauthdn": 19, "asfdbbox": 19, "asfdbvolum": 19, "ask": [0, 3, 4, 5, 11, 14, 18, 19, 20, 30, 31, 32, 33, 34, 36, 38, 39, 40, 41], "asm": 0, "asp": [19, 36, 38, 39, 40], "aspect": [4, 10, 11, 25, 33], "asplaintext": [8, 36, 40], "aspmx": 19, "aspmx2": 19, "aspmx3": 19, "aspmx4": 19, "aspmx5": 19, "asprintf": [0, 37, 40], "aspsessionid": 5, "aspx": [5, 19, 38, 40], "asr": 20, "ass": 1, "assecurestr": [8, 38, 40], "assembl": [0, 1, 3, 4, 11, 16, 32], "assembli": [0, 10, 11, 32], "assert": [19, 33], "assess": [10, 18, 21, 33], "asset": [10, 20, 33], "assign": [0, 5, 6, 9, 10, 11, 18, 31, 32, 33, 39, 40], "assigne": 18, "assist": [9, 10, 11, 12, 18, 20, 22, 31, 32, 38, 40], "assoc": [38, 40], "associ": [0, 3, 5, 10, 11, 12, 14, 17, 19, 20, 21, 23, 24, 25, 31, 33, 34, 39, 40], "assum": [0, 1, 3, 5, 7, 11, 14, 16, 19, 20, 30, 31, 32, 33, 36, 37, 40], "assumpt": [3, 11, 21, 33], "assur": 11, "astarouflex": 19, "aster": 19, "asterik": 31, "asterisk": [37, 38, 40], "astra": 32, "astyp": 1, "asuch": 12, "asv": 33, "asymmetr": [7, 9], "async_gener": 1, "asynchpeopl": 19, "asynchron": [12, 16, 19, 31, 35, 40], "asynciter": 1, "at89s52": 16, "ata": 30, "atch": 31, "atedb": 31, "atexec": 20, "atexit": 0, "atftp_histori": [36, 40], "atftpd": 31, "athen": [37, 40], "atim": 31, "ation": 31, "atla": 32, "atlant": 11, "atleast": [2, 10, 33], "atm": 12, "atmega328": 16, "atmel": 16, "atmospher": 11, "atom": 32, "atop": 31, "atp": 30, "atq": 31, "atrn": 19, "atsvc": [19, 20], "att": [16, 21], "attach": [0, 5, 10, 11, 12, 14, 18, 19, 21, 30, 31, 32, 34, 38, 40], "attack": [0, 6, 7, 8, 9, 10, 20, 21, 22, 23, 30, 31, 33, 36, 37, 38], "attackerip": [37, 40], "attain": 31, "attempt": [5, 6, 7, 11, 12, 14, 18, 19, 20, 31, 33, 34, 38, 40], "attent": [11, 25, 34, 37, 40], "attica": [35, 40], "attifi": 16, "attr": [1, 16, 20], "attract": [11, 12, 34], "attrgett": 1, "attrib": 19, "attribut": [1, 3, 5, 20, 21, 33, 34, 36, 38, 40], "au": [3, 21], "auafiazqbkagkacgblagmadabtahqayqbuagqayqbyagqatwb1ahqacab1ahqaiaa9acaamqanaaoajabwahiabwbjaguacwbzac4auwb0ageacgb0aekabgbmag8algbvahmazqbtaggazqbsagwarqb4aguaywb1ahqazqagad0aiaawaa0acgakahaacgbvagmazqbzahmalgbtahqayqbyahqakaapaa0acgakagkab": [36, 40], "auction_choic": 0, "audac": [3, 31], "audienc": 11, "audio": [3, 11, 12, 34, 37, 40], "audiocod": 19, "audit": [7, 10, 19, 21, 23, 30, 34, 38, 40], "audit_polici": 23, "auditd": 31, "auditor": [11, 30, 38, 40], "auf": 32, "aug": [20, 31, 39, 40], "augeasproviders_cor": 14, "augment": 32, "august": 11, "auth": [7, 11, 17, 20, 23, 31, 36, 38, 40], "auth_cmd": 19, "auth_en": 14, "auth_error": 19, "auth_kei": 19, "auth_listen_addr": 14, "auth_service_token": 14, "auth_timeout": 19, "authbind": [38, 40], "authenci": 13, "authent": [2, 3, 7, 8, 9, 13, 16, 17, 18, 20, 23, 30, 31, 32, 36, 37, 38, 39, 40], "authenticationpolici": 8, "authenticationpolicysilo": 8, "authlog": [36, 40], "authmethod": 19, "authnet": 23, "author": [3, 5, 7, 9, 10, 12, 13, 14, 16, 18, 19, 23, 25, 30, 32, 33, 34, 35, 36, 37, 38, 40], "authorit": [12, 21, 32], "authorized_kei": [19, 36, 39, 40], "authorship": 34, "authpriv": 23, "auto": [10, 11, 31, 32, 35, 40], "autocmd": [36, 40], "autoconfig": 1, "autoconfigur": 19, "autocrat": 34, "autodiscov": 19, "autodiscoveri": 19, "autogener": 31, "autoipd": 19, "autologon": [20, 37, 40], "autom": [5, 9, 10, 14, 18, 19, 20, 21, 22, 23, 31, 32, 33, 36, 40], "automat": [5, 9, 11, 12, 16, 17, 18, 19, 20, 30, 32, 33, 34, 36, 37, 40], "automot": [11, 25, 34], "autonom": [11, 18], "autoremov": 31, "autorun": 3, "autos": [20, 23, 37, 40], "autosc": [14, 32], "aux": [23, 31, 37, 38, 40], "auxilari": 19, "auxiliari": [11, 19, 20, 24, 36, 39, 40], "auxilliari": 23, "av": [10, 19, 31], "avahi": [14, 19], "avail": [0, 1, 3, 5, 7, 9, 11, 12, 14, 19, 20, 21, 23, 24, 25, 30, 32, 33, 35, 36, 37, 38, 39, 40], "availabl": 10, "availalb": 16, "avalon": 21, "avatar": 18, "avenu": [5, 11], "averag": [5, 7, 11, 25], "avg": 19, "avi": 3, "avial": 11, "aviat": 11, "avl": 1, "avoid": [0, 5, 9, 10, 11, 12, 14, 18, 19, 25, 31, 32, 33, 34, 36, 37, 40], "avoidself": 20, "avrxh": 31, "awai": [0, 10, 11, 31, 32, 34], "await": [1, 31], "awaken": 31, "awar": [5, 10, 11, 14, 18, 19, 23, 25, 32, 33], "awesom": [11, 20, 21, 30, 31, 35, 38, 40], "awk": [3, 18, 36, 38, 40], "awselasticblockstor": 32, "awslog": 32, "awus036h": 17, "ax": 0, "axfr": [18, 19], "axi": [1, 19], "axo": 31, "axx": 20, "axxd": 20, "azabpag4azwauaecazqb0afmadabyagkabgbnacgajabvahuadabwahuadabzahqacgblageabqauafiazqbhagqakaapackaowagagkazgagacgajabvahuadaagac0azqbxacaajabzahqacgbpag4azwapacaaewakag8adqb0acaapqagaccajwb9ah0adqakacqacwb0ahiazqbhag0algbxahiaaqb0aguakaakag": [36, 40], "azar": 11, "azi": 31, "azur": 30, "azuredisk": 32, "azurefil": 32, "b": [0, 1, 3, 5, 9, 10, 11, 12, 14, 16, 18, 19, 25, 31, 32, 36, 37, 38, 39, 40], "b0": 3, "b010": 8, "b050": 19, "b1": [0, 3, 36, 40], "b2": [0, 3, 19, 38, 40], "b21e": 8, "b2b": 19, "b2d50c5d4c03": 19, "b3": 3, "b317": 19, "b33f": 21, "b374": 31, "b376": 31, "b4": [3, 17], "b45da6b5b0115c5a7fb688f8179a19a749338510dfe90aa5c2cb7ed37f992192": [38, 40], "b488": 20, "b5": 3, "b6": 3, "b6008d": 14, "b672": 20, "b7": 3, "b7b4": 20, "ba": [3, 9, 11, 38, 40], "back": [0, 1, 3, 5, 6, 8, 9, 10, 11, 12, 16, 19, 20, 21, 30, 32, 34, 36, 38, 40, 41], "backdoor": [11, 19], "backend": [5, 9, 20], "backg": 20, "background": [5, 7, 19, 21, 36, 39, 40], "background_cach": 7, "backjob": [37, 40], "backslash": [20, 36, 40], "backspac": [3, 31], "backstabb": 33, "backtick": 31, "backtrac": 0, "backup": [5, 10, 13, 14, 19, 30, 31, 37, 38, 40], "backup4idc": [5, 6], "backupid": 8, "backward": [0, 31, 33, 37, 40], "backwash": 11, "bacnet": 11, "bacteria": 11, "bad": [0, 5, 7, 11, 19, 20, 30, 31, 33, 34, 37, 40], "badfunct": 0, "badg": [16, 33], "badli": 18, "badlogoncount": 8, "badpasswordcount": 20, "badpasswordtim": 8, "badpwdcount": 8, "badstuff": 11, "bag": 11, "bagger": 25, "bai": 11, "bak": [5, 20, 38, 40], "baksmali": 3, "balanc": [0, 11, 12, 32, 34], "ballad": 2, "balloon_ev": [36, 40], "bamboo": 32, "bamtfhzpcnn0zwnoifdlykfkbwluienbmrowgayjkozihvcnaqkbfgtnqgdtywl": 19, "ban": [7, 12], "banana": 3, "band": [5, 11, 16], "bandit": [1, 27], "bandit0": 1, "bandwidth": [10, 11, 16, 30, 32], "bandwith": 12, "bang": [5, 31], "bangladesh": 20, "bank": [10, 11, 16, 25, 30, 31], "banner": [5, 18, 23], "banzai": 14, "bar": [1, 4, 11, 21, 31, 34, 38, 40], "barcod": 3, "bare": [10, 11], "baremet": 11, "bargain": 11, "barreba": 0, "barri": 3, "barrier": 11, "base": [0, 1, 3, 6, 7, 8, 9, 12, 16, 18, 19, 20, 21, 22, 23, 25, 30, 32, 33, 34, 36, 37, 38, 40], "base64": [1, 3, 19, 20, 35, 36, 38], "basebal": 19, "baseband": 16, "baseexcept": 1, "baselin": [8, 11, 23], "baselinemanag": 30, "basement": 11, "basenam": [18, 39, 40], "baseobject": 19, "baseurl": 31, "bash": [0, 19, 32, 34, 37, 38, 39], "bash_4": 31, "bash_histori": [31, 36, 37, 40], "bash_login": 31, "bash_logout": [31, 36, 40], "bash_profil": [7, 31, 36, 37, 40], "bashrc": [7, 31, 36, 40], "basi": [5, 10, 11, 12, 25, 31], "basic": [5, 7, 9, 14, 16, 18, 21, 23, 24, 25, 32, 33, 36, 37, 38, 39, 40, 41], "bat": [20, 21], "batch": [20, 38, 40], "bath": 11, "bathroom": 10, "batteri": [9, 31], "baud": [36, 40], "baudrat": [1, 16], "baytamlumq4wdaydvqqhewvkzwhsaterma8ga1uechmidmlyc3rly2gxhtabbgnv": 19, "bb": 3, "bb1": 32, "bb2f": [35, 40], "bbbb": 0, "bbbbbbbbbbbb": 0, "bbc": 11, "bbcc": 32, "bbra": 12, "bc": [0, 3, 12, 17], "bc0a": 8, "bcc": 10, "bcd": 21, "bcddevic": 3, "bcdusb": 3, "bckp": [5, 6], "bcommit": 31, "bcpu": 10, "bcrypt": 33, "bcu": 10, "bd": 3, "bdat": 19, "bdc": 20, "bdescriptortyp": 3, "bdeviceclass": 3, "bdeviceprotocol": 3, "bdevicesubclass": 3, "bdew": 10, "bdl095xxxx": 19, "bdt": 19, "be_nice_to_peopl": 0, "beach": 11, "beacon": [3, 21], "beaf": 19, "bear": 11, "bearer": 12, "becam": [31, 34], "becaus": [0, 2, 3, 5, 7, 10, 11, 12, 14, 16, 18, 19, 20, 21, 23, 25, 31, 33, 34, 36, 37, 38, 39, 40], "becom": [0, 5, 7, 10, 11, 14, 18, 19, 25, 30, 31, 32, 33, 34, 36, 37], "bed": 11, "bedford": 11, "been": [0, 1, 3, 5, 6, 7, 8, 10, 11, 12, 14, 16, 18, 19, 20, 21, 25, 31, 32, 33, 34, 36, 37, 38, 39, 40, 41], "befor": [0, 1, 3, 5, 7, 10, 11, 12, 18, 19, 20, 21, 23, 25, 31, 32, 33, 34, 35, 36, 37, 38, 40], "before_cach": 32, "before_deploi": 32, "before_instal": 32, "before_script": 32, "began": [11, 34], "begin": [0, 3, 4, 5, 11, 19, 23, 24, 31, 33, 34, 36, 37, 39, 40], "beginn": 34, "behalf": [21, 32, 34], "behav": [10, 11, 31, 32, 39, 40], "behavior": [0, 5, 7, 10, 11, 12, 23, 30, 32, 34, 36, 37, 39, 40], "behaviour": [11, 18, 33, 34], "behemoth": [0, 27], "behemoth2": 0, "behemoth3": 0, "behemoth_pass": 0, "behind": [5, 11, 12, 14, 32, 33, 36, 40], "bein": 12, "being": [0, 3, 5, 8, 10, 11, 12, 14, 16, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "belief": [11, 34], "believ": [5, 11, 18, 20, 25, 33], "bellingham": 11, "bellow": 15, "belong": [5, 7, 10, 14, 20, 21, 31, 37, 39, 40], "below": [0, 1, 2, 3, 4, 5, 6, 7, 8, 10, 11, 12, 13, 15, 16, 17, 18, 19, 20, 21, 23, 24, 25, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "ben": 2, "benchmark": [5, 10, 30], "beneath": 10, "benefici": [31, 32], "beneficiari": 10, "benefit": [5, 11, 12, 25, 31, 33], "benign": 11, "benjamin": 32, "benq": 19, "berkelei": [11, 31, 34], "bern": 34, "bernardo": 21, "besid": [5, 7, 31, 32, 34, 36, 37, 40], "bespok": 5, "best": [0, 2, 7, 8, 14, 16, 18, 19, 23, 25, 30, 31, 32, 33, 34, 35, 38, 40], "beta": [19, 38, 40], "beta1": [19, 31], "beta1_amd64": 31, "better": [0, 3, 5, 10, 11, 17, 18, 19, 21, 25, 30, 31, 32, 33, 34, 36, 37, 39, 40], "between": [0, 1, 4, 5, 7, 9, 11, 12, 14, 16, 18, 19, 20, 21, 23, 25, 30, 32, 33, 34, 36, 37, 38, 40], "bev": 9, "beverag": 11, "bewar": [20, 33], "beyond": [10, 11, 25, 33], "beyondtrust": 30, "bffff7a4": 0, "bg": 31, "bga": 16, "bgnvhq4efgquvgir5fxbkextnlt4jjkuhnuhacgwgz0ga1udiwsbltcbkoaugifj": 19, "bgp": [12, 18, 32], "bgptoolkit": 18, "bgsave": 19, "bgstack15": 14, "bgygxe6gwn": 19, "bh": 20, "bhaav": 25, "bhagwan": 25, "bhusa09": 19, "bi": [10, 11, 33, 36, 40], "bias": 33, "bid": 0, "bidirect": [9, 11], "big": [0, 9, 10, 18, 24, 25, 36, 39, 40], "bigger": [5, 11], "biggest": 11, "bilater": 10, "bill": [9, 10, 12, 33, 34], "bin": [1, 3, 4, 5, 7, 11, 14, 16, 19, 20, 32, 36, 37, 39], "bin_fil": 1, "bin_str": 3, "binari": [1, 3, 4, 5, 6, 7, 10, 11, 18, 19, 21, 32, 38, 39, 41], "binary_fil": 0, "binascii": [1, 38, 40], "bind": [0, 19, 32, 36, 37, 38, 39, 40], "bind_address": [36, 40], "bind_awk": [36, 40], "bind_inetd": [36, 40], "bind_lua": [36, 40], "bind_netcat": [36, 40], "bind_perl": [36, 40], "bind_tcp": 19, "binddn": 19, "bindpasswd": 19, "bindview": 20, "bing": [18, 39, 40], "bing_domain_web": 18, "bingapi": 18, "bingbinarymalwaresearch": 18, "bingdigg": 18, "binpath": [20, 21], "binsh": 0, "binsh_addr": 0, "binsh_offset": 0, "binterfaceclass": 3, "binutil": 1, "binv": 31, "binwalk": 16, "bio": [37, 40], "biomass": 10, "biometr": 11, "biopharmaceut": 11, "bird": 31, "birmingham": 11, "birth": 11, "bishop": 18, "bit": [0, 1, 3, 4, 5, 10, 11, 13, 14, 16, 19, 20, 21, 23, 31, 34, 37, 38, 40], "bitbucket": 32, "bitcoin": 19, "bite": 34, "bitmap": [2, 3, 19], "bitmask": [7, 18], "bitnami": 13, "bitness64": [39, 40], "bitron": 10, "bits_per_pixel": 19, "bitsadmin": [39, 40], "bitshift": 3, "bitvijai": [0, 4, 8, 13, 14, 15, 20, 27, 31, 36, 37, 38, 39, 40], "bitvjai": 20, "bizhub": 19, "bizyisefgv": 20, "bj4czox4bq": 14, "bkgd": 3, "bla42bla": 1, "black": [5, 18, 19, 31, 33], "blackberri": 5, "blackcat": 20, "blackhat": 19, "blackhil": [20, 21], "blacklist": [1, 5, 7], "blackmail": 11, "blackout": 11, "blackwidow": 3, "blah": 0, "blank": [3, 4, 5, 19, 31, 36, 37, 38, 40], "blank_password": 19, "blend": [3, 11, 18], "blender": 31, "blength": 3, "blind": [11, 38, 40], "blindli": [5, 31], "blkio": 32, "blob": [3, 16, 19, 31], "block": [1, 2, 3, 5, 9, 11, 14, 15, 16, 18, 19, 20, 30, 33, 36, 38, 39, 40], "blockautocreatedus": 13, "blockbridg": 32, "blocksiz": 3, "blog": [0, 5, 8, 13, 18, 20, 21, 22, 26, 27, 29, 30, 35, 36, 38], "blogblog": [36, 40], "bloodhound": [38, 40], "blowfish": 19, "blue": [3, 10, 19, 30, 33, 34], "bluetooth": 16, "blur": 11, "bm": 3, "bmaxpacketsize0": 3, "bmp": 1, "bmv": 3, "bne": 3, "bnumconfigur": 3, "bo": [5, 10, 21], "boa": [3, 19], "board": [10, 11, 16, 30], "bob": [20, 30, 37, 40], "bobbi": 20, "bodi": [5, 10, 16, 18, 19, 24, 32, 33, 34, 37, 38, 40], "bodo": 19, "boe140": 19, "boil": 11, "bok": 0, "bold": 3, "boldest": 1, "bolt": 14, "bomb": 5, "bomba": 19, "bon": 12, "bond": [11, 25], "bone": 11, "bonsaivik": 18, "boo": 19, "book": [3, 5, 10, 11, 18, 19, 33, 34], "book1": 31, "bookkeep": 31, "bookmark": [11, 31], "boolean": [3, 7, 11, 31], "boom": [37, 40], "boost": [14, 32], "boost_lib_vers": 19, "boot": [0, 3, 5, 7, 11, 15, 16, 19, 20, 21, 23, 32, 36, 37, 39, 40], "bootabl": [31, 32], "bootkei": 21, "bootload": [16, 31], "bootmgr": 20, "bootproto": 19, "bootsect": 20, "bootstrap": 32, "bootup": 16, "border": [11, 12, 18, 19, 33], "bore": 11, "borrow": 25, "bose": [20, 21, 29], "boss": 34, "both": [0, 3, 5, 7, 9, 10, 11, 12, 14, 16, 18, 19, 20, 21, 23, 24, 25, 31, 32, 33, 34, 39, 40], "botnet": 11, "bottleneck": 10, "bottom": [0, 3, 5, 11, 19, 23, 31], "bought": 25, "bounc": 11, "bound": [5, 9, 11, 32, 36, 40], "boundari": [0, 1, 11, 31, 33], "bounti": 5, "bourn": 7, "box": [1, 10, 11, 18, 19, 20, 21, 30, 35, 36, 37, 41], "bp": 3, "bpagyaiaaoacqacabvahmaiaatagcadaagadaakqagahsadqakacqacwb0ahiaaqbuagcaiaa9acaajablag4aywbvagqaaqbuagcalgbhaguadabtahqacgbpag4azwaoacqabgblahqadwbvahiaawbiahuazgbmaguacgasadaalaakahaabwbzackadqakacqaaqbuahaadqb0ahmadabyaguayqbtac4adwbyagkad": [36, 40], "bpf": 11, "bpl": 11, "bpt": 9, "bqwed": [39, 40], "br": [0, 5, 31, 39, 40], "brace": 31, "bracket": [4, 31, 36, 37, 39, 40], "bradlei": [11, 19], "brain": [10, 31], "branch": [0, 10, 11, 31, 32, 33], "brand": [5, 11, 25], "brave": 3, "brd": [32, 38, 40], "breach": [11, 18], "break": [0, 5, 11, 25, 31, 32, 33, 34, 36, 38, 40], "breakabl": 11, "breakdown": [10, 25], "breaker": [11, 32], "breakneck": 10, "breakout": [25, 39, 40], "breakpoint": [0, 5, 16], "breath": 34, "breeden": 33, "breenmachin": 18, "breez": 34, "brg": 12, "bribe": 11, "brick": 10, "bridg": [11, 12], "brief": [11, 20, 21], "briefli": 34, "bright": 34, "brilliant": [20, 21], "bring": [3, 11, 23, 31, 32, 34], "brisban": 3, "brkint": [36, 40], "broad": [0, 5, 11, 25, 33, 34], "broadband": [11, 12, 19], "broadcast": [10, 11, 18, 31, 32, 38, 40], "broader": 11, "broadli": [11, 23, 33], "broke": 7, "broken": [7, 31, 33], "broker": [25, 32, 33], "brother": 19, "brought": 11, "brower": 11, "brown": 31, "brows": [3, 5, 23, 30, 31, 34, 36, 38, 40], "browser": [6, 10, 18, 20, 21, 24, 31, 33, 36, 38, 40], "browsermatchnocas": [38, 40], "bruce": 33, "brute": [0, 5, 6, 7, 18, 20, 31, 38], "brute_host": 18, "brute_srv": 18, "bruteforc": [3, 5, 20, 36, 40], "brw": 31, "bs0": [36, 40], "bsd": [34, 39, 40], "bse": 25, "bskmacdb62": 20, "bsr": 16, "bss": [4, 12], "bssid": 17, "bstatic": 0, "bstr": [38, 40], "bt": [3, 31], "btle": 16, "btlejuic": 16, "btmp": [36, 40], "btn": 3, "btrf": [31, 32], "btss": 12, "bu": [3, 9, 10, 16, 32], "bucharest": [37, 40], "bucket": [13, 31, 32], "buddi": [38, 40], "budget": 11, "buf": 0, "buffer": [1, 3, 4, 5, 11, 19, 31, 36, 37, 39, 40], "buffer1": 0, "bufsiz": 0, "bug": [0, 5, 7, 11, 19, 30, 31, 32, 34, 36, 37, 38, 39, 40], "bui": [5, 11, 25, 33, 34], "build": [0, 1, 5, 9, 10, 11, 16, 18, 19, 20, 22, 23, 25, 30, 31, 33, 34, 37], "build20": 19, "builder": [31, 32], "buildid": 4, "buildpack": 32, "buildroot": 16, "buildstep": 32, "built": [0, 1, 5, 11, 14, 18, 19, 20, 22, 30, 32, 33, 34, 36], "builtin": [1, 19, 20], "builtin_function_or_method": 1, "builtin_term": [36, 40], "builtinimport": 1, "builtwith": 18, "buis": 23, "bulk": [11, 18], "bulletin": [11, 20, 37, 40], "bullish": 25, "bullsey": 14, "bump": 12, "bunch": [3, 37, 40], "bundl": [10, 11, 31, 32, 33, 38, 40], "bundler": 33, "bunzip2": 31, "burden": 18, "burglar": 11, "burl": 19, "burn": 33, "burp": [5, 38, 39, 40], "burpsuit": [5, 6, 38], "burst": 11, "busbar": 10, "buse": 10, "busi": [3, 9, 10, 16, 24, 25], "businesssecur": 11, "buster": [14, 15], "busybox": [19, 32], "button": [1, 3, 5, 11, 16, 38, 39, 40], "buyer": 11, "bvi": [4, 31], "bvirtd": 31, "bwluienbmrowgayjkozihvcnaqkbfgtnqgdtywlslmnvbyijanqxaruc7sycmcmg": 19, "bye": [0, 4, 12, 39, 40], "bypass": [0, 1, 11, 16, 19, 20, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40], "byte": [1, 3, 4, 5, 10, 11, 19, 20, 31, 32, 36, 37], "byte_offset": [36, 40], "bytearrai": 1, "bytearray_iter": 1, "bytecod": 5, "bytes_iter": 1, "bytes_read": 19, "bytes_written": 19, "bytesin": 19, "bytesout": 19, "bz2": [19, 31], "bzcat": 31, "bzip": [37, 40], "bzip2": [31, 37, 40], "bzless": 31, "bzr": [38, 40], "c": [0, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 16, 18, 19, 20, 30, 32, 33, 34, 36, 37, 38, 39, 40], "c0": [3, 4, 19, 37, 40], "c08afd90": 20, "c0ntex": 0, "c1": [2, 3, 36, 40], "c100": 19, "c1023": [37, 40], "c1130": 19, "c2": [2, 5, 17, 19, 32], "c213": 19, "c264": 10, "c264c": 10, "c2kol36jiiabgaaaiautoqm2": 19, "c3": 32, "c3e": 8, "c4": [32, 38, 40], "c44be02851f0": 19, "c4a850e0fee5af324a57fd2eeb8dbd24": 21, "c5": 32, "c57c": 8, "c5fb": 19, "c6": [4, 17, 32, 38, 40], "c7": [4, 17], "c704": 19, "c70b": 19, "c8": 3, "c93c": 31, "ca": [11, 13, 14, 19, 38, 40], "ca_cert": 13, "caajabjagwaaqblag4adaauaecazqb0afmadabyaguayqbtacgakqanaaoajabuaguadab3ag8acgbragiadqbmagyazqbyacaapqagae4azqb3ac0atwbiagoazqbjahqaiabtahkacwb0aguabqauaeiaeqb0aguawwbdacaajabjagwaaqblag4adaauafiazqbjaguaaqb2aguaqgb1agyazgblahiauwbpahoazqan": [36, 40], "cab": 3, "cabf": 19, "cabin": 3, "cabl": [3, 9, 10, 11, 16, 18], "cach": [5, 12, 14, 18, 20, 21, 30, 31, 36, 38, 40], "cache_timeout": 19, "cachedump": 21, "caches": 19, "cadav": [38, 40], "caesar": 2, "caesum": 3, "caf\u00e9": 11, "cal": 31, "calc": 20, "calcul": [0, 3, 10, 11, 21, 25, 32, 33], "caldav": 18, "calendar": [5, 31, 33], "calico": 32, "calif": 11, "call": [1, 4, 5, 7, 9, 10, 11, 12, 14, 16, 18, 19, 20, 21, 25, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40], "call_gmon_start": 0, "callabl": 1, "callable_iter": 1, "callback": [19, 37, 39, 40], "calle": 0, "caller": [0, 11, 38, 40], "calm": 34, "cam": 31, "came": [11, 20, 31, 32, 36], "camera": [3, 11, 19], "campaign": [11, 18], "can": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 18, 19, 20, 21, 22, 23, 24, 25, 30, 31, 32, 33, 34, 35, 36, 38, 39, 41], "canada": 11, "canal": 11, "canari": 0, "canberra": 19, "cancel": [10, 11, 31], "cancer": 11, "candid": 31, "candl": 25, "candlestick": 25, "cannot": [0, 2, 5, 6, 11, 12, 18, 20, 21, 25, 31, 32, 33, 34, 38, 40], "cannotchangepassword": 8, "canon": 19, "canon_wireless": 19, "canonicalnam": 8, "canopen": 10, "canva": 11, "cap": [1, 18, 20, 33], "cap_syslog": 7, "capabl": [5, 7, 9, 10, 12, 15, 16, 21, 30, 31, 32, 33, 34], "capac": [9, 10, 11, 12, 32], "capacitor": [10, 11], "capact": 12, "capdata": 3, "capit": [11, 25, 33], "capsul": 19, "captcha": 5, "caption": [37, 40], "captiv": 1, "captur": [1, 3, 11, 16, 19, 20, 21, 25, 31, 37, 38, 39, 40, 41], "car": [9, 11], "card": [9, 11, 12, 16, 17, 18, 19, 31, 37, 38, 40], "carddav": 18, "cardhold": 11, "care": [1, 5, 10, 11, 12, 20, 31, 32, 34], "career": [33, 34], "carefulli": [0, 9, 10, 11, 13, 23, 31, 33, 34], "careless": 11, "carelessli": [39, 40], "carer": 12, "carlo": [8, 36, 40], "carnal0wnag": 20, "carpent": 11, "carri": [4, 5, 10, 11, 12, 16, 20, 31, 32, 34], "carriag": [36, 40], "carrier": [11, 16, 30, 32], "carrier_19xrv_chiller_01_er_mv": 19, "carv": 3, "cas_badv": 19, "cas_hit": 19, "cas_miss": 19, "cascad": 12, "case": [0, 1, 3, 4, 5, 7, 9, 10, 11, 12, 13, 14, 15, 16, 18, 19, 21, 23, 30, 33, 34, 35, 36, 37, 38, 39, 40], "cashier": 25, "casio": 19, "cast": [1, 5], "casual": 11, "casualti": 11, "cat": [0, 1, 3, 4, 11, 14, 17, 19, 21, 36, 37, 38, 39, 40], "catalog": [5, 18, 34], "cataraqui": 11, "catastroph": 11, "catch": [1, 7, 17, 33, 36, 37, 40], "catch_warn": 1, "categor": [11, 16, 23, 25, 31], "categori": [16, 18, 19, 23, 32, 33, 34], "categoryinfo": 20, "cater": 32, "caught": 20, "caus": [3, 5, 7, 10, 11, 12, 25, 31, 32, 33, 36, 38, 39, 40], "caution": 19, "cautiou": 11, "cb": 10, "cb29": 19, "cbc": [17, 19, 38, 40], "cbc7": 19, "cbsnew": 11, "cc": [3, 39, 40], "cc0": 34, "ccach": 20, "cccccccc": 0, "ccdclcswrpwpdtlocrsdrcwdwo": 21, "ccla": 34, "cclcswlocrrc": 21, "cclcswrpwpdtlocrrc": 21, "ccmp": 17, "cctv": 19, "cd": [3, 4, 13, 14, 19, 20, 33, 34, 36, 38, 39, 40], "cdc": 11, "cddl": 34, "cde": 33, "cdimag": 31, "cdll": 1, "cdma": [11, 12], "cdniov": [36, 40], "cdp": 23, "cdrom": [31, 39, 40], "cdsl": 25, "ce": 11, "ceas": [8, 11], "ceaser": 2, "ceil": [0, 2, 11], "celerra": 19, "cell": [1, 5, 11, 12, 16, 19, 32], "cellphon": 11, "censi": 18, "censu": 18, "cent": 14, "center": [8, 14, 18, 20, 30, 31, 32, 33, 38, 40], "cento": [19, 30, 31], "centr": 34, "central": [9, 10, 11, 12, 14, 19, 24, 25, 30, 31, 32, 34], "centralis": 30, "centric": [11, 32], "centuri": 11, "ceo": 11, "ceph_disk": 14, "ceph_server1": 14, "cephdisk2": 14, "cephf": 32, "cephserv": 14, "cephserver1": 14, "cephserver2": 14, "cephserver3": 14, "cerpack": 16, "cert": [10, 11, 13, 30, 33, 35, 40], "cert1": 14, "cert2": 14, "certain": [0, 3, 5, 9, 10, 11, 14, 16, 18, 21, 25, 30, 31, 32, 33, 34, 36, 38, 40], "certainli": [0, 5, 11, 31, 33], "certainti": 19, "certif": [8, 9, 10, 11, 13, 15, 16, 18, 20, 32, 33, 38, 39], "certifi": [11, 34], "certi\ufb01c": 5, "certmanag": [13, 14], "certmong": 14, "certnam": [13, 14], "certutil": [36, 39, 40], "ces1010": 19, "cess": 31, "cet": 18, "cewl": [36, 38, 40], "cf": [3, 4, 10, 19, 37, 38, 40], "cf1": 10, "cf2": 10, "cfar": 32, "cfcr": 32, "cfdoc": 5, "cfe": 10, "cfg": [15, 31], "cfid": 5, "cfide": 5, "cfm": [5, 38, 40], "cfo": 30, "cftoken": 5, "cfy": 4, "cgi": [5, 19, 31, 36], "cgidir": 5, "cgroup": 31, "cgroup_en": 15, "cgroup_memori": 15, "cgroupscan": 15, "ch": [38, 40], "chad": 8, "chage": 31, "chain": [1, 3, 10, 11, 16, 19, 20, 24, 30, 33, 34, 37, 38, 40], "chain_command": 20, "chain_nam": 31, "chairman": 25, "chaiso": 19, "challeng": [0, 2, 4, 5, 6, 10, 16, 18, 19, 21, 30, 32, 33, 34, 35, 37, 38, 40], "chamber": 11, "chanc": [0, 5, 11, 17, 19, 31, 33, 39, 40], "chang": [0, 1, 3, 4, 5, 6, 7, 8, 10, 13, 14, 16, 17, 18, 19, 21, 23, 25, 30, 32, 33, 34, 36, 37, 38, 39, 40], "changeabl": 33, "changelog": [14, 33, 38], "changer": [10, 11], "changeserviceconfig": 21, "changeset": 31, "channel": [3, 5, 9, 10, 12, 16, 17, 19, 30, 33, 36, 40], "chapter": [5, 31], "char": [1, 4, 5, 8, 16, 20, 36, 40], "char_str": 3, "charact": [0, 1, 2, 3, 4, 5, 6, 7, 8, 10, 11, 20, 21, 24, 34, 36, 37, 38, 39, 40], "characterist": [9, 11, 14, 16, 31, 32, 33, 34], "charactertist": 11, "charg": [10, 11, 12, 32, 34], "charger": 9, "charm": 0, "charset": [1, 5, 6, 19, 36, 40], "chart": [10, 11, 13, 14, 32], "chat": 34, "chatbot": 32, "chatter": 11, "che": 25, "cheap": 25, "cheaper": [5, 16], "cheapest": 16, "cheat": [3, 5, 33, 36, 39, 40], "cheatsheet": [20, 21, 33], "check": [1, 2, 3, 4, 5, 6, 7, 10, 11, 12, 13, 16, 17, 18, 20, 21, 25, 30, 32, 34, 35, 36, 38, 39], "checkbp": 23, "checkcfg": 23, "checkdotfil": 23, "checker": [19, 23, 30], "checkfil": 23, "checkftpus": 23, "checkhostsfil": 23, "checkinetd": 23, "checkinittab": 23, "checkipv4": 23, "checklimit": 23, "checklist": [11, 33, 34], "checklog": 23, "checkout": [18, 31, 38, 40], "checkpoint": [10, 11, 21, 23, 25, 37, 40], "checkpoint_hostnam": 19, "checkrestart": 7, "checksec": 0, "checksecur": 31, "checksum": [3, 5, 31, 38, 40], "cheer": 20, "chef": 30, "chemic": 25, "chew": 11, "chfn": 31, "chgrp": 31, "chi": 16, "chicago": 11, "child": [0, 1, 4, 31], "childitem": 37, "children": [0, 20], "chip": [11, 16, 31], "chippc": 19, "chipset": 19, "chkroot": [37, 40], "chkrootkit": 31, "chlorid": 11, "chmod": [0, 7, 19, 23, 32, 36, 38, 39], "choic": [0, 10, 11, 24, 25, 31, 32, 34, 36, 37, 40], "choos": [0, 5, 7, 10, 11, 18, 21, 30, 31, 32, 33, 39, 40], "chosen": [5, 6, 20, 31, 34], "chown": [14, 19, 31, 38, 39], "chr": [1, 2, 5], "chri": [18, 19], "chrm": 3, "chrome": [3, 18, 20, 31], "chromedump": 20, "chromesnifferplu": 18, "chronolog": 11, "chsh": [31, 36, 40], "chunk": [5, 31, 36, 40], "ci": [11, 19, 30, 33, 34], "cid": 10, "cidr": [14, 18, 20, 35, 40], "cif": [14, 20, 21, 30, 31], "cifsiostat": 7, "cii": 33, "cilium": 32, "ciminst": [37, 40], "cimv2": 20, "cindent": [36, 40], "cinepaint": 31, "cio": 11, "cip": [10, 11], "cipher": [12, 17, 38, 40], "ciphersuit": 19, "ciphertext": [2, 33, 38, 40], "ciphertext3": [38, 40], "circl": [2, 33], "circleci": 32, "circuit": [0, 10, 11, 12, 32, 33], "circuitri": 16, "circular": 11, "circumst": [5, 11, 31, 33, 38, 39, 40], "circumv": [11, 31], "cisa": 11, "cisco": [11, 19, 30, 33], "cisvc": 20, "citadel": 32, "cite": 11, "citi": [8, 10, 11, 18, 19], "citizen": [11, 14, 33, 34], "citrix": [18, 19], "citrix_ns_id": [36, 40], "citynam": 19, "civilian": 11, "ck": 21, "cl": [4, 36, 40], "cla": 11, "claim": [11, 31, 33], "clair": 11, "clarifi": [11, 31, 34], "clash": [5, 31], "class": [0, 1, 3, 5, 7, 11, 13, 14, 15, 18, 19, 25, 31, 32, 34, 38, 39, 40], "classes_dex2jar": 3, "classic": [5, 10, 12, 19], "classif": [11, 12, 34], "classifi": [7, 11, 12, 19, 25, 34], "classmethod": 1, "classmethod_descriptor": 1, "classtyp": 11, "claus": [5, 19, 31, 34], "claw": 31, "clean": [0, 1, 14, 18, 20, 23, 30, 31, 32, 37, 40], "cleaner": [31, 34], "cleanli": [0, 31], "cleanup": [0, 3, 37, 40], "clear": [0, 10, 11, 14, 16, 21, 27, 30, 31, 33, 34, 36, 38, 40], "clearanc": [39, 40], "clearinghous": [37, 40], "clearli": [11, 31, 33, 34], "cleartext": [3, 5, 19, 20, 33], "clerali": 23, "cleveland": 11, "cli": [14, 18, 19, 20, 23, 32], "click": [1, 3, 5, 6, 10, 11, 14, 16, 22, 23, 31], "click_coordin": 3, "client": [1, 3, 6, 8, 9, 10, 13, 17, 18, 19, 20, 21, 30, 32, 33, 34, 36, 39], "clientserv": [36, 40], "clientsid": 5, "clipboard": [36, 38, 40], "clipsrv": 20, "clocal": [36, 40], "clock": [10, 12, 16], "clockwis": [11, 31], "clojur": 32, "clone": [12, 14, 18, 31, 32, 38, 40], "cloneabl": 20, "close": [0, 1, 5, 6, 9, 10, 11, 16, 19, 20, 25, 31, 32, 36, 37, 38, 39, 40], "closer": [11, 37, 40], "closur": 11, "cloth": 25, "cloud": [10, 11, 15, 16, 19, 30, 41], "cloudcor": 13, "cloudimg": 31, "cloudstack": [30, 32], "clsid": 20, "club": 31, "clue": [5, 11, 35, 40], "clump": 11, "cluster": [3, 5, 13, 19, 32], "cluster_rol": 14, "cm": [18, 32, 36, 40], "cm750a": 19, "cmd": [0, 3, 5, 11, 14, 19, 20, 21, 32, 36, 37, 38, 39, 40], "cmd_flush": 19, "cmd_get": 19, "cmd_set": 19, "cmd_touch": 19, "cmdexec": 19, "cmdkei": [37, 40], "cmdlet": [8, 20, 36, 38, 40], "cmdline": [15, 31, 36, 40], "cmdline_compl": [36, 40], "cmdline_hist": [36, 40], "cmdline_info": [36, 40], "cmds_max": 19, "cmdscan": 3, "cme": 20, "cmf": 11, "cmin": 31, "cmo": 31, "cmov": 0, "cmp": 31, "cmpo": 19, "cmru": 18, "cms_name": [36, 40], "cmspar": [36, 40], "cmspreferredcultur": [36, 40], "cn": [8, 12, 14, 19, 20], "cn12e3937y05hx": 19, "cn314b3j9905sn": 19, "cn5293m07x064n": 19, "cna": 33, "cname": 19, "cni": 32, "cni_provid": 14, "cnm": 32, "cntrl": [5, 6], "co": [11, 19, 31], "coa": 10, "coal": 11, "coast": 11, "cobalt": 21, "code": [0, 4, 9, 10, 11, 12, 14, 16, 18, 21, 23, 24, 31, 32, 33, 35, 36, 37, 41], "code_snippet": 0, "codec": 1, "codedeploi": 32, "codeg": [39, 40], "codeown": 14, "codepag": [8, 20], "codesearchdigg": 18, "codeship": 32, "codesi": 11, "codesniff": 30, "codifi": 34, "coffe": [11, 36, 40], "coil": 11, "coiner": 33, "cold": [5, 10], "collabor": [11, 18, 22, 27, 30, 32], "collaps": 33, "collat": [5, 19, 37, 40], "collater": 11, "colleagu": [37, 40], "collect": [1, 5, 7, 10, 16, 18, 19, 30, 32, 33, 34, 38, 40], "collector": [11, 19, 30, 32], "colleg": 33, "collis": [21, 32, 33], "colon": [5, 6, 31, 34, 36, 40], "color": [3, 19, 31, 33, 34, 36, 39, 40], "color_mask_alpha": 3, "color_mask_blu": 3, "color_mask_given": 3, "color_mask_green": 3, "color_mask_r": 3, "colormap": 19, "colour": [10, 33], "column": [5, 11, 19, 23, 31, 36, 37, 38, 40], "column_nam": 5, "columntofind": 5, "com": [1, 3, 5, 7, 8, 11, 14, 16, 19, 20, 21, 24, 25, 27, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "combat": 11, "combin": [0, 1, 2, 3, 5, 6, 10, 11, 12, 18, 19, 21, 23, 30, 31, 32, 33, 34, 36, 38, 40], "combinations_with_replac": 1, "combo": 7, "combust": 9, "come": [0, 1, 5, 7, 8, 10, 11, 16, 19, 20, 21, 22, 23, 30, 31, 32, 33, 34, 37, 38, 40], "coment": [39, 40], "comma": [1, 8, 18, 20, 31], "command": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14, 15, 18, 21, 23, 30, 32, 33, 34, 36], "commandlin": [8, 18, 31], "commandnam": 20, "comment": [3, 4, 6, 8, 10, 11, 20, 31, 32, 34, 36, 37, 38, 39, 40], "commerc": 19, "commerci": [9, 10, 23, 34], "commis": 12, "commiss": [10, 11, 16], "commit": [10, 11, 25, 32, 33, 34], "common": [0, 3, 4, 6, 7, 10, 14, 16, 18, 20, 21, 23, 24, 25, 30, 31, 32, 34, 35, 36, 37, 38, 40], "commonli": [0, 5, 10, 11, 16, 19, 31, 32, 33, 34], "commonnam": [19, 35, 40], "commonparamet": 8, "commun": [2, 3, 5, 9, 12, 14, 18, 20, 21, 23, 30, 31, 32, 33, 35, 36, 38, 40, 41], "communtit": 19, "comp": 3, "compact": [10, 11], "compani": [5, 9, 10, 11, 18, 19, 21, 24, 25, 32, 33, 36, 40], "compar": [1, 3, 5, 9, 10, 16, 18, 19, 20, 23, 25, 30, 33, 37, 39, 40], "comparis": 3, "comparison": [16, 20, 25, 33, 34, 39, 40], "compart": 10, "compat": [0, 1, 3, 7, 9, 11, 19, 31, 32, 34, 36, 37, 40], "compens": [10, 11, 34], "compet": [5, 34], "competit": [11, 25, 34], "competito": 12, "competitor": 11, "compil": [0, 4, 5, 10, 16, 19, 20, 32, 34, 36, 37, 38, 39, 40], "compilerflag": 19, "complain": [31, 34], "complaint": 25, "complement": [0, 3, 31, 32], "complementari": [11, 34], "complet": [0, 1, 5, 6, 7, 10, 11, 12, 16, 18, 19, 20, 21, 24, 25, 31, 32, 33, 34, 36, 39, 40], "complex": [1, 5, 7, 8, 9, 10, 11, 12, 16, 21, 23, 30, 32, 33, 34], "compli": [11, 25, 31, 33, 34], "complianc": [10, 23, 32], "compliant": [10, 11, 20, 30, 32], "complic": [7, 31, 32, 33, 34], "complimentari": 11, "compon": [5, 9, 10, 12, 19, 20, 24, 31, 33, 34], "compos": [3, 10, 11, 18, 31, 32], "composit": [0, 10, 34], "compound": [11, 32], "compoundidentitysupport": 8, "comprehens": [9, 10, 11, 23, 31], "compress": [1, 3, 5, 9, 12, 16, 19, 20, 23, 36, 37, 38, 40], "compression_algorithm": 19, "compressor": [11, 19], "compressworkspac": 19, "compris": [10, 11, 23, 33], "compromis": [5, 10, 11, 19, 20, 21, 30, 31, 33, 36, 37, 40], "compulsori": 31, "comput": [0, 2, 4, 5, 10, 12, 18, 19, 21, 23, 27, 30, 31, 34, 36, 38, 40, 41], "computer1": 8, "computernam": [8, 20, 36, 38, 40], "computervers": 8, "comspec": 20, "con": [5, 6], "concat": 5, "concaten": [5, 6, 31], "conceal": [36, 40], "conceiv": 34, "concentr": [10, 11], "concept": [3, 10, 14, 21, 30, 38, 40, 41], "conceptu": 12, "concern": [7, 11, 31, 32, 33, 39, 40], "conclud": [11, 37, 40], "conclus": 5, "concours": 32, "concret": 10, "concurr": [20, 33], "condens": 10, "condit": [5, 9, 10, 11, 14, 16, 32, 33, 36, 37, 40], "conditionpathexist": 31, "conduct": [9, 10, 11, 12, 19, 34], "conductor": [10, 11], "conduit": 11, "conf": [0, 7, 11, 14, 18, 19, 21, 23, 32, 36, 37, 38, 40], "conf_fil": 14, "confdb": 11, "confer": [11, 12, 18], "conffil": 31, "confid": [11, 25, 32, 33, 34], "confidenti": [5, 10, 11, 19, 21, 24, 33], "config": [1, 13, 14, 15, 19, 20, 21, 23, 32, 36, 37, 38], "configcontext": 19, "configfrom": 32, "configmap": 32, "configonli": 32, "configur": [0, 3, 5, 9, 12, 13, 15, 16, 18, 20, 30, 33, 38, 39, 41], "configurationnamingcontext": 19, "configurecertmanag": 13, "confin": [11, 32], "confirm": [0, 5, 10, 11, 16, 19, 20, 31], "conflict": [31, 32, 34], "conform": [5, 31, 34], "confus": [0, 11, 33], "confusingli": 33, "congest": [11, 16], "congratul": 0, "conjectur": 5, "conjunct": [10, 11, 31, 32, 34, 37, 40], "conn": [1, 19], "conn_yield": 19, "connect": [0, 1, 3, 5, 6, 8, 9, 10, 12, 13, 14, 15, 17, 18, 21, 23, 24, 30, 31, 32, 33, 35, 36, 38, 39, 40], "connect_data": 19, "connection_structur": 19, "connectivitii": 11, "connector": [9, 16, 19, 20], "connscan": 3, "conpot": 11, "consecut": [3, 20, 31], "consensu": [32, 33], "consequ": [5, 9, 33, 34], "conserv": 11, "consid": [0, 4, 5, 7, 9, 10, 11, 12, 16, 19, 21, 25, 31, 32, 33, 36, 37, 38, 39, 40], "consider": [18, 31, 32], "consist": [0, 3, 4, 5, 7, 10, 11, 12, 14, 16, 18, 19, 23, 25, 30, 31, 32, 34, 36, 40], "consol": [3, 5, 6, 7, 10, 11, 15, 19, 20, 23, 31, 32], "consolid": [11, 18], "const": 0, "constant": [2, 4, 16, 31], "constantli": [10, 11, 31], "constitu": 34, "constitut": [10, 11], "constrain": 11, "constraint": [3, 5, 9, 10], "construct": [2, 3, 11, 31, 32, 33, 34, 39, 40], "consult": [5, 10, 11, 18, 19, 30, 32, 38, 40], "consum": [5, 9, 10, 11, 31, 32, 33, 34], "consumeprocessoutput": 19, "consumpt": [9, 11, 32], "contact": [5, 9, 11, 12, 19, 21, 30, 33], "contact_form": 5, "contactless": 9, "contain": [0, 1, 3, 4, 5, 6, 7, 8, 10, 12, 13, 14, 16, 18, 19, 20, 21, 23, 30, 31, 33, 34, 36, 38, 39, 40], "container": 34, "container_runtim": 14, "containerd": 14, "contamin": 11, "contemporari": 11, "content": [0, 1, 3, 4, 10, 11, 14, 16, 18, 19, 20, 21, 23, 27, 29, 31, 32, 34, 36, 37, 38], "context": [0, 1, 5, 11, 12, 18, 20, 31, 34, 37, 39, 40], "contextdecor": 1, "contextlib": 1, "contextu": 31, "contextvar": 1, "contigu": 32, "contin": 32, "conting": 10, "continu": [0, 3, 5, 10, 14, 16, 31, 32, 33, 34, 37, 38, 40], "contitel": 11, "contiv": 32, "contol": 10, "contorl": 23, "contract": [10, 11, 33, 34], "contractor": 11, "contractu": [11, 34], "contrast": [0, 9, 11, 31, 32, 33], "contravent": 33, "contrib": 31, "contribut": [10, 11, 14, 29, 30, 31, 32, 41], "contributor": [28, 32], "control": [3, 6, 9, 12, 13, 16, 18, 19, 21, 23, 25, 33, 36, 37, 38, 41], "controllogix": [11, 19], "controlnet": 11, "controversi": 33, "convei": 9, "conveni": [3, 9, 11, 31, 32, 33, 34], "convent": [2, 8, 10, 11, 20, 31, 33, 34], "convention": 0, "convers": [3, 5, 9, 11, 30, 31, 39, 40], "convert": [0, 1, 2, 3, 4, 5, 10, 11, 14, 18, 20, 21, 25, 27, 30, 32, 36, 38, 39, 40], "convertto": [8, 36, 40], "conveyor": 11, "convinc": 11, "convoi": 19, "con\ufb01": 5, "con\ufb01gur": 5, "con\ufb01rm": 5, "cook": 11, "cookbook": 32, "cooki": [6, 36, 38, 39, 40], "cool": [11, 21, 27, 34, 37, 40], "cooper": [9, 33], "coordin": [2, 9, 10, 11, 16, 32, 33], "cope": 11, "copi": [0, 1, 3, 5, 8, 11, 14, 16, 19, 20, 21, 32, 33, 34, 36, 37], "copier": [11, 19], "copyright": [5, 11, 19, 20, 21, 31, 37, 39, 40], "cordless": 11, "core": [0, 5, 7, 8, 9, 10, 12, 19, 20, 21, 22, 25, 31, 33, 34, 37, 38, 39, 40], "core_uses_pid": 7, "coredump": 21, "coredumpscanwin32": 21, "coresec": 3, "coreutil": 34, "cori": 8, "corner": [12, 19], "cornerston": 11, "coroutin": 1, "coroutine_wrapp": 1, "corp": [11, 19], "corpor": [5, 19, 20, 21, 25, 30, 34, 36, 37, 40], "corpu": 25, "correct": [0, 3, 5, 7, 10, 11, 12, 14, 16, 18, 19, 20, 21, 23, 27, 30, 31, 33, 34, 36, 38, 40], "correctli": [0, 3, 5, 11, 14, 16, 18, 19, 21, 31, 33, 34, 37, 40], "correl": [10, 11, 18, 30, 31, 34], "correspond": [0, 3, 5, 9, 10, 11, 12, 16, 18, 19, 20, 21, 23, 31, 32, 33], "correspondingli": 31, "corrupt": [3, 11, 16, 31, 38, 39, 40], "cosem": 10, "cost": [0, 10, 11, 12, 18, 25, 32, 33, 34], "costli": 33, "cot": 10, "cotp": 11, "couchdb": [37, 40], "could": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 16, 17, 18, 19, 20, 21, 23, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "couldn": 14, "counsel": 11, "count": [0, 1, 3, 5, 10, 11, 14, 16, 31, 33, 39, 40], "counter": [0, 10, 11, 17, 33], "counterpart": 11, "counterproduct": 5, "counti": 11, "countri": [8, 10, 11, 18, 30, 33, 34, 36, 40], "countrycod": [8, 20], "countrynam": [19, 35, 40], "coupl": [10, 11, 32], "coupler": 10, "cours": [0, 5, 21, 31, 32, 33, 34], "court": 12, "courthous": 11, "cover": [8, 9, 10, 11, 17, 18, 21, 23, 24, 30, 31, 32, 34, 38, 40, 41], "coverag": [9, 11, 12, 17], "cow": 3, "cox": 8, "coyot": 19, "cp": [9, 14, 36, 38, 39, 40], "cpe": [12, 30], "cpi": 32, "cpickl": [39, 40], "cpio": 31, "cpo": 9, "cposix": [39, 40], "cpp": [0, 31], "cpqsprt": 20, "cpqsystem": 20, "cprng": 33, "cpu": [0, 3, 5, 10, 11, 19, 31, 32, 36, 40], "cpuacct": 32, "cpuinfo": 31, "cpuset": 32, "cqure": 19, "cr": [7, 19, 21], "cr0": [36, 40], "crack": [3, 5, 6, 11, 18, 19, 20, 31], "crackabl": [36, 40], "cracker": 19, "crackit": 19, "crackmapexec": [5, 6, 38, 40], "crackme0x01": 0, "crackstat": [38, 40], "craft": [1, 5, 11, 33, 38, 40], "craig": 16, "cram": 19, "cramf": 16, "crash": [3, 11, 33], "crawl": [18, 36, 40], "crc": [3, 11, 16, 19], "cread": [36, 40], "creat": [0, 1, 2, 3, 4, 5, 6, 7, 9, 10, 11, 13, 16, 18, 19, 22, 23, 30, 34, 35, 36, 37, 38], "create_change_set": 19, "createfromdirectori": [38, 40], "createinst": 20, "createobject": [39, 40], "createtimestamp": 8, "creation": [3, 7, 9, 11, 21, 30, 31, 32, 33, 34, 36, 39], "creationtim": 8, "creativ": [11, 34], "creator": [19, 20, 31, 33, 34], "creatorsid": 8, "cred": [3, 10, 19, 20, 21], "cred_f": 21, "credenti": [5, 6, 8, 11, 14, 16, 18, 19, 20, 23, 31, 33, 36, 38], "credentialcach": 21, "credibl": 11, "credit": [9, 11, 25, 33, 34], "credman": 21, "creek": 11, "crestron": 19, "crf": 4, "cri_containerd": 14, "crime": [31, 33], "crimin": 11, "crit": 30, "criteria": [11, 31], "criterion": 31, "critic": [3, 5, 7, 10, 16, 19, 31, 33, 34], "criticalinfrastructur": 11, "crm": [10, 24], "croc": [38, 40], "cron": [23, 38], "cronjob": [37, 40], "crontab": [11, 31, 38], "cross": [5, 7, 9, 11, 17, 20, 21, 30, 32, 38, 40], "crossmnt": 19, "crossroad": 10, "crowd": 11, "crtsct": [36, 40], "crucial": [9, 11, 34], "crude": 11, "cruz": 18, "crw": 31, "crypt": [37, 40], "cryptic": 5, "crypto": [33, 36], "cryptograph": [2, 19, 21, 31], "cryptographi": [11, 41], "cryptographicalgorithm": 33, "cryptolog": 21, "cryptool": 2, "cryptop": 27, "cryptsetup": [38, 40], "cryptv": [36, 40], "crzebhh5rkziebsp": 19, "cs216": 4, "cs8": [36, 40], "csc": [9, 10], "cscope": [36, 40], "csh": [7, 31], "cshrc": 7, "csirt": 33, "csm": 9, "csname": [37, 40], "cso": 9, "csprg": 33, "csr": [38, 40], "csrf": [5, 38, 40], "css": [10, 30], "cst": 19, "cstopb": [36, 40], "csv": [17, 18, 19, 20, 23], "ct": [10, 38, 40], "cteonnt": [36, 40], "ctf": [0, 1, 2, 3, 4, 18, 19, 36, 37, 39], "ctf101": 0, "cti": 30, "ctime": 31, "ctl": [38, 40], "ctr": 19, "ctrl": [3, 20, 31, 36, 38, 40], "cudahashcat": [38, 40], "culmin": [38, 40], "cultur": [33, 34], "cumul": 20, "cupsd": 31, "curat": 34, "cure": 11, "curios": 11, "curl": [14, 18, 19, 33, 39], "curr_connect": 19, "curr_item": 19, "current": [0, 1, 3, 5, 7, 8, 10, 12, 13, 14, 15, 18, 19, 21, 23, 25, 27, 32, 33, 34, 36, 37, 38, 39, 40, 41], "currentcontrolset": [8, 11, 37, 40], "currentlin": 31, "currenttim": 19, "currentvers": [3, 20, 23, 37, 40], "cursor": [11, 19], "cursorbind": [36, 40], "cursorshap": [36, 40], "curtain": 11, "curv": 33, "custodia": 14, "custodian": 32, "custom": [5, 7, 9, 11, 12, 13, 16, 18, 19, 20, 21, 22, 24, 25, 30, 31, 32, 33, 34, 36, 37, 39], "custom_login": 14, "customiz": [10, 11, 18], "custompluginnam": [36, 40], "cut": [7, 10, 12, 17, 19, 21, 22], "cutoff": 3, "cve": [11, 19, 30, 38, 40], "cvedetail": 19, "cvenam": 19, "cvss": 11, "cvvf": [37, 40], "cvzn": 20, "cw": [3, 31], "cwd": [21, 36, 40], "cwe": 33, "cx": 4, "cyber": [0, 10, 11, 27, 30, 31, 33, 38], "cyberac": 27, "cyberark": 10, "cyberattack": 11, "cybercrimin": 11, "cybersecur": [33, 41], "cybox": 30, "cycl": [1, 5, 10, 11, 16, 20, 30, 31, 32], "cyclic": [0, 3, 10, 11, 37, 40], "cyclonedx": 33, "cylic": 0, "cylind": 33, "cymdist": 10, "cyme": 10, "cymru": [18, 23], "cynsi": 11, "cyphunk": 16, "d": [0, 1, 2, 3, 4, 5, 7, 8, 9, 10, 12, 15, 17, 18, 19, 20, 21, 23, 32, 36, 38, 39], "d0": 3, "d1": [3, 19, 36, 40], "d15e59e2c0af": 19, "d2": 3, "d21b": 31, "d295b095": 19, "d2b0d4f71517": 32, "d2w": 5, "d6zzzdb4538zzz339acd585fa9zzzzzz": 19, "d8": 3, "d82759cc": 20, "d837": 0, "d8bf": 0, "d94a": 31, "d959c681": 20, "d_debug": 0, "d_r_resolv": 0, "da": [11, 31], "da_passw0rd": [38, 40], "dad": 19, "daddi": 19, "dae": 31, "daemon": [14, 19, 31, 32, 36, 39, 40], "daemonset": 32, "dag": 32, "dai": [3, 10, 11, 19, 20, 21, 23, 25, 31, 32, 33, 36, 38, 40], "daili": [11, 20, 25, 38, 40], "daisi": 11, "dalvik": 3, "damag": [11, 31, 33, 34], "dan": [0, 21], "danger": [5, 11, 19, 23, 25, 31, 33, 36, 37, 39, 40], "dangl": 11, "danni": 19, "dant": 2, "dar": 19, "dark": 11, "darkc0d": 21, "dash": [0, 5, 31, 33, 37, 40], "dashboard": [10, 13, 14, 23, 36, 40], "dast": 33, "dat": 21, "data": [3, 4, 6, 7, 9, 12, 14, 18, 20, 23, 24, 25, 30, 35, 36, 37], "data1": 3, "data_block": 3, "data_start": 0, "databas": [7, 10, 12, 13, 14, 18, 20, 22, 23, 24, 32, 33, 36, 37, 38, 39, 40], "database_nam": 5, "databasenam": [5, 19], "datacent": [32, 37, 40], "datadigest": 19, "datadog": 32, "datagram": [11, 12, 19], "datalicens": 34, "dataoffset": 3, "dataregist": 10, "dataset": 33, "datasheet": [16, 23], "datasheets360": 16, "datasouc": 20, "datasourc": [15, 20], "datatyp": 5, "datavolum": 19, "date": [3, 5, 10, 11, 14, 20, 21, 25, 31, 33, 34, 36, 37, 39, 40], "datei": 20, "datestamp": 31, "datre": 14, "dav": [36, 38, 40], "dave": [36, 40], "david": [2, 19, 34], "davtest": [38, 40], "davtest_e3u9isnnswyes0": [38, 40], "davtestdir_e3u9isnnswyes0": [38, 40], "db": [0, 4, 5, 11, 18, 19, 31, 37, 40], "db_import": 19, "db_name": [5, 38, 40], "db_owner": 19, "dba": [11, 19], "dbatch": 31, "dbeaver": [19, 36, 40], "dbfilenam": 19, "dbms_cdc_ipublish": 19, "dbms_cdc_publish": 19, "dbms_cdc_publish2": 19, "dbms_cdc_publish3": 19, "dbms_cdc_subscrib": 19, "dbms_cdc_subscribe_activate_subscript": 19, "dbms_lock": 5, "dbms_metadata": 19, "dbms_metadata_open": 19, "dbms_pipe": 5, "dbms_schedul": 19, "dbname": 19, "dbo": 5, "dbowner": 19, "dbserver": 20, "dc": [0, 8, 9, 19, 21, 38, 40], "dc01": 19, "dc1": 20, "dc1c": 20, "dc49": 19, "dc53a3bb0ae739a5164c89db56bbb12f": 3, "dc74fb1cdd53": 19, "dcc2": 21, "dccp": 3, "dcdiag": 20, "dcf": 31, "dclist": 20, "dcname": 20, "dco": 34, "dcom": [10, 11, 38, 40], "dcp": 11, "dcpromo": 20, "dcr": 20, "dcsync": 21, "dd": [3, 4, 14, 32, 39, 40], "dd996900": 19, "ddb": 21, "ddccbbaa": 1, "ddd": 1, "dddd": 0, "ddee": 32, "ddo": [7, 11, 31], "ddopdfmark": 31, "dds2": 3, "de": [5, 17, 18, 19, 25, 31, 32, 37, 38, 39, 40], "dea6": 32, "deactiva": 16, "dead": 19, "dead_parrot": 1, "deadbeef": 19, "deadli": 11, "deadlin": 15, "deal": [0, 5, 11, 21, 31, 35, 40], "death": [5, 31], "deauth": [38, 40], "deauthent": [3, 38, 40], "deb": [3, 7, 14, 15, 31, 38, 40], "deb7u5": 31, "deb7u6": 31, "debconf": [31, 37, 40], "debget": 7, "debian": [0, 1, 13, 30, 32, 34, 36, 37, 38, 39, 40], "debian_chroot": 31, "debilit": 11, "debit": 9, "debmani": 7, "debootstrap": 32, "debscan": 7, "debsecan": 7, "debt": 25, "debug": [0, 3, 5, 7, 11, 15, 18, 19, 20, 34, 36, 37, 38, 39, 40], "debugf": [31, 39, 40], "debugg": [5, 11, 16, 32], "debuglevel": 20, "debut": 19, "dec": [5, 31, 37, 40], "decad": [10, 21], "decapsul": 32, "deceiv": 11, "decent": [7, 18, 33], "decentr": 10, "dechand": 33, "decid": [5, 7, 10, 11, 12, 20, 30, 31, 32, 33, 34, 41], "decim": [0, 1, 3, 5, 31, 38, 40], "deciph": 5, "decis": [10, 11, 12, 22, 23, 25, 31, 32, 34], "decisionmak": [9, 10], "declar": [4, 5, 10, 11, 19, 21, 30, 31, 32, 37, 40], "declin": 11, "decod": [1, 2, 3, 5, 16, 19, 20, 36, 38, 39, 40], "decode_ps_stego": 3, "decoded_phi": 2, "decodestr": [1, 38, 40], "decoi": 11, "decompil": [3, 38, 40], "decompress": [3, 31, 38, 40], "deconfigur": 31, "deconstruct": 5, "decontamin": 11, "decor": 31, "decoupl": 32, "decr_hit": 19, "decr_miss": 19, "decreas": [11, 31], "decrement": [0, 5], "decrypt": [2, 5, 16, 19, 20, 21, 31, 38, 40], "decryptxor": 16, "dedic": [10, 12, 14, 30, 31, 32, 34], "deduc": 5, "deduct": 25, "deep": [12, 23, 30, 34, 37, 38, 40], "deeper": [11, 25], "deepest": 5, "deepli": 32, "def": [1, 2, 7, 19, 20, 37, 38, 39, 40], "def506bd2176265e006f2db3d7b4e9db11c459c1": [39, 40], "defac": [5, 30], "defacto": 11, "default": [0, 1, 3, 5, 6, 7, 8, 10, 11, 13, 14, 17, 18, 20, 21, 22, 23, 25, 30, 31, 32, 33, 35, 36, 37, 38, 39, 40], "default_bridg": 32, "default_login": 14, "defaultcredenti": 21, "defaultdomainnam": [37, 40], "defaultnamingcontext": 19, "defaultpassword": [37, 40], "defaultsecur": 8, "defaulttime2retain": 19, "defaulttime2wait": 19, "defaultusernam": [37, 40], "defeat": [5, 11], "defect": [5, 10, 16, 22, 33], "defend": [11, 30], "defens": [5, 10, 18, 30], "defensecod": [37, 40], "defer": 25, "defici": 11, "defin": [0, 1, 3, 5, 7, 9, 10, 11, 14, 18, 19, 23, 25, 30, 31, 33, 34, 36, 37, 38, 40], "definit": [1, 7, 11, 18, 31, 33], "deflat": 20, "defunct": 31, "degrad": 11, "degre": [0, 31, 34], "dehli": 19, "del": [14, 20, 31], "delai": [5, 10, 11, 14, 18, 33, 38, 40], "dele": 19, "deleg": [8, 14, 20, 21, 31, 33], "delet": [0, 3, 5, 8, 11, 19, 21, 30, 32, 33, 36, 37], "delete_hit": 19, "delete_miss": 19, "deleteon": 19, "delgroup": 31, "delhi": 19, "deliber": 11, "delic": 11, "delim": [1, 31], "delimit": [1, 31], "delin": 31, "deliv": [5, 9, 10, 11, 12, 19, 32, 33, 34], "deliveri": [10, 11, 12, 20, 32, 33, 36, 37, 40], "dell": 19, "delta": [3, 31, 32], "deltai": 3, "deltax": 3, "delus": 31, "delv": [9, 11], "demand": [9, 11, 20, 31, 32, 33, 34], "demandrespons": 9, "demateri": 25, "demilitar": 11, "demo": [18, 19, 20, 38, 40], "democrat": 34, "demolish": 11, "demonstr": [10, 11, 37, 40], "demystifi": [18, 34], "deni": [0, 7, 11, 19, 20, 23, 31, 33, 37, 38, 40], "denial": [3, 10, 11, 16, 19], "denot": [5, 31, 34], "densiti": 31, "deobfusc": [3, 5], "depart": [11, 18, 30, 33], "depend": [0, 3, 5, 6, 7, 9, 10, 13, 14, 15, 16, 19, 21, 31, 32, 34, 37, 40], "depict": 11, "deplist": 31, "deploi": [5, 8, 10, 11, 13, 18, 19, 21, 30, 32, 33, 34], "deploy": [10, 12, 13, 14, 19, 21, 30, 31, 34], "depositori": 25, "depot": 11, "deprec": [19, 31, 38, 39, 40], "depreci": 30, "depth": [5, 19, 38, 40], "dequ": 1, "der": 10, "derail": 11, "dereferenc": 0, "deregister_tm_clon": 0, "deriv": [7, 18, 21, 31, 33, 34], "derper": 19, "desc": [5, 16], "descend": [5, 31], "describ": [3, 5, 10, 11, 12, 19, 21, 30, 31, 32, 33, 34, 36, 37, 40, 41], "descript": [3, 4, 5, 6, 7, 8, 10, 11, 16, 19, 20, 21, 31, 33, 34, 36, 37, 39, 40], "descripti": 20, "descriptor": [0, 3, 10, 31, 36, 37, 40], "design": [0, 2, 3, 9, 10, 11, 12, 18, 19, 20, 21, 22, 23, 30, 31, 32, 34, 36, 37, 38, 39, 40], "desir": [0, 11, 12, 21, 23, 30, 31, 32, 34], "desk": 11, "deskjet": 19, "desktop": [4, 5, 8, 10, 11, 21, 32, 34, 36, 38, 39, 40], "despit": [11, 19], "destdir": [3, 31], "destin": [0, 3, 4, 10, 11, 23, 24, 31, 32, 36, 37, 38, 40], "destination_pag": [36, 40], "destinationfil": 31, "destroi": [11, 14, 39, 40], "destruct": 31, "destructionwhen": 31, "det": 21, "detach": [31, 32], "detail": [0, 3, 5, 6, 7, 8, 10, 11, 12, 16, 18, 19, 20, 23, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40], "detect": [10, 12, 16, 18, 20, 21, 23, 32, 34, 35, 36, 37, 38, 40], "detector": 30, "deter": 11, "determin": [0, 1, 3, 5, 10, 12, 14, 16, 18, 21, 23, 31, 32, 33, 34, 35, 36, 40], "determinist": 11, "deterr": 11, "detroit": 11, "dev": [0, 1, 3, 14, 16, 19, 20, 21, 24, 33, 37, 38, 39], "dev_sector_s": 3, "devast": 11, "develop": [0, 1, 3, 5, 6, 8, 10, 14, 16, 18, 19, 20, 21, 22, 30, 32, 39, 40, 41], "developand": 33, "deviat": 10, "devic": [5, 9, 12, 14, 18, 19, 20, 21, 30, 32, 33, 36, 37, 39, 40], "device0000": 19, "device2404999": 19, "device_address": 3, "devicenet": 11, "devicetyp": 10, "devolut": 8, "devop": [13, 33, 34], "devsecop": 33, "devttys0": 16, "dex": 3, "dex2jar": 3, "de\ufb01n": 5, "df": [0, 20, 31], "df313bc75aa94d192330cb92756fc486ea604e64": 19, "df600c37": 20, "dfd": 33, "dfdfsfsfsfsfsfsfsdfsfsf": 20, "dfirstpag": 31, "dfnv5074": 8, "dga": 19, "dgbp": [39, 40], "dgfyb3vmbgv4lmzszxhmawxtlmnvbtcbnzanbgkqhkig9w0baqefaaobjqawgykc": 19, "dglob": 7, "dgrep": 7, "dh": [11, 20], "dh_installdeb": 31, "dhcast128": 19, "dhclient": [38, 40], "dhcp": [11, 12, 17, 18, 20, 31, 37, 38, 40], "dhcp4": 15, "dht": 3, "dhx2": 19, "di": [10, 16, 19, 31, 32, 38, 40], "diagnos": 11, "diagnosi": [10, 11], "diagnost": [5, 10, 11], "diagos": 16, "diagram": [0, 10, 16, 18, 20, 23, 31, 32], "diagramm": [38, 40], "dial": [11, 12], "dialect": 20, "dialog": [20, 24], "dialog_con_gui": [36, 40], "dib_info": 3, "dic": 21, "dicom": 3, "dict": 1, "dict_item": 1, "dict_itemiter": 1, "dict_kei": 1, "dict_keyiter": 1, "dict_valu": 1, "dict_valueiter": 1, "dictat": [11, 34], "dictionari": [1, 3, 5, 6, 7, 10, 11, 18, 19, 21, 31, 33, 36, 38, 40], "dictionaryxx": 31, "did": [0, 5, 11, 18, 20, 21, 31, 33, 37, 39, 40], "didn": [0, 5, 11, 14, 19, 34, 37, 40, 41], "die": 18, "diego": 32, "diesel": [10, 11], "diff": [3, 13, 24, 36, 40], "differ": [0, 1, 3, 5, 7, 9, 12, 14, 16, 18, 19, 20, 21, 22, 23, 25, 30, 32, 33, 36, 37, 38, 39, 40], "differenti": [10, 11, 21, 31, 33], "diffi": [19, 33], "difficult": [11, 14, 18, 25, 31, 32, 33, 34, 36, 40], "difficulti": 11, "diffrent": 11, "dig": [0, 20, 21, 31], "digest": [5, 19, 21, 34], "digger": 18, "diggiti": 18, "digi": [18, 19], "digit": [0, 3, 5, 7, 8, 9, 10, 11, 12, 16, 19, 20, 30, 31, 32, 39, 40], "digitalocean": 32, "digramwis": 31, "digraph": [36, 40], "digsi": 10, "dii": 19, "dil": 16, "dilig": 11, "dim": 31, "dimens": [3, 19, 31], "diminish": 11, "din": 11, "dip": 11, "dir": [1, 3, 5, 19, 20, 21, 31, 37, 38, 39, 40], "dir1": [39, 40], "dir_index": 31, "dir_mod": 7, "dir_nlink": 31, "dire": 11, "direct": [3, 4, 5, 10, 11, 14, 19, 20, 25, 31, 32, 33, 36, 37, 39, 40], "direct_in": 20, "direct_out": 20, "directcolor": 19, "directli": [0, 1, 5, 6, 9, 10, 11, 12, 13, 14, 18, 19, 20, 21, 23, 30, 31, 32, 33, 34, 37, 38, 39, 40], "director": 32, "directori": [0, 3, 4, 5, 6, 8, 10, 11, 14, 15, 19, 23, 33, 36, 39], "directory_servic": 14, "directory_services_password": 14, "directorycontext": 20, "directoryentri": 20, "directorysearch": 20, "directoryservic": [8, 20], "direntri": 1, "dirnam": 21, "dirsrv": 14, "dirti": 23, "dirtyshutdown": [38, 40], "disa": [0, 23], "disabl": [10, 11, 15, 18, 19, 21, 23, 32, 35, 36, 37, 38, 39, 40], "disadvantag": 12, "disallow": [20, 23, 36, 40], "disappear": [31, 34], "disassembl": [0, 1, 3, 4, 5], "disassembli": 0, "disassoci": 3, "disast": 11, "discard": [1, 7, 11, 36, 40], "discharg": [9, 10], "disciplin": 11, "disciplinari": 11, "disclaim": [18, 25], "disclos": [5, 11, 33, 34, 39, 40], "disclosur": [11, 18, 34, 36, 40], "disconnect": [9, 10, 11, 19, 20], "discourag": [8, 21, 33], "discours": 14, "discov": [11, 18, 21, 30, 31, 32, 33, 34], "discoveri": [5, 16, 18, 21, 23, 24, 35, 40], "discovery_address": 19, "discovery_port": 19, "discovery_typ": 19, "discoverymailbox": 21, "discrep": 10, "discret": 33, "discrimin": 34, "discuss": [0, 5, 9, 11, 14, 16, 21, 23, 25, 32, 33, 34], "diseas": 11, "disgruntl": 11, "disinfect": 11, "disk": [0, 7, 10, 14, 20, 21, 32, 37, 38], "disk0": 3, "disk1": 3, "disk2": 3, "disk_loc": 14, "disk_out": 3, "disklabel": 3, "diskless": 32, "dislai": 0, "disord": 11, "disoveri": 11, "dispar": [11, 22], "disparag": 34, "dispatch": [10, 11, 24], "dispers": 11, "displai": [0, 3, 4, 5, 6, 7, 9, 10, 11, 16, 18, 19, 20, 21, 23, 31, 32, 36, 37, 38, 39, 40], "display_script": [37, 40], "displaydn": 11, "displayfilt": 3, "displaynam": [8, 14, 19, 23], "displayvers": 23, "dispos": 11, "disposit": 33, "disput": 11, "disregard": [0, 19], "disrupt": [11, 31], "dissect": 5, "dissector": 11, "dissid": 33, "dist": 31, "distanc": [10, 11], "distil": 11, "distinct": [1, 5, 10, 11, 32], "distinguish": [5, 6, 8, 11, 31], "distinguishednam": [8, 20], "disto": 10, "distort": 10, "distress": 11, "distribut": [1, 3, 5, 7, 8, 9, 12, 14, 19, 23, 25, 30, 33, 34, 37, 38, 40], "distributor": [31, 33], "distro": [14, 31], "disturb": [10, 37, 40], "dit": [18, 20, 21], "dive": 11, "diver": 11, "diverg": [5, 31, 34], "divers": [9, 11, 21], "divert": 12, "divid": [0, 2, 3, 4, 5, 10, 11, 14, 16, 19, 31, 32, 33], "dividend": 25, "divis": [3, 5, 11], "divison": 5, "divulg": 33, "dj": 4, "django": 30, "djava": 14, "djrubi": 14, "dk": 31, "dl1": 14, "dlastpag": 31, "dll": [0, 1, 3, 5, 19, 20, 30, 31, 36, 39, 40], "dlpdiggiti": 18, "dma": 0, "dmesg": [7, 14, 36, 40], "dmesg_restrict": 7, "dmg2john": [38, 40], "dmp": [3, 19, 21], "dmserver": 20, "dmtf": 20, "dmxtdiuoiwbemk0ohv94fgswdnhb": 19, "dmz": [10, 11, 18], "dn": [1, 5, 6, 12, 14, 20, 23, 30, 31, 32, 36, 38], "dna": 34, "dnat": 31, "dnd": [31, 36, 40], "dnf": [14, 32], "dnl": 19, "dnopaus": 31, "dnp": [10, 11], "dnp3": 10, "dnp3_data": 11, "dnp3_func": 11, "dnp3_ind": 11, "dnp3_obj": 11, "dns_amp": 19, "dns_bruteforc": 19, "dns_cache_scrap": 19, "dns_info": 19, "dns_reverse_lookup": 19, "dns_srv_enum": 19, "dnsaddress": 8, "dnsclientserveraddress": 8, "dnsgetdc": 20, "dnshostnam": [8, 19, 20], "dnsimpl": 32, "dnskeysyncd": 14, "dnslookup": 18, "dnssec": 14, "do": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 35, 36, 37, 38, 39, 40, 41], "doc": [3, 14, 19, 21, 31, 33, 39, 40], "docker": [14, 30, 36], "docker0": 32, "doctyp": 5, "document": [0, 1, 3, 5, 8, 9, 10, 11, 14, 16, 18, 20, 21, 22, 23, 24, 27, 30, 32, 33, 34, 38, 39, 40, 41], "documentroot": [36, 40], "docx": 22, "dodbz5h89dcblyl0uniprgw3xgjszrw": 19, "doe": [0, 1, 3, 5, 7, 9, 10, 11, 14, 18, 19, 20, 21, 24, 30, 31, 32, 33, 36, 37, 38, 39, 40], "doedpdfmeqyjofpuwiyk0hrkyrp7uyodp9secrozem98idugvpzffsrhkpdtktqtt9": 19, "doesn": [0, 3, 4, 5, 7, 8, 10, 11, 13, 14, 18, 19, 20, 23, 34, 36, 37, 38, 39, 40], "doesnotrequirepreauth": 8, "doesnt": [5, 31], "dog": 31, "dolittl": 19, "dollar": [0, 11, 31], "dom": 31, "domain": [2, 3, 5, 10, 11, 12, 13, 21, 23, 31, 32, 33, 35, 36, 37, 38, 39, 40], "domain02": 8, "domain_nam": [14, 18, 20], "domain_password_complex": 20, "domain_password_lockout_admin": 20, "domain_password_no_anon_chang": 20, "domain_password_no_clear_chang": 20, "domain_password_store_cleartext": 20, "domain_refuse_password_chang": 20, "domain_trust": 20, "domainadmin": 20, "domainadministrator_us": [38, 40], "domainadminus": 20, "domaincontrol": 20, "domaincontrollerfunction": 19, "domaincontrolleripaddress": 20, "domaindnszon": [19, 20], "domainfunction": 19, "domainjoin": 14, "domainmod": 20, "domainnam": [8, 18, 20, 21], "domainus": 20, "domest": 10, "dominguez": 2, "domino": 5, "don": [0, 5, 6, 11, 18, 20, 30, 31, 32, 33, 36, 37, 38, 39, 40, 41], "done": [0, 1, 5, 7, 10, 11, 12, 16, 18, 19, 20, 21, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "dontfrag": [36, 40], "door": [11, 19, 34], "dork": [39, 40], "dosn": 19, "dot": [19, 21, 31, 36, 38, 40], "dotal": 1, "dotnet": 5, "doubl": [1, 3, 5, 10, 14, 20, 23, 31, 33, 36, 39, 40], "doublepulsar": 3, "doubt": [11, 35, 40], "dow": 31, "down": [0, 3, 5, 10, 11, 12, 16, 18, 20, 21, 22, 23, 25, 31, 32, 33, 34, 36, 38, 40, 41], "downfal": 11, "downgrad": [31, 38, 40], "downlink": 12, "download": [1, 3, 5, 8, 10, 11, 14, 15, 16, 19, 20, 21, 23, 30, 31, 32, 35, 36, 37, 38, 39, 40], "downloadfil": [39, 40], "downloadonli": 31, "downloads2": 19, "downloadstr": [19, 21, 36, 37, 40], "downsid": 31, "downstream": 34, "downtim": [11, 32], "downturn": 25, "downward": 0, "dozen": 11, "dp": [8, 10, 11], "dpapi": 21, "dpi": [3, 12], "dpig": 7, "dpkg": [3, 14, 15, 38], "dpo": 19, "dport": [3, 11, 31], "dq": 2, "dr": [0, 5, 8, 16, 19, 20, 34], "dr0pb0x": [38, 40], "dracula": 2, "draft": [11, 32], "drag": 31, "dragon": 10, "dramat": 33, "drastic": 11, "draw": [5, 11, 31], "drawal": 10, "drawback": 32, "drawn": [11, 31], "drawnzer": 29, "drf": [37, 40], "drgigqejr7o9hko7tw": 19, "drift": [8, 30], "drill": [11, 12], "drink": 11, "drive": [3, 10, 16, 19, 20, 31, 34, 38, 39, 40], "driven": [10, 11, 16, 18, 31, 32, 33], "driver": [5, 9, 11, 19, 30, 38, 40], "drivewai": 11, "drlegal": 34, "droopi": [38, 40], "drop": [0, 1, 5, 7, 11, 18, 20, 21, 31, 32, 37, 38, 40], "drop_change_sourc": 19, "droplet": 32, "dropwhil": 1, "drove": 11, "drown": 11, "drsuapi": 20, "drunk": [37, 40], "drupal": [38, 40], "drwx": [37, 40], "drwxr": [39, 40], "drwxrwxrwx": [37, 40], "dry": 31, "ds_6": 20, "ds_store": [5, 38, 40], "dsa": [19, 33], "dsacl": 20, "dsadd": 20, "dsaddresstosit": 20, "dsaddresstositenamesex": 20, "dsagil": 10, "dsb": 16, "dsc": [30, 31], "dscea": 30, "dscorepropagationdata": 8, "dsdbutil": 20, "dse": 19, "dser": 5, "dsget": 21, "dsgetdc": 20, "dsgetdcnam": 20, "dsgetdcopen": 20, "dsgetdcsitecoverag": 20, "dsgetforesttrustinform": 20, "dsgetfti": 20, "dsgetsit": 20, "dsgetsitecov": 20, "dsgetsitenam": 20, "dshell": 3, "dsl": [11, 12], "dslam": 12, "dsmgmt": 20, "dsml": 20, "dsmod": 20, "dsmove": 20, "dso": [0, 9], "dsp": 20, "dsqueri": [20, 21], "dsrm": 20, "dss": [10, 19, 23, 33], "dsservicenam": 19, "dst": [3, 11], "dstport": 3, "dt": 3, "dt1w": [36, 40], "dtb": 21, "dtor": 19, "dtp": 3, "du": 20, "dual": [5, 10, 11, 16], "duck": 33, "due": [0, 3, 5, 10, 11, 19, 20, 25, 31, 32, 33, 34, 37, 39, 40], "dummi": [0, 10, 20, 37, 40], "dummy_": 20, "dummyus": 20, "dump": [0, 7, 10, 11, 16, 18, 20, 31, 34, 37, 38], "dump_imag": 16, "dumpe2f": 31, "dumpfil": [3, 36, 40], "dumpfilepath": 21, "dup": 4, "dup2": [36, 40], "duplex": [11, 16], "duplic": [3, 4, 10, 31, 34], "durat": [11, 20, 21, 23, 25], "dure": [0, 2, 3, 5, 6, 8, 9, 10, 11, 12, 16, 18, 19, 20, 21, 22, 23, 25, 31, 32, 33, 34, 38, 40, 41], "duress": 11, "duti": [9, 11, 34], "dvc": [38, 40], "dvd": 31, "dvr": 19, "dw": [4, 31], "dword": [0, 4], "dy": 5, "dynam": [0, 1, 2, 3, 4, 5, 9, 10, 11, 12, 14, 18, 23, 30, 31, 32, 36, 37, 38, 39, 40], "dynamicclassattribut": 1, "dyngateid": 19, "dzc": 19, "e": [0, 3, 5, 6, 7, 9, 10, 11, 12, 14, 15, 16, 19, 20, 21, 22, 23, 25, 27, 32, 33, 34, 35, 37, 39], "e0": [3, 38, 40], "e1": [2, 3, 10, 36, 40], "e18": 31, "e19ccf75ee54e06b06a5907af13cef42": 18, "e1aaaaa": 3, "e2": [2, 5, 10], "e21d": 19, "e2u": 19, "e3": [4, 19], "e3u9isnnswyes0": [38, 40], "e5": 32, "e7": 19, "e7a44fca": 21, "e8": [38, 40], "e_flag": 0, "eac": 21, "each": [0, 1, 2, 3, 4, 5, 6, 7, 9, 10, 11, 12, 14, 16, 18, 19, 20, 21, 23, 30, 32, 33, 34, 35, 36, 37, 39, 40], "ead": [12, 31], "eagerli": 31, "eagl": 8, "eajc": 21, "eapol": [38, 40], "earli": [10, 11, 19, 25, 33, 34], "earlier": [5, 8, 11, 18, 31, 32], "earn": [25, 33], "earth": 10, "eas": [3, 11, 12, 32, 33], "easergi": 10, "easi": [0, 1, 3, 5, 6, 8, 9, 10, 11, 12, 14, 18, 19, 21, 23, 30, 31, 32, 33, 38, 40], "easier": [5, 10, 11, 14, 19, 24, 31, 32, 33, 34, 36, 40], "easiest": 5, "easili": [0, 5, 7, 8, 10, 11, 14, 18, 20, 21, 23, 25, 30, 31, 32, 33, 34, 38, 40], "east": 11, "eastcoast": 20, "eastern": 10, "easun": 10, "eavesdrop": [11, 19], "eax": [0, 4], "eb": 32, "eb92dee7": 20, "ebcdic": [3, 36, 40], "ebp": [0, 4], "ebx": 4, "ec": [1, 5, 32], "ec2": [30, 32], "ecb": 33, "ecc": [10, 34], "ecdh": 33, "ecdsa": 33, "echo": [0, 1, 3, 5, 6, 11, 14, 18, 19, 20, 21, 32, 36, 37, 38, 39, 40], "echoctl": [36, 40], "echok": [36, 40], "echonl": [36, 40], "echoprt": [36, 40], "ecindxxxxx": 19, "eclips": 34, "econom": [10, 11, 25, 32, 33], "economi": [3, 11, 25, 33], "economictim": 25, "ecostruxur": 10, "ecosystem": [9, 32, 33, 34, 37, 40], "ecr": [35, 40], "ector": 5, "ecx": [0, 4], "ed": [3, 5, 6, 20], "eda9": 31, "edg": [10, 11, 12, 14, 23, 32, 36, 40], "edi": 4, "edit": [3, 5, 7, 11, 12, 15, 19, 20, 21, 23, 30, 32, 36, 38, 39, 40], "edit_html": 19, "edit_html_fileaccess": 19, "editdocu": 5, "editor": [4, 5, 10, 16, 20, 31, 36, 38, 40], "editus": 5, "edna": 10, "edu": [4, 38, 40], "educ": [11, 41], "edx": 4, "ee": 3, "ee58593b": 20, "eeprom": 11, "ef": 31, "efaa": [39, 40], "efe2": 31, "eff": 19, "effect": [0, 1, 3, 4, 5, 7, 8, 9, 10, 16, 21, 30, 31, 32, 33, 34, 35, 36, 37, 38, 40], "effic": [10, 11], "effici": [9, 10, 11, 14, 18, 21, 25, 31, 32, 34], "effort": [10, 11, 21, 32, 33, 34, 41], "eg": [0, 4, 31, 36, 40], "egbt": 12, "egcd": [38, 40], "egg": 0, "egid": 31, "ego": 34, "egregi": 11, "egress": [11, 13, 23, 32], "ehlo": [19, 39, 40], "ehternet": 11, "ei": 8, "eid": 19, "eight": [0, 3, 10, 34], "eighth": 2, "eim": 9, "eipa": 9, "eirini": 32, "either": [0, 1, 3, 4, 5, 9, 10, 11, 12, 14, 16, 18, 19, 20, 21, 23, 29, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40], "ek": [3, 32], "el": [14, 37, 40], "el6": 19, "el8_0": 31, "elabor": [36, 40], "elast": 30, "elastix": [38, 40], "elbor": [36, 40], "eld": 5, "elect": 32, "electr": [11, 16, 18, 41], "electrician": 11, "electromagnet": [10, 11], "electron": [3, 32, 33], "electrotechn": 11, "eleg": [11, 18], "element": [0, 1, 3, 6, 12, 18, 31, 33, 34, 36, 38, 39, 40], "element1": 31, "element2": 31, "element3": 31, "elementari": 34, "elev": [0, 7, 15, 20], "elf": [0, 3, 4, 21, 31], "elf32": 0, "elf64": 0, "elf_i386": 0, "elig": [8, 30], "elimin": [9, 10, 11, 32, 33], "eliteaaa": 12, "ellipsi": 1, "ellipt": 33, "elobor": 18, "elobr": [36, 40], "els": [0, 1, 3, 5, 6, 7, 11, 25, 31, 32, 33, 34, 37, 38, 39, 40], "elsewher": [5, 11, 33], "elucid": 34, "em": [0, 9, 11], "emacs_tag": [36, 40], "email": [7, 12, 13, 18, 19, 21, 27, 30, 31, 33, 34, 36, 38], "email_serv": 19, "emailaddress": [8, 19, 35, 40], "emb": [5, 11, 20, 31, 38, 40], "embargo": 33, "embarrass": 34, "embassi": 11, "embed": [3, 5, 9, 18, 19, 20, 31, 32, 33], "embedthi": 19, "embrac": 11, "emc": 19, "emerg": [10, 12, 30], "emiss": 11, "emit": [16, 31], "emot": 25, "emphas": [32, 33], "empir": [19, 20, 36, 40], "empire_exec": 20, "emploi": [5, 9, 11, 32, 33], "employ": [25, 34], "employe": [18, 19, 21, 25, 30, 31, 33, 34, 36, 40], "empoewr": 12, "empow": [9, 34], "empti": [5, 11, 19, 20, 32, 36, 37, 38, 40], "emptydir": 32, "emsp": 9, "emul": [3, 10, 19, 23, 32], "emweb": 19, "en": [3, 4, 11, 19, 31, 33, 37, 39, 40], "en_in": 19, "en_u": [31, 39, 40], "enabl": [1, 3, 5, 7, 8, 9, 10, 11, 12, 13, 15, 16, 17, 18, 19, 21, 23, 24, 30, 32, 33, 34, 35, 36, 37, 38, 39, 40], "enable_hostnam": 14, "enable_icc": 32, "enable_ip_address": 14, "enable_ip_masquerad": 32, "enableipv6": 32, "enact": 11, "enc": [2, 17, 20, 21, 38, 40], "encapsul": [5, 11, 12, 32], "encinfo": [38, 40], "enclav": 11, "enclos": [20, 31, 36, 40], "enclosur": 11, "encod": [0, 3, 6, 10, 11, 19, 20, 33, 35, 36, 38, 39, 40], "encodedcommand": [36, 40], "encodingmap": 1, "encompass": [9, 11], "encount": [1, 5, 19, 34, 39, 40], "encourag": [11, 33, 41], "encrypt": [3, 5, 7, 9, 10, 11, 12, 17, 20, 21, 23, 32, 36], "encrypt_method": 7, "encryptedfil": [38, 40], "encryptedhash": 21, "encryption_algorithm": 19, "enctyp": [39, 40], "end": [0, 1, 3, 5, 6, 9, 10, 11, 12, 16, 18, 19, 20, 21, 30, 32, 33, 34, 36, 38, 40], "enddat": [5, 20], "endeavor": 34, "endeavour": 34, "endia": 0, "endian": [0, 3, 21, 24], "endocod": 34, "endpoint": [3, 20, 32], "endpoint_mapp": 19, "endport": [18, 35, 40], "endright": 31, "endtim": 20, "energ": 10, "energei": 11, "energet": 34, "energi": [9, 16], "enforc": [0, 7, 8, 10, 11, 12, 19, 30, 32, 34, 37, 39, 40], "enforcementin": 33, "engag": [9, 11, 18, 19, 21, 23, 30, 34], "engagement_nam": 19, "engin": [3, 5, 7, 9, 10, 12, 14, 18, 19, 22, 23, 30, 31, 32, 33, 34, 38, 39, 40, 41], "england": 11, "english": [5, 31, 37, 40], "enhanc": [3, 5, 9, 10, 11, 30, 31, 32, 34], "enigma": 21, "eniw": 19, "enjoi": [10, 25, 32, 34], "enodeb": 12, "enough": [0, 1, 8, 10, 11, 18, 21, 22, 31, 32, 33, 34, 36, 37, 38, 40], "enp0s25": 15, "enp2s0": 31, "enquir": 11, "enrol": [10, 14, 27], "enscript": 31, "ensu": 34, "ensur": [0, 3, 5, 6, 9, 10, 11, 12, 14, 20, 23, 30, 31, 32, 33, 34, 37, 40], "enter": [0, 1, 3, 4, 5, 6, 7, 8, 10, 11, 16, 19, 20, 21, 23, 25, 31, 34, 36, 38, 39, 40, 41], "enterpris": [8, 10, 11, 12, 14, 19, 21, 23, 24, 31, 32, 34, 41], "entertain": 11, "enthusiast": 27, "entic": [38, 40], "entir": [0, 5, 9, 10, 11, 15, 16, 18, 19, 23, 31, 32, 33, 34, 36, 39, 40], "entiti": [5, 9, 10, 11, 12, 18, 31, 33, 34, 38, 40], "entitl": 31, "entitytag": 5, "entrant": 34, "entri": [0, 3, 4, 6, 8, 11, 14, 16, 17, 18, 19, 23, 30, 31, 32, 33, 35, 36, 37, 40, 41], "entropi": [16, 31, 33], "entrust": 24, "entrydn": 19, "entrywai": 11, "enum": 18, "enum4linux": [38, 40], "enum_avproduct": 20, "enum_chrom": 20, "enum_dn": 19, "enumalsgroup": 20, "enumdata": 20, "enumdataex": 20, "enumdomain": 20, "enumdomgroup": 20, "enumdomus": 20, "enumdriv": 20, "enumer": [1, 2, 3, 5, 10, 21, 30, 31, 33, 35], "enumform": 20, "enumjob": 20, "enumkei": 20, "enumport": 20, "enumprint": 20, "enumpriv": 20, "enumtrust": 20, "env": [0, 1, 3, 14, 24, 31, 32, 36, 37, 38, 39, 40], "env_check": [38, 40], "env_fil": [38, 40], "env_keep": [38, 40], "envelop": 24, "environ": [1, 5, 9, 10, 14, 16, 18, 19, 21, 22, 30, 32, 33, 38], "environment": [31, 36, 40], "environmentfil": 31, "eof": [0, 31, 36, 40], "eog": 31, "eol": [31, 36, 40], "eol2": [36, 40], "ep6mckrolchf": 31, "epel": 14, "ephemer": [19, 32], "epiphani": 31, "epl": 34, "eprom": 11, "epson": [11, 19], "eq": [20, 31, 38, 40], "equal": [1, 3, 4, 5, 7, 10, 33], "equat": [1, 11, 33], "equip": [9, 10, 11, 25, 31], "equiv": [38, 40], "equival": [0, 4, 5, 11, 17, 19, 21, 25, 30, 31, 32, 33, 39, 40], "er": 10, "erac": 31, "eras": [3, 16, 33, 36, 40], "erasur": [32, 33], "eric": [31, 38, 40], "erl": 19, "ernest": 29, "erp": [11, 24], "err": [19, 20], "err_timeo": 19, "erron": [11, 39, 40], "error": [0, 1, 11, 14, 16, 18, 19, 20, 21, 30, 32, 33, 36, 37, 39, 41], "error_log": 7, "erroract": [37, 40], "errordocu": [38, 40], "errorpdu": 10, "esac": 31, "esc": 31, "escal": [5, 11, 14, 23, 36], "escap": [1, 3, 5, 32, 33, 36, 39, 40], "escapekei": 31, "escapeshellarg": [5, 6], "escapeshellcmd": [5, 6], "esckei": 31, "esclat": [11, 20], "esd": 11, "esi": 4, "eskoudi": 20, "esmtp": 19, "esp": 0, "especi": [0, 5, 7, 11, 18, 19, 31, 33, 35, 38, 40], "espionag": 11, "essenti": [0, 1, 5, 9, 10, 11, 14, 16, 19, 23, 30, 31, 32, 33, 34, 38, 40], "essid": 17, "essid_nam": 17, "est": 3, "establish": [5, 9, 10, 11, 14, 19, 20, 21, 23, 31, 32, 33, 34, 36, 40], "estat": 25, "estim": [10, 11, 33], "esx": 19, "esx_fingerprint": 19, "esxi": 32, "et": [4, 20], "et0x": 0, "etag": 5, "etc": [0, 1, 3, 4, 5, 6, 7, 8, 10, 12, 14, 16, 18, 19, 21, 22, 23, 25, 30, 32, 34, 35, 36, 38, 39], "etcd": 14, "etcd_initial_clust": 14, "etcd_ip": 14, "etckeep": 31, "etern": 3, "eternalblu": 11, "eterra": 10, "eth0": [11, 15, 31, 32, 35, 37, 40], "ether": [17, 32, 38, 40], "etherap": 11, "ethernet": [8, 9, 10, 11, 15, 16, 19, 20, 32, 36, 38, 40], "ethic": [33, 34], "ethnic": 33, "etho": 34, "ethtool": 31, "etrn": 19, "ettercap": [3, 11, 19], "etw": 21, "etzelsdorf": 8, "eu": [30, 33], "eugen": [38, 40], "euid": 31, "europ": [2, 11, 34], "european": 33, "ev": 9, "evacu": 11, "evad": [5, 11, 18, 21], "eval": [1, 36, 39, 40], "evalu": [5, 7, 8, 10, 11, 30, 31, 32, 33, 34, 39, 40], "evan": [4, 31, 32], "evas": [11, 18, 38, 40], "evcc": 9, "evel": [39, 40], "even": [0, 3, 4, 5, 9, 10, 11, 12, 14, 16, 18, 19, 20, 21, 24, 25, 30, 31, 32, 33, 34, 36, 37, 38, 40, 41], "event": [1, 3, 5, 9, 10, 14, 19, 20, 21, 31, 32, 33, 34], "eventnam": 21, "eventsystem": 20, "eventu": [3, 11, 25, 33], "ever": [11, 21, 33, 36, 40], "everi": [0, 1, 2, 3, 5, 8, 10, 11, 12, 14, 16, 18, 19, 20, 21, 22, 23, 30, 31, 32, 33, 34, 35, 37, 38, 40], "everybodi": 31, "everyon": [10, 11, 19, 30, 31, 34], "everyth": [5, 10, 11, 14, 16, 18, 21, 30, 31, 32, 33, 34, 36, 38, 39, 40], "everytim": [0, 8], "everywher": 11, "evict": 19, "evicted_unfetch": 19, "evid": [11, 33, 34], "evidenc": 11, "evil": [3, 19, 36, 40], "evilscript": [38, 40], "evinc": 31, "evolut": [10, 11, 31], "evolv": [11, 30, 34], "evs": 9, "evtx": 30, "ew": 3, "ex": [3, 5, 10, 11, 18, 19, 30, 34, 35, 36, 37, 38, 39, 40], "ex_extra": [36, 40], "exa": 5, "exacerb": 11, "exact": [0, 1, 3, 5, 16, 31, 32], "exactli": [1, 3, 5, 10, 11, 12, 18, 30, 31, 32, 33, 37, 38, 40], "examin": [2, 3, 5, 11, 23, 31, 33, 34, 36, 39, 40], "exampl": [1, 3, 7, 8, 9, 12, 13, 14, 16, 17, 19, 21, 23, 25, 30, 33, 35, 36, 38], "example1": [39, 40], "example2": 19, "example_softwar": [36, 40], "example_us": [20, 37, 40], "example_user1": [38, 40], "example_user2": [38, 40], "example_usernam": [36, 40], "examplecorp": [35, 40], "examplecrm1": 19, "exaus": 19, "exce": [11, 19, 21, 31], "exceed": 11, "exceedingli": 33, "excel": [3, 8, 10, 11, 19, 21, 23, 30, 31, 32, 33, 34], "except": [0, 3, 5, 9, 10, 11, 20, 33, 36, 40], "excercis": [5, 6, 30], "excess": 25, "exchang": [9, 11, 12, 16, 19, 20, 25, 30, 32, 33], "exchweb": [36, 40], "exclam": 31, "exclud": [5, 11, 14, 18, 21, 31, 34], "excludefil": 11, "exclus": [9, 34], "exclusionari": 34, "exe2hex": [38, 40], "exec": [1, 5, 6, 7, 14, 19, 20, 21, 23, 31, 36, 37, 38, 39, 40], "exec_integutil": 19, "execcommand": 19, "execl": [19, 37, 40], "execreload": 31, "execstack": 0, "execstart": 31, "execstartpr": 31, "execu": [37, 40], "execut": [3, 4, 5, 6, 7, 10, 12, 14, 15, 18, 24, 30, 33, 34, 36, 41], "executabletorun": 20, "execute_catalog_rol": 19, "executeshellcommand": 20, "executionnow": 19, "execuv": 0, "execv": [38, 40], "exempt_group": [38, 40], "exercis": [0, 5, 25, 27, 31, 32], "exert": 32, "exfiltr": [18, 21, 33], "exhaust": [5, 11, 31], "exhibit": [9, 11], "exif_imagetyp": [39, 40], "exist": [0, 5, 8, 10, 11, 16, 19, 20, 21, 23, 31, 34, 36, 37, 39, 40], "exit": [4, 20, 21, 25, 31, 36, 37, 38, 39, 40], "exit_addr": 0, "exit_offset": 0, "exlus": 11, "exot": [39, 40], "exp": [36, 40], "exp2": 31, "expand": [5, 9, 10, 11, 14, 19, 23, 25, 31, 34], "expans": [10, 11, 18], "expect": [0, 1, 3, 5, 7, 11, 18, 19, 25, 30, 31, 32, 33, 34], "expens": [10, 11, 25, 32], "experi": [5, 8, 9, 11, 16, 20, 25, 32, 33, 34], "experienc": [11, 31, 34], "experiment": [31, 39, 40], "expert": [8, 10, 11, 30, 33], "expertis": 11, "expir": [5, 11, 14, 19, 23, 31, 33, 36, 39, 40], "expired": 31, "expired_unfetch": 19, "expiri": 31, "explain": [0, 8, 11, 18, 20, 21, 23, 31, 32, 33, 36, 38, 40], "explan": 31, "explanationl": 31, "explicit": [5, 11, 33, 34, 36, 40], "explicitli": [0, 10, 11, 20, 31, 34, 38, 40], "explod": 31, "exploit": [1, 3, 7, 11, 18, 22, 27, 30, 31, 33, 34, 35, 36, 38, 41], "explor": [3, 5, 10, 11, 13, 19, 21, 22, 32, 34, 35, 40], "explos": 11, "expn": 19, "export": [1, 3, 7, 8, 10, 11, 14, 19, 20, 23, 30, 31, 32, 34, 36, 37, 40], "exported_object": 3, "exportf": 31, "expos": [5, 7, 10, 11, 13, 16, 18, 19, 31, 32, 35, 36, 40], "exposit": 33, "exposur": [11, 18, 30], "express": [0, 4, 5, 10, 11, 17, 19, 20, 23, 30, 32, 34, 36, 37, 40], "expressli": 33, "exrc": 23, "ext": [3, 19, 39, 40], "ext2": [16, 31, 39, 40], "ext3": [3, 31], "ext4": [15, 31], "ext_attr": 31, "extanalysi": 3, "extend": [10, 11, 18, 19, 31, 32], "extens": [10, 11, 12, 14, 18, 19, 21, 30, 31, 32, 34, 36, 38, 39, 40], "extent": [11, 14, 31, 34], "extern": [0, 5, 6, 9, 10, 12, 13, 16, 17, 19, 23, 24, 30, 32, 33, 36, 39, 40], "external_net": 11, "extest": 16, "extproc": [19, 36, 40], "extra": [3, 5, 6, 7, 11, 18, 19, 20, 21, 31, 33, 36, 40, 41], "extra_info": 19, "extra_is": 31, "extra_search": [36, 40], "extract": [0, 1, 5, 11, 16, 18, 19, 20, 21, 23, 31, 33, 34, 36, 37, 38, 40], "extractor": [38, 40], "extracttodirectori": [38, 40], "extrem": [5, 11, 16, 19, 23, 30, 33, 39, 40], "extremenetwork": 19, "extremexo": 19, "ey": [11, 31], "eyebal": 34, "eyebrow": 11, "eyewit": 18, "f": [0, 2, 3, 5, 6, 7, 10, 11, 13, 14, 16, 17, 18, 20, 21, 23, 25, 31, 36, 37, 38, 39, 40], "f03c": [35, 40], "f1": [3, 19, 31, 36, 40], "f12": [4, 5, 6, 38, 39, 40], "f2": [3, 19, 31], "f2a1": 20, "f2c0": 19, "f3": [3, 8, 31], "f362b5565b916422607711b54e8d0bd20838f5111d33a5eed137f9d66a375efb": [38, 40], "f4jn": 19, "f5": [3, 38, 40], "f5e3": 19, "f6": [31, 38, 40], "f6a8": 20, "f6ec": 31, "f7": 31, "f75f9307": 31, "f7e2ebf8": 0, "f7e4f39d": 0, "f7eb6de6": 0, "f7fc83c4": 0, "f7fcac20": 0, "f7fde860": 0, "f7fdeb58": 0, "f7ffd000": 0, "f7ffda94": 0, "f8": 3, "f_out": 3, "fa": [21, 25], "faa": [14, 32], "fabric": 34, "face": [0, 5, 11, 12, 14, 16, 25, 30, 32, 36, 40], "facebook": [11, 19, 21], "facil": [9, 10, 12, 19, 23, 31], "facilit": [5, 9, 11, 12, 16, 30, 31, 32, 34], "fact": [0, 5, 7, 11, 31, 37, 40], "facto": 32, "factor": [9, 10, 14, 19, 32, 33], "factori": [11, 20], "fah": 32, "fail": [0, 5, 6, 7, 10, 11, 12, 14, 18, 19, 20, 21, 25, 33, 35, 36, 37, 38, 39, 40], "fail2ban": [7, 31], "faillog": 7, "faillog_enab": 7, "failov": 32, "failur": [7, 10, 11, 16, 20, 31, 32, 33], "fairli": [9, 11, 34], "faiz": [5, 6], "fake": [0, 3, 5, 6, 11, 36, 38, 39, 40], "falco": 32, "fall": [2, 5, 10, 11, 25, 34], "fals": [1, 3, 5, 6, 7, 8, 11, 13, 19, 20, 21, 23, 31, 32, 33, 38, 39, 40], "fam": 1, "fame": 11, "familar": [11, 12], "famili": [11, 19, 20, 32, 33, 36, 37, 38, 40], "familiar": [11, 18, 32, 38, 40], "famillar": 12, "famou": [11, 19], "fan": 11, "fantast": 30, "faos8zfi": 19, "faq": [18, 21], "far": [0, 5, 11, 23, 32, 33, 34, 37, 40], "fargat": 32, "farm": 11, "farsi": [36, 40], "fascin": 10, "fashion": [11, 21, 31, 32, 34], "fast": [3, 5, 9, 10, 11, 16, 18, 19, 30, 31, 32, 33, 37, 40], "fastabort": 19, "faster": [5, 10, 11, 16, 18, 19, 20, 21, 25, 30, 31, 34, 35, 40], "fastest": [11, 16, 20], "fat": [3, 16, 31], "fat12": 3, "fatal": [11, 19, 31], "fatigu": 11, "fault": [0, 10, 11, 12, 31, 32], "faulti": 11, "favor": 11, "favorit": [11, 20, 30], "favour": 33, "fax": [11, 12, 19, 20], "fb": 11, "fb0": [39, 40], "fb2png": [39, 40], "fb890c9c": 20, "fbd": 11, "fc": [3, 11], "fc2": 19, "fcc": 16, "fccid": 16, "fclose": 0, "fcntl": 0, "fco": 32, "fcrackzip": [38, 40], "fd": [0, 25, 36, 37], "fdaa": 32, "fdl": 11, "fdo": 3, "fdt": 19, "fe": [3, 31, 38, 40], "fe0b": 19, "fe18": [35, 40], "fe80": [19, 20, 32], "fe9a": 19, "fear": 11, "feasibl": [11, 34], "featur": [0, 3, 5, 9, 10, 11, 18, 19, 21, 23, 30, 31, 33, 34, 36, 37, 38, 39, 40], "feb": [19, 20, 31], "februari": 11, "fec3": 32, "fed": [0, 31, 33], "feder": [11, 13, 14, 16], "fedora": [14, 19], "fee": [9, 33, 34], "fee5": 32, "feed": [0, 9, 11, 18, 19, 21, 31, 34], "feedback": [5, 10, 11, 31, 32, 41], "feeder": 10, "feedstock": 11, "feel": [5, 11, 19, 23, 25, 30], "feet": 34, "fellow": 31, "felt": 25, "fenc": [10, 11], "fend": 31, "fernet": 2, "fetch": [10, 21, 36, 38, 40], "few": [0, 1, 2, 3, 5, 8, 10, 11, 14, 16, 17, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40, 41], "fewer": [11, 32], "fewest": 33, "ff": [3, 19, 32, 38, 40], "ff0": [36, 40], "ff9b": 19, "ffff": 0, "ffffd678": 0, "ffffd6ae": 0, "ffffd6cc": 0, "ffffd774": 0, "ffffd780": 0, "fffffe": 3, "ffffff": 3, "ffffffff": [0, 20], "fflush": 0, "fft": 16, "fg": [31, 36, 40], "fgdump": 21, "fget": 0, "fh": [39, 40], "fi": [9, 10, 12, 16, 17, 18, 31, 38, 40], "fib": 7, "fib_tri": [36, 40], "fibonacci": 3, "fibr": 10, "fictiti": 5, "fiddl": 31, "field": [3, 4, 6, 18, 19, 31, 33, 34, 37, 38, 39, 40, 41], "fieldbu": 10, "fieldnameiter": 1, "fifo": 31, "fifth": 11, "figur": [0, 3, 5, 9, 10, 11, 13, 16, 18, 19, 20, 21, 31, 33, 34, 35, 36, 37, 38, 39, 40], "file": [4, 5, 6, 8, 10, 12, 13, 14, 15, 16, 17, 18, 23, 24, 30, 33, 35], "file1": [0, 31, 37], "file2": [0, 31, 39, 40], "file23": 31, "file3": 31, "file_disclosur": 19, "file_exist": [39, 40], "file_get_cont": [36, 39, 40], "file_hdr": 3, "file_in_path": [36, 40], "file_nam": [0, 31], "file_path": 0, "file_put_cont": [36, 39, 40], "file_s": [37, 40], "file_to_pars": 3, "file_typ": 3, "fileaddressspac": 21, "filebrows": 19, "filecopyrighttext": 34, "fileextens": [39, 40], "filefind": 1, "filehash": [38, 40], "fileincl": [39, 40], "fileio": 19, "fileload": 1, "filenam": [3, 4, 5, 11, 18, 21, 23, 31, 36, 37, 38, 39, 40], "filename1": 31, "filename2": 31, "filename_on_your_webserv": [36, 40], "fileno": [36, 40], "filepath": [38, 40], "files": [3, 31, 39, 40], "filescan": 3, "fileserv": [10, 11], "filesrv": [19, 36, 40], "filestor": 10, "filesystem": [3, 16, 19, 20, 37, 38, 39, 40], "filetyp": [3, 18, 31, 39, 40], "filezilla": [20, 31], "fill": [0, 3, 11, 31, 33], "fillei": 21, "filnam": [11, 39, 40], "filter": [0, 1, 8, 10, 11, 16, 17, 18, 19, 20, 23, 37, 38], "filter_var": 1, "filterfals": 1, "filtrat": [11, 30], "fimap": [39, 40], "fin": [3, 35, 40], "finabl": 31, "final": [0, 1, 5, 7, 9, 10, 11, 16, 18, 31, 32, 34, 35, 36, 40], "financ": [25, 30], "financi": [5, 11, 25], "find": [1, 2, 5, 6, 7, 10, 11, 13, 16, 17, 21, 22, 23, 25, 27, 30, 32, 34, 36, 38, 39], "find_in_path": [36, 40], "findal": [1, 20], "finder": [1, 19, 33], "findon": 20, "findout": [37, 40], "findricset": 19, "findstr": [21, 37, 40], "findus": 20, "fine": [1, 5, 11, 14, 16, 32, 33, 34], "finfish": 18, "finger": [23, 31], "finger_us": 19, "fingerprint": [5, 11, 19, 31, 36, 38, 39, 40], "fini": 0, "finish": [11, 14, 21, 31, 35, 40], "finit": [16, 31], "fire": 11, "firef": 31, "firefight": 19, "firefox": [3, 18, 31, 39], "firewal": [5, 7, 14, 18, 20, 32, 38, 40], "firewalld": 14, "firewir": 7, "firewire_cor": 7, "firewire_ohci": 7, "firm": [5, 11], "firmadyn": 16, "firmwalk": 16, "firmwar": [3, 9, 10, 11, 19, 21, 23, 31, 32, 34], "first": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 14, 15, 16, 18, 19, 20, 21, 23, 25, 32, 34, 36, 37, 39], "first_nam": 14, "firstburstlength": 19, "firstli": 5, "fisma": 23, "fission": 32, "fit": [0, 11, 33, 34], "five": [0, 5, 9, 10, 11, 14, 16, 30, 31, 33, 41], "fix": [0, 5, 10, 11, 12, 19, 25, 31, 32, 33, 34], "fixabl": 32, "fixcom": [37, 40], "fixed_length_secure_compar": 33, "fixedaaa": 12, "fl": [3, 37, 40], "fl1001433000190000": 19, "flag": [0, 1, 2, 3, 4, 5, 6, 10, 11, 18, 20, 21, 31, 32, 34, 35, 36, 37, 38, 39, 40, 41], "flag2": [38, 40], "flagxx": [0, 37, 40], "flair": [38, 40], "flame": 34, "flammabl": 11, "flannel": [14, 32], "flare": 5, "flash": [5, 11, 16, 31], "flashdigg": 18, "flask": [37, 40], "flasm": 5, "flat": [11, 16], "flather": [36, 40], "flavor": 31, "flaw": [11, 16, 19, 31, 33, 38, 40], "fledg": 32, "flex_bg": 31, "flexfilm": 19, "flexibl": [7, 9, 10, 11, 20, 21, 23, 30, 31, 32, 34], "flick": 10, "flicker": 10, "flight": [3, 11], "flip": 16, "float": [0, 1, 10, 11, 24, 36, 40], "flocker": 32, "flood": [3, 11], "floor": 11, "flop": 16, "florida": 11, "flow": [0, 23, 31, 32, 33, 34, 36, 40], "flower": 19, "fluctuat": 11, "flush": [11, 31], "flusho": [36, 40], "fluxbox": 31, "flv": 3, "fly": 3, "flyer": 3, "fm": 11, "fmt": 31, "fn": [32, 36, 39, 40], "fno": [0, 19], "fo": [31, 37, 40], "fob3j9bulfvqn3q": 19, "foca": 18, "focal": 15, "focu": [8, 11, 19, 30, 31, 32, 33], "focus": [5, 9, 10, 21, 30, 32, 33, 34], "fog": 19, "fold": [25, 36, 40], "folder": [3, 8, 10, 14, 16, 19, 20, 21, 23, 30, 31, 38, 39], "follow": [0, 1, 2, 3, 4, 5, 7, 8, 9, 10, 12, 13, 14, 15, 16, 18, 19, 20, 21, 23, 25, 31, 32, 33, 34, 35, 36, 37, 38, 40], "followinglin": 7, "followup": 19, "font": [3, 31], "fontcach": 19, "foo": [4, 19, 21, 31, 32, 36, 37, 38, 40], "foobar": [4, 20], "fool": [5, 33], "foolish": 33, "foopackag": 34, "footer": [3, 33, 36, 37, 40], "foothold": 18, "footprint": [11, 32], "fopen": 0, "for300": 3, "forbidden": [5, 34], "forc": [0, 5, 6, 7, 8, 10, 11, 18, 20, 31, 37, 38], "forcefulli": 31, "ford": 5, "foreach": 19, "forecast": [9, 10, 11, 19], "forego": 11, "foreground": [36, 40], "foreign": [19, 31], "foreman": 15, "foremost": 23, "forens": [10, 30, 32, 41], "forest": [11, 14, 21, 33], "forestdnszon": [19, 20], "forestfunction": 19, "forestmod": 20, "forestrootdomain": 20, "forev": [32, 38, 40], "forewarn": 11, "forexampl": 10, "forg": [32, 38, 40], "forgeri": [38, 40], "forget": [5, 6, 11, 19, 33, 39, 40], "forgetgrav": 19, "forgotten": [19, 21, 39, 40], "fork": [0, 31, 32, 33, 34, 36, 40], "form": [0, 1, 3, 7, 10, 11, 12, 16, 18, 19, 20, 21, 25, 31, 32, 33, 34, 38], "form_1362737440": 1, "form_product_pag": 1, "formal": [11, 32, 34], "format": [1, 4, 5, 6, 7, 8, 11, 14, 16, 18, 19, 20, 21, 22, 23, 24, 30, 32, 33, 34, 35, 36, 38, 39, 40], "format_str": [39, 40], "formatteriter": 1, "former": [5, 31, 37, 40], "formerli": [11, 20, 32], "formul": [5, 34], "formula": [0, 8, 10, 11, 25], "forth": 31, "fortifi": 0, "fortun": [11, 36, 40], "forum": [5, 11, 16, 33], "forward": [1, 3, 7, 10, 12, 14, 18, 19, 20, 23, 31, 32, 34, 38], "forwarddirectori": 19, "forwardkeys": 19, "forwarduricompat": 19, "fosaaen": 20, "foss": 34, "foster": 9, "found": [0, 1, 3, 5, 7, 8, 9, 11, 14, 16, 18, 19, 20, 21, 23, 25, 31, 32, 33, 34, 36, 37, 38, 39, 40, 41], "foundat": [5, 11, 12, 21, 25, 31, 32, 33, 34], "foundri": 10, "four": [3, 4, 7, 10, 11, 16, 18, 19, 31, 32, 33, 34, 38, 39, 40], "fourth": 31, "fourthcoffe": 20, "fox": [10, 18, 31], "fp": [0, 33], "fpic": [0, 19], "fping": 3, "fprintf": 0, "fq": [39, 40], "fq1lz0vai1db3upbknvhqnhoijtayclyqg1btjvbcv2yvg9p91ljyl6avsuopedg7h46e90tpnefa0trf": 19, "fqdn": [20, 32], "fr": 3, "fraction": [2, 5], "fragment": [3, 11, 38, 40], "frame": [1, 3, 5, 10, 12, 23, 32, 35, 36, 38, 39, 40], "frame_dummi": 0, "framebuff": [39, 40], "framework": [0, 1, 3, 5, 9, 10, 11, 19, 20, 21, 22, 32, 33, 34, 38, 39, 40], "framework2": 0, "franc": 9, "fraught": 33, "fred": [38, 40], "free": [0, 7, 11, 13, 19, 23, 25, 30, 31, 32, 33, 34, 37, 38, 39, 40, 41], "freebsd": [19, 23, 31, 34], "freeciv": 19, "freedom": [31, 33, 34], "freeipa": 13, "freeli": [11, 18, 34, 38, 40], "freena": 32, "freepbx": [38, 40], "freerto": 32, "freestyl": 32, "freetd": 19, "freewai": 11, "freez": 11, "freezer": 32, "freight": 11, "frequenc": [3, 9, 10, 16, 18], "frequenctli": 11, "frequent": [3, 5, 11, 23, 30, 31, 32, 33, 34], "fresh": [5, 11, 25], "fri": [19, 20, 36, 40], "friction": 10, "friend": [11, 30, 34, 36, 40], "friendli": [9, 10, 11, 32], "frogger": 3, "from": [2, 4, 8, 9, 11, 12, 13, 15, 18, 19, 20, 21, 22, 23, 24, 25, 26, 30, 32, 33, 34, 35, 41], "fromhex": 1, "fromsess": [38, 40], "front": [10, 11, 18, 31, 36, 40], "frontend": 31, "frontpag": [38, 40], "frozenimport": 1, "frozenset": 1, "frtu": 10, "frustrat": 34, "fsck": [15, 31], "fsf": 34, "fsid": 19, "fsk": [10, 16], "fsm": 16, "fsockopen": [36, 40], "fsstat": 3, "fstab": 31, "fstype": 3, "fswcb1": 11, "ft": [8, 37, 40], "ft232rl": 16, "ftcocip": 3, "ftirqd": 31, "ftp": [1, 3, 11, 12, 18, 23, 30, 36], "ftp_login": 19, "ftp_user": 20, "ftp_version": 19, "ftpbounc": 19, "ftpd": [19, 31], "ftpinfo": 19, "ftplib": [37, 40], "ftpmaster": 31, "ftppass": [39, 40], "ftproot": [39, 40], "ftpsrv": 19, "ftpuser": [23, 39, 40], "fttx": 12, "ftw": [39, 40], "fu": [19, 21], "fua": 19, "fubar": 21, "fuck": 0, "fuel": 11, "fugit": 31, "fulfil": [25, 31], "full": [0, 1, 3, 5, 8, 10, 11, 12, 16, 18, 19, 20, 23, 24, 25, 32, 33, 34, 36, 38, 39, 40], "fullfilepath": 21, "fulli": [5, 9, 10, 11, 13, 20, 31, 32, 33, 34, 38], "fullnam": [38, 40], "fullscreen": 20, "fullyqualifiederrorid": 20, "ful\ufb01ll": 5, "fun": [1, 19, 20, 38, 39, 40], "func": 0, "function": [3, 4, 6, 7, 8, 9, 12, 14, 16, 18, 19, 20, 21, 23, 33, 34, 36, 37, 38], "function_nam": 31, "function_ptf": 0, "function_ptr": 0, "functool": 1, "fund": [0, 11, 31, 33, 34], "fundament": [9, 10, 11, 34, 41], "funtion": [0, 21], "fupload": [36, 40], "furnitur": 11, "further": [0, 3, 5, 10, 11, 13, 16, 19, 20, 30, 31, 32, 33, 34], "furthermor": [0, 5, 10, 11, 31, 35, 36, 40], "fuse": 31, "fusion": [5, 32], "futur": [0, 5, 11, 14, 21, 25, 31, 32, 33, 34], "futurelearn": 27, "fuzzer": 33, "fuzzi": [20, 21], "fuzzynop": 20, "fvazmvwsbwobo05dskdnwg8mogawzhs8": 19, "fvh": 31, "fw": 19, "fw1": 19, "fx": [11, 19], "fxp1": [35, 40], "fzf": 31, "g": [0, 3, 5, 7, 9, 10, 11, 12, 14, 15, 16, 19, 20, 21, 23, 25, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "g0d": 21, "g0tm1lk": 35, "g0tmi1k": [36, 40], "g1": [36, 40], "g2": 19, "g950": 10, "ga": [10, 11], "gacqacabvahmakqanaaoajabwag8acwarad0ajabyaguayqbkadsaiabpagyaiaaoacqacabvahmaiaatageabgbkacaakaakag4azqb0ahcabwbyagsaygb1agyazgblahiawwawac4algakacgajabwag8acwatadeakqbdacaalqbjag8abgb0ageaaqbuahmaiaaxadaakqapacaaewbiahiazqbhagsafqb9aa0acg": [36, 40], "gain": [0, 9, 10, 11, 16, 18, 19, 20, 21, 24, 25, 31, 32, 33, 34, 36, 37, 38, 40, 41], "galaxi": 32, "galleri": [30, 32], "gallon": 11, "gama": 3, "game": [0, 3, 11, 19, 27, 31], "gap": [11, 16, 32], "garag": 9, "garbag": [0, 19, 32, 33], "garden": 32, "gari": 3, "gartner": 11, "gaseou": 11, "gasolin": 11, "gate": [5, 11, 19], "gatewai": [5, 9, 10, 11, 12, 16, 17, 19, 20, 24, 31, 32, 35, 40], "gatewayport": [36, 40], "gather": [5, 6, 9, 11, 19, 20, 23, 32, 37, 41], "gatt": 16, "gatttool": 16, "gave": [0, 11], "gb": [11, 14, 21, 32], "gbeohydaluqjvmf": 19, "gbp": 8, "gbwahuadabzahqacgblageabqagad0aiaakahaacgbvagmazqbzahmalgbtahqayqbuagqayqbyagqasqbuahaadqb0aa0acgakag8adqb0ahaadqb0ahmadabyaguayqbtacaapqagacqacabyag8aywblahmacwauafmadabhag4azabhahiazabpahuadabwahuadaanaaoauwb0ageacgb0ac0auwbsaguazqbwacaa": [36, 40], "gc": 20, "gcc": [0, 7, 31, 32, 34, 37, 40], "gcd": [38, 40], "gce": [30, 32], "gcepersistentdisk": 32, "gci": [38, 40], "gcp": [14, 32], "gdb": [4, 32, 34, 36, 40], "gdm": [19, 31], "gdp": 25, "ge": 31, "gear": 11, "gecko": [39, 40], "geco": 31, "gedac": 11, "geek": 31, "gelf": 32, "gembird": 19, "gender": 34, "gener": [0, 3, 4, 5, 7, 8, 9, 12, 13, 14, 15, 16, 18, 20, 21, 22, 23, 30, 32, 34, 35, 36, 37, 38, 39, 40], "genet": 34, "genprod": 19, "genrandomstr": [39, 40], "gentoo": 31, "genuin": 9, "genuineintel": [37, 40], "geo": 19, "geo1mdjkxxxxxxxxxxx": 19, "geograph": [11, 34], "geographi": [11, 25], "geometri": 19, "georgiev": 33, "geospati": 32, "geotherm": 10, "geovis": 19, "german": 11, "get": [1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 18, 19, 21, 23, 24, 25, 30, 32, 34, 35, 37, 39], "get_hit": 19, "get_keystrok": 20, "get_miss": 19, "get_netdomaincontrol": 20, "get_netrdpsess": 20, "get_sp": 0, "get_timedscreenshot": 20, "getalltrustrelationship": 20, "getattr": 1, "getbyt": [36, 40], "getcurrentdomain": 20, "getcurrentforest": 20, "getdc": 20, "getdompwinfo": 20, "getegid": 0, "getent": 31, "getenv": [0, 37, 40], "getenvaddr": 0, "getfl": 0, "getflag": 0, "getforest": 20, "getlasterror": 19, "getlin": 0, "getmeout": [36, 40], "getmor": 19, "getnetworkcredenti": [38, 40], "getown": [37, 40], "getpid": 0, "getpriv": [37, 40], "getprotobynam": [36, 40], "getrand": 0, "getruntim": [36, 40], "getset_descriptor": 1, "getstr": [36, 40], "getsystem": 19, "getsystemwebproxi": 21, "gettext": [36, 40], "getti": 7, "gettypefromclsid": 20, "gettypefromprogid": 20, "getuid": [37, 40], "getusrdompwinfo": 20, "gfile": 31, "gg": [3, 31], "ggdb": [0, 19], "ggsn": 12, "ghostview": 31, "ghz": 16, "gi": [31, 38, 40], "giant": 0, "gib": 19, "gid": [0, 19, 31, 36, 37, 39, 40], "gid_t": 0, "gif": 3, "gif87a": 3, "gif89a": 3, "gift": 25, "gigabyt": 31, "gigahertz": 11, "gimp": [3, 31, 39, 40], "girish": 17, "gist": 3, "git": [1, 14, 21, 33, 34], "git_dir": [38, 40], "git_ssh_command": [38, 40], "git_templ": [38, 40], "github": [3, 14, 16, 19, 21, 30, 31, 33, 34, 36, 38, 40, 41], "gitkraken": 32, "gitlab": [14, 32, 33], "gitvers": 19, "give": [0, 1, 3, 5, 6, 9, 10, 11, 13, 16, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 37, 38, 39, 40], "give_shel": 0, "given": [0, 1, 3, 4, 5, 6, 7, 10, 11, 12, 16, 17, 18, 19, 20, 21, 23, 30, 31, 32, 33, 34, 35, 36, 37, 39], "givennam": [8, 19], "gjvpoigijdyq9tgpkxu3gjihb6rtmgsxczajbgnvbaytamlumq4wdaydvqqhewvk": 19, "gkazqbuahqalgbdag8abgbuaguaywb0aguazaagac0abgblacaajab0ahiadqblackaiab7agmabablageabgb1ahaafqanaaoajabwag8acwagad0aiaawadsaiaakagkaiaa9acaamqanaaoadwboagkabablacaakaaoacqaaqagac0azwb0acaamaapacaalqbhag4azaagacgajabwag8acwagac0abab0acaajabu": [36, 40], "gke": 32, "glanc": [10, 22], "glean": 5, "gleg": 11, "glib": 0, "glibc": [0, 32, 34], "glibc2": 0, "glibc_2": 0, "glibc_priv": 0, "glitch": 11, "global": [1, 4, 9, 10, 11, 12, 16, 19, 23, 30, 32, 33, 34, 37, 38, 40], "global_nam": 19, "globalcatalog": 20, "globalknownhostsfil": [36, 40], "globalsb": 8, "globbl": [38, 40], "gloriou": [39, 40], "glossari": 10, "gluster": 32, "gmail": [19, 27], "gmap": 11, "gmic": 3, "gmon": 0, "gmt": [5, 20, 36, 39, 40], "gname": 31, "gnd": 16, "gnmap": 18, "gno": 31, "gnome": [31, 34], "gnu": [0, 4, 7, 32, 34, 36, 40], "gnu_stack": 0, "gnupg": [31, 38, 40], "gnupg1": 31, "gnupg2": 31, "gnuplot": 3, "gnuradio": 16, "go": [0, 3, 4, 5, 8, 9, 10, 11, 13, 16, 18, 19, 20, 21, 25, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "goaccess": 3, "goahead": 19, "goal": [0, 5, 18, 19, 22, 23, 25, 30, 32, 33, 34, 36, 40], "gobust": [36, 40], "gocd": 32, "god": [4, 21, 25], "godaddi": 19, "goe": [0, 1, 11, 12, 14, 16, 18, 23, 33, 37, 40], "golang": [3, 36, 40], "gold": [11, 25, 33], "gone": [3, 11, 30, 37, 40], "gonna": [18, 36, 40], "good": [0, 2, 3, 4, 5, 6, 7, 8, 10, 11, 12, 13, 16, 18, 19, 20, 21, 22, 23, 25, 30, 32, 34, 36, 37, 38, 39, 40], "goodby": 0, "goodfunct": 0, "goodi": 7, "goodwil": 25, "googl": [1, 3, 5, 11, 21, 30, 31, 33, 34, 38, 39], "google_site_web": 18, "googlecs": 18, "googledigg": 18, "googlemail": 19, "googleplu": 18, "gopher": 19, "gorout": 32, "gosecur": [38, 40], "got": [0, 3, 5, 7, 17, 18, 19, 20, 21, 26, 36, 37, 38, 39, 40], "goto": [36, 40], "gotten": [11, 33], "gov": 11, "govern": [12, 25, 32, 33], "gp": [3, 10, 11, 21], "gpasswd": 31, "gpfixup": 20, "gpg": 31, "gpg2john": [38, 40], "gpgcheck": 31, "gpgv": 31, "gpgv1": 31, "gpgv2": 31, "gphl0rdmggqoqmnzsxtk": 19, "gpio": 16, "gpl": [23, 34], "gplink": 8, "gpo": [8, 20, 21, 23, 30], "gpoid": 8, "gponam": 20, "gpostatu": 8, "gpp_autologin": 20, "gpp_password": 20, "gpppassword": 20, "gpr": [0, 10, 12], "gprof": 0, "gpttmpl": 21, "gpu": 33, "gqrx": 16, "grab": [3, 5, 18, 19, 20, 21], "grace": 5, "gracefulli": [5, 32], "grade": [12, 19, 30, 32, 34], "gradual": [10, 11], "grafana_values_custom": 13, "grafana_values_default": 13, "grafcet": 10, "graft": 31, "grai": 5, "grain": [5, 31, 32], "grammar": 11, "grand": 31, "grant": [0, 5, 11, 14, 19, 20, 31, 32, 33, 34, 39, 40], "granular": 11, "graph": [19, 30, 31, 32], "graphic": [11, 34, 39, 40], "grave": 11, "graviti": 19, "graylog": 32, "great": [11, 19, 20, 21, 23, 30, 33, 36, 37, 38, 40], "greater": [0, 3, 4, 5, 10, 11, 30, 31, 33, 35, 36, 40], "greatest": 11, "greatli": [7, 10, 11, 20, 34], "greek": [2, 37, 40], "green": [3, 8, 10, 19, 33, 34], "greet": 0, "grep": [0, 3, 7, 17, 18, 19, 21, 36], "grepabl": [11, 18], "grid": [9, 11, 32, 41], "gridlock": 11, "groovi": 19, "ground": [10, 11, 16, 33], "group": [0, 5, 7, 8, 9, 10, 11, 12, 14, 16, 19, 23, 25, 30, 32, 33, 35, 36, 37, 38], "group1": 19, "group14": 19, "group_nam": [20, 31], "groupadd": [7, 31], "groupbi": 1, "groupcapacitycomplianceerror": 9, "groupcategori": 20, "groupdel": 31, "groupinfo": 31, "groupinstal": 31, "grouplist": 31, "groupmod": 31, "groupnam": [37, 40], "grow": [0, 11, 25, 30, 31, 34], "grown": 11, "growth": [11, 25, 31, 34], "grpc": 32, "grr": 30, "grub": 31, "grub2": 31, "gruber": [38, 40], "gsal3mcemwrdmfpcvlddfprdbzhyxnig2vstc": 19, "gse": 10, "gshadow": 31, "gsm": [11, 12], "gsoap": 19, "gss": 19, "gssapi": 19, "gstreamer": 19, "gt": [5, 31], "gtimeserv": 20, "gtk2": [36, 40], "guarante": [2, 9, 25, 31, 33], "guard": [11, 30, 31], "guardian": 11, "guess": [0, 5, 6, 11, 20, 25, 33, 38, 40], "guessabl": [5, 10], "guest": [18, 19, 20, 21, 31, 32, 36, 37, 40], "gui": [3, 5, 8, 11, 16, 18, 20, 21, 36, 38, 40], "guid": [4, 5, 8, 11, 14, 18, 19, 20, 23, 30, 32, 33, 34, 37, 38, 40], "guidanc": [21, 30, 33, 34, 41], "guidelin": [10, 11, 14, 23, 31, 33], "gun": 11, "gunzip": 31, "gurabl": 5, "gure": 5, "guru": 19, "gw": 12, "gyeal09pwqfnkgmaqzd7cylmqoskqmcp6mxjcpuhbl8wfte4m4ydzrtgjwejmv9u": 19, "gz": [3, 31], "gzip": [3, 5, 16, 37, 40], "h": [0, 3, 5, 6, 18, 19, 20, 21, 23, 31, 36, 37, 38, 39, 40], "h1": [5, 6, 36, 38, 40], "h2": [38, 40], "ha": [0, 1, 3, 4, 5, 7, 8, 9, 10, 11, 12, 14, 16, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "habit": [5, 31], "hack": [0, 1, 7, 11, 18, 31, 35, 38, 40, 41], "hackedfunct": 0, "hackensack": 11, "hacker": [11, 20, 38, 40], "hackertarget": 18, "hacking_randomfil": 0, "hacking_randomtim": 0, "hackrf_info": 16, "hackrf_transf": 16, "hackthebox": [35, 40], "hacktivist": 11, "had": [3, 5, 8, 11, 31, 32, 33, 34, 41], "haddix": 18, "hadn": 11, "hadoop": 32, "hal": 31, "haldaemon": 19, "half": [5, 6, 16, 18, 33], "halfword": 0, "halifax": 11, "hallmark": 11, "halo": [38, 40], "halodc01": [38, 40], "halomem03": [38, 40], "halt": [11, 19, 31], "halv": 5, "hamt": 1, "hamt_array_nod": 1, "hamt_bitmap_nod": 1, "hamt_collision_nod": 1, "hand": [9, 10, 11, 12, 23, 25, 31, 38, 40], "handbook": [3, 34], "handi": [5, 23, 31, 36, 38, 40], "handl": [0, 9, 10, 11, 12, 14, 16, 19, 21, 31, 32, 34, 35, 37, 40], "handler": [19, 20, 21, 36, 39, 40], "handov": 12, "handset": 12, "handshak": [3, 18, 19, 38, 40], "handshakeerror": 19, "hang": 33, "hangul_input": [36, 40], "happen": [0, 3, 5, 10, 11, 12, 14, 16, 18, 19, 25, 30, 31, 32, 33, 36, 37, 38, 39, 40], "happend": 16, "happi": 27, "haproxi": 32, "har": 30, "hard": [0, 2, 3, 5, 10, 11, 14, 32, 33, 34, 38, 39, 40], "harddiskvolume1": [21, 37, 40], "harden": [10, 11, 14, 23, 32, 33], "harder": [11, 18, 31, 33, 34, 36, 40], "hardest": [36, 40], "hardwar": [0, 3, 10, 11, 21, 23, 30, 32, 33, 34, 39, 40], "hardwir": [9, 11], "harm": [10, 11, 31, 33, 39, 40], "harmj0i": 20, "harmon": 10, "harmoni": 32, "harri": 8, "hart": 11, "harvest": 20, "harvestor": 18, "has_journ": 31, "hash": [2, 3, 5, 7, 14, 18, 19, 31, 36, 37, 39], "hash_byt": 19, "hash_is_expand": 19, "hash_power_level": 19, "hashabl": 1, "hashcat": 21, "hashdump": 21, "hashfil": [38, 40], "hashstr": 19, "hasmntopt": 0, "hasn": 31, "hat": [14, 19, 23, 30, 32, 33, 34], "hauptstrass": 8, "hauser": [5, 6], "have": [0, 1, 2, 3, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 23, 24, 25, 27, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "haven": [0, 11, 18, 19, 23, 31], "havex": 11, "havoc": 11, "hawk": 19, "hax": [5, 6], "haxma": [38, 40], "hccap2john": [38, 40], "hciconfig": 16, "hcitool": 16, "hcl": 32, "hd": [11, 39, 40], "hda": 11, "hda6": [39, 40], "hdd": [11, 14, 32], "hdkycr1m5": [36, 40], "hdm": [39, 40], "hdmi": 16, "hdr": [1, 36, 40], "he": [7, 10, 11, 18, 19, 20, 37, 39, 40], "he33llo": 1, "he_flag": 0, "head": [0, 3, 5, 36, 38, 40], "header": [0, 10, 11, 18, 19, 31, 32, 33, 34, 36, 37, 38, 39, 40], "headerdigest": 19, "heal": 10, "health": [10, 21, 25, 32], "healthi": [10, 32], "heap_usage_byt": 19, "hear": 26, "heard": [10, 11], "heart": [10, 30, 31], "heartble_299937": 19, "heat": 11, "heater": [10, 11], "heavier": 31, "heavili": [2, 11, 21], "heck": 0, "heffner": 16, "hei": [10, 26, 38, 40, 41], "heidenhain": 19, "height": [3, 10, 19, 31, 39, 40], "held": [5, 11, 25, 31, 41], "heldesk": 12, "hell": [2, 5], "hellman": [19, 33], "hello": [0, 1, 3, 4, 19, 27, 31, 32, 37, 38, 40], "hello1": 31, "hello2": 31, "hellocheck123": 0, "helloworld": [37, 40], "helm": [13, 32], "helm3": 14, "helo": 19, "help": [2, 3, 5, 6, 8, 10, 11, 14, 16, 18, 19, 20, 21, 22, 23, 24, 25, 27, 30, 32, 33, 37, 38, 39], "helpdesk": [5, 20], "helper": [31, 32], "henc": [2, 3, 5, 11, 12, 21, 31, 32, 36, 40], "her": [10, 11, 31], "here": [0, 1, 3, 5, 6, 7, 8, 9, 10, 11, 15, 16, 18, 19, 20, 21, 23, 26, 31, 33, 34, 36, 37, 38, 39, 40], "hernan": [20, 21], "hertz": 10, "heterogen": 10, "hex": [0, 4, 16, 18, 20, 31, 38, 40], "hex_str": 1, "hexadecim": [0, 1, 3, 5, 31, 38, 40], "hexdump": [0, 3, 4, 16, 19, 38, 39, 40], "hexedit": 31, "hexlifi": 1, "hexstr": [1, 38, 40], "hg": [38, 40], "hh": 3, "hhn": 0, "hi": [0, 2, 3, 7, 10, 11, 18, 19, 20, 21, 30, 31, 37, 40], "hidden": [3, 6, 11, 20, 21, 30, 31, 36, 37, 38, 39, 40], "hidden_stegosauru": 3, "hidden_stream": [38, 40], "hiddenseg": [39, 40], "hide": [3, 5, 11, 31, 33, 36, 37, 38, 40], "hiera": 14, "hierarch": [11, 30, 31, 32], "hierarchi": [3, 11, 31, 32], "high": [0, 10, 11, 12, 14, 16, 18, 19, 20, 25, 30, 32, 33, 34], "higher": [0, 5, 10, 11, 16, 18, 19, 20, 21, 31, 32, 37, 40], "highest": [9, 11, 25, 31], "highestcommittedusn": 19, "highli": [5, 10, 11, 18, 25, 30, 31, 32, 33], "highlight": [5, 11, 19, 23, 25, 30, 31, 33, 36, 40], "highon": [36, 40], "hight": 1, "highwai": 11, "higli": 11, "hijack": [5, 7, 11], "him": [5, 11], "himself": 30, "hinder": [11, 31], "hindman": 32, "hinfo": 19, "hint": [0, 2, 3, 5, 38, 40], "hire": [11, 25, 30, 34], "hiropln": 23, "hist": 3, "hist1": 11, "histcontrol": 31, "histfil": [31, 36, 40], "histfiles": 31, "histignor": 31, "histor": [9, 10, 11, 19, 25, 33, 34, 37, 40], "histori": [0, 5, 10, 14, 18, 20, 21, 33, 34, 38], "historian": 11, "histsiz": 31, "hit": [0, 5, 7, 11, 16, 23, 35, 36, 38, 40], "hivelist": 21, "hkcu": [37, 40], "hkey_current_us": [37, 40], "hkey_local_machin": [8, 11, 37, 40], "hklm": [3, 20, 21, 23, 37, 40], "hklmsecur": 21, "hmac": [19, 21], "hmc": 20, "hmc_pdc": 20, "hmi": 10, "hn": 0, "hnd": 16, "hnfrguvk": 20, "hob": 0, "hoc": [8, 23], "hold": [0, 5, 10, 11, 16, 18, 19, 20, 21, 25, 31, 33, 34], "holder": 20, "hole": [14, 16, 23, 31, 36, 37, 38], "hollygrac": [37, 40], "home": [0, 3, 5, 7, 9, 10, 14, 19, 20, 23, 32, 33, 34, 36, 37, 39], "home_net": 11, "homedirrequir": 8, "homeland": 11, "homenetworkadmin": 19, "homenetworkpassword": 31, "homenetworkssid": 31, "homepag": [8, 38, 40], "homogen": 22, "hon": 12, "honeyport": [38, 40], "honeypot": [38, 40], "honor": 7, "hood": [24, 31, 34], "hook": [0, 11, 20, 37, 38, 40], "hop": 31, "hope": [3, 5, 6, 11, 30], "hopefulli": [30, 33], "horizont": [3, 5, 10, 31, 32], "horn": 11, "hors": 11, "hose": 10, "host": [5, 6, 7, 8, 12, 19, 21, 23, 24, 30, 35, 36, 37, 38, 39, 40], "host10": 19, "host3": 19, "host6": 19, "host_binding_ipv4": 32, "host_reset_timeout": 19, "hostag": 11, "hostil": 30, "hostnam": [5, 8, 11, 18, 20, 24, 31, 32, 36, 37, 39], "hostname1": 19, "hostname2": 19, "hostnamectl": [14, 15], "hostpath": 32, "hostport": [36, 40], "hosts1": [5, 6], "hostsearch": 18, "hot": [10, 11], "hotel": [11, 12], "hotfix": [37, 40], "hotfixid": [37, 40], "hotspot": 11, "hour": [9, 10, 11, 14, 18, 19, 25, 30, 31, 33], "hourli": [10, 20], "hous": [10, 11, 21], "household": 11, "how": [0, 1, 3, 5, 6, 7, 8, 10, 13, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "how_2_pdf_yo": 3, "howev": [0, 1, 5, 7, 8, 9, 10, 11, 12, 14, 16, 17, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "howmanytim": 5, "hp": [5, 11, 19, 24], "hp_data_protector_exec_integutil": 19, "hpdata": 19, "hping": 3, "hpux": 23, "hq8jl9ejp884upflrjpqdxowlk001exsphmczofnceb2tqsktbjvih5qg55eel2d0f": 19, "hr": [10, 11], "href": [39, 40], "ht": 31, "htb": [37, 40], "html": [4, 11, 18, 19, 21, 23, 30, 31, 32, 36, 39], "html2imag": 18, "html5": [36, 40], "htop": 31, "http": [1, 3, 4, 6, 7, 9, 10, 11, 13, 14, 16, 20, 21, 23, 24, 25, 30, 31, 32, 33, 34, 35, 37], "http2": 3, "http_raw_post_data": [39, 40], "httpapi": 19, "httpd": [14, 31, 36, 40], "httpdelai": 19, "httpinspect": 11, "httponli": [5, 36, 39, 40], "httppassword": 19, "httprint": 5, "httpscreenshot": 18, "httpserver": [36, 40], "httpusernam": 19, "huawei": 12, "hub": [9, 11, 18, 23, 32], "hudson": 8, "huge": [0, 11, 23, 36, 40], "huge_fil": 31, "human": [3, 5, 10, 30, 31, 32, 33], "humid": 10, "hundr": [11, 12, 23], "hunt": [5, 10, 25], "huntington": 11, "hup": 31, "hupcl": [36, 40], "hurdl": 20, "hurrican": [11, 18], "hv": 10, "hvac": 11, "hvd": 10, "hve": 21, "hw": 17, "hw_mac": 3, "hwaddress": 19, "hxwdfebltxm": 19, "hxxxx": 20, "hy": 8, "hybrid": [9, 20, 32, 33], "hydraul": 11, "hydro": [10, 11], "hydroelectr": 11, "hydropow": 10, "hydroxid": 11, "hyper": 32, "hyperledg": 34, "hyperlink": 5, "hypertext": [5, 31], "hypervisor": 5, "hz": [3, 10], "i": [0, 1, 2, 3, 5, 6, 7, 8, 9, 12, 13, 15, 17, 19, 22, 23, 24, 25, 27, 30, 32, 33, 35, 36, 37, 38, 39, 41], "i0myyr1jz2icnidcaym": 19, "i1": [36, 40], "i2ceeprom": 16, "i386": [0, 31], "i56kgbsq9rm8ndg3qbarhsbm27": [39, 40], "i686": 0, "ia": [19, 20, 25], "ia32pagedmemorypa": 21, "iana": 19, "iapp": 33, "iast": 33, "ibm": [23, 32], "ic": [10, 20, 36, 38, 40], "icandowhatev": [39, 40], "icann": 19, "icanon": [36, 40], "icat": 3, "iccp": 3, "icd": 10, "icecream": 11, "icla": 34, "icmp": [3, 7, 11, 18, 31], "icmpv6": 31, "ico": 3, "icon": [10, 11, 18, 20, 33], "iconv": [36, 40], "icrnl": [36, 40], "icsot": 11, "icss": 11, "id": [0, 1, 3, 5, 7, 8, 10, 14, 16, 18, 19, 20, 21, 24, 30, 32, 33, 36, 37, 38, 39, 40], "id3": 3, "id_dsa": [36, 40], "id_rsa": [14, 19, 36, 37, 39, 40], "id_rsa2": 14, "ida": 0, "idat": 3, "idea": [0, 3, 5, 10, 11, 18, 19, 20, 25, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "ideal": [11, 14, 18, 19, 23, 25, 30, 33], "idealist": 34, "ident": [9, 11, 20, 31, 32, 33, 34, 36, 40], "identif": [0, 9, 12, 20, 30, 33, 34, 36, 38, 40], "identifi": [0, 1, 3, 6, 8, 10, 12, 15, 19, 21, 23, 25, 30, 34, 35, 36, 37, 38, 40], "identi\ufb01": 5, "ideolog": 34, "idl": [20, 31], "idletim": 20, "idmz": 11, "idproduct": 3, "idstart": 14, "idvendor": 3, "idx": 20, "ie": [36, 40], "ie10win72": 8, "ie3": 24, "iec": [11, 33], "iec104": 10, "iec60870": 10, "iec61850": 10, "iec870": 10, "ieee": [3, 10, 16, 24], "iend": 3, "ietf": 11, "iewatch": 5, "iex": [19, 20, 21, 36, 37, 40], "iexten": [36, 40], "if1400": 32, "ifac": [19, 31], "iface_num": 19, "ifconfig": [11, 17, 32, 36, 38, 40], "ifd": 0, "ifdown": 31, "ifil": 0, "ifindex": 8, "ifm": 21, "ifmark": 19, "ifup": 31, "ignbrk": [36, 40], "igncr": [36, 40], "ignit": [11, 32], "ignor": [0, 5, 11, 20, 21, 23, 31, 33, 34, 38, 40], "ignpar": [36, 40], "igw": 12, "ihdr": 3, "ii": [3, 5, 7, 9, 11, 17, 20, 30, 33, 35, 38], "iid": 10, "iii": [9, 35], "iirc": [36, 40], "iisadmin": 20, "iisapppool": [36, 40], "iiswebpool": [36, 40], "ijk": 20, "il": [11, 19], "ill": 11, "illeg": [0, 5, 6, 11, 31, 38, 40, 41], "illegitim": 9, "illicit": 19, "illiquid": 25, "illustr": [11, 31], "im": [1, 12], "ima": 20, "imag": [0, 1, 5, 7, 11, 12, 14, 16, 18, 19, 21, 27, 31, 34, 36, 38], "imagec": 3, "imagefil": 3, "imagei": 3, "imageinfo": [3, 21], "imagepath": 3, "imagin": [5, 11, 16, 19, 21, 32, 36, 38, 39, 40], "imanufactur": 3, "imap": 31, "imaxbel": [36, 40], "imei": 12, "img": [0, 3, 7, 14, 39, 40], "img1": 3, "img2": 3, "img_stat": 3, "imgoffset": 3, "imgtyp": 3, "imgur": [36, 40], "immatur": 11, "immedi": [0, 5, 10, 11, 20, 25, 31], "immediatedata": 19, "immin": 11, "immun": 11, "immut": 32, "imp": [1, 18, 19, 38, 40], "impacket": [19, 21, 37, 38, 39, 40], "impact": [10, 11, 25, 30, 33, 34], "impair": [11, 33], "impati": 34, "imped": [11, 16], "impenetr": 5, "imperialviolet": 19, "imperson": [5, 11, 20], "implement": [0, 1, 2, 3, 5, 12, 14, 16, 19, 21, 30, 31, 33, 34, 36, 38, 40], "implementatiion": 16, "impli": [11, 20, 31, 33, 34, 35, 40], "implic": [0, 32, 33], "implicit": 34, "import": [1, 2, 3, 5, 6, 7, 8, 9, 10, 11, 12, 16, 18, 19, 20, 21, 23, 25, 30, 33, 34, 36, 37, 38, 39, 40], "importantli": 33, "importlib": 1, "impos": [5, 34, 36, 40], "imposs": [7, 11, 31, 32], "improp": [11, 16], "improperli": 11, "improv": [9, 10, 11, 14, 18, 23, 26, 30, 31, 32, 33, 34, 36, 40], "imsi": 12, "inabl": 11, "inact": [31, 34], "inadequ": 11, "inadvert": [5, 11, 19, 31], "inadvertenli": 7, "inappropri": 34, "inbound": [12, 20, 23, 33, 36, 40], "inbox": 21, "inbuilt": [20, 23], "inc": [5, 11, 19, 21, 34, 37, 40], "incapacit": 11, "incarn": [38, 40], "incendiari": 11, "incent": [10, 33], "incept": 11, "inch": [11, 19], "incid": [3, 30, 38, 40], "incl": 10, "inclin": 32, "includ": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14, 16, 18, 19, 20, 21, 22, 23, 24, 25, 30, 32, 34, 35, 36, 37, 38, 39, 40], "include_path": [39, 40], "includemanagementtool": 8, "includeusernam": [37, 40], "inclus": [5, 21, 34, 35, 36, 38], "incom": [7, 10, 11, 12, 25, 31, 32, 36, 38, 39, 40], "incompat": [0, 3, 31], "incomplet": [0, 5, 16, 33], "inconsist": [23, 30], "incorpor": [5, 9, 11, 31, 33, 34], "incorrect": [0, 5, 11, 16, 19, 31, 33, 36, 40], "incr_hit": 19, "incr_miss": 19, "increas": [0, 10, 20, 25, 31, 32, 33, 34, 35, 40], "increasingli": [11, 33], "incred": 33, "incredibli": [5, 11], "increment": [0, 5, 31, 34], "incrementaldecod": 1, "incrementalencod": 1, "incrementalnewlinedecod": 1, "incub": 32, "incur": [11, 25, 32], "inde": [5, 24, 31], "indefinit": 11, "indemnifi": 34, "independ": [0, 10, 11, 25, 31, 32, 33], "indetermin": 10, "index": [1, 3, 5, 7, 19, 21, 25, 31, 32, 37, 38, 39, 40], "india": [10, 19, 20, 25, 36, 40], "indian": 25, "indiatim": 25, "indic": [0, 1, 3, 4, 5, 7, 8, 10, 11, 16, 19, 20, 25, 30, 31, 33, 34, 36, 40], "indicatio": 11, "indirect": [9, 32], "indirectli": [7, 11, 38, 40], "indispens": 31, "individu": [5, 9, 10, 11, 12, 13, 14, 16, 23, 30, 31, 32], "indusoft": 11, "industri": [8, 9, 10, 12, 25, 30, 41], "indx": 3, "ineffect": 33, "ineffici": 32, "inelig": 33, "inet": [31, 32, 38, 40], "inet6": [31, 32], "inet_aton": [36, 40], "inetd": 23, "inetorgperson": 19, "inetsrv": [39, 40], "inexpens": [3, 11], "inf": 21, "infam": 11, "infeas": 33, "infect": 11, "infecti": 11, "infer": 5, "inferior": 11, "inferno": 2, "infil": [3, 31], "infinit": 8, "inflict": 11, "influenc": [2, 11, 34], "influxdb": 14, "influxdb_values_custom": 13, "influxdb_values_default": 13, "info": [0, 3, 4, 10, 11, 18, 21, 24, 35, 36, 37, 38, 39, 40], "info_hash": 3, "infoblox": 32, "infor": 20, "inform": [0, 1, 5, 6, 7, 8, 9, 12, 14, 15, 16, 22, 23, 24, 25, 30, 32, 33, 34, 35, 39, 41], "information_schema": 5, "infosec": 41, "infosecur": [30, 36, 40], "infrastructur": [10, 20, 23, 25, 33, 34], "infrastructureroleown": 20, "ing": [3, 31, 37, 40], "ing_out": 3, "ingest": 30, "ingredi": 11, "ingress": [11, 13, 23, 32], "inher": 11, "inherit": [19, 23, 31, 34], "inhibit": 16, "ini": [5, 37, 39, 40], "init": [0, 7, 14, 15, 16, 19, 32, 38, 39, 40], "initi": [1, 4, 7, 9, 10, 11, 12, 16, 19, 21, 25, 33, 34, 37, 38, 40, 41], "initial_cmdsn": 19, "initial_login_retry_max": 19, "initialis": 0, "initialr2t": 19, "initiatornam": 19, "initramf": 31, "initrd": [7, 39, 40], "initrecvtimeout": 19, "initsystem": 32, "inittab": 31, "inject": [7, 11, 16, 20, 21, 30, 31, 32, 35, 36, 37, 39], "injur": 11, "inkei": [38, 40], "inkscap": 31, "inl": 11, "inland": 11, "inlcr": [36, 40], "inlin": [11, 19, 32, 38, 40], "inner": [10, 18, 31, 39, 40], "inno": 3, "innov": 10, "inod": [3, 31], "inoper": 11, "inord": 0, "inotifi": [37, 40], "inpck": [36, 40], "inplac": 21, "input": [1, 6, 9, 10, 16, 18, 19, 20, 21, 23, 33, 34, 36, 37], "input1": 5, "input2": 5, "input98": 0, "inputfil": 31, "inputoutput": 19, "inputstr": 8, "inquir": 31, "inquiri": 19, "inquisit": 11, "ins": [11, 36, 40], "insecur": [2, 5, 7, 11, 14, 16, 23, 25, 33, 36, 38, 39, 40], "insensit": [5, 21], "insert": [1, 5, 7, 11, 12, 15, 19, 33, 36, 38, 40], "insert_expand": [36, 40], "insid": [0, 1, 3, 5, 10, 12, 16, 19, 31, 34, 36, 38, 39, 40], "insight": [3, 11, 24, 32], "insignific": [3, 34], "insist": 34, "insofar": 31, "inspec": 30, "inspect": [5, 6, 11, 12, 20, 21, 23, 30, 31, 32, 34, 38, 39, 40], "inspir": 34, "inst1": 31, "instal": [3, 5, 7, 9, 10, 11, 12, 17, 18, 19, 20, 21, 30, 32, 34, 36, 38], "install_dashboard": 14, "install_epel": 14, "install_ipa_serv": 14, "installcrd": 14, "installd": [23, 37, 40], "installedbi": [37, 40], "installedon": [37, 40], "instana": 32, "instanc": [0, 5, 9, 10, 11, 13, 14, 15, 18, 19, 20, 21, 31, 35, 40], "instancemethod": 1, "instancenam": 19, "instancetyp": 8, "instant": 12, "instantan": 10, "instanti": [21, 32], "instantli": [0, 10, 11, 38, 40], "instead": [0, 1, 3, 5, 6, 11, 13, 16, 18, 19, 20, 21, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "institut": [11, 13, 19, 33, 34], "instr": 4, "instruct": [0, 4, 5, 9, 11, 13, 14, 31, 32, 33], "instrument": [10, 11, 19, 20, 23, 25, 32, 34], "insuffici": [11, 19, 34], "insul": [10, 31], "insur": 33, "int": [0, 1, 3, 5, 12, 19, 31, 37, 38, 40], "int3": 0, "intact": [36, 40], "intang": 25, "integ": [0, 2, 3, 4, 7, 10, 24, 33, 38, 40], "integr": [1, 3, 5, 7, 9, 12, 13, 14, 16, 17, 19, 21, 23, 30, 32, 33, 34], "integutil": 19, "intel": [0, 3, 8, 32, 37, 40], "intel64": [32, 37, 40], "intellectu": [11, 25, 34], "intellig": [5, 12, 19, 23, 31, 32, 41], "intend": [5, 7, 9, 10, 11, 18, 19, 25, 31, 32, 34, 37, 39, 40, 41], "intens": [5, 10, 11, 18, 32, 39, 40], "intent": [20, 33, 34], "intention": [11, 33], "inter": [10, 31, 32], "interact": [3, 5, 9, 10, 11, 14, 16, 18, 21, 22, 31, 32, 33, 34, 37, 38], "interactor": 33, "intercept": [5, 11, 12, 16, 39, 40], "interceptor": 16, "interchang": 10, "interconnect": [10, 12], "interest": [0, 5, 10, 11, 19, 23, 25, 33, 34, 36, 38, 40], "interestingli": [11, 33], "interf": 5, "interfac": [1, 3, 5, 7, 9, 12, 14, 15, 16, 17, 18, 20, 21, 23, 30, 33, 34, 36, 37, 38, 39], "interfacealia": 8, "interfacedescript": 8, "interfaceindex": 8, "interfer": [5, 11, 16, 17, 33, 34], "interlock": 10, "intermedi": [5, 10, 11, 12, 19, 32], "intermediari": [9, 16], "intern": [0, 2, 3, 5, 9, 12, 14, 19, 23, 24, 30, 31, 32, 33, 34, 36, 38, 40], "internalt": 12, "internet": [3, 5, 12, 14, 18, 19, 23, 31, 33, 34, 36, 39, 40], "internetwork": 10, "interoper": [9, 10, 11], "interopservic": [38, 40], "interpanel": 10, "interpret": [0, 1, 5, 10, 11, 31, 36, 38, 39, 40], "interprocess": 32, "interrog": [10, 11], "interrupt": [3, 10, 11, 31], "intersect": [10, 11], "interv": [2, 11, 20, 32, 37, 40], "intervent": [10, 11, 32], "intiadda": 19, "intial": [13, 36, 40], "intitl": 18, "intns1": 19, "intns2": 19, "intr": [36, 40], "intrins": [11, 21], "introduc": [5, 7, 9, 11, 12, 22, 25, 30, 31, 32, 34, 37, 39, 40], "introduct": [0, 10, 27, 31, 32], "introspect": 31, "intrud": [5, 11, 38, 39, 40], "intrus": [5, 18, 23, 30, 31, 33, 38, 40], "intuit": [10, 30], "inurl": [18, 39, 40], "invalid": [0, 5, 6, 8, 17, 19, 36, 40], "invas": 32, "invent": [2, 11, 34], "inventori": [10, 25, 32, 33], "invers": [10, 35, 38, 40], "invert": [3, 31], "investig": [3, 5, 11, 30, 31, 32, 34, 38, 40], "investor": 25, "invit": 11, "invoc": [10, 31], "invoic": 9, "invok": [0, 3, 4, 7, 19, 21, 24, 31, 32, 36, 37, 38, 40], "invoke_sessiongoph": 20, "invoke_vnc": 20, "invokecommand": [36, 40], "invokeid": 10, "involv": [0, 5, 6, 9, 10, 11, 16, 21, 31, 32, 33, 34, 38, 39, 40], "invscout": 31, "io": [3, 10, 11, 13, 14, 16, 19, 23, 31, 32, 37, 38, 39, 40], "ioa": 10, "iodef": 30, "iom": 12, "ion": 33, "iostat": 7, "iot": [32, 33], "ip": [3, 5, 6, 7, 9, 10, 12, 14, 15, 17, 19, 20, 21, 23, 30, 32, 36, 37, 39], "ip4000r": 19, "ip6tabl": 31, "ip_address": [14, 19], "ip_address_of_attacked_machin": 3, "ip_address_of_machin": [36, 40], "ip_address_rang": 18, "ip_forward": 11, "ip_psexec": [38, 40], "ipa_cli": 14, "ipa_master_fqdn": 14, "ipa_rol": 14, "ipa_serv": 14, "ipa_server_fqdn": 14, "ipaddress": [8, 14, 19, 20, 35, 36, 38, 40], "ipaddresspool": 14, "ipam": 32, "ipaus": 14, "ipc": [5, 6, 8, 20, 38, 39, 40], "ipc_priv": 31, "ipconfig": [11, 19, 20], "ipenablerout": 11, "ipf": 31, "iphlpsvc": 19, "iphon": [5, 38, 40], "ipmi": 19, "ipo": 25, "ipp": 19, "ippanel": [38, 40], "iproduct": 3, "ipsec": [10, 11, 31], "ipt_conntrack": 31, "iptabl": [11, 38, 40], "iptraf": 31, "ipv4": [7, 8, 11, 12, 14, 19, 20, 23, 24, 31, 38, 40], "ipv4address": 8, "ipv6": [1, 7, 14, 18, 19, 20, 24, 31, 35, 36, 38, 40], "ipv6_autocfg": 19, "ipv6_linkloc": 19, "ipv6_rout": 19, "ipv6actnow": 19, "ipv6address": 8, "ipvar": 11, "ipvlan": 32, "iqn": 19, "ir": [10, 11], "iranian": 11, "irc": [18, 34], "irp": 3, "irrat": 2, "irregular": 11, "irrelev": [5, 33], "irrespect": [11, 31, 32], "irrespons": 33, "irrevers": 11, "irrig": 11, "irrit": 34, "is_color_mask_given": 3, "is_color_mask_her": 3, "isagraf": 11, "isakmp": 1, "isapimodul": [39, 40], "isatap": [19, 20], "isc": [19, 38, 40], "isclust": 19, "iscriti": 20, "iscriticalsystemobject": 8, "iscsi": [32, 35, 40], "iscsi_ifacenam": 19, "isdelet": 8, "iseri": 23, "iserialnumb": 3, "isexpir": 5, "isfdqn": 20, "isglobalcatalogreadi": 19, "isig": [36, 40], "island": 11, "islic": 1, "isn": [1, 9, 11, 36, 40], "isnt": 23, "iso": [9, 11, 19, 33, 34, 36, 38, 40], "isol": [10, 11, 22, 30, 32], "isolat": 10, "isolinux": 31, "isotop": 11, "isouvvd46": [5, 6], "isp": 12, "isset": [36, 39, 40], "issu": [3, 4, 5, 6, 7, 9, 10, 11, 12, 13, 14, 15, 16, 18, 19, 20, 23, 25, 31, 32, 33, 35, 36], "issuer": [3, 13, 14, 19], "issynchron": 19, "ist": [18, 19, 20], "istanbul": [37, 40], "istiod": 32, "istrip": [36, 40], "isview": 19, "ital": 3, "itch": 34, "itd": 32, "item": [1, 3, 5, 11, 12, 20, 21, 25, 31, 32, 33, 34, 38, 39, 40], "itemgett": 1, "itemnam": 3, "itemproperti": [23, 37, 40], "iter": [1, 5, 20, 31, 33], "itertool": 1, "itig": 11, "its": [0, 1, 2, 3, 4, 5, 7, 8, 9, 10, 11, 12, 14, 18, 19, 20, 22, 23, 24, 25, 30, 32, 33, 34, 35, 36, 37, 38, 39, 40], "itself": [0, 3, 4, 5, 9, 10, 11, 19, 20, 30, 31, 32, 33, 34, 36, 37, 40], "itxt": 3, "iu": [39, 40], "iub_cp": 12, "iub_up": 12, "iuc": 12, "iuclc": [36, 40], "iup": 12, "iur": 12, "iuserprofile2": 19, "iutf8": [36, 40], "iv": [2, 9, 35], "ivh": [14, 31], "iwconfig": 17, "iwvqswohbuhjr3pagbkwtaimwiodmudi": 19, "ixani": [36, 40], "ixoff": [36, 40], "ixon": [36, 40], "iyvn": 19, "iz": 0, "izz": 0, "j": [0, 3, 4, 16, 19, 21, 31, 32, 33, 34, 36, 38, 39, 40], "j1": [36, 40], "j610": 19, "j7n": 8, "ja": [4, 19], "jad": 5, "jae": 4, "jaeger": 32, "jail": [36, 40], "jam": 16, "jan": [3, 5, 19, 20, 31, 39, 40], "jane": [8, 34], "janedo": 21, "janitori": 34, "januari": 31, "japan": 30, "jar": [3, 5, 18, 19, 38, 40], "jason": [18, 21], "java": [3, 5, 11, 18, 24, 32, 33], "java_arg": 14, "java_rmi_serv": 19, "javac": 5, "javascript": [5, 6, 18, 19, 30, 36, 40], "javascriptengin": 19, "javasnoop": 5, "javasyspriv": 19, "jb": 4, "jbarcia": 19, "jbdahaipl8qm": [36, 40], "jbe": 4, "jboss": [35, 40], "jc": 4, "jcvf": 31, "jcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxlfm": 31, "jcxz": 4, "jd": [3, 38, 40], "jdk": 5, "jdoe": 31, "jduck": [39, 40], "je": 4, "jecxz": 4, "jenkins_enum": 19, "jenkins_login": 19, "jenkins_script_consol": 19, "jersei": 11, "jessica": 30, "jetdirect": 19, "jetstack": 14, "jetti": 19, "jexplor": [20, 38, 40], "jf": 31, "jffs2": [16, 31], "jfif": 3, "jg": 4, "jge": 4, "jhtml": [38, 40], "jigsaw": 18, "jinja2": [37, 40], "jj": 3, "jk": 19, "jk_worker": 19, "jklogfil": 19, "jkloglevel": 19, "jklogstampformat": 19, "jkmount": 19, "jkoption": 19, "jkrequestlogformat": 19, "jkshmfile": 19, "jkworkersfil": 19, "jl": 4, "jle": 4, "jmp": 0, "jmpeax": 0, "jmx": 19, "jn": 4, "jna": 4, "jnae": 4, "jnb": 4, "jnbe": 4, "jnc": 4, "jne": 4, "jng": [3, 4], "jnge": 4, "jnl": 4, "jnle": 4, "jno": 4, "jnp": 4, "jnz": 4, "jo": 4, "job": [11, 19, 20, 21, 23, 30, 32, 33, 34, 36, 37, 38, 39, 40], "joe": 5, "john": [8, 19, 20, 31, 33, 34, 38, 40], "johndo": 21, "johnsmith": 19, "join": [2, 3, 8, 14, 20, 30, 34], "jonathan": 20, "joomla": [36, 40], "josephttabcbackspaceshift_l": 19, "josjikawa": 21, "journal": [3, 10, 11, 21, 31], "journalctl": 31, "journald": 32, "journalist": [5, 33], "journei": [10, 20, 41], "jp": 4, "jpe": 4, "jpeg": [3, 21, 31, 39, 40], "jpg": [1, 3, 31, 38, 39, 40], "jpo": 4, "jq": 14, "jqueri": [18, 36, 40], "jrubi": 14, "jruby_util": 14, "jsessionid": 5, "jske4317": 8, "json": [3, 14, 18, 32, 36, 40], "jsonfil": 32, "jsonraw": 3, "jsp": [5, 19, 38], "jsp_shell_reverse_tcp": [36, 40], "jsteg": 3, "jstego": 3, "jswat": 5, "jtagenum": 16, "jtagul": 16, "jtr_mssql_fast": 19, "ju": 31, "juic": 33, "juici": 23, "jul": [20, 31, 39, 40], "julia": [31, 32], "julian": 3, "jump": [0, 10, 11, 23, 31], "jumper": 11, "jumplist": [36, 40], "jun": [5, 19, 20, 31, 36, 40], "june": [11, 30, 31], "junip": 23, "junk": 0, "juno": 23, "jupyt": 13, "jupyter_values_default": 13, "jurisdict": [12, 34], "just": [0, 1, 2, 3, 4, 5, 6, 8, 10, 11, 14, 16, 18, 19, 20, 21, 23, 24, 31, 32, 33, 34, 36, 37, 38, 39, 40], "justifi": [11, 33], "justwork": 16, "jvm": 5, "jvoo": 20, "jx2tbm6gjvc4wnoq7okdh1zh2rxn1plu": 19, "jxplorer": 19, "jyvbpv": 3, "jz": 4, "k": [2, 3, 18, 19, 20, 21, 31, 38, 40], "k1": [36, 40], "k10905620f642071f1f6dbbd34b381f9e3e89494380fbee8b84fec80e6df5d82d56": 14, "k3": 15, "k3s_token": 14, "k3s_url": 14, "k3sserver": 14, "k3sworker1": 14, "k3sworker2": 14, "k8": 32, "k8sworker1": 14, "k8sworker2": 14, "k9w7": 19, "kadmin": 14, "kafka": 32, "kag8adwbzafwaxabzahkacwb0aguabqazadiaxabcagmabqbkac4azqb4aguajwanaaoajabwahiabwbjaguacwbzac4auwb0ageacgb0aekabgbmag8algbsaguazabpahiazqbjahqauwb0ageabgbkageacgbkaekabgbwahuadaagad0aiaaxaa0acgakahaacgbvagmazqbzahmalgbtahqayqbyahqasqbuagyabw": [36, 40], "kai": 29, "kaitai_struct_format": 3, "kali": [4, 7, 19, 20, 23, 31, 36, 39, 40], "kali1": 7, "karl": 20, "kasperski": 19, "kathi": [38, 40], "kati": 33, "kazqbuahqaiaa9acaatgblahcalqbpagiaagblagmadaagahmaeqbzahqazqbtac4abgblahqalgbzag8aywbraguadabzac4adabjahaaywbsagkazqbuahqadqakacqaywbsagkazqbuahqalgbjag8abgbuaguaywb0acgajabhagqazabyaguacwbzacwajabwag8acgb0ackadqakacqacwb0ahiazqbhag0aiaa9a": [36, 40], "kb": [39, 40], "kb160177": 8, "kb4100347": [37, 40], "kb4343669": [37, 40], "kb4343902": [37, 40], "kbibbkkl": 20, "kbid": [37, 40], "kbyte": 31, "kcanjcpggevozqwnfrvvbxu2u9zc5u": [36, 40], "kdbg": 21, "kdbx": [38, 40], "kdc": [8, 14, 19, 20], "kde": [31, 34], "kdiff3": 16, "kdm": 31, "ke": 31, "keadm": 14, "keep": [1, 4, 5, 6, 7, 9, 10, 11, 12, 14, 16, 18, 19, 20, 31, 32, 33, 34, 37, 38, 40], "keepass": [38, 40], "kei": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 12, 16, 17, 18, 19, 20, 21, 24, 25, 30, 34, 37, 39], "kennedi": [36, 40], "kentico": [36, 40], "kept": [11, 31, 36, 40], "kerbero": [5, 8, 14, 18, 20, 21], "kerberosencryptiontyp": 8, "kern": [36, 40], "kernbas": 21, "kernel": [0, 3, 4, 16, 21, 23, 24, 32, 33, 34, 36, 38, 39], "kernelci": 32, "kernelpan": 0, "kessler": 3, "kevgir": 19, "kex_algorithm": 19, "keyboard": [4, 7, 10, 32], "keychain2john": [38, 40], "keycod": 19, "keyfil": [3, 38, 40], "keygen": [19, 36, 40], "keymap": [36, 40], "keypad": 11, "keyr": 31, "keyring2john": [38, 40], "keystore2john": [38, 40], "keystrok": [11, 19, 31], "keytab": 14, "keytool": [38, 40], "keyword": [19, 31], "khelpcent": 31, "ki4ovkaqyeqicqjt": 31, "kiahtgbg": 20, "kibana": 32, "kibugcheckdata": 21, "kick": [11, 20], "kickoff": 20, "kiddi3": 18, "kill": [0, 7, 11, 17, 36, 40], "killal": 31, "killerbe": 16, "killmod": 31, "kilobyt": 31, "kilohertz": 11, "kilomet": 11, "kilometr": 10, "kind": [0, 3, 5, 10, 11, 14, 16, 19, 31, 32, 34, 36, 38, 39, 40], "kindli": [34, 41], "kinesi": 32, "kingdom": 34, "kingston": 11, "kino": 31, "kirbi": 20, "kit": [16, 23], "kitchen": 30, "kite": 25, "kiwi": 21, "kk": 3, "klist": 20, "klm": 5, "kmem": 31, "kmod": 14, "knativ": 32, "knife": [33, 38, 40], "knock": [11, 37, 38, 40], "knockd": 37, "knockoff": 0, "know": [0, 3, 5, 10, 13, 18, 19, 21, 25, 26, 31, 33, 34, 36, 37, 38, 39, 40], "knowledg": [2, 3, 11, 18, 19, 25, 27, 31, 33, 34, 35, 40, 41], "known": [0, 2, 3, 5, 7, 9, 10, 11, 12, 14, 16, 18, 19, 20, 23, 30, 31, 32, 33, 34, 36, 38, 40], "known_host": 14, "known_usernam": 20, "knownvulner": 11, "konami": 3, "konica": 19, "konsol": 31, "korelogicrul": 21, "korelogicrulesadd2010everywher": 21, "korelogicrulesmonthsfullprefac": 21, "korelogicrulesprependjustspeci": 21, "kp1imu75hyge4qthldjff0i": 19, "kp_begin": 19, "kp_down": 19, "kp_insert": 19, "kp_left": 19, "kp_right": 19, "kp_up": 19, "kpartx": 3, "kptr_restrict": 7, "kr": 19, "krb5ccname": 20, "krb5i": 19, "krb5kdc": 14, "krb5kdc_err_c_principal_unknown": 19, "krb5kdc_err_preauth_requir": 19, "krbtg": 19, "krbtgt": 20, "ks_http": 19, "ksc": 3, "ksetup": 20, "ksh": [31, 36, 40], "kso": 31, "kspath": 3, "kspp": 32, "ksv": 3, "ksy": 3, "ksysguard": 31, "kth": 31, "ktpass": 20, "kuanxxxx": 19, "kube": [14, 32], "kube_api_advertise_address": 14, "kubeadm_init": 14, "kubecf": 32, "kubeconfig": 14, "kubectl": 13, "kubelet": 32, "kubernet": [13, 34], "kubernetes_serv": 14, "kubescap": 14, "kubetool": 14, "kumar": 27, "kuryr": 32, "kuser_shared_data": 21, "kuxfqfqklbva9eo6iuacrjiuaqbsztsvjyffjzo": [36, 40], "kv": 10, "kvm": 14, "kwallet2john": [38, 40], "l": [0, 3, 4, 5, 6, 7, 11, 14, 15, 18, 20, 21, 30, 32, 33, 35, 36, 38, 39], "l1": [36, 40], "l2advertis": 14, "l3": 32, "l32bxb": 19, "l3pbb8om5bxxmkydwvennvrog": 19, "l4": 32, "l7": [10, 32], "la": [4, 18], "lab": [1, 8, 11, 19, 20, 33, 34], "label": [4, 8, 12, 16, 32, 37, 39, 40], "labor": 11, "laboratori": 11, "labori": 5, "labview": 19, "lack": [9, 11, 16, 25, 34], "lad": [38, 40], "ladder": 11, "lag": 5, "lah": [7, 36, 39, 40], "lahi": 31, "lai": [11, 18], "laid": 0, "lake": 11, "lambda": [36, 40], "lan": [10, 19, 21, 30], "land": [1, 11, 12, 25], "landesk": 19, "landi": 11, "landscap": [9, 18, 31], "landstrass": 8, "lang": [39, 40], "langid": 5, "langmap": [36, 40], "languag": [0, 4, 5, 11, 12, 16, 19, 21, 22, 23, 30, 32, 33, 34, 35, 36], "lanip": [38, 40], "lanmanserv": 8, "lansweep": 19, "lansweeper_collector": 19, "lap": 30, "laptop": [7, 11, 17, 21, 30, 32, 37, 40], "lar": 3, "larg": [0, 3, 5, 9, 10, 11, 16, 18, 19, 21, 25, 32, 33, 34, 35, 36, 38, 40], "large_fil": 31, "larger": [11, 12, 30, 33, 34, 37, 40], "largest": [0, 11, 18, 19, 31], "laserjet": [11, 19], "last": [0, 3, 5, 7, 10, 11, 12, 14, 18, 19, 20, 21, 23, 25, 31, 33, 36, 38, 39, 40], "last_nam": 14, "lastb": 31, "lastbadpasswordattempt": 8, "lastknownpar": 8, "lastli": [35, 40], "lastlog": [7, 31], "lastlogoff": 8, "lastlogon": [8, 20, 37, 40], "lastlogond": [8, 20], "lastlogontimestamp": 8, "lastnam": 21, "lastwritetim": [20, 37, 40], "late": [11, 12], "latenc": [11, 12, 18, 19, 20, 32], "later": [3, 4, 5, 8, 11, 16, 19, 20, 21, 25, 31, 33, 34, 39, 40], "latest": [5, 10, 11, 13, 14, 30, 31, 32], "latex": [0, 34], "latter": [5, 31, 38, 40], "laudanum": 19, "launch": [0, 1, 11, 16, 18, 19, 20, 21, 24, 31, 32, 36, 37, 39, 40], "launcher": [19, 20, 21, 32], "launchpad": [32, 38, 40], "launchstr": 3, "law": [11, 12, 33, 34], "lawn": 11, "lawvraftith7n": 19, "lawyer": 34, "lax": 11, "layer": [9, 10, 11, 12, 19, 23, 30, 31, 32, 38, 40], "layer1": 21, "layer2": 21, "layer3": 21, "layout": [0, 31, 32, 38, 40], "lazi": 31, "lazili": 0, "lb": 3, "lbe": 16, "lbfactor": 19, "lcd": [11, 20], "ld": [0, 4, 7, 20, 31, 37, 40], "ld_library_path": 31, "ldap": [14, 18, 20], "ldapdn": 20, "ldapfilt": 8, "ldaponli": 20, "ldapservicenam": 19, "ldaptest": 19, "ldapv3": 19, "ldc": 10, "ldconfig": 31, "ldd": [0, 31], "ldf": 19, "ldif": 19, "ldp": [12, 20], "ldpreload": 0, "le": [0, 5, 31], "lea": [0, 4], "lead": [5, 7, 11, 18, 19, 31, 33, 37, 39, 40], "leader": [32, 34], "leadership": 11, "leading_login": 19, "leak": [5, 7, 11, 33, 34], "leakag": [5, 11, 16, 31], "leakg": 12, "lean": 32, "learn": [0, 4, 18, 19, 20, 21, 23, 25, 27, 30, 31, 32, 33, 34, 35, 40], "learnt": 11, "leas": [25, 34], "least": [0, 3, 7, 10, 12, 16, 19, 21, 23, 31, 32, 33, 34, 36, 40], "leav": [0, 10, 11, 19, 21, 31, 34, 38, 40, 41], "lectur": 10, "led": 33, "left": [0, 3, 5, 11, 19, 23, 25, 31, 32, 36, 38, 40], "leftmost": 5, "leftov": [0, 3], "leg": 3, "legaci": [10, 11, 18, 21, 32], "legal": [11, 12, 18, 33], "legend": [0, 5, 19], "legitim": [3, 9, 11, 20, 31], "len": [0, 2, 3, 5, 14, 31, 38, 40], "len_fil": 3, "len_head": 3, "length": [0, 1, 2, 3, 7, 10, 12, 18, 19, 20, 21, 33, 35, 36, 38, 39, 40], "leon": [37, 40], "leonjza": 19, "lescan": 16, "less": [0, 3, 4, 10, 11, 12, 18, 19, 21, 25, 32, 33, 34, 36, 39, 40], "lesse": 25, "lessen": [10, 11, 34], "lesser": [31, 34], "lesystem": 5, "let": [0, 1, 3, 4, 5, 8, 10, 11, 12, 18, 19, 20, 21, 23, 24, 26, 30, 32, 33, 34, 36, 37, 38, 39, 40], "lethal": 10, "letter": [2, 3, 5, 7, 11, 18, 19, 21, 31, 36, 40], "lev": 4, "level": [0, 3, 4, 5, 6, 7, 9, 12, 14, 16, 18, 19, 20, 23, 25, 30, 32, 33, 34, 35, 36, 37, 38, 40], "levelxx": [37, 40], "leverag": [5, 9, 11, 20, 30, 32, 39, 40], "levi": 4, "leviathan": 27, "leviathan2": 4, "leviathan3": 4, "leviathan_pass": 4, "leviathanpass": 4, "lf": [19, 31], "lfc191": 34, "lfd102": 34, "lfd104x": 33, "lfd106x": 33, "lff": [35, 38, 40], "lfi": [36, 38], "lfs151x": 32, "lfs162x": 32, "lfx": 33, "lgpl": 34, "lgpo": [8, 30], "lgr1000": 19, "lh": 3, "lhofiuumup5ywdrk6jpiujvzjdrcdxl63e9r950": 19, "lhost": [21, 36, 40], "li": [0, 9, 31, 32, 36, 40], "liabl": 34, "liaison": 19, "lib": [0, 1, 4, 14, 19, 32, 39, 40], "lib64": [0, 31, 39, 40], "libacl": 31, "libapach2": 19, "libapt": 31, "libc": [31, 32], "libc6": 31, "libc_base_addr": 0, "libcal": [36, 40], "libcanberra": 31, "libdl": 31, "libdmmp": 31, "libellengass": 8, "libev": 19, "libexpat": 31, "libffi": 1, "libgcc": 0, "libgcc1": 31, "libgpm": 31, "libltdl": 31, "liblua": 18, "libm": 31, "libmpss": 16, "libncurs": 31, "libnetwork": 32, "libogg": 31, "libpam": 7, "libpcap": 11, "libpcre2": 31, "libpst": 21, "libpthread": 31, "libpython3": 31, "librari": [1, 3, 4, 10, 11, 14, 16, 18, 19, 20, 23, 30, 32, 33, 34, 37, 40], "libravatar": 18, "libreoffic": 31, "libselinux": 31, "libssl": 1, "libstdc": 31, "libtdb": 31, "libtinfo": 31, "libutil": 31, "libvirt": [14, 32], "libvorbi": 31, "libvorbisfil": 31, "libwin": 31, "libyaml": 31, "libz": 31, "libzstd": 31, "licenc": 10, "licens": [9, 10, 14, 23, 31, 33, 38, 39, 40], "license": 34, "lie": 11, "life": [11, 25, 30, 32], "lifecycl": [10, 11, 24, 32], "lifetim": [10, 11, 32], "lift": 19, "lig": 12, "light": [10, 11, 16, 18, 19, 32], "lightdm": 31, "lightn": 10, "lightstep": 32, "lighttpd": [19, 36, 40], "lightweight": [10, 20, 31, 32], "like": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14, 15, 16, 18, 19, 20, 21, 23, 25, 26, 30, 31, 32, 33, 35, 37, 38, 39], "likelihood": [11, 33], "likewis": [0, 11, 31], "liklihood": 11, "lime": [38, 40], "limit": [0, 6, 7, 9, 10, 13, 16, 18, 20, 21, 23, 25, 32, 34, 36, 37, 40], "limit_maxbyt": 19, "limitless": [38, 40], "lin": 12, "linbit": 32, "line": [0, 1, 2, 3, 4, 6, 7, 9, 10, 12, 14, 16, 18, 20, 21, 23, 25, 32, 33, 34, 36, 37, 38, 39, 40], "lineag": 11, "linear": 3, "linearli": [5, 6], "linebreak": [36, 40], "linenumb": 31, "liner": [1, 20, 36, 37, 38, 40], "link": [0, 1, 3, 4, 5, 8, 9, 10, 11, 12, 14, 16, 19, 20, 21, 30, 32, 33, 34, 37, 38, 39, 40], "linkabl": 0, "linkag": 0, "linkedin": [18, 21], "linker": [0, 31], "linkfromdomaindigg": 18, "linklocal_autocfg": 19, "linksi": 19, "linkspe": 8, "lint": 30, "linu": [11, 31, 34], "linux": [0, 3, 4, 7, 10, 14, 16, 18, 19, 21, 30, 33, 34, 35, 38, 41], "linux_command": [38, 40], "linux_x86": 0, "linuxbas": 0, "linuxfound": 34, "linuxkit": 32, "lio": 19, "liquid": [10, 25], "lispind": [36, 40], "list": [0, 1, 2, 3, 4, 5, 6, 7, 8, 10, 11, 12, 13, 14, 16, 17, 18, 20, 23, 24, 25, 30, 32, 33, 34, 35, 37, 38], "list_iter": 1, "list_reverseiter": 1, "listbug": 7, "listcmd": [36, 40], "listdir": 1, "listen": [0, 1, 11, 14, 16, 18, 19, 20, 21, 34, 36, 37, 38, 39], "listen_disabled_num": 19, "listfil": 31, "listner": 19, "lit": 24, "liter": [4, 5, 11, 20, 38, 40], "literari": 34, "literatur": 11, "littl": [0, 3, 5, 10, 11, 18, 21, 24, 25, 33, 34, 36, 39, 40], "liu": 10, "live": [3, 5, 11, 16, 19, 21, 25, 30, 31, 32, 34, 37, 40], "livedata": 11, "livemint": 25, "liveupd": 19, "ll": [0, 3, 5, 10, 21, 36, 37, 39, 40], "llmnr": [8, 10, 18], "lm": 18, "lm_111t5_3b": 3, "lmh": 20, "lmhash": [19, 20, 21], "lmn": 20, "lmnvbtaefw0xmzaymdexmzi3mzzafw0zodaxmdewmdawmdfamfaxczajbgnvbayt": 19, "lmowfpassword": 20, "lmpasswordhistori": 20, "lmt": 12, "lmv2": 18, "ln": [0, 3, 4, 14, 19, 31, 37, 38, 40], "lnext": [36, 40], "lnk": 3, "lo": [3, 11, 15, 31, 32, 38, 40], "load": [0, 1, 3, 4, 5, 6, 7, 10, 11, 12, 16, 18, 19, 20, 21, 32, 36, 39, 40], "load_fil": [5, 21, 36, 40], "loadabl": 32, "loader": [0, 1, 19, 23], "loaderflag": 19, "loan": 25, "lob": 0, "lobbi": 11, "loc": [5, 19], "local": [0, 1, 3, 5, 7, 9, 10, 11, 12, 13, 15, 16, 17, 18, 19, 23, 30, 31, 32, 33, 34, 35, 38], "local_binari": 1, "local_exploit_suggest": [37, 40], "local_socket": [36, 40], "localaccounttokenfilterpolici": 20, "localaddress": [38, 40], "localcredenti": 8, "localfil": 31, "localgroup": [20, 37, 40], "localgroupmemb": [37, 40], "localhost": [0, 5, 6, 18, 19, 31, 32, 36, 39, 40], "localinstal": 31, "localitynam": [19, 35, 40], "localmap": [36, 40], "localpolicyflag": 8, "localservic": 21, "localsystem": 20, "localtim": 19, "localus": [37, 40], "locat": [3, 4, 5, 8, 9, 10, 11, 14, 15, 16, 18, 20, 21, 32, 36, 38, 39], "location_of_payload": [36, 40], "lock": [0, 1, 7, 10, 11, 19, 23, 31, 32, 33, 34, 36, 40], "lockdown": 31, "lockedout": 8, "lockhe": 22, "lockout": [11, 19, 23], "lodg": 11, "lodz": 11, "log": [6, 9, 14, 16, 18, 19, 20, 21, 23, 24, 30, 33, 37, 38, 39], "log_martian": 7, "log_unkfail_enab": 7, "logarithm": 3, "logcheck": 31, "logfil": 31, "logfilecheck": [39, 40], "logged_in": [5, 6], "loggedin": [5, 6], "logger": [14, 21], "loghost": 7, "logic": [3, 5, 10, 12, 16, 19, 23, 30, 31, 32], "logicaldisk": [37, 40], "login": [0, 3, 6, 10, 11, 14, 20, 23, 33, 36, 39], "login_timeout": 19, "loginprompt": 20, "logjam": 19, "loglevel": 21, "lognam": [31, 38, 40], "logo": 34, "logoff": 20, "logon": [8, 20, 23, 37, 40], "logon_queri": 20, "logoncount": [8, 20], "logonpassword": 20, "logonserv": [37, 40], "logonworkst": 8, "logout": [10, 11, 19], "logout_timeout": 19, "logrot": 31, "lol": [38, 40], "lon": 10, "long": [0, 5, 7, 10, 11, 12, 18, 19, 21, 25, 31, 32, 33, 34, 36, 37, 38], "longdomain": 21, "longer": [5, 7, 11, 16, 18, 20, 31, 33, 34, 38, 40], "longev": 34, "longrange_iter": 1, "lonwork": 11, "look": [0, 2, 3, 5, 8, 11, 14, 15, 16, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 36, 38, 39, 40], "lookup": [0, 16, 20, 23, 32, 35, 40], "lookupsid": 20, "loop": [0, 3, 9, 10, 19, 33, 37, 40], "loop19": 3, "loop19p1": 3, "loop19p2": 3, "loopback": [31, 32, 36, 38, 40], "loos": [7, 11, 16, 39, 40], "loosen": 34, "loot": [19, 36, 40], "lorawan": 9, "lose": [11, 25], "loss": [3, 10, 11, 21, 25, 31], "lost": [3, 11, 32, 39, 40], "lost_seg": 3, "lot": [0, 3, 5, 7, 11, 18, 19, 20, 21, 23, 31, 32, 33, 34, 36, 40], "lotu": 5, "lotus_domino": 19, "lotus_domino_hash": 19, "lotus_domino_login": 19, "lotus_domino_vers": 19, "love": [4, 11, 20, 26, 29, 30], "low": [0, 3, 5, 10, 11, 12, 16, 21, 25, 33], "lower": [0, 1, 4, 5, 7, 9, 10, 11, 18, 23, 31, 32, 33, 34, 36, 38, 40], "lower_up": [32, 38, 40], "lowercas": [3, 5, 11, 21, 31, 38, 40], "lowest": [0, 3, 10, 11, 25, 31, 37, 40], "loyal": 25, "lp": [19, 31], "lp1": 31, "lpadmin": 31, "lpcm": 3, "lpd": 31, "lpmove": 31, "lpoption": 31, "lport": [21, 36, 40], "lpq": 31, "lpr": 31, "lprm": 31, "lpstat": 31, "lr": 31, "lrpc": 19, "lrwxrwxrwx": [7, 31, 37, 40], "lsa": [20, 21], "lsaenumsid": 20, "lsass": 19, "lsb": [0, 4, 16, 36, 40], "lsbfirst": 19, "lsdev": 31, "lshw": 31, "lsl": 20, "lsmod": 31, "lspci": 31, "lspcmcia": 31, "lsr": 7, "lst": 21, "lstat": 0, "lsusb": 31, "lt": [3, 5, 19, 31, 38, 40], "lt_compressworkspac": 19, "lt_findricset": 19, "lt_findricset_cursor": 19, "lt_mergeworkspac": 19, "lt_removeworkspac": 19, "lt_rollbackworkspac": 19, "ltd": [3, 25, 35, 37, 40], "ltern": 5, "ltrace": [0, 4], "lu_reset_timeout": 19, "lua": 18, "lucki": [0, 3, 11, 36, 40], "luckili": 11, "lug": 11, "lukemftpd": 19, "luks2john": [38, 40], "lull": 11, "lunch": 11, "lure": 20, "luser": 20, "lv": 10, "lvm2": 14, "lvnqisuzt": 19, "lvp": [35, 36, 40], "lwdudwk": 19, "lxc": [30, 39, 40], "lync": [18, 19], "lyni": [7, 30], "lynx": 31, "lynxdownload": [36, 40], "lynxshel": [36, 40], "lyric": 2, "lzbp": 3, "lzma": 16, "m": [0, 1, 3, 6, 8, 10, 11, 12, 17, 18, 20, 21, 25, 27, 30, 31, 32, 35, 36, 37, 38, 39, 40], "m1": [3, 36, 40], "m1522nf": 19, "m1ew": 3, "m2000": 12, "m32": 0, "m337x": 19, "m8yw9gwr7dooa9zufrkyvrqt53bfyzspiulzpabnky0x5ma40ao56sq4h1nnqb7zbdcwmder3vebq": 19, "m_dp_na_1": 10, "m_sp_na_1": 10, "ma": [11, 19, 20, 21], "mac": [3, 5, 11, 16, 17, 18, 19, 21, 23, 30, 31, 32], "mac_algorithm": 19, "macaddress": 8, "macchang": 17, "machin": [0, 3, 4, 5, 7, 8, 10, 12, 15, 16, 17, 18, 19, 23, 24, 25, 27, 30, 31, 34, 35, 36, 37, 38, 39], "machinenam": 20, "machineri": [11, 25], "macho": 21, "maco": [32, 36, 40], "macomb": 11, "macro": [4, 11, 31], "macvlan": 32, "made": [3, 5, 10, 11, 16, 19, 20, 23, 25, 30, 31, 32, 33, 34, 36, 38, 39, 40], "madeavail": 33, "maesh": 32, "mag": [10, 16], "mageia": 31, "magic": [0, 7, 21, 31, 38], "magic_quot": 5, "magnet": 11, "magnitud": 11, "mai": [0, 1, 2, 3, 4, 5, 6, 7, 9, 10, 11, 12, 14, 15, 16, 17, 18, 19, 20, 21, 23, 25, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "mail": [3, 5, 11, 12, 18, 19, 31, 34, 35, 38, 39], "mail_all_cmnd": [38, 40], "mail_alwai": [38, 40], "mail_no_host": [38, 40], "mail_no_perm": [38, 40], "mail_no_us": [38, 40], "mailbox": [11, 19], "mailfrom": 19, "mailserv": 18, "mailspool": 31, "mailto": [19, 38, 40], "maimon": [35, 40], "main": [0, 3, 5, 9, 10, 11, 12, 14, 16, 19, 23, 30, 31, 32, 33, 34, 36, 37, 38, 40], "main_targetfil": 0, "maindom": 23, "maindomhiropln": 23, "mainli": [0, 3, 5, 7, 10, 11, 13, 16, 21, 31, 32, 33, 37, 38, 39, 40], "mainlin": 33, "mainpid": 31, "maintain": [0, 5, 9, 10, 12, 14, 16, 19, 23, 25, 30, 31, 32, 33, 34, 35, 36, 40], "mainten": [9, 10, 32, 34], "maintscript": 31, "major": [9, 11, 16, 18, 23, 30, 31, 32, 33, 34, 35, 37, 40], "majorli": 30, "make": [0, 1, 3, 5, 7, 8, 9, 10, 11, 12, 15, 16, 18, 19, 20, 21, 22, 23, 25, 27, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "makefil": 0, "maker": [11, 19], "makerandompath": [39, 40], "makerandompathfromfilenam": [39, 40], "malebolg": 2, "malform": [5, 11], "malfunct": [10, 34], "malici": [3, 5, 7, 11, 16, 18, 19, 20, 23, 30, 33, 37, 38, 39, 40], "malloc": 0, "malwar": [3, 5, 30], "malwaredigg": 18, "man": [11, 16, 18, 19, 20, 36, 37, 40], "manag": [0, 1, 5, 7, 9, 10, 13, 15, 16, 18, 20, 25, 34, 36, 38, 39], "manage_host_entri": 14, "managedbi": 8, "managedbuff": 1, "mandatori": [5, 9, 11], "mangement": 19, "mangl": 31, "mangoos": 19, "mani": [1, 3, 5, 7, 9, 10, 11, 12, 14, 16, 18, 20, 21, 23, 24, 25, 30, 31, 32, 33, 35, 36, 37, 38, 40], "manifest": [0, 14, 32], "manipul": [2, 5, 11, 16, 23, 37, 38, 39, 40], "manitoba": 11, "manmad": 11, "manner": [9, 10, 11, 12, 18, 19, 21, 30, 31, 32, 34], "manpag": 7, "manti": 30, "manual": [0, 5, 7, 8, 10, 11, 17, 18, 19, 20, 21, 23, 30, 31, 32, 33, 36, 37, 38, 40], "manufactur": [9, 12, 16, 24, 25, 34, 37, 40], "map": [0, 1, 2, 3, 9, 10, 12, 19, 20, 23, 31, 32, 34, 35, 36, 38, 40], "mapper": [3, 11, 32], "mappingproxi": 1, "mar": [2, 19, 31, 37, 40], "margaret": 11, "margin": 25, "margo": [38, 40], "mariadb": [19, 38, 40], "mario": 11, "maritim": [2, 11], "mark": [0, 5, 8, 20, 21, 31, 33], "markauto": 31, "marker": 5, "market": [10, 11, 12, 16, 24, 34], "marketplac": [14, 32], "marketsmojo": 25, "markup": [18, 22, 31], "marshal": [38, 40], "martin": [22, 33], "mask": [3, 19, 20, 31, 35, 40], "masquerad": [20, 31, 32], "mass": [4, 7, 11, 31], "massiv": [11, 33, 34], "master": [3, 10, 14, 16, 20, 37, 38, 40], "mastlog": 19, "masv": 33, "match": [0, 1, 3, 5, 7, 10, 11, 16, 17, 18, 19, 20, 30, 31, 34, 35, 36, 38, 40], "matcher": 31, "materi": [5, 11, 14, 25, 34, 41], "math": [2, 33], "mathemat": [0, 11, 21, 33], "mathopd": 19, "matrikon": 11, "matter": [4, 5, 10, 11, 18, 30, 33, 34], "mattter": 31, "matur": [11, 25], "maven": 32, "max": [5, 6, 7, 18, 31, 37, 39, 40], "max_file_s": [39, 40], "max_rid": 20, "maxbatchreturnmessag": 19, "maxbsonobjects": 19, "maxburstlength": 19, "maxconnect": 19, "maxconnidletim": 19, "maxdatagramrecv": 19, "maxdepth": [37, 40], "maxim": [5, 31, 33], "maximum": [0, 1, 3, 5, 10, 19, 21, 25, 31, 33, 37, 40], "maxlength": 5, "maxlogs": 21, "maxnotificationperconn": 19, "maxoutstandingr2t": 19, "maxpages": 19, "maxpercentdirsyncrequest": 19, "maxpoolthread": 19, "maxquerydur": 19, "maxreceivebuff": 19, "maxrecvdatasegmentlength": 19, "maxresultsets": 19, "maxresultsetsperconn": 19, "maxsc": 21, "maxtemptables": 19, "maxvalrang": 19, "maxvalrangetransit": 19, "maxvalu": 8, "maxxmitdatasegmentlength": 19, "mayb": [2, 3, 10, 11, 16, 19, 21, 25, 32, 34, 36, 37, 38, 39, 40], "mb": [3, 21, 32, 37, 40], "mbap": 11, "mbedthi": 19, "mbit": [38, 40], "mbox": 21, "mbr": 3, "mbsa": 30, "mbse": 12, "mc": [8, 20], "mcafe": [11, 18], "mcc": 10, "mcsvc": 20, "mcvv2hshww0nmxs2xeosjy65i2nqrbbfq": 19, "md": [14, 33], "md4": 21, "md5": [5, 19, 21, 31, 37, 39], "md5sum": 31, "mdf": 19, "mdk3": 3, "mdk4": 3, "mdn": 18, "mdsec": 5, "mdw": 16, "me": [0, 1, 11, 18, 19, 20, 28, 31, 34, 36, 38, 40], "mean": [0, 1, 2, 3, 5, 6, 7, 9, 10, 11, 12, 14, 16, 19, 20, 21, 25, 31, 32, 33, 34, 36, 37, 39, 40], "meaningless": [11, 31], "meant": [11, 16, 31, 32], "meantim": 11, "measur": [3, 9, 12, 25, 31, 33, 34], "mechan": [4, 9, 10, 11, 12, 16, 19, 24, 31, 32, 33, 37, 40], "media": [3, 12, 16, 19, 20, 21, 32, 39, 40], "media0": 31, "media1": 31, "media2": 31, "mediaextract": 3, "mediat": 33, "medic": 11, "medium": [9, 10, 11, 16, 32, 34, 36, 40], "meet": [7, 10, 11, 21, 23, 32, 33], "megabyt": 31, "meld": 16, "melinda": [0, 4], "melissa": 0, "mellow": 34, "mem": [4, 19, 31], "member": [5, 7, 11, 14, 20, 30, 31, 32, 34, 37, 39, 40], "member_descriptor": 1, "memberof": [8, 20], "membership": [11, 21, 23, 31, 32, 35], "memcach": 32, "memcmp": 19, "memdump": 3, "meminfo": 31, "memor": 30, "memori": [1, 15, 16, 19, 20, 31, 32, 33, 34, 37, 38, 39, 40], "memoryview": 1, "memset": 0, "mention": [0, 3, 5, 8, 9, 10, 11, 18, 19, 20, 21, 31, 32, 35, 36, 37, 38, 40], "mentor": 34, "menu": [3, 5, 16, 20, 23, 31, 36, 37, 38, 40], "merchant": 11, "merci": 11, "mercuri": [38, 40], "mere": 33, "merg": [10, 11, 31, 32, 33], "mergeworkspac": 19, "merit": 23, "mesh": [10, 12, 16], "mesospher": 32, "mess": [30, 31, 34], "messag": [0, 2, 3, 4, 5, 7, 9, 11, 12, 14, 16, 18, 20, 21, 24, 25, 31, 32, 33, 35, 36, 37, 38, 39, 40], "message_data": 0, "messagedigest": 33, "messeng": 20, "messgin": 12, "met": [11, 30, 31, 32, 36, 40], "met_inject": 20, "meta": [3, 31, 38, 39, 40], "metacharact": 5, "metadata": [11, 14, 18, 31, 32, 34, 39, 40], "metal": 10, "metapackag": 31, "metapsloit": 19, "metasploit": [0, 11], "metcalf": [8, 20, 21], "meteogram": 19, "meteorolog": 19, "meter": [9, 11, 16], "meterepret": 19, "meterprert": 21, "meterpret": [19, 20, 21, 37, 38, 39], "method": [0, 1, 2, 4, 8, 9, 12, 13, 14, 18, 21, 23, 24, 25, 30, 32, 33, 34, 37, 38, 39], "method_descriptor": 1, "methodcal": 1, "methodinvocationexcept": 20, "methodologi": [10, 11, 30], "metr": 10, "metric": [11, 13, 19, 25, 32, 34], "metropolitan": 11, "mfa": 11, "mfm": 10, "mfp": 19, "mft": 3, "mg3100": 19, "mg5300": 19, "mg6100": 19, "mget": 20, "mgmt": 19, "mgt": 17, "mgw": 12, "mh": 21, "mhe": 19, "mhe_dmp_liv": 19, "mht": 21, "mhz": [16, 37, 40], "mi": [10, 30], "mi2": 24, "mib": [3, 18], "mic": 21, "michigan": 11, "micom": 10, "micro": [10, 11, 31], "micro800": 11, "micro850": 11, "microcontrol": 16, "micrologix": 19, "microos": 32, "microprocessor": 11, "microsoft": [3, 5, 8, 10, 11, 18, 23, 30, 32, 36, 37, 38, 40], "microvm": 32, "mid": [3, 36, 40], "middl": [3, 10, 11, 16, 18, 19, 33, 36, 40], "midwai": 11, "might": [0, 1, 2, 3, 5, 6, 7, 9, 10, 11, 12, 13, 14, 15, 16, 18, 19, 20, 21, 23, 25, 27, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "mightypork": 3, "migr": 31, "migrat": [11, 32, 37, 40], "miidotccaqkgawibagijanqxaruc7sygma0gcsqgsib3dqebbquamgsxczajbgnv": 19, "mike": 31, "militari": [5, 6, 11, 33], "milli": 11, "milliamp": 11, "millimet": [19, 31], "million": [11, 18, 37, 40], "millisecond": [10, 11], "mime": [19, 31], "mimic": [11, 31], "mimikatz": [19, 21, 38, 40], "mimikatz_enum_chrom": 20, "mimikatz_enum_vault_cr": 20, "mimikittenz": 20, "min": [5, 6, 7, 11, 18, 31, 36, 40], "min_password_length": 20, "minal": 31, "mind": [5, 11, 16, 31, 32, 34], "mindmayb": 11, "mindset": 32, "mine": [11, 19], "minecraft": 18, "miner": 11, "minicom": 16, "minim": [5, 11, 21, 31, 32, 34, 38, 40], "minimum": [3, 10, 11, 19, 31, 33, 34], "minio": 32, "minion": 32, "miniserv": [36, 40], "minolta": 19, "minor": [31, 33], "minorvers": 21, "minresultset": 19, "mint": 11, "mintchipvinyltaco": 11, "minu": [2, 31], "minut": [3, 10, 11, 18, 19, 20, 23, 31, 32, 38, 40], "mip": [11, 16], "mirag": 32, "mirageo": 32, "miranti": 32, "mirror": [3, 10, 11, 31], "mirrorlist": 31, "misbehav": 33, "misc": [11, 19, 35, 40], "misconfigur": [23, 30, 36, 37, 38, 40], "misinterpret": 11, "mislead": 33, "mismatch": 31, "miso": 16, "misp": 30, "miss": [0, 1, 2, 3, 5, 7, 11, 16, 18, 19, 20, 23, 30, 31, 33, 36, 37, 40], "mission": [10, 11, 34], "mississauga": 11, "mistak": [11, 12, 31, 32, 34], "mistakenli": [11, 18], "mistyp": 7, "misus": [9, 30, 31, 33, 34, 39, 40], "mit": [19, 34], "mitig": [21, 30, 33], "mitm": 11, "mitr": [19, 33], "mitsubishi": 10, "mittal": 20, "mix": [11, 14, 25, 31, 32, 34], "mkcol": [36, 38, 40], "mkconfig": 31, "mkdir": [0, 4, 14, 19, 31, 32, 39, 40], "mkf": 3, "mkfifo": [36, 37, 39, 40], "mknod": [36, 40], "mkpasswd": [7, 37, 40], "mksession": [36, 40], "mktemp": 31, "ml1100": 19, "ml1400": 19, "mlfb": 10, "mlock": 33, "mluxxxx": 20, "mlxxxxh": 20, "mm": [3, 12, 13, 31], "mm2xp": 10, "mmap": 3, "mmc20rce": 20, "mmcblk0": 31, "mmcblk0p1": 31, "mmcblk0p2": 31, "mme": 12, "mmi": 11, "mmin": [31, 38, 40], "mml": [3, 12], "mmpfndatabas": 21, "mmsc": 12, "mmxu": 10, "mmxu1": 10, "mname": 19, "mnemon": 4, "mng": 3, "mnslogonaccount": 8, "mnt": [3, 14, 20, 21, 31, 38, 39, 40], "mo": [5, 20], "mobil": [9, 10, 11, 16, 19, 32, 33], "mobileaaa": 12, "mobileum": 12, "mock": 33, "mod": [14, 16, 19], "mod_fastcgi": 19, "mod_jk": 19, "mod_oprocmgr": 19, "mod_perl": 19, "mod_plsql": 19, "mod_ssl": 19, "mod_statu": 18, "modal": 12, "modbu": [10, 19], "modbus_admin": 11, "modbus_data": 11, "modbus_func": 11, "modbus_unit": 11, "mode": [0, 3, 5, 6, 7, 9, 10, 11, 12, 16, 17, 18, 20, 23, 33, 35, 37, 39], "model": [5, 9, 10, 16, 19, 23, 30, 37, 40], "modellog": 19, "modem": [10, 11], "moder": [35, 40], "modern": [10, 11, 31, 32], "modernizr": [36, 40], "modif": [3, 5, 11, 16, 19, 20, 32, 33, 34, 38, 40], "modifi": [0, 1, 3, 5, 6, 7, 8, 11, 16, 19, 20, 21, 23, 27, 32, 33, 34, 36, 38], "modificationtim": 8, "modify_fnam": [36, 40], "modifytimestamp": 8, "modi\ufb01": 5, "modjk": 19, "modp": 19, "modprob": [7, 31], "modsecur": 30, "modsecurtii": 7, "modul": [1, 3, 5, 6, 7, 8, 10, 11, 12, 14, 16, 18, 21, 23, 24, 30, 32, 33, 37, 38], "modular": [11, 23, 31, 32, 38, 40], "module_nam": [39, 40], "module_opt": 20, "module_vers": 14, "moduledef": 1, "modules_list": 19, "modulespec": 1, "modulo": 1, "modulu": 19, "mof": [30, 38, 39, 40], "mojo": 25, "moment": [0, 11, 18], "momentarili": 11, "mon": [19, 20, 31, 39, 40], "monarch": 10, "monei": [11, 25, 30, 33, 34], "moneycontrol": 25, "mongod": 19, "mongodb": 30, "mongodb_login": 19, "monitor": [5, 7, 9, 11, 12, 14, 16, 17, 18, 19, 21, 23, 24, 30, 34], "monk": 34, "monkei": 19, "monolith": 32, "monom": 11, "month": [11, 20, 30, 31], "monthli": [11, 20, 25], "montreal": 11, "more": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 16, 18, 19, 20, 21, 22, 23, 25, 30, 31, 33, 34, 35, 36, 38, 39], "moreov": [11, 18, 38, 40], "morgan": 2, "morisson": 19, "morla": 0, "morn": 11, "mors": 3, "mosi": 16, "most": [0, 1, 3, 5, 6, 7, 8, 10, 11, 12, 16, 18, 19, 20, 21, 24, 25, 30, 32, 33, 34, 36, 37, 38, 39, 40], "mostli": [0, 10, 11, 18, 19, 20, 21, 31, 32, 33, 35, 36, 37, 38, 39, 40], "motd": [0, 7, 14, 23, 31], "mote": 16, "moteiv": 16, "motherboard": 31, "motil": 25, "motion": [11, 19], "motiv": [11, 25], "motor": [10, 11], "motorist": 11, "mound": 21, "mount": [10, 14, 16, 20, 21, 36, 38, 39, 40], "mountdirectori": 21, "mountnam": [38, 40], "mous": [31, 36, 40], "mouse_data": 3, "mouse_dec": [36, 40], "mouse_gpm": [36, 40], "mouse_jsbterm": [36, 40], "mouse_netterm": [36, 40], "mouse_sgr": [36, 40], "mouse_sysmous": [36, 40], "mouse_urxvt": [36, 40], "mouse_xterm": [36, 40], "mousehighlight": 31, "mouseshap": [36, 40], "moussouri": 33, "mov": [0, 4], "move": [0, 3, 4, 5, 10, 11, 14, 16, 18, 19, 25, 32, 36, 38, 40], "move_uploaded_fil": [39, 40], "movement": [3, 8, 11, 20, 25, 31], "movi": [31, 34], "movl": 0, "moxa": 10, "moxahttp": 19, "mozilla": [3, 5, 33, 34, 38, 39, 40], "mp": 19, "mp3": [3, 11], "mp495": 19, "mph": 11, "mpl": [12, 34], "mplayer": [19, 31], "mple": 5, "mpssvc": 19, "mpstat": 7, "mq": 32, "mqanaaoajablag4aywbvagqaaqbuagcaiaa9acaabgblahcalqbvagiaagblagmadaagafmaeqbzahqazqbtac4avablahgadaauaeeacwbjagkaaqbfag4aywbvagqaaqbuagcadqakahcaaabpagwazqaoacqabwb1ahqacab1ahqacwb0ahiazqbhag0algbqaguazqbracgakqagac0abgblacaalqaxackaewakag8": [36, 40], "mr": 8, "mrdnsiw": 3, "ms08": 20, "ms15": [37, 40], "ms_agentsigningcertif": 19, "ms_policyeventprocessinglogin": 19, "ms_policysigningcertif": 19, "ms_policytsqlexecutionlogin": 19, "ms_smoextendedsigningcertif": 19, "ms_sqlauthenticatorcertif": 19, "ms_sqlreplicationsigningcertif": 19, "ms_sqlresourcesigningcertif": 19, "msb": 16, "msbin1": 5, "mscash2": 21, "mscf": 3, "msd": 8, "msdb": 19, "msdbdata": 19, "msdblog": 19, "msde": 19, "msdn": 20, "msdtc": 19, "msdtcprx": 19, "msf": [19, 21, 24, 39], "msf4": [39, 40], "msf5": 19, "msfconsol": [19, 36, 39, 40], "msfelfscan": 0, "msfvenom": [20, 21, 38], "msg": [11, 19], "msi": [3, 20], "msisdn": 12, "msiserv": 20, "msl": 20, "msp": [5, 9], "mspaint": 3, "msrdp": 3, "msrpc": 19, "mss": [12, 18, 35, 40], "mssql": [5, 18, 20, 24], "mssql11": 19, "mssql_enum": 19, "mssql_enum_domain_account": 19, "mssql_enum_domain_accounts_sqli": 19, "mssql_enum_sql_login": 19, "mssql_escalate_dbown": 19, "mssql_escalate_dbowner_sqli": 19, "mssql_escalate_execute_a": 19, "mssql_escalate_execute_as_sqli": 19, "mssql_exec": 19, "mssql_findandsampledata": 19, "mssql_hashdump": 19, "mssql_idf": 19, "mssql_login": 19, "mssql_ntlm_stealer": 19, "mssql_ntlm_stealer_sqli": 19, "mssql_payload": 19, "mssql_ping": 19, "mssql_schemadump": 19, "mssql_sql": 19, "mssql_sql_file": 19, "mssqlserver": 19, "mssqlsvc": 20, "msutil": 20, "mt": [8, 35, 37, 40], "mt_rand": [39, 40], "mtab": 23, "mtime": 31, "mtr": 31, "mtsfpu": [35, 40], "mtu": [19, 32, 38, 40], "mubix": [19, 20], "muc": 1, "much": [0, 1, 3, 5, 10, 11, 18, 19, 20, 25, 31, 32, 33, 34], "multi": [9, 10, 12, 16, 18, 19, 20, 21, 25, 33, 36, 40], "multi_byt": [36, 40], "multi_lang": [36, 40], "multiarch": 16, "multibyt": 5, "multicast": [8, 10, 12, 19, 32, 38, 40], "multifactor": 5, "multimedia": [3, 12], "multipart": [39, 40], "multipl": [1, 2, 3, 4, 5, 7, 8, 9, 10, 11, 12, 13, 14, 16, 18, 19, 20, 21, 23, 30, 32, 33, 34, 36, 37, 38, 40], "multiplex": [12, 16], "multipli": [3, 10, 11], "multiprocessor": [37, 40], "multirdp": 20, "multistag": 5, "multistep": 5, "multiten": 32, "multitool": 19, "multitud": [11, 30], "multpl": [36, 40], "mumbai": [35, 40], "mumdc01": 8, "municip": 11, "music": [3, 11, 34], "musl": 32, "must": [3, 4, 5, 7, 9, 10, 11, 16, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40], "mutt": 31, "mutual": [9, 16, 34], "mv": [3, 14, 31, 36, 40], "mw": 10, "mwh": 10, "mwr": 30, "mx": [10, 19, 35, 40], "mx1": 19, "mx340": 19, "mx870": 19, "mx890": 19, "mx920": 19, "my": [0, 3, 8, 11, 13, 18, 19, 20, 30, 31, 32, 36, 37, 39, 40], "my_bridg": 32, "my_command": 31, "my_str": 31, "myapp": [0, 32], "mycommand": 0, "mydb": 19, "mydir": 31, "mydmp": 19, "mydoc": 19, "mydomain": [19, 21], "mydownloadjob": [39, 40], "myentri": 20, "myenv": 1, "myfil": [0, 31], "mynam": 31, "mypass1234": 21, "mypw": 31, "myscript": [37, 40], "mysit": [11, 31], "mysql": [11, 30, 32, 38], "mysql_hashdump": 19, "mysql_histori": [36, 40], "mysql_login": 19, "mysql_vers": 19, "mysqli_connect": [5, 6], "mysqli_fetch_arrai": [5, 6], "mysqli_num_row": [5, 6], "mysqli_queri": [5, 6], "mysqli_real_escape_str": 1, "mytempl": [38, 40], "myth": 25, "myval": 1, "myvncpassword": 19, "mz": 3, "mzp": 3, "mzscheme": [36, 40], "n": [0, 1, 3, 5, 8, 10, 11, 12, 13, 17, 18, 19, 20, 23, 31, 35, 36, 37, 38, 39, 40], "n0": 7, "n1": [7, 36, 40], "n2": 7, "n2000": 19, "n2p19kahmfg": 8, "n3": 7, "n4": 7, "n46isnekpt": 18, "na": [3, 19, 30], "naa": 0, "nac": 30, "nadmin": 19, "nagio": 32, "nai": 19, "name": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 21, 22, 23, 24, 25, 31, 33, 34, 35, 37, 38, 39], "name1": [36, 40], "name2": [36, 40], "name_serv": 18, "namemash": [36, 40], "nameserv": [18, 19], "namespac": [1, 13, 14, 20], "namingcontext": 19, "namingroleown": 20, "nand": 3, "nano": 31, "nano_histori": [36, 40], "nap": 5, "naptr": 19, "narnia": [0, 27], "narnia0": 0, "narnia1": 0, "narnia2": 0, "narnia3": 0, "narnia4": 0, "narnia5": 0, "narnia6": 0, "narnia61": 0, "narnia7": 0, "narnia71": 0, "narnia8": 0, "narnia_pass": 0, "narrow": [5, 11], "nas001": 18, "nas01": 18, "nasm": 0, "nasti": 34, "nat": [31, 32, 39, 40], "nation": [9, 19, 25, 33, 34], "nativ": [5, 11, 12, 14, 19, 23], "natur": [5, 10, 11, 25, 30, 31, 34], "naught": 11, "nava": 8, "navig": [3, 5, 11, 15, 20, 30, 34], "nazi": 2, "nbf": 5, "nbfc": 25, "nbn": 18, "nbstat": 11, "nbt": [8, 18], "nbtstat": [11, 20], "nc": [0, 1, 18, 35, 37, 39], "nc64": [36, 40], "ncacn_ip_tcp": [19, 20], "ncacn_np": [19, 20], "ncacn_tcp": 19, "ncalrpc": 19, "ncast": 5, "ncat": [36, 38, 40], "ncftp": 31, "nchar": 5, "ncm": 23, "nconnect": [36, 40], "ncp": 32, "ncrack": [36, 40], "nda": 34, "ndarrai": 1, "ndiff": 11, "nding": 10, "ndmp": [36, 40], "ndvp": 32, "ne": [0, 31, 38, 40], "nearbi": 11, "nearli": [0, 3, 10, 11, 21, 31, 32], "neccessarili": 11, "necessari": [0, 5, 9, 10, 11, 14, 16, 18, 19, 23, 30, 31, 32, 33, 34], "necessarili": [11, 21, 31, 33], "need": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 14, 15, 16, 17, 18, 19, 20, 21, 23, 24, 25, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "needs_recoveri": 31, "nefari": 11, "neg": [0, 3, 10, 11, 33], "negat": [11, 31], "neglect": [11, 34], "negoti": [9, 19, 33, 39, 40], "neighbor": [10, 11, 18], "neither": [7, 18, 31], "nelson": 32, "nemad": 17, "nerc": [10, 11], "nerd": 31, "nerdtre": 31, "nerdtreefocu": 31, "nerdtreetoggl": 31, "ness": 4, "nessu": [18, 19], "nest": [5, 11, 33], "nestedgroup": 21, "net": [7, 11, 14, 15, 19, 21, 31, 32, 33, 36, 37, 38, 39, 40], "net_ifacenam": 19, "net_sessionid": [5, 36, 40], "netadapt": 8, "netapp": 32, "netbeans_intg": [36, 40], "netbio": [8, 10, 20, 38, 40], "netblock": 18, "netboss": 12, "netbsd": 19, "netcat": [0, 18, 38], "netdd": 20, "netddedsm": 20, "netdom": [38, 40], "netfileserv": 21, "netflix": 32, "netgat": 19, "netgear": [17, 19], "netgpogroup": 20, "netipaddress": 8, "netlogon": [8, 20], "netman": 20, "netmask": [11, 17, 18, 31, 32], "netnew": 19, "netonli": 20, "netou": 20, "netplan": 15, "netrc": 23, "netripp": 20, "netscreen": 23, "netsessionenum": 8, "netsh": [37, 38, 40], "netsit": 20, "netspark": 5, "netstat": [31, 37, 38, 40], "netview": 10, "networ": 12, "network": [5, 7, 9, 13, 14, 15, 16, 17, 21, 22, 24, 33, 34, 35, 36], "networkinform": [36, 40], "networkservic": [19, 21], "neutral": [10, 34], "neutrino": 11, "neutron": 32, "never": [0, 11, 14, 31, 33, 34, 38, 39, 40], "nevertheless": 31, "new": [0, 1, 5, 7, 10, 11, 12, 14, 16, 18, 23, 25, 32, 33, 34, 36, 37, 38, 39, 40], "new_delhi": 19, "new_pag": [36, 40], "new_titl": 14, "newark": 11, "newbi": 32, "newbranch": 5, "newdelhi": 19, "newer": [11, 19, 31, 33, 34, 36, 40], "newfil": 31, "newgrp": 31, "newjob": 19, "newli": [21, 31, 32, 33], "newlin": [0, 1, 3, 5, 6, 31, 36, 40], "newmailboxcr": 21, "newnam": [8, 20], "newpag": [36, 40], "newpassword": 20, "newprint": 31, "newsgroup": 19, "newsgroupdbo": 19, "newspap": 11, "nexenta": 32, "next": [0, 3, 4, 5, 7, 10, 11, 12, 14, 15, 16, 18, 19, 20, 21, 22, 23, 25, 27, 31, 32, 33, 36, 38, 40], "nexu": 33, "nf": 32, "nf284": 19, "nfd": 14, "nfs4": 19, "nfs_111": 19, "nfsd": 31, "nfsmount": 19, "nfsnobodi": 19, "nfsshare": 19, "nfsv2": 19, "nfsv3": 19, "nfsv4": 19, "nfu": 0, "ng": [3, 11, 17, 32], "nginx": [7, 11, 13, 19, 30, 32], "ngx": 19, "nharpsi": 21, "nhost": [36, 40], "ni": 31, "nic": [37, 40], "nice": [5, 7, 32, 36, 37, 40], "nicola": [38, 40], "nidss": 11, "nifti": 25, "nigerian": 11, "night": [10, 11, 25], "nikhil": 20, "nikto": 5, "nil": 19, "nilclass": 19, "nine": [11, 18], "ninja": [18, 19], "ninjacopi": 21, "nishang": [36, 38, 40], "nist": [11, 23, 32, 33], "nitro": 32, "nix": [3, 11], "nl0": [36, 40], "nldc": 10, "nltest": [38, 40], "nm": [12, 31], "nmagent": 20, "nmap": [3, 17, 38], "nmap_scan": 19, "nmblookup": [18, 20], "nn": [3, 37, 40], "nnet": 7, "nnot": 0, "no_all_squash": 19, "no_overflow": 0, "no_root_squash": 19, "no_subtree_check": 19, "noaccess": 19, "noarch": 14, "nobodi": [19, 31, 37, 40], "nobody4": 19, "nodal": 10, "node": [8, 10, 11, 12, 18, 19, 20, 23, 31, 32, 33, 34, 36, 38, 39, 40], "nodeb": 12, "nodefault": 19, "nodenam": 31, "noexec": 19, "noexecut": 0, "noexit": 20, "nof": 11, "nofail": 31, "noflsh": [36, 40], "nogroup": [37, 40], "noida": 19, "nois": [16, 18, 31], "noisi": 11, "nojssubmit": 1, "nologin": 31, "nomin": 10, "nomo": 34, "non": [1, 2, 3, 4, 5, 7, 10, 11, 16, 20, 21, 25, 32, 33, 34, 35, 36, 38, 40], "nonassoci": [38, 40], "nonc": [5, 33], "noncurr": 25, "nondeterminist": 19, "none": [3, 5, 11, 18, 20, 31, 32, 35, 37, 39, 40], "nonematch": 5, "nonetyp": 1, "nonewwindow": [38, 40], "nonexist": [5, 11], "nongraph": 3, "noni": [19, 21, 36, 40], "nonprofit": 33, "nonstandard": 5, "nonumb": 31, "nonzero": 7, "noop": [19, 32], "noop_out_interv": 19, "noop_out_timeout": 19, "nooutput": 20, "noowner": [37, 40], "nop": [0, 19, 20, 21, 35, 36, 40], "noprefixrout": [32, 38, 40], "noprofil": [36, 37, 40], "noqueu": [32, 38, 40], "nor": [3, 11, 18, 31], "norandmap": 0, "norecurs": 19, "norelro": 0, "norm": [10, 11], "normal": [0, 5, 7, 10, 11, 12, 14, 16, 18, 19, 20, 22, 32, 33, 34, 35, 36, 37, 38, 39, 40], "normalis": 10, "nortel": 19, "north": 11, "northeast": 11, "northern": 10, "northwestgrav": 19, "norwegian": 19, "nospel": 31, "nosql": 10, "not_the_flag": 0, "notabl": [5, 11, 31], "notat": [1, 3, 18, 35, 40], "note": [1, 4, 5, 7, 8, 9, 10, 11, 16, 18, 19, 20, 21, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "notebook": 11, "notes_pass": 19, "notes_us": 19, "notesadmin": 19, "notexecut": 0, "noth": [3, 5, 11, 19, 31, 33, 34, 35, 38, 41], "notic": [0, 1, 3, 5, 11, 14, 31, 33], "notif": [9, 10, 11, 12, 19, 31, 32], "notifi": [5, 10, 11, 20, 31, 33, 37, 40], "notimplementedtyp": 1, "notinmybackyard": 18, "notlik": [37, 40], "notori": 5, "notorieti": 11, "notsosecur": 18, "notspecifi": 20, "notus": 19, "noun": 10, "nouser": [37, 40], "nov": [4, 20, 31, 36, 39, 40], "now": [0, 1, 3, 5, 7, 8, 10, 11, 14, 16, 18, 19, 20, 21, 23, 31, 32, 33, 34, 36, 37, 38, 39, 40], "nowrap": 5, "np": 19, "npep8asb32lrcgakfppa7r3ndfaaaafqdypzdnhttgci": 19, "nping": 18, "npipe": 32, "npm": 40, "nq": [39, 40], "nr": [3, 10], "nr_session": 19, "nrg": 19, "nrk": 19, "ns5": 19, "nsa": 30, "nsdl": 25, "nse": [18, 25], "nsf": 5, "nsi": 19, "nsisvc": 19, "nslookup": [20, 31], "nsock": 19, "nsock_trace_handler_callback": 19, "nsr": [5, 6, 36, 40], "nss": 31, "nsswitch": 31, "nsx": 32, "nsystem": [39, 40], "nsztm1": [18, 19], "nsztm2": [18, 19], "nt": [5, 18, 19, 20, 24, 37, 38, 39, 40], "nt_status_access_deni": 20, "nt_status_invalid_paramet": 20, "nt_status_network_unreach": [39, 40], "ntauthor": 20, "ntbuildlab": 21, "ntd": [18, 19, 20, 21], "ntds_crack": [38, 40], "ntdsgrab": [38, 40], "ntdsutil": [20, 21], "ntf": [5, 19, 31], "ntfscp": 31, "nth": 31, "nthash": [19, 20, 21], "nthe": 0, "ntlm": [5, 19, 20], "ntlmssp": 18, "ntlmv2": 18, "ntmlv2": 18, "ntowfpassword": 20, "ntp": [12, 14, 35, 40], "ntpasswordhistori": 20, "ntpd": [14, 31], "ntr7": 12, "ntsecuritydescriptor": 8, "ntuniqueid": 19, "ntuser": [19, 21], "ntuseracctexpir": 19, "ntusercodepag": 19, "ntuserdeleteaccount": 19, "ntuserdomainid": 19, "ntuserlastlogoff": 19, "ntuserlastlogon": 19, "nu": 0, "nuc1": 14, "nuclear": 10, "nugget": 18, "nul": [0, 37, 40], "null": [0, 1, 3, 4, 5, 10, 18, 19, 20, 30, 35, 36, 37, 38, 39, 40], "num": [0, 19, 20, 31, 37, 40], "num64": [36, 40], "number": [0, 1, 2, 3, 4, 5, 6, 7, 8, 10, 11, 12, 14, 16, 19, 20, 21, 23, 25, 30, 32, 34, 35, 36, 37, 38, 39, 40], "number_flag": 0, "numberth": [37, 40], "numentri": 19, "numer": [2, 5, 10, 11, 16, 31, 32, 36, 38, 39, 40], "numrequest": 19, "numrespons": 19, "nur": 31, "nutanix": 32, "nuucp": [19, 31], "nvarchar": 5, "nvd": 33, "nvl": 5, "nvram": 16, "nvt": 19, "nw": 19, "nx": 0, "nx230": 19, "nxae": 19, "nyour": 0, "o": [0, 1, 3, 6, 7, 10, 12, 15, 16, 18, 19, 20, 21, 23, 30, 33, 34, 35, 36, 37, 38, 39, 40], "o0xn5q93si": [39, 40], "o1": [36, 40], "o1mmagmcu4ul7knowuhfbgiplqz0r5c": 19, "o3": 19, "o5login": 19, "oN": [11, 18, 35, 40], "o_creat": 0, "o_rdonli": 0, "o_rdwr": 0, "o_wronli": [37, 40], "oa": [11, 18, 25], "oaklei": 20, "oauth": [13, 33], "obei": 11, "obermei": 10, "obfusc": [5, 33], "obj": 20, "objdump": 0, "objec": 20, "object": [0, 1, 3, 5, 11, 19, 21, 23, 25, 30, 31, 32, 33, 36, 37, 38, 39, 40], "objectcategori": [8, 20], "objectclass": [8, 19], "objectguid": 8, "objectsid": 8, "objfil": 0, "oblig": [11, 25, 34], "oblivion": 34, "obscen": 34, "obscur": [11, 20, 24, 31, 33, 34], "observ": [0, 5, 11, 30, 32, 33], "obsolet": [11, 14, 19, 33], "obstack_exit_failur": 0, "obstacl": 11, "obtain": [3, 4, 5, 7, 11, 16, 19, 20, 23, 24, 31, 34, 36, 37, 40], "obviou": [3, 11, 18, 21, 34, 36, 40], "obvious": [5, 11, 18], "oca": 9, "occas": 5, "occasion": [0, 33, 34], "occup": [10, 11], "occupi": [2, 31], "occur": [1, 5, 9, 10, 11, 16, 18, 20, 21, 23, 31, 32, 33, 34, 39, 40], "occurr": [10, 31, 33, 34], "ocean": [11, 30, 32], "ochoa": [20, 21], "oci": 32, "ocpi": 9, "ocpp": 9, "ocrnl": [36, 40], "oct": [5, 19, 20, 31, 37, 40], "octal": 31, "octet": 31, "octob": 19, "odbc": 5, "odd": [4, 16, 18, 33], "odict_iter": 1, "odll6837": 8, "oeinstal": 20, "oem": [3, 10], "oer": 20, "ofd": 0, "ofdel": [36, 40], "off": [0, 5, 8, 10, 11, 14, 16, 18, 19, 20, 23, 25, 32, 34, 36, 38, 40], "offens": [18, 21, 34, 38, 40], "offer": [3, 7, 9, 10, 11, 19, 20, 25, 30, 31, 32, 33, 34, 37, 40], "offic": [3, 11, 18, 19, 31, 34], "officejet": 19, "offici": [9, 11, 21, 31, 32, 33, 34], "offlin": [10, 11, 14, 18, 19, 23, 32], "offload": 12, "offsec": 17, "offset": [1, 3, 19, 21, 31], "offshor": 11, "ofil": [0, 36, 40], "ofmark": 19, "ofs_bitmap": 3, "oft": 3, "oft2": 3, "often": [0, 5, 8, 11, 12, 19, 20, 21, 23, 30, 31, 32, 33, 34, 36, 38, 40], "oftpd": 19, "of\ufb01c": 5, "og": [11, 18, 31, 35, 40], "ogg": 3, "ohlc": 25, "ohm": 10, "oidc": 13, "oil": [10, 11], "oin": 34, "ok": [0, 1, 3, 5, 11, 19, 20, 31, 32, 34, 36, 39, 40], "ok0hic2ucih": 20, "okai": [0, 39, 40], "okular": 31, "ol": [5, 11, 19], "olcuc": [36, 40], "old": [0, 5, 11, 19, 21, 23, 31, 33, 34, 36, 37, 39, 40], "older": [11, 19, 31, 34, 39, 40], "oldest": [11, 33], "oldfil": 31, "oldpackag": 31, "ole6ece1f6a513142ec99562256f849": 19, "oledl": 1, "oleec91239ab64e4f319a44eb95228b": 19, "olmstead": 2, "olymp": 11, "om": [5, 12], "omg": 11, "omit": [5, 20, 31, 35, 38, 40], "ommit": 20, "omniauth": 13, "omniback": 19, "omniinet": 19, "omron": [10, 19], "on_exit": 0, "onap": 34, "onboard": 11, "onc": [0, 3, 8, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 23, 31, 32, 33, 34, 35, 36, 37, 38, 40], "one": [0, 1, 3, 4, 5, 6, 7, 8, 10, 11, 12, 14, 15, 16, 18, 19, 20, 21, 22, 23, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "onelin": [3, 31, 37, 40], "ones": [5, 9, 11, 20, 31, 32, 33, 34], "onesixtyon": 18, "onetwopunch": [35, 40], "onex": 19, "ongo": 31, "oni": 3, "onidl": 20, "onlcr": [36, 40], "onli": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 16, 17, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 35, 36, 37, 39], "onlin": [1, 3, 10, 11, 14, 16, 19, 30, 31, 34, 35, 40], "onlogon": 20, "onlret": [36, 40], "onocr": [36, 40], "onshor": 11, "onsit": 11, "onstart": 20, "onsubmit": 5, "ontario": 11, "onto": [0, 10, 11, 16, 20, 31], "oo": [3, 36, 40], "ook": 16, "ool": 3, "oom": 7, "ooo": [36, 40], "op": [4, 5, 19, 31, 33, 39, 40], "opaqu": 3, "opc": 10, "opcach": [38, 40], "opcod": [3, 4], "opcount": 19, "open": [1, 2, 3, 4, 5, 7, 9, 10, 14, 16, 17, 18, 20, 21, 23, 24, 25, 30, 32, 33, 35, 36, 37, 38, 39, 40, 41], "open_x11": 19, "openadr": 9, "openaudit": 30, "openbsd": [19, 31], "opendn": 30, "opendnssec": 14, "openeb": 32, "openfaa": 32, "openflow": 32, "openid": [13, 33], "openid_connect": 13, "openioc": 30, "openldaprootds": 19, "openli": [11, 33], "opennac": 30, "opennm": 30, "openrc": 32, "opensecur": 19, "opensourc": [16, 30, 32, 41], "openssf": 33, "openssh": [19, 31, 36, 40], "openssh_5": 19, "openssl": [2, 3, 11, 38, 40], "openssl_cc": 19, "openssl_heartble": 19, "opensslvers": 19, "openstack": [30, 32, 34], "openstorag": 32, "opensus": 31, "opentelemetri": 32, "opentrac": 32, "openva": 18, "openvdb": 34, "openview": 19, "openvnc": 19, "openwsman": 19, "oper": [0, 1, 3, 4, 7, 8, 9, 12, 13, 16, 19, 20, 24, 25, 32, 33, 34, 37, 38, 39], "operand": 4, "operatingsystem": [8, 19, 20], "operatingsystemhotfix": 8, "operatingsystemservicepack": [8, 19, 20], "operatingsystemvers": [8, 20], "operatingwithout": 11, "operatorhub": 14, "opinion": [8, 34], "opm": 25, "opmiii": 10, "opmod": [38, 40], "opn": 17, "opost": [36, 40], "oppon": 11, "opportun": [18, 25, 32, 33, 39, 40], "opportunist": 11, "opportutn": 11, "oppos": [11, 18, 37, 40], "opposit": 31, "opt": [5, 6, 11, 14, 19, 31, 33, 37, 38, 39, 40], "optic": [10, 11, 31], "optim": [3, 9, 10, 11, 12, 19, 23, 25, 32, 38, 40], "optimum": 11, "option": [0, 1, 2, 3, 4, 5, 6, 7, 8, 10, 12, 13, 14, 15, 16, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 35, 37, 38, 39, 40], "optional_name_serv": [18, 35, 40], "ora": 19, "oracl": [11, 24, 31, 32, 35, 38, 40], "oracle_login": 19, "oracle_sql": 19, "oraclemetasploit": 19, "oraclesid": 19, "oraus": 19, "orchestr": 9, "orcl": 19, "ord": [1, 3], "order": [0, 1, 3, 5, 7, 8, 9, 10, 11, 12, 14, 18, 19, 20, 23, 24, 25, 31, 32, 34, 35, 37, 38, 39, 40], "orderbi": 5, "ordinari": [5, 11], "oregonian": 11, "org": [1, 3, 5, 6, 7, 10, 11, 14, 18, 19, 20, 24, 27, 33, 34, 35, 38], "organ": [5, 6, 10, 18, 19, 20, 21, 22, 23, 30, 31, 32, 33, 34, 37, 40], "organis": [9, 11, 32], "organiz": [8, 11, 20, 30, 33, 34], "organizationalperson": 19, "organizationalunitnam": [35, 40], "organizationnam": [19, 35, 40], "orient": [10, 11, 32, 34], "orig": [36, 40], "origin": [0, 1, 3, 5, 9, 10, 11, 19, 21, 25, 31, 33, 37, 39, 40], "originalfil": 31, "orlean": 11, "ort": 1, "os_harden": 14, "osandamalith": 16, "oscp": [9, 27], "osfmount": 21, "osgood": 19, "osi": [23, 34], "osint": 18, "osisoft": 10, "osix": 12, "ospo": 34, "osql": 19, "oss": [31, 32, 33], "ostre": 32, "ostyp": 20, "osv": 32, "osvdb": [5, 19], "oswal": 25, "osx": [20, 21, 32], "ot": [3, 10, 38, 40], "ot_the_flag": 0, "ota": 16, "otg": 19, "oth": 19, "other": [2, 4, 7, 9, 13, 14, 16, 21, 22, 23, 24, 25, 27, 34, 35, 36, 39, 41], "other2": 5, "otherwis": [0, 2, 5, 7, 11, 14, 16, 18, 19, 31, 32, 33, 34, 36, 37, 38, 39, 40], "otp": 14, "otpd": 14, "ott": 29, "ott189zi5ucr67x504o5fxvz0pj3yjh6ymqffsw89isbtgmm6v1wynq": 19, "ou": 19, "ougahzi8ta": 4, "oui": [11, 18, 38, 40], "oupath": 8, "ouput": 0, "our": [0, 2, 4, 5, 6, 7, 8, 10, 11, 13, 14, 16, 18, 19, 20, 21, 23, 25, 31, 32, 33, 34, 36, 37, 39, 40, 41], "ourselv": 21, "out": [0, 2, 3, 4, 5, 7, 9, 10, 11, 12, 13, 14, 16, 18, 19, 20, 23, 25, 30, 31, 32, 33, 34, 35, 37, 39], "outag": [10, 11, 32], "outbound": [12, 20, 23, 34, 36, 40], "outbreak": 11, "outcom": [5, 10, 11], "outdat": [7, 11, 16, 36, 38, 40], "outdoor": 11, "outfil": [36, 40], "outgo": [10, 11, 19, 31, 32], "outlet": [10, 11], "outlin": [9, 11, 30], "outliv": 32, "output": [0, 1, 2, 3, 5, 6, 10, 16, 19, 20, 21, 23, 32, 33, 34, 35, 36, 37, 38, 39, 40], "output_docu": [38, 40], "outputfil": [0, 21, 31], "outputpath": [21, 39, 40], "outreach": [12, 34], "outsid": [0, 5, 10, 11, 24, 31, 32, 33, 37, 39], "outsourc": 34, "outstat": 10, "outweigh": 11, "ov": 3, "over": [0, 1, 3, 5, 9, 10, 11, 12, 20, 21, 23, 24, 25, 27, 30, 31, 32, 33, 34, 36, 37, 38], "overal": [10, 11, 16, 30, 31, 32, 33], "overcom": [10, 31, 32], "overcompl": 30, "overcurr": 10, "overfl": 5, "overflow": [3, 4, 5, 11], "overh": [10, 11], "overhead": [10, 11, 16, 22], "overlai": [12, 32], "overlaid": 32, "overlap": [11, 32], "overload": [10, 11, 32, 34], "overlong": 5, "overlook": 11, "overpai": 25, "overpass": 20, "overpay": 25, "overrid": [0, 5, 18, 19, 31, 34, 37, 40], "overridden": 31, "overrun": [0, 32], "overse": [9, 10], "oversea": 11, "overseen": 11, "oversight": [11, 30], "overst": 11, "overthewir": 1, "overview": [10, 18, 19, 31, 34, 39, 40], "overwhelm": [11, 31], "overwrit": [11, 19, 21, 31, 33, 37, 39, 40], "overwritten": [0, 11, 33, 39, 40], "overwrriten": 0, "over\ufb02ow": 5, "ovewrit": 0, "ovf": 32, "ovpn": [36, 40], "ovrflw": 0, "ow": [5, 25, 34], "owa": 19, "owaauth": [36, 40], "owasp": [16, 30, 33], "owlur": [39, 40], "own": [0, 5, 9, 10, 11, 16, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 35, 36, 38, 39], "owner": [5, 8, 20, 25, 32, 33, 34, 39], "owner_sid": 19, "ownership": [11, 19, 31, 34, 37, 40], "ox": [11, 18, 31, 35, 36, 40], "p": [0, 3, 5, 6, 8, 10, 11, 12, 14, 18, 19, 21, 23, 32, 35, 36, 37, 39], "p0f": 18, "p0w3rsh3ll": 3, "p1": [19, 31, 35, 36, 39, 40], "p1686": 10, "p1ryzgdgm": 19, "p2": [35, 39, 40], "p2014n": 19, "p2015": 19, "p22": [35, 40], "p3": [38, 40], "p30": 10, "p40": 10, "p4014": 19, "p743": 10, "p85x": 10, "pa": [3, 11, 18, 21], "pace": 11, "paci": 10, "pacif": 11, "pack": [0, 1, 8, 19, 20, 32, 38, 40], "packag": [3, 5, 10, 11, 13, 14, 15, 18, 19, 20, 21, 23, 30, 32, 33, 36, 38], "package_nam": 31, "packagegroup": 31, "packagehomepag": 34, "packagelicensedeclar": 34, "packagenam": [31, 34], "packet": [1, 3, 7, 11, 12, 18, 23, 30, 31, 32, 35, 37, 38, 40], "packetlog": 12, "packetshap": 19, "packetstorm": 23, "pactl": 3, "pad": [0, 16, 19, 31, 38, 40], "padbust": [38, 40], "padlock": 11, "pae": 21, "page": [0, 2, 5, 6, 11, 16, 18, 19, 20, 21, 23, 30, 31, 32, 33, 34, 36, 37, 41], "page_fault": 19, "pagefil": [37, 40], "pagescop": 19, "pai": [9, 11, 12, 25, 32, 33, 37, 40], "paid": [11, 23, 25, 32, 33], "pain": [14, 25, 31, 36, 40], "paint": 11, "pair": [5, 9, 10, 12, 14, 16, 19, 33, 36, 40], "pam": 31, "pam_cracklib": 31, "pam_deni": 7, "pam_passwdqc": [7, 31], "pam_securetti": 7, "pam_tmpdir": 7, "pam_umask": 7, "pam_unix_acct": 7, "pam_unix_auth": 7, "pam_unix_passwd": 7, "pam_unix_sess": 7, "pam_warn": 7, "pam_wheel": 7, "pan": 19, "panason": 19, "pane": 31, "panel": [10, 11, 21, 38, 40], "pantograph": 9, "pantu": 11, "pap2": 19, "paper": [0, 11, 19, 31, 39, 40], "papermak": 11, "paperwork": 34, "paplai": 3, "paradigm": 11, "paragraph": [2, 31], "parallel": [5, 6, 10, 11, 18, 31, 32, 37, 40], "param": 5, "paramet": [1, 4, 8, 9, 11, 19, 20, 25, 30, 32, 37, 38, 39], "parameter": 10, "paramount": 11, "parasit": 11, "parenb": [36, 40], "parent": [0, 1, 5, 18, 19, 20, 31, 32, 37, 40], "parentdomain": 20, "parenthes": 31, "parenthesi": 31, "paritcular": 31, "pariti": [3, 4, 16], "park": [11, 25], "parmrk": [36, 40], "parodd": [36, 40], "pars": [5, 11, 19, 21, 23, 31, 36, 37, 39, 40], "parser": [3, 5, 18], "part": [0, 3, 4, 5, 6, 7, 9, 10, 11, 12, 14, 18, 20, 21, 22, 31, 32, 33, 34, 36, 37, 39, 41], "part1": 21, "part2": [20, 21], "part3": [20, 21], "part4": 21, "part5": 21, "part6": 21, "part_flag": 1, "parti": [5, 10, 11, 16, 19, 31, 32, 33, 34], "partial": [0, 1, 3, 12, 19, 21, 31, 33, 38, 40], "partialmethod": 1, "particip": [10, 11, 18, 32, 33, 34], "particl": 11, "particular": [0, 1, 3, 5, 10, 11, 12, 17, 18, 21, 30, 31, 32, 33, 34, 35, 36, 37, 38, 40], "particularli": [0, 9, 11, 20, 30, 31, 33, 34], "partit": [3, 32, 39, 40], "partner": [5, 12, 19, 34], "partuuid": 15, "pass": [0, 1, 4, 5, 6, 8, 9, 11, 12, 14, 16, 18, 21, 31, 32, 33, 35, 36, 37, 38, 39, 40], "pass_fil": 19, "passaic": 11, "passcod": 11, "passdb": 19, "passeng": [3, 11], "passion": 25, "passiv": [5, 8, 19, 33, 35, 36, 39, 40], "passkei": 16, "passphras": [3, 7, 31, 36, 40], "passsword": 19, "passthru": [36, 38, 39, 40], "passvnc": 19, "passw": [36, 40], "passw0rd": [20, 38, 40], "passwd": [14, 19, 23, 36, 38, 39], "passwd_new": 31, "passwdqc": 7, "password": [0, 1, 3, 4, 5, 6, 9, 10, 13, 14, 15, 16, 18, 23, 30, 32, 39], "password_expir": 20, "password_fil": 14, "password_in": 19, "password_pbkdf2": 7, "password_properti": 20, "passwordauthent": [38, 40], "passwordd": 20, "passwordexpir": 8, "passwordforsearch": 20, "passwordher": [36, 40], "passwordlastset": [8, 20], "passwordless": [37, 40], "passwordlist": [36, 40], "passwordneverexpir": 8, "passwordnotrequir": 8, "passwot": 20, "past": [0, 1, 5, 10, 11, 16, 18, 19, 33, 34, 36, 38, 40], "pastebin": 18, "pasv": [39, 40], "pasvport": [39, 40], "pat": 25, "patch": [10, 18, 19, 20, 22, 31, 32, 33, 34, 36, 37, 38, 40], "patchfil": 31, "patent": 25, "path": [0, 3, 5, 7, 8, 10, 11, 16, 20, 21, 32, 33, 36, 37, 38, 39, 40], "path1": 31, "path2": 31, "path_extra": [36, 40], "pathfind": 1, "pathinfo": [39, 40], "pathinfo_extens": [39, 40], "pathnam": [0, 16], "pathwai": 11, "patienc": 14, "patient": [11, 19, 34], "patrol": 11, "patter": 3, "pattern": [0, 5, 7, 10, 11, 12, 16, 21, 32, 33, 36, 37, 39, 40], "pattern1": 31, "pattern2": 31, "pattern3": 31, "pattern4": 31, "pattern_cr": 0, "pattern_offset": 0, "paul": 31, "paus": [1, 19], "pavucontrol": 3, "payabl": 11, "payload": [0, 1, 5, 9, 11, 12, 19, 20, 21, 36, 37, 38, 39, 40], "payment": [5, 9, 11, 12, 25, 31, 33], "payn": 30, "payrol": 11, "pbkdf2": [7, 21, 33], "pbx": [38, 40], "pc": [10, 20, 30, 37, 40], "pcap": [10, 11, 38, 40], "pcapfil": 3, "pcapng": 3, "pcb": 16, "pch": 19, "pci": [16, 23, 31], "pclnwprd": 24, "pclnwprd2": 24, "pclnwprd2_mi2_02": 24, "pcm": 10, "pcmcia": 31, "pcre": [39, 40], "pctf": 3, "pd": 20, "pda": 20, "pdcroleown": 20, "pdf": [0, 5, 11, 18, 19, 23], "pdf2p": 31, "pdf2txt": 3, "pdftop": 31, "pdftotext": 3, "pdfwrite": 31, "pdisass": 0, "pdml": 3, "pdo": 3, "pdt": 19, "pdu": 10, "pe": [3, 11, 12, 18, 25], "pe_inject": 20, "peac": 25, "peak": [10, 11], "pear": [39, 40], "peda": 0, "pedant": 31, "peer": [10, 11, 12, 18], "pem": [13, 38, 40], "pen": [31, 33, 39, 40], "penalti": [10, 11], "pend": [31, 32], "penetr": [11, 17, 18, 20, 21, 22, 23, 27, 38, 40, 41], "pentest": [10, 18, 19, 22, 27, 30], "pentestmonkei": [19, 36, 40], "peopl": [0, 5, 7, 18, 19, 20, 27, 29, 30, 31, 33, 34, 36, 38, 40, 41], "people123": 18, "per": [3, 4, 5, 6, 8, 10, 11, 12, 13, 14, 16, 18, 19, 20, 31, 32, 33, 34, 37, 38, 40], "pera": 11, "perceiv": 11, "percent": [5, 6, 11], "percentag": [31, 33], "perez": [8, 36, 40], "perfect": [5, 32, 33], "perfectli": 31, "perform": [0, 3, 5, 7, 8, 9, 10, 12, 13, 14, 16, 17, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 35, 36, 38, 39, 40], "perhap": [3, 5, 31, 33, 34, 36, 40], "perimet": 11, "period": [0, 1, 3, 9, 10, 11, 18, 19, 20, 25, 31, 32, 33], "peripher": [5, 11, 16, 31], "perl": [5, 6, 19, 31, 38, 39], "perm": [7, 37, 40], "perman": [0, 5, 10, 11, 19, 31, 33], "permiss": [0, 8, 10, 13, 19, 20, 21, 32, 38, 39, 41], "permisson": [37, 40], "permisss": 23, "permit": [5, 10, 11, 19, 31, 34, 38, 39, 40], "permitrootlogin": [38, 40], "permut": [1, 5], "persecpt": 11, "persist": [3, 5, 11, 13, 14, 15, 19, 21, 36, 40], "persistent_undo": [36, 40], "persistentstor": 8, "persistentvolum": 32, "persistentvolumeclaim": 32, "persmiss": 23, "person": [3, 5, 7, 10, 12, 18, 19, 20, 21, 30, 33, 34, 39, 40, 41], "personnel": 11, "perspect": [5, 10, 11, 14, 18, 23, 32, 33], "pertain": [9, 18], "pervas": 11, "pessim": 25, "peter": 34, "petit": 11, "petrochem": 11, "pf": [0, 4, 31], "pf_inet": [36, 40], "pfifo_fast": [38, 40], "pfx2john": [38, 40], "pg": 0, "pg_sleep": 5, "pgid": 31, "pgp": 18, "ph": [3, 11], "phapo": 10, "pharmaceut": 11, "phase": [10, 11, 16, 18, 23, 41], "phd": 33, "phev": 9, "phi": [38, 40], "phi_decod": 2, "phi_enc": 2, "phigit": 2, "philadelphia": 11, "philosoph": 34, "phinary_to_decim": 2, "phish": 30, "phoenix": [37, 40], "phone": [5, 11, 18, 31, 33], "photo": 3, "php": [0, 19, 21, 30, 31, 32, 37, 38], "php5": [39, 40], "php_codesniff": 30, "php_histori": [36, 40], "phpbash": [38, 40], "phpc": 30, "phpcbf": 30, "phpcode": [36, 40], "phpinfo": [36, 38, 39, 40], "phpmd": 30, "phpmyadmin": [36, 40], "phpsessid": [5, 39, 40], "phrase": [5, 33, 34, 38, 40], "phsaf": 10, "phsai": 10, "phy": [3, 16], "physic": [3, 5, 9, 10, 12, 14, 16, 18, 19, 21, 25, 30, 31, 32, 33, 37, 40], "pi": 14, "piadmin": 10, "pic": 31, "pic1": 31, "pic2": 31, "pic24": 31, "picayun": 11, "pick": [0, 11, 32, 34, 39, 40], "pico": [1, 3], "pico1139": 0, "pico83515": 0, "picoctf": [2, 3], "picoctf_2017": 2, "picogroup": 0, "picoplay": 37, "pictur": [10, 11, 34, 39, 40], "pid": [0, 7, 19, 21, 31, 36, 40], "pid_max": 31, "pidgin": 31, "pidstat": 7, "pie": 32, "piec": [3, 5, 11, 12, 16, 21, 31, 33, 34], "pierc": 19, "piggyback": 11, "pigment": 11, "pihol": 14, "pil": 1, "pile": 11, "pilot": 32, "pim": 10, "pin": [10, 11, 16, 19, 21, 31], "pinella": 11, "pinfo": 31, "ping": [3, 11, 14, 17, 20, 27, 35, 36, 38, 40], "pingopt": [36, 40], "pinpoint": 32, "pinto": 5, "pip": [1, 40], "pipe": [0, 3, 11, 19, 20, 32, 33], "pipelin": [10, 14, 19, 30, 32, 33], "pippa": 19, "pirat": 16, "pirelli": 19, "pitfal": [11, 37, 40], "pivot": [11, 20, 25, 31], "pix": 1, "pixel": [1, 3, 5, 6, 19, 31], "pixma": 19, "pixmap": 19, "pjdeni": 29, "pjl_ready_messag": 19, "pk": [3, 7], "pkg": [7, 36, 37, 40], "pkg5": 31, "pkgmgr": [39, 40], "pkgname": 31, "pki": [9, 12, 14], "pkill": 31, "pl": [5, 17, 19, 20, 36, 38, 39, 40], "place": [0, 4, 5, 6, 7, 10, 11, 12, 14, 16, 18, 19, 20, 31, 33, 34, 36, 37, 38, 39, 40], "placehold": [31, 36, 40], "placement": [10, 16, 31], "plai": [1, 3, 5, 6, 9, 11, 19, 38, 40], "plain": [0, 11, 18, 19, 31, 38], "plainpassword": [38, 40], "plaintext": [5, 11, 20, 21, 36, 38, 40], "plan": [5, 9, 11, 14, 19, 21, 24, 27, 32, 33], "plane": [3, 12, 14, 19, 23], "planet": 31, "plankton": 19, "plant": [10, 25], "plastic": 11, "plate": [9, 11], "platform": [0, 3, 5, 9, 10, 12, 16, 18, 19, 20, 21, 22, 23, 24, 30, 31, 33, 37, 38, 40], "platform9": 32, "platform_id": 20, "playboi": 19, "playbook": [20, 32], "player": [3, 11, 31, 32], "plc": [9, 19], "plcc": 10, "plcfiddl": 11, "pleas": [0, 5, 6, 10, 13, 18, 19, 20, 27, 30, 34, 36, 39, 40], "plenti": 0, "plethora": 23, "plicit": 34, "plm": 24, "plmn": 12, "plot": 3, "plsextproc": 19, "plt": 11, "plte": 3, "pltpodkcv9ggvckzyertd2k0wkfnzmvcpfwznxn7hjc8": 14, "plu": [0, 1, 5, 6, 11, 19, 31, 33, 36, 37, 40], "plug": [5, 9, 11, 16, 18, 23, 32, 33], "pluggabl": [7, 31, 32], "plugin": [19, 21, 23, 30, 31, 36, 38, 40], "pluginclean": 31, "plugininstal": 31, "pluginlist": 31, "pluginsearch": 31, "pluginupd": 31, "plugplai": 20, "plunder": 20, "pm": [8, 19, 25, 39, 40], "pmu": 10, "pn": [19, 35, 38, 40], "pnc": 9, "png": [0, 1, 5, 6, 7, 39, 40], "pngcheck": 3, "pnvnrtiupuiegwgr0vz5lnoxuanbgigjsezaiajo3afkwvhciedllwkoscbxwffyqisotz5kfhwnudznpsztz0kzjkiuuohmgkhlz": 14, "po": [3, 36, 40], "poc": [39, 40], "pod": [13, 14, 32], "podnetwork": 14, "poem": 2, "poi": 12, "point": [0, 1, 4, 8, 9, 10, 11, 12, 14, 15, 16, 17, 18, 20, 21, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "pointer": [1, 4, 7, 23], "pointer_s": 19, "poison": [3, 8, 18, 19], "poke": 11, "pol": 20, "poland": 9, "pole": 10, "poli": 10, "polic": [11, 12], "polici": [5, 7, 8, 10, 14, 19, 21, 23, 30, 31, 32, 33, 34, 38, 40], "policyag": 20, "policystor": 8, "polish": 11, "polit": [11, 33, 34], "poll": 10, "pollut": [11, 37, 40], "polybiu": 2, "polym": 11, "polyphas": 10, "polystar": 12, "ponda_ga": 10, "ponda_gabu": 10, "pontif": [34, 39, 40], "pool": [11, 12, 20, 21, 31, 32, 33, 34], "poor": [11, 12, 33, 34, 36, 40], "poorli": [11, 19, 33, 34], "pop": [0, 3, 4, 11, 21], "pop3_login": 19, "pop3_vers": 19, "popbug": 7, "popd": 31, "popen": [38, 39, 40], "popul": [10, 11, 14, 31, 37, 40], "popular": [10, 18, 19, 31, 32, 33, 34], "porch": 11, "port": [5, 6, 20, 21, 23, 32, 37, 38, 39], "port0": 3, "port1": 3, "port_scan": 19, "portabl": [10, 11, 32], "portal": [1, 10, 11, 19, 35, 40], "portfolio": [10, 25, 34], "portid": 18, "portion": [0, 5, 23, 31, 33], "portmapp": 19, "portnumb": [36, 40], "portscan": [11, 18, 19, 35, 40], "portscandigg": 18, "portvar": 11, "pose": [11, 18, 30], "posit": [0, 2, 3, 5, 10, 11, 20, 23, 25, 32, 33, 37, 38, 39, 40], "posix": [1, 23, 31], "possess": [9, 11, 34, 37, 40], "possibl": [0, 3, 5, 7, 10, 11, 12, 16, 17, 18, 19, 20, 26, 30, 31, 32, 33, 34, 35, 37, 38, 39], "possibli": [0, 5, 6, 10, 11, 18, 21, 31, 32, 34, 36, 38, 39, 40], "post": [0, 2, 3, 4, 5, 6, 11, 17, 18, 20, 23, 31, 32, 34, 35, 37, 38, 41], "post_data": [38, 40], "post_exploit": 19, "post_fil": [37, 38, 40], "postal": 11, "postgr": [19, 30], "postgres_dbname_flag_inject": 19, "postgres_login": 19, "postgres_vers": 19, "postgresql": [5, 32], "postilion": 12, "postinst": 31, "postmast": 19, "postrm": 31, "postrot": [37, 40], "postrout": 31, "postscript": [19, 36, 38, 40], "postur": 11, "pot": 21, "potato": [37, 40], "potenti": [3, 5, 9, 18, 19, 20, 25, 30, 31, 33, 34, 36, 37, 38, 40], "potfil": 21, "potienti": [10, 11], "pound": 11, "pow": [38, 40], "power": [2, 5, 6, 9, 12, 16, 19, 23, 30, 31, 32, 36, 40], "powercat": [19, 38, 40], "powerconnect": 19, "powerline1": 11, "powermemori": 21, "powermgmt": 31, "poweroff": [7, 31], "powerpc": [11, 16], "powerserv": 10, "powershel": [8, 14, 18, 19, 23, 30, 36, 39], "powersploit": [19, 21, 36, 40], "powerst": 10, "powervault": 19, "powerview": [21, 38, 40], "pp": [3, 14], "ppd": 31, "ppf": 25, "ppid": 31, "ppm": 11, "ppp": [10, 12, 38, 40], "pppoe": 12, "ppt": 3, "pq": 19, "pqm": 10, "pr": 11, "practic": [7, 8, 9, 10, 18, 19, 30, 32, 33, 34, 36, 37, 40], "practis": 25, "pragma": [5, 19], "pragmat": [11, 34], "prais": 11, "prank": 11, "prd": 24, "prddb": 24, "pre": [2, 3, 5, 6, 9, 10, 11, 13, 17, 18, 19, 30, 31, 32, 33, 36, 37, 39, 40], "prealloc": 19, "precaut": 11, "preced": [3, 4, 5, 7, 31, 36, 37, 38, 40], "precis": [5, 10, 11, 31], "precondit": [39, 40], "preconfigur": [10, 37, 40], "precursori": 11, "predefin": [11, 19, 31], "predetermin": 31, "predic": 34, "predict": [5, 10, 11, 31, 32, 33], "predominantli": 11, "prefer": [0, 1, 3, 9, 11, 12, 14, 19, 20, 25, 30, 31, 33, 34], "preferipv4stack": 14, "preferrbli": 8, "preferred_lft": [32, 38, 40], "preferredlifetim": 8, "prefix": [0, 11, 19, 31, 38, 40], "prefixlength": 8, "prefixorigin": 8, "preg_match": [38, 40], "preimag": 33, "preinst": 31, "preload": [0, 16], "prem": 32, "prematur": 31, "premis": [10, 32], "premium": 10, "preoccupi": 11, "prepaid": 12, "prepar": [10, 16, 32, 33, 34], "prepared": 11, "prepend": 0, "preprietari": 16, "prerequis": 18, "prerequisit": [11, 31], "prerm": 31, "prerout": 31, "prescrib": 9, "prescript": 31, "preselect": 31, "presenc": [5, 11, 31, 32, 33], "present": [0, 3, 5, 10, 11, 12, 14, 15, 16, 18, 19, 20, 21, 23, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "preserv": [5, 14, 31, 32, 34], "preset": [5, 31], "presid": 11, "press": [1, 3, 4, 10, 11, 20, 31, 34, 38, 39, 40], "pressur": [10, 11, 33], "pressuris": 11, "presum": [3, 33], "pretend": [1, 11, 33], "pretti": [1, 5, 11, 16, 21, 31, 32, 33, 34, 37, 38, 40], "preval": 11, "prevent": [0, 5, 7, 9, 10, 11, 12, 18, 19, 20, 30, 31, 32, 33, 37, 40], "preview": [19, 32], "previou": [0, 16, 18, 20, 21, 23, 32, 33, 34, 36, 37, 38, 40], "previous": [0, 5, 10, 11, 19, 20, 21, 31, 32, 36, 37, 40], "pre\ufb01x": 5, "prg": 19, "price": [5, 9, 10, 11, 25, 34], "pricecod": 5, "pricing_token": 5, "pride": 11, "primari": [0, 3, 5, 9, 10, 11, 12, 16, 19, 20, 23, 31, 32, 33, 34, 37, 40], "primarili": [0, 5, 11, 33], "primarygroup": 8, "primarygroupid": [8, 20], "prime": 19, "primit": 5, "princ": 11, "princip": [14, 19, 20, 21], "principalsallowedtodelegatetoaccount": 8, "principalsourc": [37, 40], "principl": [11, 38, 40], "print": [0, 1, 2, 3, 4, 7, 11, 14, 16, 18, 19, 21, 34, 36, 37, 38, 39, 40], "printabl": [3, 4, 5, 31], "printer": [4, 11, 14, 18, 20, 30, 36, 38, 40], "printer_delete_fil": 19, "printer_download_fil": 19, "printer_env_var": 19, "printer_list_dir": 19, "printer_list_volum": 19, "printer_ready_messag": 19, "printer_upload_fil": 19, "printer_version_info": 19, "printf": [0, 3, 37, 38, 40], "printfil": 4, "printjob": 19, "printjob_captur": 19, "println": 19, "printnet": 19, "printout": 31, "printus": 20, "prior": [0, 11, 19, 31, 33, 37, 39, 40], "priorit": [5, 11, 33], "prioriti": [10, 18, 19, 37, 39, 40], "prism": [38, 40], "priv": [0, 19, 37, 38, 40], "privaci": [7, 11, 17, 30, 31, 38, 40], "privat": [3, 10, 11, 14, 16, 19, 30, 31, 32, 33, 34], "privatekei": [38, 40], "privesc": [37, 40], "priviledg": 21, "privileg": [0, 5, 7, 9, 10, 14, 18, 23, 25, 33, 35, 36, 39, 41], "prng": 33, "pro": [8, 10, 12, 19, 23, 31, 37, 40], "pro2": 19, "proactiv": [11, 23], "probab": 14, "probabl": [0, 2, 3, 5, 6, 7, 8, 10, 11, 14, 18, 19, 20, 21, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "probe": [5, 11, 18, 35, 38, 40], "problem": [0, 1, 5, 7, 10, 11, 14, 19, 21, 30, 31, 32, 33, 34, 36], "problemat": [5, 32], "proc": [0, 7, 11, 19, 37], "procdump": [3, 19], "proce": [16, 31, 38, 40], "procedur": [0, 5, 8, 10, 30, 31, 32, 33, 34], "proceed": [0, 5], "process": [0, 3, 4, 5, 7, 8, 9, 10, 12, 14, 18, 19, 20, 21, 22, 23, 24, 25, 27, 30, 32, 34, 36], "process_id": 31, "processid": 20, "processnam": [37, 40], "processor": [0, 4, 10, 11, 31, 32, 37, 40], "processs": 11, "procf": [31, 37, 40], "procset": 3, "proctector": 19, "procur": [11, 24, 34], "procurv": 19, "prod": [5, 19, 21], "prod_rel_team": 19, "produc": [1, 5, 7, 10, 11, 17, 21, 25, 31, 33, 34, 38, 40], "product": [1, 5, 9, 10, 11, 14, 18, 19, 21, 23, 24, 25, 30, 32, 33, 34, 37, 40], "productid": 5, "productvendor": 20, "productvers": 20, "profession": [11, 19, 30, 31, 33], "profibu": 10, "profil": [0, 3, 7, 9, 10, 11, 14, 18, 20, 21, 31, 36, 37, 38, 40], "profit": [11, 20, 25, 34, 38, 39, 40], "profound": 34, "proftpd": 19, "program": [3, 5, 6, 7, 9, 10, 14, 16, 17, 19, 20, 21, 23, 24, 30, 32, 34, 36, 38, 39, 40], "programdata": [3, 20], "programm": [5, 10, 16, 19, 27, 31], "programmat": 5, "progress": [0, 2, 3, 5, 6, 18, 19, 25, 31, 34, 35, 37, 39, 40], "prohibit": [11, 19, 34], "project": [10, 11, 19, 30, 31, 33, 36, 37, 38, 40], "project_loc": 19, "projectnam": 13, "projector": 19, "projectx": 31, "prometheu": 32, "promin": [11, 34], "promis": [1, 11], "promot": [9, 10, 11, 25, 32, 34], "prompt": [0, 3, 5, 6, 7, 8, 14, 20, 21, 34, 38, 39, 40], "promptli": [11, 33], "prone": [5, 11, 21, 30], "pronounc": 31, "proof": [19, 21, 31, 38, 40], "propag": 5, "propel": 10, "proper": [0, 7, 9, 11, 12, 13, 14, 23, 31, 32, 34, 36, 40, 41], "properli": [0, 3, 9, 10, 11, 14, 16, 18, 19, 23, 31, 33, 34, 39, 40], "properti": [1, 3, 5, 8, 11, 12, 14, 16, 19, 21, 25, 30, 31, 32, 33, 37, 40], "property_set": [39, 40], "propfind": [36, 40], "proport": [10, 11, 25], "proportion": 11, "propos": [11, 32, 34], "proppatch": [36, 40], "proprietari": [11, 18, 19, 25, 35, 40], "propuls": 9, "prospect": 25, "prosper": 11, "prot": 3, "protect": [3, 5, 7, 8, 12, 16, 17, 18, 19, 20, 21, 23, 25, 30, 31, 32, 34, 36, 39], "protectedfromaccidentaldelet": 8, "protectedstorag": 20, "protector": [0, 19], "proto": 19, "protobuf": 32, "protocol": [1, 3, 6, 9, 12, 14, 16, 17, 18, 20, 23, 30, 31, 32, 35, 36, 37, 39, 40], "protocolvers": 20, "prove": [0, 5, 33, 34], "proven": 11, "provid": [0, 1, 2, 3, 4, 5, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 23, 24, 25, 30, 33, 34, 35, 36, 37, 38, 39, 40, 41], "provider_openid_connect": 13, "providernam": [37, 40], "provis": [9, 11, 14, 30, 34], "provisin": 14, "provision": 32, "provok": 5, "proxi": [5, 11, 19, 20, 21, 31, 32, 38], "proxim": 11, "proxmox": 32, "proxy_ajp": 19, "proxy_en": 14, "proxy_http": 19, "proxy_web_listen_addr": 14, "proxychain": [38, 40], "proxychains4": [36, 40], "prutz": 8, "pry": 11, "ps1": [1, 8, 19, 20, 21, 36, 37, 38, 40], "ps2pdf": 31, "ps32": 20, "ps_command": 20, "ps_encod": [36, 40], "psactiveprocesshead": 21, "pscn": 19, "pscredenti": [8, 36, 38, 40], "psdrive": [37, 40], "pseudo": [1, 4, 31, 36, 40], "pseudofil": 31, "pseudohead": 3, "pseudorandom": 1, "psexec": [38, 40], "psexec_psh": 20, "psexecsvc": 20, "psfile": 31, "psh": 21, "psimag": 3, "psirt": 33, "psk": [16, 17, 31], "pslist": 3, "psloadedmodulelist": 21, "psm1": 20, "psml": 3, "psnmap": [18, 35, 40], "psr": 21, "psremot": 20, "pssession": [20, 38, 40], "pssessionconfigur": 20, "pstn": 12, "pstool": [39, 40], "pstopdf": 31, "pstree": 31, "psxview": 3, "psychokinesi": 33, "psycholog": 33, "pt": [10, 18, 31, 38, 40], "pth": 21, "pthread": 19, "pthread_exit": 0, "ptr": [0, 4, 14, 19], "ptrf": 0, "ptrtostringauto": [38, 40], "pty": [36, 40], "pu": 3, "pub": [14, 19, 31, 36, 39, 40], "pubconf": 14, "public": [3, 5, 7, 9, 10, 12, 18, 19, 20, 24, 25, 31, 32, 34, 36, 37, 39], "publicili": 16, "publicli": [5, 11, 33, 34, 37, 40], "publish": [3, 5, 10, 11, 19, 23, 32, 33, 34, 41], "puff": 20, "pull": [9, 11, 16, 20, 21, 23, 27, 31, 32, 34, 41], "pulp": 11, "puls": [10, 16], "pulseaudio": 3, "pump": 11, "puppet": [18, 30], "puppet6": [14, 15], "puppet7": 14, "puppet_admin": 14, "puppet_admin_password": 14, "puppetdb": 32, "puppetlab": 14, "puppetserv": 15, "purchas": [0, 5, 11, 25, 32], "purdu": 11, "pure": [1, 14, 19, 21, 31, 41], "purg": [31, 34], "purifi": 11, "purpos": [0, 4, 5, 6, 8, 10, 16, 18, 20, 21, 23, 31, 32, 33, 34, 38, 40, 41], "push": [0, 3, 11, 20, 21, 31, 32, 35, 38, 40], "pushd": 31, "put": [0, 5, 10, 11, 19, 20, 22, 25, 31, 32, 33, 34, 37, 38, 39], "putenv": [36, 40], "putti": [20, 23, 36, 40], "putty2john": [38, 40], "pv": [20, 32], "pvc": 32, "pvm": 32, "pw": [36, 40], "pwd": [0, 14, 31, 36, 37, 39, 40], "pwdlastset": [8, 20], "pwdump": 21, "pwn": 3, "pwnage": 18, "pwndbg": 0, "pwned": [39, 40], "pwning": [18, 19], "pwnme": 19, "pwnutil": 1, "pwsafe2john": [38, 40], "px": 3, "py": [1, 2, 5, 16, 19, 20, 21, 36, 37, 38, 39, 40], "py2": 1, "py3": 1, "pycapsul": 1, "pyftpdlib": [39, 40], "pyjail": 1, "pylint": 30, "pypi": [37, 40], "pypug": [37, 40], "python": [0, 2, 3, 5, 18, 21, 23, 30, 31, 32, 38], "python2": [38, 40], "python3": [1, 36, 37, 40], "pythonpath": [37, 40], "q": [0, 3, 10, 18, 19, 20, 21, 31, 36, 39], "q1": [36, 40], "q100": 10, "qa": [24, 31, 32], "qam": 16, "qanta": 3, "qcc": 19, "qd": 10, "qdisc": [32, 38, 40], "qemu": [14, 16, 32], "qf": [3, 31], "qfe": [37, 40], "qfilter": 19, "qfp": 16, "qi": 31, "ql": 31, "qlen": [32, 38, 40], "qlogic66": 19, "qm": 0, "qmstr": 34, "qnx": [11, 32], "qo": [12, 32, 38, 40], "qq": 3, "qr": [3, 9], "qry": 3, "qsaminuskp_down": 19, "qsstv": 3, "qtester": 10, "quad": 31, "qualifi": [0, 10, 11, 20, 32, 34], "qualiti": [5, 11, 12, 14, 21, 25, 31, 32], "quantifi": [10, 11], "quantit": 25, "quantiti": [0, 3, 4, 5, 9, 10, 11, 32, 34], "quark": 32, "quarterli": 30, "quartermast": 34, "queri": [3, 6, 11, 18, 21, 25, 30, 32, 36, 37, 38, 40], "querydominfo": 20, "querygroup": 20, "querygroupmem": 20, "querystr": [39, 40], "querytyp": 18, "queryus": 20, "quest": 23, "question": [3, 5, 11, 18, 30, 32, 33, 34], "queu": [10, 12, 31, 39, 40], "queue": [0, 31], "queue_depth": 19, "queueid": 5, "quic": 3, "quick": [0, 7, 8, 19, 20, 31, 32, 33, 38, 41], "quick_exit": 0, "quicker": [0, 11, 37, 40], "quickfix": [36, 40], "quickli": [0, 5, 10, 11, 18, 19, 20, 21, 23, 30, 32, 33, 34, 35, 37, 40], "quickstart": 14, "quiet": [21, 31], "quietli": [19, 33], "quipqiup": 2, "quirk": 33, "quit": [3, 5, 7, 11, 20, 31, 32, 33, 36, 38, 39, 40], "quitter": 1, "quot": [1, 20, 31, 36, 38, 39, 40], "quotat": [5, 8, 31], "qwed": [39, 40], "qwerti": 31, "qwertyuiop": 3, "qwinsta": [37, 40], "qz": 3, "qzufjldfzfutp6xm1n": [36, 40], "r": [0, 1, 3, 4, 5, 7, 8, 10, 11, 16, 17, 18, 19, 20, 21, 23, 25, 31, 35, 36, 37, 38, 39, 40], "r1": [19, 36, 40], "r2": [0, 5, 8, 19, 20, 37, 40], "r2a2": 11, "r5u6pvd": [36, 40], "r8": 0, "r9": 0, "r_386_copi": 0, "r_386_glob_dat": 0, "r_386_jump_slot": 0, "ra": [12, 19, 38, 40], "race": [34, 37, 40], "racf2john": [38, 40], "rack": [10, 11], "rackspac": 30, "radar": 11, "radial": 10, "radio": [9, 12], "radiu": 12, "rado": 32, "rahul2": 0, "rahul3": 0, "rai": 32, "raid0": 3, "raid10": 3, "rail": [5, 11, 33], "railroad": [10, 11], "railwai": 10, "rain": [19, 30], "rainingblood": 3, "rais": [0, 10, 11, 14, 25, 31, 32], "rajan": 19, "rajesh": 18, "ralli": 25, "ram": [0, 11, 32, 33, 38, 40], "ramdisk": 31, "ramdump": [38, 40], "ramif": 11, "ran": [11, 18], "rand_max": 1, "randbetween": 8, "random": [0, 2, 5, 6, 11, 18, 30, 35, 38, 39, 40], "random_filenam": [39, 40], "random_numb": [39, 40], "randomart": [36, 40], "randomize_va_spac": 0, "randomli": [20, 39, 40], "rang": [0, 1, 2, 3, 4, 5, 7, 8, 9, 10, 11, 16, 17, 19, 20, 21, 23, 25, 31, 32, 33, 34, 35, 39, 40], "range_iter": 1, "rank": [19, 34, 39, 40], "ransom": 11, "ransomwar": 11, "rapid": [11, 18, 30, 32, 33, 34], "rapid7": [19, 39, 40], "rapidli": [14, 21, 32, 33], "rapidlog": 19, "rar": [3, 38, 40], "rar3": [38, 40], "rare": [11, 25, 33, 34], "rariti": 18, "rasman": 20, "rasp": 33, "raspbian": 15, "rastamous": [20, 37, 40], "rate": [3, 9, 10, 11, 18, 25, 32], "rather": [0, 3, 5, 7, 10, 11, 16, 20, 21, 23, 31, 32, 34, 37, 38, 40], "ratio": 25, "ration": 11, "rattl": 11, "raw": [0, 5, 6, 10, 11, 14, 18, 20, 21, 25, 31, 36, 37, 39, 40], "rawr": 18, "rax": 0, "raymond": 31, "razer": 3, "rb": [0, 1, 3, 12, 19, 39, 40], "rbac": 10, "rbash": [36, 40], "rbd": 32, "rbi": 25, "rbmysql": 19, "rbp": 0, "rc": [16, 19, 36, 40], "rc2": 31, "rc4": 8, "rce": [20, 38, 39, 40], "rcp": [37, 40], "rcpt": [19, 36, 39, 40], "rcx": 0, "rd": 25, "rdbm": 19, "rdepend": 31, "rdesktop": [36, 40], "rdi": 0, "rdn": 19, "rdp": [20, 21, 32, 36, 40], "rdpcap": 1, "rdx": 0, "rdynam": 19, "re": [0, 1, 4, 5, 9, 11, 18, 20, 21, 23, 30, 31, 33, 36, 40], "reach": [0, 1, 5, 10, 11, 12, 20, 23, 31, 32, 37, 38, 40], "reachabl": [0, 7, 30], "react": 5, "reacter": 10, "reactiv": [10, 11], "reactor": 10, "read": [0, 2, 3, 4, 5, 6, 7, 8, 11, 13, 14, 18, 20, 21, 23, 27, 30, 32, 33, 34, 36, 37, 38, 39, 40, 41], "read_fil": 0, "readabl": [3, 5, 7, 11, 16, 23, 30, 31, 37, 40], "readal": [39, 40], "readd": 31, "readelf": 0, "reader": [5, 11], "readexampleconf": [37, 40], "readfil": [39, 40], "readi": [8, 11, 15, 20, 30, 31, 32, 33, 34, 37, 39, 40], "readili": [5, 31], "readlin": 3, "readlink": 31, "readm": [14, 21, 31, 33, 36, 40], "readonli": [38, 40], "readpst": 21, "real": [0, 3, 5, 7, 8, 9, 10, 11, 12, 14, 16, 19, 21, 25, 30, 31, 32, 34, 36, 37, 40], "realist": 11, "realiti": 33, "realiz": [11, 25], "realli": [0, 11, 18, 19, 31, 33, 36, 37, 40], "realm": [13, 19], "realtek": 19, "realtim": 12, "reap": [25, 31], "reappli": 8, "rearrang": 31, "reason": [0, 3, 5, 10, 11, 18, 19, 20, 21, 25, 31, 33, 36, 37, 39, 40], "reassambl": 3, "reassembl": [3, 5, 11], "reboot": [7, 11, 14, 15, 21, 31, 32], "rebrand": 16, "rebuild": [3, 11, 31], "recal": 11, "receiv": [0, 2, 3, 5, 9, 10, 11, 12, 14, 16, 18, 19, 20, 21, 23, 25, 27, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "receive_messag": 5, "recent": [5, 7, 10, 11, 17, 18, 19, 21, 23, 31, 33, 34, 38, 40], "receptionist": 11, "recharg": [9, 11], "reciev": [11, 16], "recip": [11, 32], "recipi": [5, 11, 19, 31, 34], "reciproc": 34, "reciv": 16, "reckless": 21, "reckon": 10, "reclaim": [19, 32], "reclos": 10, "recogn": [10, 11, 18, 31, 34], "recognis": 18, "recognit": 14, "recombin": [36, 40], "recommend": [7, 8, 9, 19, 20, 23, 30, 31, 32, 34, 35, 36, 39, 40], "recompil": 5, "recon": [20, 41], "recon1": 19, "reconfigur": [11, 19, 31], "reconnaiss": [11, 35, 38], "reconnect": [19, 39, 40], "reconsid": [36, 40], "reconstitut": 11, "reconstruct": [10, 34], "record": [0, 3, 5, 7, 9, 10, 11, 12, 14, 25, 32, 33, 34, 35, 37, 39, 40], "recordpid": 21, "recov": [3, 33], "recoveri": [5, 19], "recreat": 11, "recrudesc": 18, "recruit": [11, 34], "recur": [11, 16, 33], "recurs": [3, 5, 20, 21, 31, 36, 37, 38, 39, 40], "recv": [1, 18], "recvlin": 1, "recvn": 1, "recvregex": 1, "recvrepeat": 1, "recvuntil": 1, "recycl": [11, 20, 31, 32], "red": [3, 5, 10, 14, 18, 19, 22, 23, 30, 32, 33, 34, 38, 40], "redact": [39, 40], "redhat": [32, 36, 40], "redirect": [0, 5, 7, 11, 12, 19, 20, 21, 36], "redirectstandarderror": [38, 40], "redirectstandardoutput": [38, 40], "redistribut": [33, 34], "redistributor": 34, "redpoint": 19, "reduc": [7, 10, 11, 14, 25, 30, 31, 32, 33, 34, 36, 40], "reduct": [11, 16], "redund": [3, 5, 11, 23, 30], "reenter": [7, 21], "ref615": 10, "refactor": [30, 32], "refer": [2, 3, 4, 8, 9, 11, 12, 13, 14, 16, 18, 20, 21, 23, 25, 30, 31, 32, 33, 35, 36, 39, 41], "referenc": [0, 5, 36, 40], "refin": [11, 31], "refineri": 11, "reflect": [0, 11, 12, 34], "reflector": [5, 12], "reflex": 10, "reformat": [5, 11], "refox": 31, "refresh": [8, 19, 21, 31, 38, 40], "refriger": [10, 11], "refuel": 11, "refus": [10, 19, 23, 31, 37, 40], "reg": [0, 20, 21, 37, 40], "reg32": 4, "reg_sz": [20, 37, 40], "regard": [5, 9, 10, 11, 14, 18, 19, 20, 23, 25, 31, 33], "regardless": [0, 5, 7, 9, 10, 11, 32, 36, 40], "regex": [0, 1, 3, 7, 17, 20], "regexp": [1, 31], "region": [0, 4, 9, 11, 32, 34], "regist": [5, 9, 10, 11, 14, 16, 18, 31, 32, 33, 37, 40], "register_tm_clon": 0, "registr": [5, 12, 18, 32, 34], "registrar": 18, "registri": [5, 8, 9, 11, 18, 19, 23, 30, 38, 40], "regnam": 0, "regress": 32, "regul": [10, 11, 16, 31, 33], "regular": [11, 14, 17, 19, 20, 34, 39, 40], "regularli": [5, 10, 11], "regulatori": [11, 25], "reinforc": 11, "reiniti": [1, 31, 36, 40], "reinstal": [20, 31], "reject": [7, 19, 31, 32, 34], "rejectpdu": 10, "rel": [0, 10, 11, 19, 21, 25, 33, 34, 35], "relai": [9, 10, 11, 12, 18, 20, 34, 38, 40], "relat": [1, 3, 5, 9, 11, 14, 18, 19, 20, 23, 24, 25, 30, 31, 32, 33, 34, 35, 40], "relationship": [12, 14, 24, 25, 31, 32, 34], "relativ": 0, "relaytest": 19, "releas": [7, 11, 12, 13, 14, 15, 19, 21, 23, 24, 30, 31, 34, 36, 37, 38, 40], "relev": [5, 9, 10, 11, 12, 18, 30, 31, 32, 34], "reli": [9, 11, 20, 31, 33, 34, 36, 37, 40], "reliabl": [9, 10, 11, 19, 32], "relianc": 11, "relic": 32, "relicens": 34, "relief": [11, 25], "religi": 34, "religion": 34, "relinquish": [37, 40], "reload_al": [39, 40], "reloc": 0, "relro": 0, "reltim": [36, 40], "remain": [0, 1, 5, 9, 10, 11, 12, 16, 21, 30, 31, 32, 33, 34, 39, 40], "remaind": [3, 31], "remedi": 11, "rememb": [0, 3, 5, 6, 11, 14, 16, 18, 19, 20, 23, 31, 33, 36, 37, 38, 39, 40], "remind": 31, "remmina": [36, 40], "remot": [1, 5, 7, 9, 12, 14, 18, 21, 23, 30, 31, 32, 33, 37], "remote_socket": [36, 40], "remote_system": 31, "remoteaccess": 20, "remotecomput": 20, "remotecomputernam": 20, "remotesystem": 31, "remotevendor": 11, "remount": [7, 31], "remov": [0, 5, 7, 8, 10, 13, 18, 19, 23, 32, 34, 36, 38, 39, 40], "removedocu": 5, "removerepo": 31, "removeworkspac": 19, "renam": [3, 5, 20, 31, 37, 39, 40], "render": [0, 3, 5, 10, 11], "renderimag": 3, "renegoti": 9, "reneiw": 23, "renew": 14, "rent": [11, 32], "reoccur": 33, "reopen": 0, "reorder": [0, 31], "rep": 19, "repackag": 31, "repadmin": 20, "repai": 25, "repair": [3, 11, 15, 31, 34], "repars": [38, 40], "reparsepoint": [38, 40], "repay": 25, "repeat": [0, 1, 5, 8, 11, 23, 31], "repeatedli": [11, 14, 19, 31, 33], "repetit": [21, 30, 31, 34], "replac": [0, 1, 3, 5, 7, 8, 10, 11, 15, 18, 20, 32, 33, 34, 36, 38, 39, 40], "replace_str": 31, "replacement_timeout": 19, "replai": [5, 10, 16], "repli": [10, 11, 18, 19, 31], "replic": [5, 11, 14, 19, 20, 31, 32], "replica": 21, "replicaset": 32, "repo": [15, 31, 32], "repolist": 31, "repopul": 11, "report": [0, 5, 7, 9, 10, 11, 18, 19, 30, 31, 32, 34, 36, 40, 41], "reportserv": 19, "reportserver_log": 19, "reportservertempdb": 19, "reportservertempdb_log": 19, "repositori": [5, 14, 19, 21, 30, 31, 33, 34, 38, 39, 40], "repr": 1, "repres": [0, 1, 3, 5, 9, 10, 11, 14, 16, 25, 30, 31, 32, 33, 34], "represent": [4, 5, 11, 21, 31, 33], "reprlib": 1, "repro": 20, "reproduc": [32, 33, 34], "repudi": 33, "reput": [11, 25, 33], "req": [13, 16], "request": [0, 3, 6, 8, 9, 10, 11, 12, 14, 18, 19, 20, 21, 27, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "requesterror": [37, 40], "requestfilt": [39, 40], "requestor": 33, "requestpdu": 10, "requir": [0, 3, 5, 7, 8, 9, 11, 12, 13, 14, 16, 18, 19, 20, 21, 23, 25, 30, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "requireaccess": [39, 40], "requiremnet": 23, "requisit": [7, 10, 31, 32], "rescu": [5, 31], "research": [5, 11, 16, 18, 19, 30, 33, 34, 38, 40], "resembl": [14, 19], "resend": 16, "reseri": 5, "reserv": [0, 3, 5, 6, 10, 11, 21, 31, 32, 36, 40], "reserved1": 3, "reserved2": 3, "reserved_1": 11, "reserved_2": 11, "reserved_fd": 19, "reservoir": 11, "reset": [5, 8, 10, 16, 19, 30, 31, 36, 40], "resid": [0, 10, 11, 12, 16, 19, 20, 31, 39, 40], "residenti": [11, 12], "resili": [11, 32, 33], "resin": 11, "resist": [10, 11, 25, 33], "resistor": 16, "resiz": [3, 31], "resize_inod": 31, "resolut": [0, 8, 11, 14, 18, 19, 30, 39, 40], "resolv": [0, 8, 11, 14, 18, 19, 25, 26, 30, 31, 32, 33, 34, 38, 40], "resort": [11, 33], "resourc": [0, 3, 5, 9, 10, 12, 14, 16, 18, 19, 21, 24, 25, 31, 32, 33, 38, 39, 40], "resourceread": 1, "resourcetyp": [39, 40], "respect": [0, 4, 5, 7, 10, 11, 12, 18, 25, 31, 32, 33], "respectfulli": 34, "respond": [5, 7, 8, 9, 10, 14, 19, 20, 21, 30, 31], "respons": [0, 3, 9, 10, 12, 16, 18, 19, 23, 24, 30, 31, 32, 34, 36, 38, 39, 40, 41], "responsepdu": 10, "responsibl": 11, "rest": [0, 11, 18, 19, 20, 25, 30, 31, 32, 33, 34, 36, 38, 40], "restart": [7, 8, 11, 19, 31, 32], "restartpreventexitstatu": 31, "restaur": 11, "restor": [10, 11, 20, 21, 33], "restrict": [3, 5, 7, 10, 11, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 37, 38, 39], "restrictedkrbhost": 8, "restructur": 30, "resubmit": 5, "result": [0, 1, 3, 5, 6, 10, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 35, 36, 37, 39, 40], "resum": [0, 4, 11, 18, 31], "resurrect": 23, "ret": 0, "ret2libc": 0, "ret_dn": 20, "ret_netbio": 20, "retail": [12, 25], "retain": [12, 21, 24, 31, 32, 34], "retali": 34, "retent": 11, "retin": 11, "retir": [8, 25, 30], "retlib": 0, "retouch": 31, "retr": 19, "retran": 19, "retransmiss": [3, 18], "retri": [11, 18, 19, 32], "retriev": [0, 5, 7, 8, 10, 11, 14, 18, 19, 20, 23, 31, 32, 38, 40], "retrofit": 11, "retrospect": 5, "retun": 0, "return": [2, 3, 4, 5, 6, 10, 11, 14, 16, 18, 19, 20, 23, 25, 32, 34, 36, 37, 38, 39, 40], "returnvalu": 20, "retyp": 20, "reus": [0, 5, 21, 30, 31, 32, 38, 40], "rev": [11, 19], "reveal": [5, 11, 18, 19, 21, 31, 32, 33], "reveng": 11, "revenu": [11, 12, 25, 31], "revers": [0, 1, 2, 7, 10, 11, 20, 21, 31, 35, 37, 38, 39, 41], "reverse_awk": [36, 40], "reverse_http": [19, 21, 36, 37, 40], "reverse_powershel": 19, "reverse_python": [36, 40], "reverse_python_ssl": [36, 40], "reverse_r": [36, 40], "reverse_rubi": [36, 40], "reverse_tcp": [19, 21, 36, 40], "reverseip": 18, "reversibli": 21, "revert": [5, 19, 20, 21, 38, 40], "review": [0, 5, 11, 29, 31, 32, 33, 34, 41], "revis": [10, 11, 13, 19, 31, 32, 34, 39, 40], "revision_numb": 31, "revisit": [11, 33], "revok": 14, "revolut": 10, "reward": 33, "rework": 31, "rewrit": [0, 5, 11], "rex": [32, 37, 40], "rexec_login": 19, "reydisp": 10, "reyrol": 10, "re\ufb02": 5, "rf": 31, "rfb": 19, "rfc": [12, 19, 30], "rfc3704": 7, "rfc822": 21, "rfc_system_info": 24, "rfcchartyp": 24, "rfcdatab": 24, "rfcdayst": 24, "rfcdbhost": 24, "rfcdbsy": 24, "rfcdest": 24, "rfcflotyp": 24, "rfchost": 24, "rfchost2": 24, "rfcinttyp": 24, "rfcipaddr": 24, "rfcipv6addr": 24, "rfckernrl": 24, "rfcmach": 24, "rfcopsi": 24, "rfcproto": 24, "rfcsaprl": 24, "rfcsi": 24, "rfcsi_resv": 24, "rfcsysid": 24, "rfctzone": 24, "rfi": [38, 39, 40], "rfid": 9, "rfile": [31, 37, 40], "rgb": [1, 3, 39, 40], "rgba": [1, 3, 39, 40], "rgid": 31, "rhel": [14, 31, 36, 40], "rhost": [19, 20, 23, 24, 31, 36, 40], "rhythmbox": 31, "ri": 20, "ri0gvlznt8cuye0uigzw7ek9ddctedtmuv1y99zivk4fjmqwlzxplp5duj1nh5rm6ybh8coqhlextwc36ih18xsyzw8qk4bfl4sotesht5": [36, 40], "riak": 32, "rich": [5, 11, 25, 31, 32], "richard": 18, "rick": 19, "ricoh": 19, "rid": [0, 5, 19, 21, 31], "rideau": 11, "ridroleown": 20, "ridsetrefer": 20, "riff": 3, "right": [0, 3, 5, 6, 10, 11, 14, 19, 21, 25, 31, 32, 33, 34, 36, 37, 38, 40], "rightleft": [36, 40], "rigor": [11, 33], "rimrafal": [37, 40], "rip": [0, 38, 40], "ripper": [19, 38, 40], "ript": 18, "rise": [10, 11, 25], "risen": 11, "risk": [10, 14, 19, 20, 21, 23, 25, 31], "riski": [11, 23, 25], "river": 11, "riversid": 3, "rkhunter": 31, "rksh": [36, 40], "rlcomplet": 1, "rlnfxx0waaaiaxbbnv": 19, "rlock": 1, "rlogin": [36, 40], "rlogin_login": 19, "rm": [14, 31, 36, 37, 39, 40], "rman": 19, "rmdir": 31, "rmid": 19, "rmiregistri": 19, "rmn5dsyz4amvw1v8o": 19, "rmu": 10, "rn": [11, 18, 31], "rnd": 20, "rnel": 31, "rng": 33, "rnw": 31, "ro": [19, 21], "road": [9, 10, 11, 34], "roam": [9, 12, 37, 40], "roamer": 12, "rob": 11, "roberto": 21, "robin": 19, "robinwood": 19, "robot": [5, 6, 11, 38, 39, 40], "robust": [9, 10, 11, 12, 31, 32, 34], "roce": 31, "rock": 2, "rockwel": [11, 19], "rockwellautom": 11, "rockyou": [3, 19, 21, 38], "rockyou2": [38, 40], "rodata": 0, "rodc": [19, 21], "roe": 25, "rogu": [18, 30, 39, 40], "role": [5, 9, 10, 11, 12, 16, 19, 20, 21, 31, 32, 33, 34, 38, 40], "role_domain_bdc": 20, "roll": 32, "rollback": 32, "rollbackworkspac": 19, "rollov": 19, "rom": [11, 31], "roma": 12, "rompag": 19, "ron": [37, 40], "ronni": [36, 40], "room": [18, 21], "roomview": 19, "root": [0, 3, 5, 7, 11, 12, 14, 15, 16, 18, 19, 20, 21, 32, 33, 35, 36, 37, 38], "root_squash": 19, "rootdomain": 20, "rootdomainnamingcontext": 19, "rootf": 31, "rootfstyp": 15, "rootkit": [11, 31], "rootm": [36, 40], "rootwait": 15, "rop": [0, 20], "rop1": 0, "rose": 11, "rosenberg": 0, "rot": 34, "rotat": [10, 31, 37, 40], "rotor": 10, "rotten": [37, 40], "rou": 25, "rough": [5, 10, 25, 33], "roughli": [0, 5, 11, 31], "round": [10, 18, 20, 36, 37, 40], "rout": [7, 10, 16, 18, 19, 20, 23, 30, 32, 33, 36, 38, 40], "routabl": [11, 32], "router": [7, 10, 12, 16, 31, 32, 38, 40], "router_autocfg": 19, "routin": [5, 10, 11, 31, 33], "row": [3, 5, 6, 19, 31, 36, 40], "royalti": 34, "rp": [19, 20], "rp4": [39, 40], "rp_filter": 7, "rpassword": 8, "rpc": [11, 20, 32], "rpcclient": 20, "rpclient": [18, 38, 40], "rpclocat": 20, "rpcss": 20, "rpctool": 19, "rpm": [10, 14, 23, 32, 38, 40], "rpm2archiv": 31, "rpmdb": 31, "rpmnew": 31, "rpmrc": 31, "rpmsave": 31, "rport": 19, "rprnt": [36, 40], "rq": [38, 40], "rr": 3, "rs0": 19, "rs1": 19, "rs232": [10, 11, 16], "rs422": [10, 11], "rs485": [10, 11], "rsa": [3, 14, 19, 33, 36, 39], "rsa4096": 31, "rsa_e2": 2, "rsactftool": [38, 40], "rsat": 20, "rsautl": [38, 40], "rservic": 19, "rset": 19, "rsg": 10, "rsh": [5, 6, 36, 37, 40], "rsh_login": 19, "rsi": [0, 25], "rsocket": [36, 40], "rsop": 23, "rsp": 0, "rss": [38, 40], "rst": [5, 18, 30, 38, 40], "rstrip": 2, "rsvp": 20, "rsync": 11, "rt": [7, 36, 40], "rtf": 31, "rtl": 16, "rtl_433": 16, "rtl_sdr": 16, "rtld": 0, "rtld_fini": 0, "rto": 11, "rtspd": 19, "rtt": 18, "rtu32": 10, "ru": 20, "rubi": [2, 5, 18, 30, 32, 33, 38], "rubocop": 30, "rude": [5, 33], "rugged": 11, "ruggedcom": 10, "rule": [4, 5, 7, 10, 18, 23, 30, 32, 33, 34, 37, 38, 39, 40], "rule1": 11, "rule_num": 31, "rulebas": 23, "ruleset": 21, "rummag": 11, "run": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 14, 15, 18, 19, 20, 21, 23, 24, 25, 30, 31, 32, 33, 34, 35, 36, 37, 39], "run_command": [38, 40], "runa": [20, 37, 40], "rung": 11, "runlevel": 23, "runm": [36, 40], "runn": 23, "runnabl": [10, 31], "runner": 13, "runonc": [37, 40], "runtim": [0, 4, 16, 19, 31, 33, 36, 38, 40], "runtimedirectori": 31, "runtimedirectorymod": 31, "runtimeerror": 19, "ruptur": 11, "rusage_system": 19, "rusage_us": 19, "ruser": 31, "rush": [10, 11], "russel": 30, "rv": [39, 40], "rvrsh3ll": 19, "rw": [0, 19, 31, 37, 39, 40], "rwe": 0, "rwx": [0, 31], "rwxp": 0, "rwxr": [31, 37, 40], "rwxrwxrwx": [37, 40], "rx": [16, 32, 36, 40], "rxvt": 31, "ry": [36, 40], "rzraven": 16, "s0": [37, 40], "s1": [10, 36, 40], "s1lz83xvghiepv0odoj2he4tcyts6md0udlsio6rlwtvg": 19, "s2": 19, "s2i": 32, "s3": 32, "s3cr3t": [38, 40], "sa": [5, 7, 10, 18, 19, 35, 40], "sa0": 19, "saa": 32, "sackok": [35, 40], "sad": 19, "sadf": 7, "sadli": 11, "safari": 11, "safe": [0, 5, 7, 11, 19, 21, 31, 33, 39, 40], "safecod": 33, "safeguard": [11, 30, 31, 33], "safer": [0, 11, 32], "safeti": 10, "sag": 10, "sai": [0, 3, 5, 8, 10, 11, 18, 19, 21, 30, 32, 33, 34, 36, 37, 38, 39, 40], "said": [0, 11, 33], "saitel": 10, "sak": 7, "sale": [11, 25, 34], "salea": 16, "salgado": 21, "salli": 20, "salt": [2, 19, 21, 30, 31, 33, 37, 40], "salted_some_garbag": 19, "saltstack": 30, "sam": [8, 18, 20], "samaccountnam": [8, 19, 20], "samaccounttyp": 8, "samba": [14, 18, 20, 38, 40], "same": [0, 1, 3, 4, 5, 6, 7, 8, 10, 11, 12, 13, 14, 16, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "sameorigin": [36, 40], "samhain": 31, "saml": [13, 19], "sampl": [0, 3, 5, 10, 11, 14, 16, 31, 32, 35, 37, 40], "sample_s": 19, "sampler": 3, "samplet": 5, "sampr_user_internal4_inform": 20, "samratashok": 20, "samss": 20, "samsung": 19, "san": [0, 3, 11, 36, 40], "sand": 11, "sandbox": [5, 11, 33], "sane": [36, 38, 40], "sanit": [1, 33, 39, 40], "sap": [10, 21], "sap_icf_public_info": 24, "sap_service_discoveri": 24, "sapbwbi": 19, "sapdev": 24, "sapdev_dev_00": 24, "sapdp00": 24, "sapdp01": 24, "sapgw00": 24, "sapm": 24, "sapprdc": 24, "sapprdc_prd_01": 24, "sapqa": 24, "sapqas_qas_00": 24, "saprout": 19, "sar": [7, 32], "sarah": 19, "sarnia": 11, "sassl": 8, "sast": 33, "sat": [5, 10, 19, 20], "sate": 33, "satellit": [10, 11], "satisfactori": 31, "satisfi": [1, 5, 11, 25, 31], "saturdai": 11, "saudi": 11, "sauran": 10, "sauron": 30, "save": [0, 1, 3, 5, 9, 10, 11, 14, 18, 19, 20, 21, 23, 31, 32, 33, 34, 36, 37, 38, 39, 40], "savecr": [37, 40], "savefil": [37, 40], "saver": 19, "saw": 31, "say_hi": 0, "sb": 8, "sbfw5pbf2": 19, "sbin": [32, 36, 37, 39, 40], "sbit": 3, "sbo": 10, "sbom": 33, "sc": [3, 10, 12, 19, 21, 31, 37, 38, 40], "sca": 12, "scala": 32, "scalabl": [9, 11, 14, 30, 32], "scale": [5, 10, 11, 12, 25, 31, 32], "scam": 11, "scan": [0, 5, 6, 7, 9, 14, 17, 19, 23, 24, 30, 32, 33, 34, 36, 37, 38], "scan_r": 16, "scan_req": 16, "scandir": [39, 40], "scandiriter": 1, "scanf": 0, "scaninfo": 18, "scanline_pad": 19, "scanlon": 33, "scanm": [18, 19, 35, 40], "scanner": [5, 20, 22, 24, 30, 33, 34, 35, 36, 39, 40], "scardsvr": 20, "scatter": [11, 19], "scc": 10, "sccm": 21, "scd": 10, "sce": [10, 12], "scenario": [0, 3, 5, 8, 9, 11, 19, 30, 32, 36, 37, 40], "scene": [5, 32], "scesrv": 20, "sched_debug": [36, 40], "schedsvc": 19, "schedul": [9, 11, 19, 21, 23, 32, 38, 40], "scheduledtask": [20, 37, 40], "scheduletyp": 20, "schema": [8, 20, 24], "schemanamingcontext": 19, "schemaroleown": 20, "scheme": [10, 19, 38, 40], "schneider": 11, "schneier": 33, "school": [11, 34], "schtask": [20, 37, 40], "scienc": 33, "scientif": 11, "scientist": 18, "scipi": [2, 3], "scipt": [37, 40], "sck": [14, 16], "scl": 16, "scm": [8, 20, 24, 30], "scn": 19, "scom": 21, "scope": [5, 8, 11, 19, 23, 31, 32, 33, 34, 38, 40], "scopenam": 8, "score": [11, 33], "scott": [5, 19, 20], "scottsdal": 19, "scp": [12, 37, 39], "scrap": 11, "scrape": [18, 19], "scratch": [31, 32, 34], "screen": [3, 4, 10, 11, 16, 19, 20, 21, 23, 36, 38, 39, 40], "screener": 25, "screensav": 11, "screenshot": [11, 19, 20, 21, 39, 40], "scribe": 11, "scribu": 31, "script": [0, 1, 3, 6, 7, 8, 11, 14, 16, 19, 20, 21, 23, 30, 32, 34, 35, 36, 38, 39], "script_fil": 31, "scriptblock": [20, 36, 38, 40], "scriptfil": 31, "scriptjunki": 20, "scriptprocessor": [39, 40], "scroll": [31, 38, 40], "scrollbind": [36, 40], "scrypt": 33, "scsi": 19, "sctp": [12, 38, 40], "sd": [16, 18, 19, 20, 23, 32, 39, 40], "sda": [16, 31], "sda1": [3, 31, 39, 40], "sda4": 31, "sdb": [19, 31], "sdb1": [19, 31], "sdd": [11, 32], "sdevic": 31, "sdk": [16, 19, 32], "sdm600": 10, "sdn": 32, "sdp": 19, "sdr": 16, "sdrightseffect": 8, "sdshow": 21, "se": [4, 10, 11], "seal": 31, "seamless": [9, 31, 32], "seamlessli": [12, 21], "sean": [8, 20, 21], "search": [0, 1, 3, 4, 5, 7, 8, 11, 20, 30, 32, 34, 36, 37, 38, 39, 40], "searchabl": [18, 34], "searchattrib": 19, "searchbas": 20, "searchdiggityv3": 18, "searchqueri": 21, "searchroot": 20, "searchvalu": 19, "season": [11, 21, 41], "seassignprimaryprivileg": [37, 40], "seat": 3, "sebackupprivileg": [37, 40], "sebi": 25, "sec": [3, 4, 19, 38, 39, 40], "secadv_20140407": 19, "secc": 9, "secdevop": 33, "secedit": 21, "seclogon": 20, "second": [0, 1, 2, 3, 4, 5, 10, 11, 16, 18, 19, 21, 23, 24, 30, 32, 33, 36, 37, 40], "secondari": [10, 11, 12, 31], "secondli": [5, 11], "secop": 32, "secreatetokenprivileg": [37, 40], "secreci": 33, "secret": [0, 2, 3, 5, 6, 11, 13, 14, 19, 20, 21, 32, 33, 34, 37, 38, 39, 40], "secretci": 3, "secretnam": [39, 40], "secretsdump": [21, 38, 40], "secrf": 4, "section": [0, 3, 4, 5, 9, 10, 11, 12, 14, 16, 18, 19, 21, 23, 25, 32, 35, 36, 38, 39, 40], "sector": [3, 9, 25, 31], "secur": [0, 3, 5, 6, 9, 12, 13, 18, 19, 20, 22, 23, 25, 27, 32, 35, 37, 39, 41], "secure_compar": 33, "secureapp": 23, "securechang": 23, "securepassword": [36, 38, 40], "securestr": [8, 33, 36], "securestringtobstr": [38, 40], "securetrack": 23, "securework": [38, 40], "security_baselin": 8, "securitybaselin": 8, "securitydescriptor": 20, "securityfest": 3, "securitytxt": 33, "securityutil": 33, "sed": [10, 36, 38, 40], "sedebugprivileg": [37, 40], "sediment": 11, "see": [0, 1, 2, 3, 4, 5, 6, 7, 8, 10, 11, 12, 13, 15, 16, 18, 19, 20, 21, 23, 30, 32, 33, 34, 36, 37, 38, 39, 40], "seed": [5, 31, 33], "seek": [0, 3, 7, 11, 14, 25, 31, 39, 40], "seem": [0, 10, 11, 18, 25, 34, 38, 40], "seemingli": 11, "seen": [0, 3, 11, 16, 19, 25, 31, 32, 34, 39, 40, 41], "seg": 31, "segfault": 0, "segger": 16, "segment": [0, 10, 19, 25, 31, 32, 39, 40], "segreg": [11, 18], "sei": [30, 33], "seimpersonateprivileg": [37, 40], "seiz": 18, "sekurlsa": 20, "sel": 18, "select": [0, 3, 4, 5, 6, 9, 10, 11, 12, 16, 19, 20, 21, 23, 31, 32, 33, 34, 36, 37, 38, 39, 40], "self": [5, 10, 11, 13, 19, 31, 32, 34, 36], "selinux": 32, "sell": [25, 33, 34], "seloaddriverprivileg": [37, 40], "semaphor": [10, 31], "semi": [20, 31, 38, 40], "semicolon": [4, 5, 18], "send": [0, 3, 5, 7, 9, 10, 11, 12, 16, 18, 19, 20, 30, 31, 32, 34, 35, 36, 37, 38, 39, 40, 41], "send_redirect": 7, "send_target": 19, "sender": [2, 11, 19, 23, 33, 37, 40], "sendlin": 1, "sendlineaft": 1, "sendmail": 19, "sendtarget": 19, "senior": [11, 31], "sens": [7, 10, 11, 18, 19, 25, 32, 33, 34, 35, 36, 40], "sensepost": 19, "sensex": 25, "sensibl": 8, "sensit": [5, 7, 10, 11, 16, 20, 23, 31, 32, 40], "sensor": [10, 30, 32], "senssvc": 19, "sent": [5, 10, 11, 12, 14, 16, 18, 19, 20, 21, 23, 30, 31, 32, 33, 34, 36, 40], "sentenc": 31, "sentiment": 34, "sep": [7, 12, 20, 31, 36, 40], "separ": [0, 5, 6, 8, 10, 11, 12, 14, 18, 21, 23, 30, 31, 32, 33, 34, 35, 36, 38, 40], "seq": [0, 18, 35, 38, 40], "sequenc": [0, 1, 3, 5, 9, 10, 16, 19, 20, 31, 33, 38, 40], "sequenti": [10, 11, 31, 34], "serestoreprivileg": [37, 40], "sergej": 33, "seri": [1, 3, 5, 10, 11, 14, 18, 19, 21, 30, 31, 32, 34, 39, 40, 41], "serial": [3, 10, 11, 12, 16, 19, 30, 31, 36, 39, 40], "serial0": 15, "serialtub": 1, "serif": 3, "seriou": [5, 7, 11, 19, 33, 34], "serr": 19, "sertel": 10, "serv": [4, 9, 11, 12, 14, 18, 19, 31, 32, 34, 39, 40], "server": [1, 3, 6, 7, 9, 12, 13, 16, 23, 24, 32, 33, 34, 36, 37, 38], "server01": 8, "server044": 8, "server1": [18, 31], "server2": 18, "server_host_key_algorithm": 19, "serveraddress": 8, "serverhello": 19, "servernam": [19, 20, 31], "serversid": [39, 40], "servic": [1, 3, 5, 6, 9, 10, 12, 13, 15, 16, 23, 25, 33, 34, 35, 36, 38, 39, 40], "service_nam": [19, 31], "serviceaccount": [8, 20], "servicepackineffect": [37, 40], "serviceprincipalnam": [8, 20], "serviceprofil": 21, "servlet": 5, "sess_": [39, 40], "sess_i56kgbsq9rm8ndg3qbarhsbm27": [39, 40], "sessid": [36, 40], "session": [3, 5, 7, 9, 11, 12, 14, 19, 23, 31, 33, 36], "session_numb": 20, "sessiongoph": 20, "sessnam": [36, 40], "set": [1, 3, 5, 9, 10, 11, 12, 13, 14, 15, 17, 18, 19, 20, 21, 23, 24, 30, 32, 33, 34, 36, 37, 38], "set1": 31, "set2": 31, "set_iter": 1, "setakeownershipprivileg": [37, 40], "setarch": 0, "setcbprivileg": [37, 40], "setenv": [36, 40], "setgid": [3, 19, 37, 40], "setpoint": 10, "setresgid": 0, "setresuid": 0, "setsid": [36, 40], "setspn": 20, "settl": 25, "setuid": [0, 4, 7, 19, 37, 38, 40], "setuidbinari": [38, 40], "setup": [3, 8, 9, 11, 13, 14, 16, 19, 20, 31, 32, 37, 39, 40], "setuptool": [37, 40], "setuserinfo2": 20, "seven": [10, 11], "seventh": [0, 31], "sever": [0, 5, 6, 9, 10, 11, 12, 14, 19, 20, 21, 23, 25, 30, 32, 33, 34, 36, 40], "sewag": 11, "sewino": 16, "sex": 34, "sexual": 34, "sf": [3, 4, 31, 35, 37, 40], "sfc": 11, "sfl": 14, "sfp": 0, "sftp": 31, "sfw": 3, "sg": [7, 31], "sg1": 19, "sgid": [31, 37, 40], "sgsn": 12, "sh": [1, 3, 4, 7, 14, 19, 31, 32, 33, 37, 38, 39], "sha": [19, 21, 31, 37, 40], "sha1": [4, 19, 31], "sha1withrsaencrypt": 19, "sha256": [14, 19, 31, 36, 38, 40], "sha256withrsaencrypt": 19, "sha512": [7, 38, 40], "shadow": [19, 21, 23, 37, 38, 39, 40], "shadowaccount": 19, "shadown": [38, 40], "shall": [0, 10, 34], "shape": [10, 11, 19, 34], "shar": 3, "shard": 19, "share": [1, 3, 4, 5, 6, 8, 9, 10, 11, 14, 17, 18, 19, 20, 21, 25, 27, 32, 34, 35, 36, 37, 38, 41], "sharehold": 25, "sharelist": 20, "sharenam": [37, 38, 39, 40], "sharepath": [37, 39, 40], "sharepoint": [21, 38, 40], "sharepwn": [38, 40], "shark2": 3, "shaun": 3, "she": [7, 11, 33], "sheet": [3, 5, 33, 36, 39, 40], "shelf": [5, 11, 32], "shell": [0, 7, 11, 16, 18, 20, 21, 23, 32, 33, 35, 39, 41], "shell_bind_tcp": 19, "shell_cod": [39, 40], "shell_exec": [36, 40], "shell_output": [37, 40], "shell_reverse_tcp": [19, 21], "shellcatraz": [36, 40], "shellcod": [0, 20, 36, 38, 39, 40], "shellcode_inject": 20, "shellopt": [36, 40], "shellshock": 19, "shellstorm": 0, "sheriff": 11, "shield": [10, 12], "shift": [3, 4, 11, 16, 31], "ship": [11, 31, 32, 33], "shlib": 31, "shm": [19, 37, 40], "shock": [10, 38, 40], "shocker": [39, 40], "shodan": [11, 18], "shodandigg": 18, "shop": [5, 11, 33], "short": [0, 3, 5, 9, 10, 11, 12, 18, 25, 30, 31, 33, 34, 35, 37, 38, 40], "shortag": [11, 25], "shortcut": [5, 11, 20], "shorten": [11, 33, 38, 40], "shorter": [5, 16, 33, 38, 40], "shortest": 10, "shorthand": 31, "shortli": [0, 11], "should": [0, 1, 3, 4, 5, 6, 7, 8, 10, 11, 12, 14, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40], "shouldn": [11, 31], "shout": [18, 35, 40], "show": [0, 3, 5, 7, 8, 11, 13, 14, 17, 18, 19, 21, 23, 33, 34, 36, 37, 38, 39, 40], "shown": [0, 3, 5, 9, 11, 19, 24, 31, 33, 37, 38, 40], "showpkg": 31, "showtext": [38, 40], "shred": 11, "shredder": 11, "shtml": [38, 40], "shunt": 10, "shut": [10, 11, 23, 31, 34], "shutdown": 11, "shx7": 3, "si": [11, 31, 37, 40], "sicf": 24, "sicken": 11, "sicom": 10, "sid": [8, 11, 18, 20, 21, 23, 24], "sid_brut": 19, "sid_enum": 19, "side": [6, 9, 10, 11, 14, 16, 18, 25, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40], "sidecar": 32, "sidfil": 19, "sidhistori": 8, "siem": [10, 30], "sifi": 19, "sift": 21, "sigabrt": 31, "sigalrm": 31, "sigbit": 3, "sigbu": 31, "sigchld": [0, 4, 31], "sigcont": 31, "sigfp": 31, "sight": [3, 11], "sighup": 31, "sigil": 31, "sigint": [31, 36, 40], "sigio": 31, "sigkil": 31, "sign": [0, 3, 4, 5, 7, 10, 14, 15, 18, 19, 25, 31, 33, 34, 36, 40], "signal": [2, 4, 7, 9, 10, 11, 12, 16, 19, 21, 25, 36, 40], "signatori": 34, "signatur": [3, 10, 16, 19, 31, 39, 40], "signed": 4, "signed_directory_hash": 31, "signifi": [5, 11, 31], "signific": [0, 3, 5, 11, 16, 19, 33, 34], "significantli": [10, 11, 12, 31, 33], "significatnt": 16, "sigpip": 31, "sigprof": 31, "sigpwr": 31, "sigquit": 31, "sigra": 10, "sigrtmax": 31, "sigrtmin": 31, "sigsegv": 31, "sigsi": 31, "sigstkflt": 31, "sigstop": 31, "sigterm": 31, "sigtrap": [0, 31], "sigtstp": 31, "sigttin": 31, "sigttou": 31, "sigurg": 31, "sigusr1": 31, "sigusr2": 31, "sigvtalrm": 31, "sigwinch": 31, "sigxcpu": 31, "sigxfsz": 31, "sikn": 16, "silent": [5, 31], "silentlycontinu": [37, 40], "silk": 32, "silver": 33, "silverlight": 5, "silverstream": 5, "sim": 12, "similar": [3, 4, 5, 6, 10, 11, 12, 15, 16, 18, 19, 20, 21, 31, 32, 33, 34, 36, 37, 38, 39, 40], "similarli": [1, 11, 31, 33], "simon": 8, "simpl": [0, 1, 2, 3, 4, 5, 7, 9, 10, 11, 12, 16, 18, 19, 20, 21, 22, 23, 25, 30, 32, 33, 34, 36, 37, 38], "simplehttpserv": [39, 40], "simplenamespac": 1, "simpler": [10, 31], "simplest": [5, 23, 31, 33, 34, 36, 40], "simpli": [0, 5, 7, 10, 11, 14, 16, 18, 19, 20, 21, 23, 31, 32, 33, 35, 36, 40], "simplic": [11, 32, 33], "simplifi": [9, 11, 31, 32], "simul": [10, 19, 20, 31, 33], "simultan": [10, 11, 16, 30, 31, 32, 33], "sinc": [0, 1, 5, 7, 8, 10, 11, 12, 18, 19, 20, 21, 31, 33, 37, 38, 39, 40], "sinfo": [39, 40], "sing": 14, "singl": [0, 1, 3, 4, 5, 6, 8, 9, 10, 11, 14, 16, 18, 19, 20, 21, 23, 33, 34, 36, 40], "singular": 34, "sink": [3, 16], "sink_nam": 3, "sinn3r": 21, "sip": [18, 19, 38, 40], "sipf": 19, "sipfederationtl": 19, "siprotec": 10, "siprotec4": 10, "siprotec5": 10, "siptrotec": 10, "sipvici": [38, 40], "siren": 11, "sit": [7, 10, 11, 12, 18, 31], "sitcki": 23, "site": [5, 7, 10, 12, 14, 18, 19, 20, 21, 30, 31, 32, 33, 36, 37, 38, 39, 40], "site_10": 19, "sitemap": [39, 40], "sitenam": 20, "sitepag": [38, 40], "sitespec": 20, "sitra": 10, "situat": [0, 5, 9, 10, 11, 18, 19, 21, 31, 32, 33, 34], "situtaion": 5, "six": [3, 10, 11, 31, 34], "sixdub": 21, "size": [0, 1, 3, 4, 9, 13, 16, 18, 19, 21, 30, 31, 32, 34, 36, 37, 38, 39, 40], "size_t": 0, "sizeof": [0, 37, 40], "sizeondisk": 19, "ska": 17, "skaffold": 32, "skel": 31, "skeleton": 31, "sketch": 21, "skf": 33, "skill": [11, 41], "skillfulli": 9, "skim": 18, "skin": 34, "skip": [1, 18, 19, 31, 35, 40], "skipassourc": 8, "sko": 20, "skojiman3": 0, "skss65krgiqb9z8wn": 19, "sky": 16, "skydn": 32, "sl": [18, 35, 40], "slack": [3, 10], "slash": [18, 31, 36, 40], "slave": [10, 16, 32], "sle": 31, "sled": 0, "sleep": [0, 1, 5, 11, 21, 36, 40], "sleet": 19, "sleuthkit": 3, "slf4jlogger": 14, "slice": [1, 31], "slide": [19, 21], "slightli": 1, "slinki": 20, "slip": 11, "slm2024": 19, "sloppi": 34, "slot": [3, 9, 16], "slow": [11, 16, 18, 31, 33], "slowdown": 11, "slower": [10, 11, 18], "slowli": 10, "sm": [5, 12, 35, 40], "sm59": 24, "smali": 3, "small": [0, 3, 9, 10, 11, 16, 19, 23, 25, 31, 32, 33, 34, 36, 38, 40], "smaller": [11, 31, 33], "smallest": [0, 11], "smallint": 5, "smallworld": 10, "smart": [9, 10, 11, 12, 31], "smartcard": [5, 21], "smartcent": 19, "smartind": [36, 40], "smartphon": [9, 11, 30, 33], "smartstack": 32, "smash": [0, 32], "smb": [3, 5, 6, 10, 14, 18, 20, 21, 32, 37], "smb1": [39, 40], "smb2": [3, 39, 40], "smb2support": [37, 39, 40], "smb_enum_gpp": 20, "smb_version": 19, "smbclient": [18, 20, 38, 39, 40], "smbdomain": 20, "smbexec": [38, 40], "smbmap": [5, 6], "smbpass": 20, "smbserver": [37, 39, 40], "smbshare": 8, "smbuser": 20, "smbv2": 20, "smd": 16, "smell": 30, "smicm": 24, "smith": [8, 16, 19], "smithj": 31, "smooth": [31, 34], "smp": [5, 19], "smpp": 12, "smsc": 12, "smsinternalcligrp": 20, "smss": 12, "smt": 12, "smtp": [5, 11, 13, 18, 24, 30, 35, 36, 38, 40], "smtp_enum": [19, 36, 40], "smtp_relai": 19, "smtpsrv": 19, "smv": 10, "sn": [3, 11, 18, 19, 35, 40], "snap": [20, 32, 39, 40], "snapshot": [5, 11, 23, 31, 32, 38, 40], "snat": 31, "snc5dv": 14, "snd": 3, "snif": [19, 31], "sniff": [16, 17, 19, 35, 40], "sniffer": [5, 11, 16], "snip": [0, 19, 21, 36, 40], "snipe": 31, "sniper": 11, "snippet": [0, 31], "snmp": [11, 20, 23, 32, 38, 40], "snmp_enum": 19, "snmp_login": 19, "snmpcheck": 18, "snmpwalk": [18, 38, 40], "snoop": [37, 40], "snoopng": 19, "snort": 18, "snow": 19, "snprintf": [0, 4], "snyk": 33, "so": [0, 1, 3, 4, 5, 6, 7, 8, 10, 12, 13, 14, 15, 16, 18, 19, 20, 21, 23, 27, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40, 41], "soa": [11, 18, 19, 35, 40], "soap": [5, 19, 20, 24], "social": [5, 18, 21], "societi": 11, "sock_dgram": [36, 40], "sock_stream": [36, 40], "sockaddr_in": [36, 40], "socket": [0, 9, 11, 19, 31, 36, 38, 39, 40], "socket_keepal": 19, "socket_timeout": 19, "socks4": [36, 38, 40], "socks5": [21, 36, 38, 40], "sodium": 11, "soe": [2, 10], "soft": [0, 19], "softlink": [37, 40], "softshar": 19, "softwar": [0, 3, 5, 7, 9, 11, 14, 18, 19, 20, 21, 22, 23, 30, 31, 35, 36, 37, 38, 40, 41], "softwaredistribut": [37, 40], "sofwar": 16, "soic": 16, "solar": [10, 11], "solari": [23, 32], "sold": [25, 33], "solder": 16, "sole": [9, 11, 21], "solid": [11, 25], "solut": [3, 7, 9, 11, 14, 16, 19, 20, 23, 30, 31, 33, 38, 40], "solv": [1, 2, 11, 16, 21, 30, 31, 33, 34, 35, 40, 41], "solvent": 11, "solver": 1, "some": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14, 15, 16, 17, 18, 19, 20, 21, 23, 27, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "some_system": 31, "somebodi": [37, 40, 41], "somecas": [38, 40], "somecooki": [36, 40], "somedirectori": 19, "someexampl": 19, "somefil": [19, 31], "somehow": [0, 3, 18, 31, 37, 39, 40], "somekind": 0, "somenam": [31, 36, 40], "somenumb": [38, 40], "someon": [7, 11, 21, 31, 32, 33, 34, 36, 38, 40], "somepag": [36, 40], "sometest": 31, "someth": [0, 1, 2, 3, 5, 8, 11, 14, 15, 18, 19, 20, 26, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "somethingels": [39, 40], "somethingnotobivousforwaf": [36, 40], "sometim": [0, 3, 5, 6, 11, 12, 18, 19, 20, 21, 23, 31, 32, 33, 34, 36, 37, 38, 39, 40], "somevalu": [36, 40], "somewhat": [5, 11, 31, 32], "somewher": [1, 5, 31, 33, 34, 36, 39, 40], "soml": 19, "somothertest": 31, "sonam": 31, "sonatyp": 33, "song": 2, "sonicwal": 23, "soon": [10, 11, 14, 26, 31, 32, 33], "sop": 16, "sophist": [9, 11, 20], "sorri": 0, "sort": [3, 7, 11, 18, 19, 27, 33, 37, 38, 40], "sot": 16, "sought": 11, "sound": [21, 25, 31, 34], "soup": [1, 33], "sour": [39, 40], "sourc": [0, 3, 4, 5, 6, 7, 9, 14, 16, 18, 19, 20, 21, 23, 30, 31, 32, 33, 37, 38, 39, 40, 41], "sourcedir": 31, "sourcefil": 31, "sourcesess": [38, 40], "sout": 19, "southeast": 11, "southern": 10, "southwest": 11, "soutputfil": 31, "sp": [0, 10, 11, 12, 19, 20, 35, 40], "sp1": [5, 19, 21], "sp_configur": 19, "sp_createorphan": 19, "sp_droporphan": 19, "sp_getbindtoken": 19, "sp_getschemalock": 19, "sp_prepexec": 19, "sp_prepexecrpc": 19, "sp_refreshview": 19, "sp_releaseschemalock": 19, "sp_replcmd": 19, "sp_replcount": 19, "sp_repldon": 19, "sp_replflush": 19, "sp_replincrementlsn": 19, "sp_replsendtoqueu": 19, "sp_replsetorigin": 19, "sp_replsetsyncstatu": 19, "sp_repltran": 19, "sp_replwritetovarbin": 19, "sp_reset_connect": 19, "sp_resyncexecut": 19, "sp_resyncexecutesql": 19, "sp_resyncprepar": 19, "sp_resyncuniquet": 19, "sp_sqlexec": 5, "sp_unprepar": 19, "sp_xml_preparedocu": 19, "sp_xml_removedocu": 19, "space": [0, 1, 3, 4, 5, 6, 7, 11, 20, 32, 34, 36, 38, 40], "spam": [11, 19], "span": [1, 11, 12, 32], "sparc": 32, "spare": [1, 11], "spark": 32, "spars": 3, "sparse_sup": 31, "spartan": [38, 40], "spawn": [16, 32], "spdx": 33, "spdxversion": 34, "speak": [23, 36, 40], "spear": 10, "spec": [3, 11, 32], "specfi": 11, "specfic": 11, "special": [0, 1, 4, 5, 7, 8, 10, 11, 25, 32, 33, 36, 37, 38, 39, 40], "specialti": 11, "specif": [0, 3, 5, 7, 9, 14, 16, 18, 19, 21, 30, 32, 33, 34, 35, 36, 37, 38, 39, 40], "specifi": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 16, 17, 18, 19, 20, 21, 23, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "specifii": 16, "speci\ufb01": 5, "speci\ufb01c": 5, "spectacular": 10, "spectogram": 3, "spectrogram": 3, "spectrum": [10, 11, 16, 34], "speech": 21, "speed": [10, 11, 12, 16, 31, 32, 33, 34, 36, 40], "speedier": 34, "spell": [11, 31], "spelllang": 31, "spelt": 34, "spend": [21, 33], "spent": 11, "spf1": 19, "sphere": [39, 40], "sphinx": 27, "spi": [11, 23], "spider": 5, "spiflash": 16, "spill": 11, "spin": 10, "spinnak": 32, "splash": 31, "splinter": [38, 40], "split": [2, 3, 5, 11, 25, 36, 39, 40], "splitter": 10, "splt": 3, "splunk": 32, "spnego": 19, "spoc": 11, "spokespeopl": 34, "spoof": [3, 7], "spoofer": 18, "spool": 31, "spooler": [19, 20], "spoolss": 19, "spoolsv": 19, "sporad": [11, 34], "sport": [3, 11, 36, 40], "sports_team": 21, "spot": [18, 30], "spower": 11, "spr": 12, "sprai": 20, "spread": [11, 33, 34, 37, 40], "spreadsheet": [11, 23, 30, 31], "sprintf": [0, 36, 40], "spy": 21, "spywar": [11, 20], "sq": [5, 10], "sql": [1, 6, 7, 11, 30, 36, 38, 40], "sql2": [5, 6], "sqlclient": 5, "sqlexcept": 5, "sqlexpress": 19, "sqli": [19, 38, 40], "sqlite": 3, "sqlite3": 3, "sqlmap": [36, 40], "sqlplu": 19, "sqlserverag": 19, "sqlwriter": 19, "sqrt": 2, "squar": [2, 4, 11, 31, 36, 40], "squashf": [3, 16, 31], "squeez": [3, 11, 31], "squid": [19, 30, 38, 40], "squiggli": 31, "sr": [4, 10], "srandom": 0, "src": [3, 5, 11, 16, 31, 32, 37, 40], "srch_string": 3, "sre": 32, "srgb": 3, "srilanka": 20, "srm": 24, "srp": [19, 30], "srv": [20, 31, 39, 40], "srvhost": [39, 40], "srvinfo": 20, "srvmain": 23, "srvport": [39, 40], "srvsvc": 19, "srvsvcsessioninfo": 8, "srw2008": 19, "srw2016": 19, "ss": [0, 3, 10, 11, 16, 18, 31, 35], "ss7": 12, "ssb": 16, "ssd": [10, 32], "ssdp": 19, "sse2": [0, 21], "ssh": [1, 5, 6, 7, 11, 20, 23, 32, 33, 35, 37, 39], "ssh2john": [38, 40], "ssh_config": 36, "ssh_host_": 31, "ssh_hostkei": 19, "ssh_login": 19, "ssh_version": 19, "ssha": 21, "sshd": [19, 31], "sshd_config": [31, 36, 40], "sshd_not_to_be_run": 31, "sshd_opt": 31, "sshfp": 14, "sshock": 19, "sshpubkei": 14, "sshserver": [36, 40], "sshuttl": [36, 40], "ssid": [15, 30, 31], "ssid_mac_address": 17, "ssl": [3, 5, 11, 14, 31, 32, 33, 36, 38, 39], "ssl2_des_192_ede3_cbc_with_md5": 19, "ssl2_des_64_cbc_with_md5": 19, "ssl2_rc2_cbc_128_cbc_with_md5": 19, "ssl2_rc4_128_export40_with_md5": 19, "ssl2_rc4_128_with_md5": 19, "ssl2_rc4_64_with_md5": 19, "ssl_version": 19, "sslcert": [39, 40], "ssldir": 14, "sslv3": 19, "sso": [13, 21], "ssr": 7, "ssrf": [38, 40], "sss": 14, "sss_authorized_kei": 14, "sssc": 19, "sssclog": 19, "ssti": [38, 40], "ssu": 19, "ssw0rd": [5, 6, 20], "ssw23": 23, "st": [3, 11, 18, 19, 20, 31, 35, 40], "st7570": 10, "sta": 21, "stabil": [10, 11, 31], "stabl": [11, 19, 23, 25, 31], "stable4": 19, "stack": [11, 16, 20, 30, 31, 35, 36, 40], "stack7": 0, "stack_end": 0, "stackexchang": 3, "stackpoint": 32, "staff": [5, 10, 11, 21, 32, 34], "stage": [5, 11, 14, 16, 19, 20, 21, 22, 25, 30, 35, 40], "stager": [19, 20, 21], "stagerlaunch": 19, "stai": [0, 9, 10, 11, 31, 32], "stakehold": [9, 11, 23, 33], "stamp": [10, 11, 18], "stand": [9, 10, 11, 16, 31, 33, 34, 39, 40], "standalon": [19, 31, 32, 36, 37, 38, 40], "standard": [0, 3, 5, 8, 9, 11, 12, 14, 15, 16, 18, 19, 20, 23, 31, 33, 34, 35, 36, 39, 41], "standardis": [9, 10], "standbi": [10, 11], "standpoint": [16, 33], "stanza": 15, "starbuck": 11, "starmap": 1, "start": [0, 1, 3, 4, 5, 10, 11, 14, 15, 16, 17, 18, 19, 21, 23, 25, 27, 30, 32, 33, 34, 35, 36, 37, 39, 41], "startdat": [5, 20], "startdt": 10, "starter": 11, "starting_point": 16, "startport": [18, 35, 40], "startservic": 21, "starttim": 20, "starttl": 19, "startup": [3, 7, 11, 19, 20, 36, 40], "startuptim": [36, 40], "startx": 31, "stash": 30, "stat": [0, 19, 31, 32], "state": [0, 5, 6, 7, 10, 12, 14, 16, 18, 19, 20, 23, 30, 32, 33, 34, 37, 38, 40], "statefulset": 32, "stateless": [11, 32], "statement": [0, 1, 5, 6, 11, 19, 21, 33, 34, 36, 37, 38, 39, 40], "stateorprovincenam": [19, 35, 40], "static": [0, 4, 5, 9, 11, 15, 18, 19, 30, 32, 36, 38, 39, 40], "staticmethod": 1, "station": [9, 11, 12, 19, 38, 40], "statist": [0, 3, 18, 31, 32, 33], "statu": [0, 3, 4, 7, 8, 9, 10, 11, 13, 19, 20, 24, 30, 31, 32, 36, 37, 38, 40], "statuslin": [36, 40], "statutori": 11, "stdapi_sys_config_getuid": [37, 40], "stderr": [0, 31, 36, 38, 40], "stderrprint": 1, "stdin": [3, 14, 31, 36, 37, 40], "stdio": 0, "stdlib": [0, 14], "stdout": [0, 3, 31, 36, 38, 39, 40], "steadi": 11, "steal": [11, 19, 21, 31, 33], "stealer": 19, "stealth": [18, 19], "stealthi": [11, 20], "steam": 11, "steep": 25, "stegano": 3, "steganographi": 2, "stegcrack": 3, "stego": [38, 40], "stego100": 3, "stegonlin": 3, "stegosuit": 3, "stegseek": 3, "stem": [1, 5], "step": [0, 1, 4, 7, 8, 10, 11, 15, 16, 18, 19, 20, 21, 22, 23, 31, 32, 33, 34, 35, 36, 37, 40], "step1": 31, "step2": 31, "step3": 31, "steve": [38, 40], "stick": [0, 11, 16, 20, 25, 31, 33], "sticki": [31, 37, 40], "stiff": 11, "stig": [23, 30], "stilgherrian": 33, "still": [0, 5, 9, 11, 14, 17, 18, 19, 20, 21, 31, 32, 33, 34, 36, 37, 38, 39, 40], "stipul": [31, 34], "stix": 30, "stm32": 10, "stock": 0, "stole": 11, "stolen": [11, 12, 21], "stop": [0, 1, 10, 11, 14, 16, 17, 18, 19, 20, 21, 23, 25, 31, 32, 33, 36, 40, 41], "stop_on_success": 19, "stopdt": 10, "stope": [8, 20], "stopev": 21, "storag": [0, 5, 7, 10, 11, 14, 19, 30, 33, 38, 40], "storageclass": [14, 32], "storageo": 32, "store": [0, 1, 3, 4, 5, 6, 8, 9, 10, 11, 12, 14, 16, 18, 20, 21, 23, 30, 31, 34, 36, 37, 38, 39, 40], "stori": 25, "storm": [0, 11], "stp": 12, "str": [1, 3, 4, 38, 40], "str1": 5, "str2": 5, "str3": 5, "str_iter": 1, "strace": [4, 32], "straight": [0, 38, 40], "straightforward": [1, 11, 32, 33, 34], "strain": [32, 34], "strang": [19, 21, 31], "stranger": [36, 40], "strateg": [10, 11, 21], "strategi": [10, 11, 12], "strcmp": 0, "strcpy": 0, "stream": [1, 3, 11, 12, 14, 19, 31, 32, 37], "streamlin": [27, 30, 32, 34], "streamreaderwrit": 1, "streamrecod": 1, "strech": 16, "street": 10, "streetaddress": 8, "strength": [7, 10, 19, 25, 33], "strengthen": 33, "stress": [10, 11, 39, 40], "strict": [7, 11, 19, 33, 39, 40], "stricthostkeycheck": [36, 40], "stride": 33, "strike": 21, "string": [1, 2, 4, 6, 8, 11, 16, 18, 20, 21, 34, 35, 36, 37, 38, 39, 40], "stringbind": 20, "stringbuff": 19, "stringent": 11, "strip": [0, 4], "strive": 11, "strlen": [0, 39, 40], "stroke": [3, 19, 31], "strong": [5, 10, 11, 25, 31, 32, 33], "stronger": [10, 11], "strongli": [32, 34], "strpo": [39, 40], "strtonum": 3, "struct": 0, "structur": [0, 3, 11, 20, 22, 25, 30, 31, 32, 34, 36, 38, 40], "structuralobjectclass": 19, "struggl": 14, "strung": 10, "strut": [38, 40], "sttd": 10, "stub": [0, 18, 22], "stuck": [36, 40], "student": [31, 34], "studi": [11, 25, 34], "studio": [5, 30], "stuff": [0, 3, 8, 10, 16, 19, 21, 36, 37, 38, 39, 40], "stumbl": [37, 40], "sturdi": 10, "style": [0, 3, 5, 7, 20, 23, 24, 30, 32, 34, 38, 39, 40], "stylesuxx": 3, "stylu": 19, "su": [3, 18, 19, 20, 34, 35], "sub": [0, 1, 5, 8, 10, 11, 18, 23, 31, 38, 40], "subcategori": 23, "subcl": 1, "subclass": 1, "subdirectori": [5, 21, 31, 37, 38, 40], "subdomain": [18, 19, 35, 36, 40], "subfield": 19, "subfunct": 10, "subgroup": 10, "subject": [5, 10, 11, 19, 31, 33, 35, 38, 39, 40], "sublicens": 34, "submiss": [5, 18, 21, 32, 34], "submit": [1, 5, 19, 27, 31, 32, 34, 39, 40], "submitcr": [36, 40], "submitt": 19, "submsi": 20, "subnet": [3, 8, 11, 17, 18, 19, 20, 31, 32], "subnet_mask": 19, "suboptim": 30, "subprocess": [0, 36, 40], "subroutin": [0, 31], "subschema": 19, "subschemasubentri": 19, "subscrib": [10, 11, 19], "subscript": [9, 11, 30, 32], "subsect": 31, "subsector": 11, "subsequ": [1, 5, 12, 31, 32], "subset": [10, 21, 31, 36, 40], "substanc": 10, "substanti": [11, 34], "substat": 11, "substitut": [0, 4], "substn": 10, "substr": 5, "substream": 3, "substringtocharacterconversiontoincrementationordecrementationtocharacterconversiontostringconcaten": 5, "subsystem": [11, 12, 19, 31, 32, 34], "subtext": 3, "subtl": 33, "subtli": 5, "subtop": 31, "subtract": [1, 3], "subtransmiss": 10, "subvers": 34, "subvert": 33, "subview": 4, "subwai": 11, "succe": [4, 11, 21, 31, 34, 38, 40], "succeed": 21, "success": [1, 5, 6, 11, 12, 16, 18, 19, 20, 21, 23, 25, 31, 32, 33, 34, 36, 37, 38, 39, 40], "successfulli": [5, 10, 11, 16, 19, 20, 21, 25, 31, 32, 33, 34], "succinct": 5, "sucess": 19, "sucessfulli": [39, 40], "suddenli": 11, "sudent": 31, "sudo": [3, 15, 19, 23, 38], "sudo_": [38, 40], "sudo_us": [37, 40], "sudoedit": 15, "sudoer": 37, "suffer": 11, "suffic": [9, 31], "suffici": [5, 7, 11, 31, 33], "suffix": [18, 19, 20, 31], "suffixorigin": 8, "sugfil": [36, 40], "suggest": [0, 5, 8, 9, 10, 11, 14, 17, 18, 21, 26, 27, 30, 31, 32, 33, 34, 36, 37, 40], "suggestor": 20, "suid": [0, 19, 38, 39], "suidbinari": [38, 40], "suit": [5, 9, 10, 11, 12, 19, 21, 31, 32, 33, 38, 40], "suitabl": [1, 5, 9, 10, 11, 19, 31, 32, 34], "sum": [5, 11, 31], "summar": [3, 20, 33, 34], "summari": [7, 18, 19, 31, 32, 34, 38, 40], "sun": [19, 20], "sun_workshop": [36, 40], "sundai": 31, "sunflow": [39, 40], "sunni": 19, "sup3r": [38, 40], "super": [1, 3, 19, 30, 31, 38, 40], "supercow": 3, "superior": [9, 10], "superkojiman": [0, 35, 36, 38, 40], "supermin": 32, "superputti": 20, "superus": [7, 30, 31, 36, 37, 38, 40], "supervis": 11, "supervisori": 10, "super\ufb01ci": 5, "supplement": [0, 11], "suppli": [0, 5, 6, 9, 16, 19, 21, 24, 31, 33, 36, 37, 38, 39, 40], "supplier": [10, 24, 33], "support": [3, 5, 6, 7, 9, 10, 12, 14, 16, 18, 19, 20, 21, 22, 23, 24, 25, 30, 32, 33, 34, 36, 37, 38, 39, 40], "supportedcap": 19, "supportedcontrol": 19, "supportedencryptiontyp": 8, "supportedextens": 19, "supportedfeatur": 19, "supportedldappolici": 19, "supportedldapvers": 19, "supportedsaslmechan": 19, "suppos": [0, 1, 5, 11, 18, 19, 21, 25, 31, 32, 33, 34], "supposedli": [19, 36, 40], "suppress": [11, 31, 38, 40], "sure": [0, 3, 7, 10, 11, 12, 14, 15, 21, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40], "surf": [35, 40], "surfac": [11, 20, 33, 38, 40], "surg": [10, 11], "suricata": 3, "surnam": 8, "surpris": 19, "surprisingli": 33, "surriba": [38, 40], "surround": [11, 21, 31], "survei": 10, "surveil": [11, 19, 25], "surviv": [11, 31], "suscept": [11, 19, 33], "susp": [36, 40], "suspect": 11, "suspectinfo": [39, 40], "suspend": [16, 31], "suspici": [3, 11, 19, 30], "sustain": [11, 34], "sutherland": [5, 19, 20], "sv": [11, 18, 19, 20, 35, 36, 40], "svc": [20, 37, 40], "svc_exit": 0, "svcctl": 20, "svcerr_systemerr": 0, "svchost": [37, 40], "svcmanag": 20, "svctag": 19, "svn": [38, 40], "svstem": 11, "sw": [19, 35, 40], "swabackspacecaps_lock": 19, "swak": [38, 40], "swamp": 21, "swap": [5, 32], "sweep": [3, 18, 19], "swell": 10, "swf": 5, "swfscan": 5, "swid": 33, "swing": 25, "swiss": [38, 40], "switch": [1, 3, 8, 10, 12, 16, 19, 20, 21, 31, 32, 33, 37, 39, 40], "switchgear": 10, "switchyard": 10, "switzerland": 34, "swrandompassword": 8, "swrort": 20, "swtch": [36, 40], "sx": [3, 35, 40], "sy": [0, 1, 7, 11, 15, 19, 21, 31, 32, 37, 39, 40], "syd": 3, "sydbneqf": 3, "sydnei": 3, "sydneyoperahous": 19, "sym": 0, "sym_fil": [37, 40], "sym_fold": [37, 40], "symantec": 19, "symantecliveupd": 19, "symbol": [0, 1, 2, 3, 5, 6, 16, 31, 34, 37, 38, 39, 40], "symlink": [0, 4, 31, 38], "symlink_to_dir": 31, "symmetr": 14, "sympi": 1, "syn": [3, 11, 18, 19, 35, 40], "synapt": 31, "sync": [7, 10, 14, 19, 31, 39, 40], "synchron": [10, 16, 19, 31, 32], "synchronzi": 11, "syncthru": 19, "synonym": [31, 33], "synopsi": [31, 33], "syntast": 31, "syntasticcheck": 31, "syntax": [0, 1, 3, 4, 5, 6, 11, 20, 21, 30, 32, 34, 36, 38], "sysadmin": [20, 31], "syscach": 21, "syscolumn": 5, "sysctl": 0, "sysdescr": 19, "sysf": 31, "sysinfo": 19, "sysintern": [19, 38, 39, 40], "syslog": [7, 10, 23, 31, 32, 36, 38, 39, 40], "syslog_sg_enab": 7, "syslog_su_enab": 7, "syslogd": 31, "sysmailsrv": 19, "sysobject": 5, "sysrq": 7, "sysstat": 7, "system": [1, 2, 3, 4, 5, 6, 7, 8, 9, 12, 13, 14, 15, 16, 18, 20, 22, 30, 32, 33, 34, 35, 41], "system1": 21, "system2": 21, "system32": [8, 11, 20, 21, 36, 37, 39, 40], "system_addr": 0, "system_offset": 0, "system_us": 5, "systemat": 33, "systemctl": 14, "systemh": [38, 40], "systeminfo": 19, "systemmemorylimitperc": 19, "systemroot": [20, 21], "sysv": [4, 31], "sysvol": [8, 20, 21], "t": [0, 1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 17, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "t0": 18, "t1": 18, "t103": 10, "t2": 18, "t200": 10, "t3": 18, "t300": 10, "t4": [18, 19], "t5": 18, "ta": [38, 40], "tab": [1, 3, 8, 11, 23, 36, 40], "tab0": [36, 40], "tabl": [3, 5, 8, 10, 14, 20, 21, 23, 32, 34, 36, 40], "table1": 5, "table_nam": 5, "table_schema": 5, "tablenam": 5, "tablenameforcolumnnam": 5, "tablet": [11, 30], "tabmtminusdbackspacewintab": 19, "tabrightleftrightdeletebtabdownntabkp_end": 19, "tabul": 23, "tabular": 31, "tac": 31, "taco": 11, "tactic": 11, "tag": [0, 1, 3, 5, 9, 10, 11, 18, 31, 32, 34, 36, 39], "tag_any_whit": [36, 40], "tag_binari": [36, 40], "tag_old_stat": [36, 40], "tag_rang": 11, "tailor": 10, "take": [0, 1, 3, 5, 7, 9, 10, 11, 12, 16, 18, 19, 20, 21, 22, 23, 25, 30, 31, 32, 33, 34, 37, 38, 39], "taken": [0, 3, 5, 7, 10, 11, 18, 19, 20, 21, 25, 31, 32, 33, 36, 37, 38, 39, 40], "takewhil": 1, "talk": [1, 10, 11, 16, 18, 19, 20, 21, 23, 32, 33, 38, 40], "tall": 10, "tamper": [5, 10, 19, 31, 38, 40], "tangibl": [25, 34], "tank": 11, "tanoi": [18, 19, 20, 21, 29], "tap": [10, 11, 16, 36, 40], "tape": 11, "tapestat": 7, "tapisrv": 20, "tar": [3, 19, 39], "tarbal": 31, "target": [1, 3, 5, 6, 8, 9, 11, 12, 14, 16, 18, 19, 22, 23, 25, 30, 31, 32, 34, 35, 36, 37, 38, 40], "target_devic": 16, "target_path": [39, 40], "targetdomain": 23, "targetfold": 21, "targetguid": 8, "targetip": [36, 40], "targetmailbox": 21, "targetnam": [19, 20], "targetpath": 8, "targetsess": [38, 40], "targeturi": 19, "targetus": 23, "tariff": [9, 12], "tase": [10, 11], "task": [5, 6, 7, 9, 10, 11, 12, 14, 16, 18, 19, 21, 30, 31, 32, 34, 38, 40], "taskcomp": 19, "tasklist": [37, 40], "taskmanag": 31, "tasknam": [20, 37, 40], "taskpath": [37, 40], "taskrun": 20, "tataidc": 19, "tax": 25, "taxabl": 25, "taxi": 12, "taxii": 30, "tb": [19, 32], "tbcpnhu5qqm6typwi52fcin6ndyp0hmqffag2kdwmdis0j1k": [36, 40], "tbfy6122": 8, "tblarticl": 5, "tc": 3, "tck": 16, "tcl": [36, 40], "tcmalloc": 19, "tcp": [1, 3, 5, 9, 10, 18, 20, 30, 31, 32, 37, 38, 39], "tcp4": [36, 40], "tcp6": [1, 36, 40], "tcp_dcerpc_auditor": 19, "tcp_timestamp": 7, "tcpdump": [18, 31, 32, 35], "tcpflow": 11, "tcpip": 11, "tcpsocket": [36, 40], "tcpwrap": 19, "tcpxtract": 11, "tcrypt": [38, 40], "tcsh": 31, "tda": 12, "tdd": 33, "tdi": 16, "tdo": 16, "te": 20, "teach": 34, "team": [7, 10, 14, 18, 19, 22, 30, 31, 32, 33, 34, 38, 40], "teamciti": 32, "teamer": 18, "teammat": 32, "teamspeak": 18, "teamview": 19, "tear": [11, 20], "teardown": [14, 19], "technet": [8, 19, 20], "technic": [8, 9, 10, 18, 19, 30, 33, 34], "technician": 11, "techniqu": [0, 3, 5, 16, 18, 19, 20, 21, 31, 32, 33, 34, 35, 36, 37, 38, 40], "technolog": [11, 34], "technologi": [10, 12, 14, 18, 19, 20, 21, 25, 30, 34, 37, 38, 39, 40, 41], "techsupport": 19, "tediou": 32, "tee": [21, 36], "teenag": 11, "teja": 11, "telecom": 18, "telecommun": [11, 12], "telecommut": 11, "telecontrol": [10, 11], "telegram": 10, "telemet": 10, "telemetri": [10, 11, 32], "telent": 23, "telephon": [5, 11, 12], "telephonenumb": 8, "telephoni": 12, "televis": [10, 11], "telinit": 31, "tell": [0, 4, 5, 11, 16, 18, 19, 20, 21, 25, 30, 31, 35, 36, 38, 39, 40], "tellmeweb": 18, "telnet": [3, 18, 23, 39], "telnet_login": 19, "telnet_vers": 19, "telnetd": 19, "telosb": 16, "temp": [0, 20, 21, 37, 39, 40], "tempdb": 19, "tempdir": 31, "temperatur": [10, 11, 16], "tempfil": [7, 31], "templat": [5, 8, 11, 14, 18, 19, 20, 22, 31, 32, 36, 38, 40], "templog": 19, "tempor": 17, "temporari": [5, 19, 21, 31, 37, 38, 40], "temporarili": [0, 5, 31], "temporarti": 11, "tempt": 11, "ten": [11, 12, 32, 33], "tenabl": 23, "tenanc": 32, "tenant": 32, "tend": [11, 33, 34], "tendenc": 11, "tension": 10, "tent": 8, "ter": 31, "term": [5, 7, 9, 10, 18, 20, 25, 30, 31, 32, 33, 34, 36, 38, 40], "termguicolor": [36, 40], "termin": [0, 3, 7, 11, 12, 19, 20, 23, 32, 36, 38, 40], "terminfo": [36, 40], "terminologi": [11, 16, 33], "termrespons": [36, 40], "termsrv": [8, 20], "tern": 34, "terradisgen": 10, "terragener": 10, "terraloadforecast": 10, "terraphasorpoint": 10, "terrarenewableplan": 10, "terrascada": 10, "terrasimul": 10, "terratransmiss": 10, "terravis": 10, "terrestri": 11, "terribl": 11, "territori": 11, "terror": 11, "terrorist": 33, "test": [0, 1, 5, 7, 12, 13, 14, 17, 18, 19, 21, 22, 23, 27, 32, 34, 36, 38, 39, 40, 41], "test1": 31, "test2": 31, "test_connect": 20, "testabl": [30, 33], "testadmin": 20, "testb": [21, 30], "testdav": [38, 40], "tester": [11, 16, 18, 20, 22, 33], "testfil": [31, 38, 40], "testfr": 10, "testus": [20, 21], "tex": 34, "text": [0, 1, 2, 3, 4, 5, 6, 10, 11, 12, 16, 18, 19, 20, 21, 23, 30, 32, 34, 36, 37, 38], "textarea": [39, 40], "textfil": [20, 31], "textobject": [36, 40], "textsiz": 5, "textual": [5, 31], "tfairan": 19, "tftp": [23, 37, 38], "tftproot": [39, 40], "tgt": [19, 20, 21], "tgt_reset_timeout": 19, "tgz": [3, 31], "th": 31, "thE": 31, "thaenohtai": 0, "than": [0, 3, 5, 7, 8, 10, 11, 12, 18, 19, 20, 21, 23, 24, 25, 30, 31, 32, 33, 34, 36, 38], "than3": 5, "thank": [0, 17, 18, 19, 20, 29, 31, 33, 35, 38, 40], "thatus": 11, "thc": [5, 6, 35, 40], "thecoloni": [38, 40], "thefil": 0, "theft": [5, 7, 8, 11, 21], "theharvest": 18, "thei": [0, 3, 5, 7, 9, 10, 11, 12, 14, 16, 18, 19, 20, 21, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 40, 41], "them": [0, 3, 5, 7, 9, 10, 11, 12, 14, 16, 17, 18, 19, 20, 21, 22, 23, 25, 26, 30, 31, 32, 33, 34, 35, 36, 38, 39, 40], "theme": [12, 36, 38, 40], "themselv": [5, 10, 11, 14, 18, 19, 31, 32, 33, 34], "theoret": 31, "theori": [11, 33], "thereaft": 31, "therebi": [0, 11, 19, 31], "therefor": [5, 10, 11, 18, 19, 25, 31, 32, 34, 35, 36, 40, 41], "theregist": 11, "thereof": 21, "theres": 11, "thermal": 11, "thermostat": 9, "theuser": 21, "thi": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 27, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "thick": 5, "thiev": 11, "thin": [16, 33, 34], "thing": [1, 3, 5, 10, 11, 12, 16, 18, 19, 20, 21, 25, 27, 30, 31, 33, 36, 37, 39, 41], "thingi": [38, 40], "think": [5, 11, 18, 19, 31, 32, 33, 34, 39, 40], "third": [3, 5, 10, 11, 19, 31, 32, 33, 36, 40], "thisisdapassword": 14, "thoma": 33, "thorough": [11, 18, 32], "thoroughli": [11, 18, 33], "those": [0, 3, 5, 9, 10, 11, 13, 18, 19, 20, 21, 30, 31, 32, 33, 34, 35, 37, 39, 40], "though": [0, 1, 5, 11, 12, 23, 31, 33, 34], "thought": [10, 11, 12, 20], "thousand": [0, 11], "thr": 31, "thread": [19, 20, 34, 36, 40], "threadmemorylimit": 19, "threat": [10, 18, 20, 32], "threaten": [11, 33], "three": [0, 3, 4, 5, 7, 9, 10, 12, 14, 16, 18, 19, 20, 23, 30, 31, 32, 33, 35, 36, 38, 40], "threshold": 11, "threxxxx": 20, "thrice": [36, 40], "throttl": 11, "through": [0, 3, 5, 9, 10, 11, 12, 13, 16, 18, 19, 20, 21, 22, 23, 24, 30, 31, 32, 33, 34, 35, 36, 37, 38, 40], "throughout": 11, "throught": [11, 16], "throw": 5, "thru": [8, 12, 19, 36, 40], "thte": 16, "thttpd": 7, "thu": [0, 3, 5, 10, 11, 12, 14, 19, 20, 31, 33, 34, 36, 37, 38, 40], "thumb": [11, 33], "thumbnail": [3, 19], "thumbnailimag": 3, "thunder": 19, "thunderbird": [31, 37], "thwart": 11, "ti": 11, "ti8rk7jomx44s2uu85nswc": 5, "tick": 31, "ticket": [3, 11, 12, 14, 21, 23, 38, 40], "tid": 31, "tidbit": 5, "tidi": [30, 37, 40], "tidyup": [37, 40], "tier": [21, 32, 33], "tiff": 3, "tighten": [38, 40], "tightli": 32, "til": 10, "tild": 31, "till": [1, 10, 25, 32], "tim": 20, "time": [1, 3, 4, 6, 7, 9, 10, 12, 13, 14, 16, 18, 19, 20, 21, 22, 23, 25, 30, 31, 32, 34, 35, 36, 38, 39, 41], "timecapsule8": 19, "timelin": [30, 33], "timeo": 19, "timeout": [1, 11, 14, 18, 19, 23, 32], "timer": [11, 36, 40], "timeserv": 20, "timeslic": [37, 40], "timespan": 8, "timestamp": [10, 18, 31], "timezon": 24, "timingsafeequ": 33, "timthumb": [36, 38, 40], "tini": [31, 33], "tip": [2, 5, 6, 11, 18, 33, 35, 36, 39, 41], "tire": 0, "titl": [3, 5, 8, 14, 18, 31, 36, 38, 40], "tive": 31, "tjf": 31, "tkg": 32, "tkip": 17, "tl": [0, 9, 10, 13, 31, 32, 33, 34], "tl4000": 19, "tld": 18, "tls_dhe_rsa_export_with_des40_cbc_sha": 19, "tls_dhe_rsa_with_3des_ede_cbc_sha": 19, "tls_dhe_rsa_with_aes_128_cbc_sha": 19, "tls_dhe_rsa_with_aes_256_cbc_sha": 19, "tls_dhe_rsa_with_aes_256_gcm_sha384": 19, "tls_dhe_rsa_with_des_cbc_sha": 19, "tls_rsa_export_with_des40_cbc_sha": 19, "tls_rsa_export_with_rc2_cbc_40_md5": 19, "tls_rsa_export_with_rc4_40_md5": 19, "tls_rsa_with_3des_ede_cbc_sha": 19, "tls_rsa_with_aes_128_cbc_sha": 19, "tls_rsa_with_aes_256_cbc_sha": 19, "tls_rsa_with_des_cbc_sha": 19, "tls_rsa_with_rc4_128_md5": 19, "tls_rsa_with_rc4_128_sha": 19, "tlsv1": 19, "tm": 16, "tmote": 16, "tmp": [0, 4, 5, 7, 19, 23, 31, 36, 37, 38, 39, 40], "tmp_name": [39, 40], "tmpdir": 7, "tmpf": [31, 32], "tmux": 14, "tn": [19, 20, 33], "tnslsnr_version": 19, "tnsname": 19, "tnspoison_check": 19, "to_i": [36, 40], "toarrai": 19, "tobroadband": 12, "toc": 23, "tocttou": [37, 40], "todai": [11, 30, 33], "todb": [39, 40], "todo": 33, "togeth": [3, 4, 5, 9, 10, 11, 14, 31, 32, 33, 34, 36, 38, 40], "toggl": [7, 16, 20, 31], "toi": [11, 19], "token": [0, 1, 5, 9, 11, 13, 16, 18, 19, 20, 30, 32], "told": [0, 11, 31], "toler": [32, 34], "toll": 12, "tomcat": [30, 35, 40], "tomcat_mgr": 19, "tomcat_mgr_deploi": 19, "tomcat_mgr_login": 19, "tomcat_mgr_upload": 19, "tomkin": 30, "ton": [37, 40], "too": [0, 5, 7, 10, 11, 14, 16, 18, 20, 31, 32, 33, 34, 36, 38, 39, 40], "too_many_tag": 3, "took": [11, 32, 37, 40, 41], "tool": [0, 1, 2, 5, 6, 7, 8, 12, 19, 25, 35, 36, 37, 38], "toolbar": [4, 36, 40], "toolbox": [7, 10], "toolchain": 34, "toolkit": [8, 16, 21, 31, 32, 34], "toolset": 23, "top": [0, 3, 5, 10, 11, 16, 18, 19, 31, 32, 34, 36, 38, 40], "topic": [0, 11, 14, 31, 33], "topologi": [16, 32, 38, 40], "toronto": 11, "torrent": 11, "torvald": [31, 34], "tosess": [38, 40], "tostop": [36, 40], "total": [0, 5, 10, 16, 18, 19, 20, 31, 33, 37, 39, 40], "total_connect": 19, "total_cost": 0, "total_item": 19, "total_row": 19, "totalcost": 0, "totalcr": 19, "totalmilli": 19, "totals": 19, "totalsizemb": 19, "totem": 31, "touch": [0, 4, 11, 25, 31, 32, 37, 39, 40], "touch_hit": 19, "touch_miss": 19, "tough": 30, "toughest": 3, "toward": [0, 1, 3, 11, 12, 14, 20, 32], "tower": 11, "town": [10, 11], "toxic": 11, "tp": [31, 33], "tp3": [39, 40], "tpgt": 19, "tpl": 5, "tpu": 32, "tr": [5, 19, 20, 38, 40], "trace": [4, 5, 11, 12, 18, 19, 20, 31, 38, 40], "traceback": 1, "tracer": [4, 32], "tracerout": [35, 40], "track": [3, 6, 7, 10, 11, 12, 14, 22, 23, 25, 30, 32, 33, 34], "tracker": 34, "trade": [10, 11, 18, 25], "trademark": [11, 34], "tradit": [11, 21, 24, 31, 32, 37, 38, 40], "tradition": [11, 34], "traefik": 32, "traffic": [10, 11, 12, 23, 29, 31, 32, 36, 38, 40], "traffic_control_system_sabotag": 11, "tragedi": 11, "trail": [10, 31], "train": [10, 11, 32, 33, 34], "trait": [11, 33], "tram": 11, "tram_hack": 11, "tranmiss": 10, "transact": [0, 5, 10, 11, 19, 24, 25, 32], "transat": 3, "transceiv": 12, "transcript": 3, "transduc": 11, "transfer": [3, 5, 9, 10, 11, 12, 16, 21, 30, 31, 33, 34, 35, 36, 38], "transform": [10, 11, 30, 33], "transit": [11, 12, 19, 31, 33, 34], "transitori": 31, "translat": [1, 3, 18, 31], "transmiss": [5, 9, 11, 12, 16, 31], "transmisson": 10, "transmit": [9, 10, 11, 16, 18, 19, 31], "transmitt": [10, 11, 16], "transpar": [5, 31, 32, 36, 40], "transport": [3, 9, 10, 19, 32, 36, 40], "transport_nam": 19, "trap": [25, 31], "trash": 11, "trasmit": 3, "travel": [10, 16], "traveledflight": 11, "travers": [5, 11, 16, 19, 31, 36, 38, 40], "trdplm": 19, "treat": [1, 5, 11, 31, 32, 34, 35, 38, 40], "treati": 34, "treatment": 34, "tree": [1, 3, 5, 10, 11, 16, 18, 19, 24, 33, 38, 40], "tremend": [11, 12], "trend": [10, 25], "trespass": 11, "tri": [0, 5, 6, 7, 11, 14, 18, 19, 21, 23, 30, 33, 37, 39, 40], "triag": 33, "trial": 23, "tribal": 11, "trick": [1, 2, 3, 4, 5, 6, 33, 35, 36, 41], "tricki": [0, 33, 39, 40], "triconex": 11, "trigger": [0, 11, 20, 31, 32, 37, 40], "trim": [11, 36, 40], "trip": [10, 11, 18, 36, 40], "triplet": [12, 14], "tripwir": [7, 31, 38, 40], "trivial": [0, 1, 11, 32, 33, 34, 36, 40], "trksvr": 20, "trkwk": 20, "trn": 3, "troj": 20, "trojan": [7, 11, 19], "troll": 34, "troubl": 33, "troublemak": 11, "troubleshoot": [10, 11, 12, 31, 32], "trst": 16, "truck": 11, "true": [1, 5, 6, 7, 8, 10, 11, 13, 14, 15, 19, 21, 31, 32, 33, 34, 36, 37, 39, 40], "truecolor": 19, "truecrack": [38, 40], "truecrypt_volume2john": [38, 40], "truncat": [0, 19, 38, 40], "truncer": 18, "trust": [9, 10, 11, 14, 30, 31, 33, 34, 36, 38, 40], "trustedfordeleg": [8, 20], "trustedhost": 20, "trustedsec": [36, 40], "trustedtoauthfordeleg": [8, 20], "trustworthi": 33, "truth": [38, 40], "trw": 11, "trxe": 5, "try": [0, 1, 3, 5, 6, 7, 8, 11, 14, 17, 18, 19, 20, 21, 23, 25, 26, 27, 31, 33, 34, 35, 36, 37, 38, 39, 40], "try_next_closest_sit": 20, "ts93pxrvays_t": 3, "tsap": 11, "tsch": 19, "tshark": 3, "tsinternetus": 19, "tso": 9, "tspan": 3, "tss": 10, "tt": [3, 36, 40], "ttl": [18, 19], "ttl_durat": 14, "ttqf5989": 8, "tty": [19, 31, 37], "tty1": [15, 19], "ttyp0": 19, "ttyusb0": [1, 16], "tu": 3, "tue": [3, 5, 19, 20], "tufin": 23, "tui": 31, "tun": [36, 40], "tune": [7, 11, 31, 32], "tunn3l_v1s10n": 3, "tunnel": [11, 19, 20], "tunni": 29, "tupl": 1, "tuple_iter": 1, "turbid": 11, "turbin": 10, "turbinegener": 10, "turn": [8, 9, 10, 11, 12, 14, 16, 19, 30, 33, 36, 37, 38, 39, 40], "turnaround": 11, "tutor": 34, "tutori": [1, 7, 10, 20, 23, 27, 31, 32, 34, 37, 40], "tv": 11, "tweak": 31, "tweet": 11, "twenti": 11, "twice": [11, 18, 19, 36, 40], "twitter": [18, 27], "two": [1, 3, 4, 5, 6, 7, 8, 9, 10, 11, 14, 16, 18, 19, 20, 21, 24, 25, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40], "tx": [16, 32], "txqueuelen": 32, "txt": [0, 1, 2, 3, 5, 6, 15, 19, 21, 23, 31, 33, 36, 37, 38, 39, 40], "typ": 1, "typ28j7jauha9fw2shxmgccc0i6xbmmovi04vlmewxa": 19, "type": [0, 1, 2, 4, 7, 8, 9, 10, 14, 18, 19, 21, 23, 24, 25, 30, 35, 36, 37, 38], "type_of_servic": 19, "type_subtyp": 3, "typedef": 0, "typeid": 10, "typic": [1, 3, 5, 11, 12, 16, 18, 19, 20, 21, 23, 25, 31, 32, 33, 34, 36, 39, 40], "typo": 31, "typosquat": 33, "tyzm9015": 8, "tzf": 31, "u": [0, 1, 3, 4, 5, 6, 7, 10, 11, 12, 14, 16, 18, 19, 20, 21, 23, 26, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "u003e2": 5, "u00e9": 5, "u2215": 5, "u2fsdgvkx1": 19, "u2fsdgvkx18": 19, "u2fsdgvkx19eejrvaxj0lx0ttt": 19, "u2fsdgvkx19u": 19, "ua": [10, 36, 40], "uabgbjag8azabpag4azwauaecazqb0aeiaeqb0aguacwaoacqabwb1ahqakqasadaalaakag8adqb0ac4abablag4azwb0aggakqanaaoajabvahuadaagad0aiaakag4adqbsagwadqakacqacwb0ahiaaqbuagcaiaa9acaajabuahuababsah0afqagaguababzaguaiab7agmabablageabgb1ahaafqb9aa": [36, 40], "uac": 20, "uaf2john": [38, 40], "uam": 19, "uber": 1, "ubertooth": 16, "ubif": 31, "ubiquit": [11, 32], "ubp_av": 0, "ubuntu": [1, 7, 15, 19, 36, 38, 39, 40], "uc": 19, "uca": [10, 11], "ud": 20, "udeb": 31, "udev": [31, 36, 40], "udf": [19, 37, 40], "udisk": 19, "udp": [1, 3, 10, 18, 31, 38], "ue": [5, 12], "uflex": 19, "ugli": 34, "ugw": 12, "ui": [5, 14, 21, 22, 32], "uid": [0, 19, 21, 31, 36, 37, 39, 40], "uk": [9, 11, 19], "ul": 10, "uldi2121": 10, "ulimit": [37, 40], "ulog": 31, "ulogd": 31, "ultim": [3, 11, 31, 32], "ultisnip": 31, "ultra": 32, "uma": [13, 14], "umm": 27, "umoks6wtlyl": 21, "umount": 3, "umt": 12, "un": [11, 36, 40], "unabl": [8, 11, 20, 21, 31, 38, 39, 40], "unalia": 31, "unalloc": 3, "unam": [0, 31], "unambigu": 34, "unapprov": 11, "unattend": [11, 14, 31], "unauthent": [16, 19, 39, 40], "unauthor": [5, 7, 11, 30, 33, 39, 40], "unauthorizedaccessexcept": 20, "unavail": [5, 9, 11, 14, 19], "unawar": 11, "unbalanc": 10, "unbit": [1, 3], "unbreakablepassword1234567": 2, "unc": 20, "unchang": [1, 31], "uncheck": 11, "unciph": [38, 40], "unclassifi": 11, "unclos": 5, "uncom": [7, 39, 40], "uncomfort": 34, "uncommon": [11, 38, 39, 40], "uncommonhead": [36, 40], "uncompress": [3, 31], "uncondition": 31, "unconfined_r": [37, 40], "unconfined_t": [37, 40], "unconfined_u": [37, 40], "unconfirm": 3, "unconfus": 18, "unconnect": 16, "unconstrain": 20, "uncov": [5, 11, 30, 33], "und": 0, "undef": [36, 40], "undefin": [19, 31], "undelet": [3, 19], "undeploi": 19, "under": [0, 5, 8, 10, 11, 12, 16, 18, 19, 20, 23, 24, 25, 31, 32, 33, 34, 37, 38, 39, 40], "underground": [10, 11], "underli": [3, 11, 31, 32, 33], "underscor": 33, "understad": 11, "understand": [0, 3, 5, 10, 11, 13, 16, 18, 19, 20, 21, 25, 30, 32, 33, 34, 36, 38, 39, 40], "understood": [5, 11, 31, 32, 34], "undertak": 11, "underutil": 32, "underwayon": 16, "undesir": [11, 33], "undetect": 11, "undirect": 33, "undo": [20, 31], "undocu": 11, "undu": 11, "unencrypt": 19, "unenrol": 14, "unequ": [10, 33], "unexpect": [5, 11, 30, 31, 32, 33, 39, 40], "unexpectedli": [37, 40], "unexplain": 3, "unfamilar": 12, "unfamiliar": 11, "unfett": 11, "unfilt": 11, "unfinish": [0, 4], "unfold": 11, "unforeseen": 11, "unfortun": [11, 31, 33, 34, 39, 40], "unhandl": 5, "unhappi": 11, "unhealthi": 32, "unhex": 1, "unhexlifi": [1, 38, 40], "unhind": 5, "uni": 11, "unicast": 8, "unicod": 3, "unicorn": [38, 40], "unidentifi": [35, 40], "unidirect": 11, "unifi": [10, 14, 22, 30, 31, 32], "uniform": 5, "uniformli": [1, 14], "unik": 32, "unilater": 33, "unimod": 9, "unimped": 11, "uninform": 34, "uninit_bg": 31, "uniniti": 4, "uninstal": [13, 14, 20, 23], "unintal": 13, "unintent": 33, "unintention": [11, 31], "uninterrupt": [9, 11], "union": [6, 33, 34], "uniq": [3, 18, 19], "uniqu": [0, 1, 3, 5, 10, 11, 12, 20, 31, 32, 33, 34], "uniscan": [39, 40], "unistd": 0, "unit": [0, 3, 8, 11, 19, 20, 31, 32, 33, 34, 37, 40], "univers": [11, 14, 16, 31, 32, 34, 36, 40], "unix": [5, 6, 10, 11, 19, 21, 30, 31, 32, 36, 38, 39], "unixonli": 19, "unjoindomaincredenti": 8, "unknown": [7, 11, 18, 19, 20, 31, 34, 35, 38, 40], "unlabel": 3, "unless": [0, 7, 11, 19, 31, 32, 33, 34, 38, 40], "unlik": [5, 6, 11, 23, 31, 33, 34], "unlimit": [0, 7, 31], "unlink": [0, 5, 20], "unload": [3, 31], "unlock": [5, 11, 31, 36, 40], "unmaintain": 33, "unman": 11, "unmanag": 11, "unmarkauto": 31, "unmodifi": [31, 32], "unmodi\ufb01": 5, "unmount": 3, "unnam": [21, 38, 40], "unnecessari": [0, 23, 31, 36, 40], "unnecessarili": 11, "unneed": [11, 23], "unnumb": 10, "unoccupi": 11, "unpack": [1, 3, 5, 31], "unpatch": [11, 19], "unpickl": [39, 40], "unpleas": 34, "unplug": 11, "unpredict": [11, 31], "unprivileg": [7, 11, 19, 31, 35, 39, 41], "unprivilg": 23, "unprotect": 11, "unraw": 7, "unreach": 14, "unread": [11, 21], "unrecover": 11, "unreli": 11, "unrequir": 5, "unrespons": 33, "unsaf": [39, 40], "unsalt": 21, "unsatisfi": 31, "unsav": 31, "unschedul": [10, 11], "unsecur": [8, 9, 11], "unsecurepassword": [38, 40], "unsecurepassword1": [38, 40], "unseri": [38, 40], "unshadow": [38, 40], "unsign": [0, 1, 3, 4], "unsolicit": 11, "unspecifi": [39, 40], "unsquashf": [3, 16], "unstabl": 31, "unstaf": 11, "unstructur": 32, "unstuck": [35, 40], "unsuccess": 31, "unsuit": 12, "unsupport": 19, "unsur": 5, "unti": 0, "until": [0, 1, 5, 11, 20, 21, 25, 33, 34], "untitl": 3, "untrain": 11, "untrust": [11, 33, 36, 39, 40], "unus": [0, 11, 19, 23, 30, 31, 32], "unusu": [5, 11, 31], "unvalid": [39, 40], "unwant": [30, 31], "unzip": [3, 31, 37], "uo": 31, "up": [0, 1, 3, 4, 5, 9, 10, 12, 13, 14, 18, 19, 20, 21, 22, 23, 25, 30, 32, 33, 34, 35, 36, 37, 38, 41], "upd": 31, "updat": [0, 1, 3, 5, 7, 9, 10, 11, 13, 14, 15, 16, 19, 20, 21, 23, 32, 34, 36, 37, 40], "update_tdo": 20, "updateassetmeasur": 9, "updatedb": 31, "updatedn": 14, "updategroupcapacityforecast": 9, "updategroupmeasur": 9, "updatetim": 19, "upfront": 32, "upgrad": [1, 7, 11, 16, 23, 25, 32, 33, 36, 39], "upkeep": 11, "uplink": 12, "upload": [1, 5, 11, 14, 16, 19, 21, 23, 32, 35, 36, 37, 38], "uploadedfil": [39, 40], "upn": 21, "upnp": 19, "upon": [0, 7, 11, 19, 23, 25, 31, 32, 37, 40], "upper": [4, 5, 7, 9, 10, 11, 19, 31, 38, 40], "uppercas": [3, 21, 31], "upport": 31, "upstream": [10, 31, 32, 33, 34], "uptak": 33, "uptim": [11, 19, 31], "uptimeestim": 19, "uptimemilli": 19, "upto": 11, "uptu": 19, "upturn": 25, "upward": [0, 37, 40], "urandom": 31, "uraxxxx": 20, "urb": 3, "urb_bulk": 3, "urb_function_bulk_or_interrupt_transf": 3, "urb_interrupt": 3, "urban": [11, 14], "urg": [3, 11, 35, 40], "urgenc": 11, "urgent": 11, "uri": [5, 19, 31, 36], "url": [6, 11, 16, 18, 21, 30, 31, 36, 38, 39, 40], "urlcach": [39, 40], "urlencod": [5, 36, 39, 40], "urn": 24, "us": [1, 2, 4, 6, 8, 9, 10, 12, 13, 15, 17, 22, 23, 24, 25, 27, 30, 33, 35, 36, 41], "usa": 3, "usabl": [5, 14, 21, 31], "usag": [0, 3, 4, 9, 10, 11, 16, 18, 19, 21, 23, 32, 33, 34, 36, 37, 38, 39, 40], "usb": [7, 10, 11, 16, 17, 18, 31], "usb_cod": 3, "usb_hid_kei": 3, "usbd_statu": 3, "usbd_status_success": 3, "usbducki": 11, "usbpcap": 3, "usbstorag": 7, "use_inetd": 31, "use_m": [39, 40], "usedeskeyonli": 8, "useless": 0, "uselogoncredenti": 20, "user": [0, 1, 3, 6, 9, 12, 13, 16, 18, 22, 23, 24, 33, 34, 39], "user01": 8, "user1": [20, 21, 36, 38, 40], "user2": [20, 36, 40], "user_command": [36, 40], "user_fil": 19, "user_information_class": 20, "user_input": 1, "user_level": [5, 6], "user_login": 14, "user_nam": [5, 7, 38, 40], "user_pref": 1, "user_pw": 31, "useraccount": 20, "useraccountcontrol": [8, 20], "useradd": 31, "userag": 18, "usercertif": 8, "userd": 20, "userdb": 19, "userdel": 31, "userfriendli": 9, "userhom": 31, "userid": [31, 37, 40], "userknownhostsfil": [36, 40], "userland": [31, 32, 35, 40], "userlist": [20, 36, 40], "usermin": [19, 36, 40], "usermod": [7, 31], "usernam": [3, 5, 6, 7, 8, 9, 11, 14, 18, 19, 23, 31, 37, 38, 39], "username_in": 19, "usernameher": [36, 40], "userpass_fil": 19, "userprincipalnam": 8, "usersettingsdis": 8, "uservers": 8, "usestag": 21, "usnchang": 8, "usncreat": 8, "usr": [0, 1, 3, 7, 18, 21, 31, 32, 36, 37, 38, 39, 40], "usrclass": 21, "usrloc": 19, "usual": [0, 1, 3, 5, 9, 10, 11, 12, 16, 19, 20, 31, 32, 33, 34, 35, 36, 39, 40], "utba": 9, "utc": [13, 19, 21, 24, 37, 40], "utf": [5, 6, 19, 36, 39, 40], "utf8": 19, "util": [0, 3, 5, 7, 9, 10, 11, 14, 16, 18, 20, 21, 22, 23, 25, 30, 32, 34, 35, 36, 37, 39], "utilis": [5, 11, 23, 39, 40], "utilizi": 11, "utilz": [38, 40], "utmost": [10, 37, 40], "utmp": 23, "utran": 12, "uu": 3, "uucico": 31, "uucp": [19, 31], "uucppubl": 31, "uuid": [19, 31, 37, 39, 40], "uvh": 31, "ux": 24, "v": [0, 3, 5, 6, 10, 12, 14, 16, 17, 18, 19, 20, 21, 23, 33, 35, 36, 37, 38, 39], "v0": [5, 6, 19, 20, 21, 37, 39, 40], "v1": [1, 18, 19, 20, 21, 36, 38, 40], "v1222b11": 19, "v2": [1, 10, 19, 38, 40], "v2c": [38, 40], "v2g": 9, "v3": 1, "v3rbc4kbxhrelghy": 19, "v4": [38, 40], "v5": [11, 19, 35, 40], "v6": [38, 40], "v8": [5, 6, 19], "va": [10, 31], "vagrant": 30, "vagrantfil": 32, "val": [0, 1, 4, 35, 40], "valid": [0, 1, 3, 6, 7, 9, 10, 11, 12, 14, 16, 17, 18, 19, 20, 21, 30, 33, 34, 36, 38, 39, 40], "valid_lft": [32, 38, 40], "validateform": 5, "validlifetim": 8, "valu": [0, 3, 4, 5, 6, 8, 10, 11, 12, 13, 14, 16, 18, 20, 21, 24, 25, 30, 33, 34, 36, 37], "valuabl": [11, 21, 33], "valuat": 11, "value1": [36, 40], "value2": [36, 40], "valuei": 0, "valv": 11, "van": [5, 6], "vancouv": 11, "vandeven": 20, "var": [0, 4, 7, 10, 11, 14, 19, 23, 32, 36, 37, 38, 39, 40], "var2": 4, "var2db": 4, "var_26": 4, "var_27": 4, "var_28": 4, "varanecka": 5, "varbinari": 5, "varchar": 5, "vardb": 4, "vari": [10, 11, 16, 19, 25, 31, 32, 33, 34], "variabl": [1, 3, 4, 5, 7, 10, 19, 33, 38, 39], "variable_nam": 0, "variablenam": 0, "varianc": 14, "variant": 11, "variat": [5, 10, 11, 16, 19, 21, 32, 33, 34], "varieti": [0, 9, 10, 11, 21, 31, 32, 33, 39, 40], "variou": [0, 2, 3, 4, 5, 6, 9, 10, 11, 12, 16, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 36, 38, 40], "varlib": 19, "varlog": 19, "vast": [11, 19, 33, 34, 38, 40], "vault": [13, 20], "vaultproject": 14, "vba": 3, "vboxhost": 8, "vboxnet": [35, 40], "vboxnet0": [35, 40], "vcc": 16, "vcenter": 19, "vcloud": 32, "vdb": 14, "vdc": 10, "vdso": [0, 31], "ve": [0, 3, 5, 11, 25, 32, 37, 40], "vector": [11, 16, 30, 31, 37, 40], "vehicl": [11, 32], "veloc": 32, "ven": 9, "vendo": 11, "vendor": [5, 9, 12, 19, 23, 30, 31, 32, 33, 34], "ventil": 11, "ver": [5, 19, 31, 38, 40], "veracod": 33, "veracrypt": [38, 40], "verb": [5, 10, 19, 36, 39, 40], "verbal": 11, "verbos": [5, 6, 11, 18, 19, 20, 21, 31, 35, 36, 39, 40], "veri": [0, 3, 4, 5, 10, 11, 14, 18, 19, 21, 23, 31, 32, 33, 34, 36, 37, 38, 39, 40], "verif": [3, 5, 11, 14, 16, 19, 21, 31], "verifi": [0, 3, 5, 10, 11, 13, 14, 16, 17, 18, 19, 21, 23, 30, 32, 33, 34, 36], "verison": 23, "verita": 19, "versa": [10, 11, 31, 32], "versatil": [10, 11, 21, 32, 37, 40], "version": [3, 4, 5, 7, 8, 10, 13, 14, 15, 16, 21, 24, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "versionarrai": 19, "versu": [31, 32, 39, 40], "vertic": [5, 31, 32], "vertsplit": [36, 40], "vessel": 11, "vet": 33, "veteran": 34, "veth": 32, "vf": 32, "vhf": 11, "vhost": 19, "vi": [15, 38], "via": [0, 6, 7, 8, 9, 11, 12, 14, 16, 18, 23, 24, 30, 31, 32, 33, 34, 36, 37, 39], "viabl": 11, "vibrant": 34, "vice": [10, 11, 31, 32], "vicin": 34, "victim": [11, 19, 20, 21, 36, 37, 38, 39, 40], "victimip": [37, 40], "video": [3, 10, 11, 12, 19, 21, 31, 34, 37], "video1": 19, "vidmodeextens": 19, "view": [3, 4, 5, 6, 10, 11, 12, 19, 21, 22, 23, 32, 33, 34, 37, 38, 39, 40], "viewabl": [37, 40], "viewbox": 3, "viewdocu": 5, "viewer": [3, 11, 20, 31], "viewpoint": 11, "vigil": 11, "vigr": 31, "vijai": 27, "vim": [19, 31, 32, 36, 38, 40], "viminfo": [36, 40], "vimjail": [36, 40], "vimrc": [36, 40], "vimtutor": 31, "vinyl": 11, "violat": [11, 30], "vipermonkei": 3, "vipw": 31, "virata": 19, "virginia": 4, "virsh": [14, 32], "virstech": 19, "virt": 32, "virtual": [0, 3, 5, 10, 16, 18, 19, 22, 25, 30, 35, 37, 38, 39, 40], "virtual_s": [39, 40], "virtualbox": [35, 40], "virtualedit": [36, 40], "virtualis": [35, 40], "virtuallock": 33, "viru": 20, "virus": [11, 31], "vis1": 20, "viscos": [36, 40], "visibl": [5, 10, 11, 21, 31, 32, 38, 40], "visio": 20, "vision": 11, "visit": [3, 5, 11, 12, 19, 21, 31, 33, 36, 37, 38, 40], "visitor": 11, "vista": [18, 20, 21], "visual": [3, 4, 5, 10, 11, 19, 23, 30, 31, 32, 36, 40], "visualextra": [36, 40], "visudo": 31, "vital": [11, 31, 34], "viz": 25, "vlan": [3, 11, 12, 32], "vlan_id": 19, "vlan_prior": 19, "vlan_stat": 19, "vlc": 31, "vm": [3, 11, 12, 14, 21, 35, 36, 38, 40], "vmcc": 12, "vmd": 10, "vmdk": [21, 32], "vmem": 21, "vmlinuz": [7, 31, 39, 40], "vmm": [21, 32], "vmmap": 0, "vmnet": [35, 40], "vmnet1": [35, 40], "vmsn": 21, "vmss": 21, "vmss2core_mac64": 21, "vmware": [11, 21, 32, 35, 37, 40], "vmwarevm": 21, "vmx": 32, "vnc": [10, 20, 32, 36, 37, 40], "vnc_login": 19, "vnc_none_auth": 19, "vncpasswd": 19, "vncserver": 19, "vncviewer": 19, "vnxe": 19, "voic": [11, 12], "voicemail": 12, "void": [0, 1, 19, 37, 40], "voilat": 23, "voip": [19, 38, 40], "vol": 21, "volatil": [11, 16, 21], "volatility_2": 21, "volt": [10, 11], "voltag": [9, 10, 11, 16], "volum": [3, 10, 11, 13, 14, 19, 20, 21, 25, 31, 38, 39, 40], "volumetr": 11, "volumin": 31, "volunt": [11, 34], "vonloesch": 19, "voyag": 12, "vp": [36, 40], "vpmn": 12, "vpn": [9, 10, 14, 19, 20], "vqnude": 19, "vr": 3, "vreplac": [36, 40], "vrfy": [19, 36, 39, 40], "vsan": 32, "vsftpd": 19, "vsphere": 32, "vspherevolum": 32, "vss": [20, 21], "vt": [10, 31, 32, 36, 40], "vt0": [36, 40], "vtn": 9, "vty": 23, "vulhub": 27, "vuln": [0, 3, 37], "vulner": [3, 7, 9, 16, 18, 22, 23, 32, 35, 36, 37, 38, 39], "vulnerabilitii": 11, "vulnerabilityanalysi": [35, 40], "vulnerabilti": 0, "vulnerabiltii": 11, "vulnerabl": [10, 36, 40], "vulnhub": [7, 18, 19, 27, 35, 38, 40, 41], "vundl": 31, "vv": [0, 3, 18, 19, 35, 40], "vvn": [18, 35, 40], "vvv": [19, 21], "vxlan": 32, "vxwork": 11, "vxxxxx": 19, "w": [0, 3, 5, 6, 7, 10, 18, 19, 20, 21, 30, 31, 36, 37, 38, 39, 40], "w3": 3, "w32tm": 20, "w3600": 19, "w3m": 31, "w3svc": 20, "w3tech": 18, "w_ok": [37, 40], "wa": [0, 1, 2, 3, 5, 7, 9, 10, 11, 18, 19, 20, 21, 22, 25, 27, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "waf": [5, 7, 30, 36, 38, 40], "wahh": 5, "wahlin": 8, "wai": [0, 1, 3, 5, 8, 9, 10, 12, 13, 14, 16, 18, 19, 20, 21, 23, 24, 25, 30, 32, 33, 34, 36, 37, 38, 39, 40, 41], "wait": [0, 1, 5, 11, 12, 18, 19, 21, 31, 34, 36, 38, 40], "wait_for_connect": 1, "waitfor": [5, 36, 40], "waitfororkil": 19, "wajig": 31, "walk": [19, 31, 34], "walkthru": [19, 30, 38, 40], "wall": [0, 10, 11, 19, 31], "wan": 30, "wanna": 8, "want": [0, 1, 3, 4, 5, 6, 7, 8, 11, 13, 14, 16, 18, 19, 20, 21, 23, 25, 27, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40, 41], "wantedbi": 31, "wapplyz": 18, "war": [19, 36, 40], "ware": 19, "wareh": 30, "warehous": 11, "warfar": 11, "wargam": 0, "wari": 34, "warn": [1, 5, 6, 10, 11, 19, 20, 23, 31, 36, 38, 39, 40], "warningmessag": 1, "warrant": [11, 34], "wasn": [11, 36, 40], "wast": [25, 33], "waster": 34, "wastewat": 11, "watch": [11, 18, 19, 21, 31, 32, 34, 38, 40], "watchdog": 11, "watcher": [37, 40], "water": 10, "waterfal": 33, "waterwai": 11, "watt": 10, "watthour": 10, "wav": [3, 21], "wave": [3, 11, 16], "waveform": [3, 16], "wavefront": 32, "wavelength": 16, "wavfil": 3, "wb": [1, 3], "wbem": 20, "wbemexec": [20, 39, 40], "wce": 20, "wcf": 5, "wd": 21, "wdigest": 20, "we": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 15, 16, 17, 18, 19, 20, 21, 23, 25, 26, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "weak": [0, 5, 11, 14, 19, 23, 25, 33, 34, 38, 39, 40], "weakcallableproxi": 1, "weakdh": 19, "weaker": 33, "weakest": [11, 34], "weakproxi": 1, "weakref": 1, "wealth": [5, 11, 25], "weapon": 11, "weather": [9, 10, 11, 19], "weav": 32, "web": [3, 7, 8, 9, 10, 14, 16, 18, 19, 20, 22, 23, 32, 33, 34, 37, 38], "web_config": [39, 40], "web_deliveri": [19, 20, 21], "webacoo": 19, "webadmin": 19, "webapp": [19, 36, 40], "webappl": 18, "webassembli": 32, "webcam": 19, "webclient": [19, 21, 36, 37, 39, 40], "webdata": 32, "webdav": [19, 38, 40], "webdav_scann": 19, "webform": 1, "webhook": 32, "webmast": 19, "webmin": [36, 40], "webmin_show_cgi_exec": 19, "webobject": 5, "webpag": [5, 6, 11, 35, 36, 38, 40], "webrequest": 21, "webscarab": 5, "websec": 5, "webserv": [14, 19, 30, 36, 38, 39, 40], "webshel": [36, 38, 40], "websit": [0, 2, 5, 6, 11, 13, 16, 19, 21, 25, 30, 31, 32, 33, 34, 36, 38, 39, 40, 41], "websocket": 32, "webspher": 5, "webvol": 32, "wec": 30, "wed": [19, 20], "wednesdai": 19, "weed": [38, 40], "week": [11, 31], "weekli": 20, "weev": 19, "wef": 30, "wehen": 5, "weight": [10, 11, 18, 32], "weird": [2, 11, 36, 40], "weirdest": 33, "welcom": [0, 8, 11, 12, 19, 36, 38, 40], "welcome1": 21, "welfar": 11, "well": [0, 1, 3, 5, 6, 7, 10, 11, 12, 14, 15, 16, 18, 19, 20, 21, 22, 23, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "wella": 11, "wendi": 5, "went": [11, 15], "wep": [3, 11, 18, 30], "weras": [36, 40], "were": [0, 3, 5, 8, 10, 11, 18, 19, 20, 21, 23, 30, 31, 32, 33, 34, 36, 37, 38, 39, 40], "weren": [37, 40], "werror": 19, "west": 11, "western": [10, 19], "wet": 34, "wget": [3, 11, 14, 39], "wgom0ds1": 10, "wh": 10, "what": [0, 3, 4, 5, 7, 8, 12, 13, 14, 18, 19, 20, 21, 25, 30, 31, 32, 35, 36, 38, 39, 41], "what_is_your_sign": 0, "what_the_flag": 0, "whatcom": 11, "whatev": [0, 5, 7, 22, 30, 31, 33, 34, 39, 40], "whati": 31, "whatif": 8, "whatprovid": 31, "whatrequir": 31, "whatsoev": 3, "whatweb": 18, "wheel": [7, 10, 37, 40], "wheeler": 34, "wheezi": [39, 40], "when": [0, 1, 2, 3, 5, 6, 7, 8, 10, 12, 13, 14, 16, 18, 19, 20, 21, 22, 23, 24, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "whenchang": 8, "whencreat": [8, 19], "whenev": [10, 11, 31, 33, 36, 40], "where": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 16, 18, 19, 20, 21, 23, 25, 30, 31, 32, 33, 34, 36, 38, 39, 41], "where_to_plac": 14, "wherea": [5, 9, 10, 11, 16, 17, 18, 31], "wherebi": 11, "wherei": 31, "whereinternet": 11, "wherev": 20, "whether": [0, 3, 4, 5, 6, 7, 11, 13, 14, 16, 18, 19, 23, 30, 31, 33, 34, 37, 38, 40], "which": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "whichev": [1, 16, 39, 40], "while": [0, 1, 2, 3, 4, 5, 6, 8, 9, 10, 11, 12, 14, 15, 16, 18, 19, 20, 23, 25, 32, 33, 34, 35, 36, 37, 38, 39, 40], "whilst": 5, "white": [10, 19, 31, 33, 34], "whitepag": 1, "whitepap": 32, "whitespac": [31, 38, 40], "whitout": 10, "who": [0, 5, 6, 7, 8, 10, 12, 14, 18, 21, 27, 29, 30, 31, 32, 33, 35, 37, 39, 40, 41], "who_needs_": 0, "whoami": [3, 14, 19, 20, 31, 36, 37, 38, 39, 40], "whole": [0, 10, 21, 31, 32, 33, 34, 36, 38, 40], "wholesal": 12, "whom": [14, 33, 34, 37, 40], "whose": [0, 1, 2, 5, 6, 11, 18, 31, 34, 36, 37, 38, 40], "whowil": 20, "why": [5, 13, 18, 19, 25, 30, 31, 33, 36, 37, 39, 40], "whyos_4": 3, "wi": [9, 10, 12, 16, 17, 18], "wide": [0, 3, 5, 7, 9, 10, 11, 14, 18, 31, 32, 33, 34], "wider": [11, 12, 34], "widespread": 33, "widget": 5, "widgetshop": 5, "width": [1, 3, 19, 31, 39, 40], "wifi": 12, "wiki": [7, 20, 39, 40], "wikipedia": [11, 32, 34], "wil": 16, "wild": [18, 37, 38, 40], "wildcard": [18, 20, 31, 36], "wildignor": [36, 40], "wildmenu": [36, 40], "wili": 5, "willing": [5, 10, 11, 31], "win": [0, 8, 18, 19, 21, 31, 35], "win10sb": 8, "win2008k001": 20, "win2008k002": 20, "win2k8": 20, "win32": [19, 21], "win32_account": 20, "win32_loggedus": 20, "win32_process": [20, 37, 40], "win32_startupcommand": [37, 40], "win32exec": 19, "win7": 21, "win7box": 20, "win7sb": 8, "win7sp0x86": 21, "win7sp1_rtm": 21, "win7sp1x86": 21, "win_pc_ip": [20, 31], "winback": 12, "winbind": 14, "wind": [10, 11, 19], "windir": [39, 40], "windll": 1, "window": [0, 1, 3, 4, 5, 10, 14, 16, 18, 24, 32, 35], "window_s": [3, 19], "windowid": 19, "windownam": 19, "windows10": 8, "windows2008r2domain": 20, "windows2008r2forest": 20, "windows7": 8, "windowscrashdumpspace32": 21, "windowsfeatur": 8, "windowspowershel": [20, 36, 40], "windowsregistryfind": 1, "windowstyl": [36, 40], "windowupd": [37, 40], "windsor": 11, "wine": 31, "winex": [38, 40], "wing": 34, "winkei": 31, "winlogon": [37, 40], "winmgmt": 19, "winpcap": 11, "winpp104": 10, "winrm": [8, 38, 40], "winscp": 20, "winter": 10, "winvalid": 19, "winxpsp2x86": 21, "wire": [0, 12, 16, 17, 19, 27, 30, 32], "wireless": [9, 12, 15, 16, 19, 31, 38, 40], "wirelin": [11, 12], "wireshark": [10, 17, 35, 40], "wiretap": 12, "wise": [11, 33], "wish": [10, 15, 19, 31], "withcompani": 33, "within": [0, 3, 5, 9, 10, 11, 12, 14, 18, 19, 20, 24, 25, 30, 31, 32, 33, 34, 36, 38, 40], "without": [0, 1, 2, 3, 9, 10, 11, 12, 16, 18, 19, 21, 22, 24, 25, 31, 32, 33, 34, 35, 37, 38, 39, 40], "withoutsystem": 31, "withstand": 11, "wk": [8, 20], "wkhtml2imag": 18, "wl": [0, 19], "wlan": [3, 11], "wlan0": [15, 31, 32, 35, 40], "wlan4": 17, "wlc": 23, "wlp3s0": 15, "wmi": [8, 38, 40], "wmic": [20, 37, 40], "wmiexec": [38, 40], "wmifilt": 8, "wmiobject": [37, 40], "wmv": 3, "wn111v2": 17, "wno": 19, "wnon": 19, "woa": 5, "woah": 0, "woe": [39, 40], "woefulli": 33, "won": [0, 3, 5, 11, 18, 20, 31, 33, 36, 37, 40], "wonder": [11, 36, 40], "wont": 0, "wood": [10, 19], "woot": 5, "word": [0, 1, 2, 4, 5, 7, 10, 11, 18, 21, 25, 34, 36, 37, 38, 40], "word_dictionari": 21, "wordlist": [3, 5, 19, 21, 36, 38, 40], "wordlist_fil": [38, 40], "wordpress": [14, 19, 38], "work": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 14, 18, 19, 21, 23, 25, 30, 32, 33, 35, 36, 37, 38, 39, 40], "workabl": 11, "workaround": 33, "workbenc": 11, "workbench": [5, 11, 16], "workdir": [32, 39, 40], "worker": [19, 32], "workflow": [11, 32, 34], "workforc": [11, 34], "workgroup": [8, 19, 21, 38, 39, 40], "workgroupnam": 8, "workhors": 11, "workload": [31, 32], "workplac": 11, "workshift_l": 19, "workshop": 14, "workspac": [18, 19], "workstat": [8, 19, 21, 31, 32], "world": [1, 5, 7, 11, 18, 20, 24, 31, 32, 34, 38], "worldlist": [38, 40], "worldwid": [11, 12, 32], "worm": [11, 37, 40], "worpdress": [36, 40], "worri": [11, 14, 32], "wors": 33, "worst": [11, 34], "worth": 9, "worthi": 11, "worthless": 34, "worthwhil": [33, 34], "would": [0, 1, 2, 3, 4, 5, 8, 10, 11, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 26, 27, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "wouldn": [3, 11], "woverload": 19, "wow": 3, "wow6432nod": 23, "wp": [11, 16, 21, 36, 38, 40], "wpa": [3, 11, 17, 30, 31, 38, 40], "wpa1": 17, "wpa2": [11, 17, 18, 30], "wpad": 18, "wpapcap2john": [38, 40], "wpasupplic": 31, "wpscan": [36, 40], "wpsscan": [36, 40], "wpt": 9, "wpterm": [36, 40], "wq": 31, "wr": 10, "wrap": [0, 1, 5, 11, 20, 21, 32, 38, 40], "wrapper": [1, 18, 20, 38], "wrapper_descriptor": 1, "wreak": 11, "writabl": [0, 11, 20, 21, 23, 32, 36], "write": [3, 5, 7, 8, 10, 11, 13, 14, 15, 18, 19, 20, 22, 30, 31, 32, 33, 35, 36, 37, 38, 41], "write_imag": 16, "write_multiple_coil": 11, "writeabl": [0, 11, 19, 31, 36, 37, 40], "writebackup": [36, 40], "writeup": [2, 3, 18, 38, 40], "written": [0, 3, 5, 8, 10, 14, 16, 18, 19, 20, 21, 23, 30, 31, 32, 33, 34, 35, 36, 38, 39], "wrkg": 20, "wrong": [3, 4, 11, 18, 20, 32, 33, 34, 36, 40], "wrote": [11, 30, 36, 40], "wscale": [35, 40], "wscript": [39, 40], "wsign": 19, "wsman": [19, 20], "wsmanident": 20, "wsmid": 20, "wsu": [37, 40], "wtime": 19, "wtmp": [23, 36, 40], "wu": [1, 19], "wuld": 3, "wv": 19, "ww": 3, "wwan0": [38, 40], "wwbtahkauwb0aguabqauae4arqbuamaa7acqadwbdad0atgbfafcalqbpagiasgblagmavaagafmaeqbtafqazqbnac4atgblahqalgbxaeuaqgbdagwasqbfag4avaa7acqadqa9accatqbvahoaaqbsagwayqavadualgawacaakabxag": 21, "www": [3, 4, 5, 11, 14, 16, 18, 19, 20, 25, 31, 35, 36, 37, 38, 39, 40], "wx": 16, "wz": 3, "x": [0, 1, 2, 3, 4, 5, 6, 7, 10, 11, 15, 19, 20, 21, 23, 25, 32, 33, 34, 35, 36, 37, 38, 39, 40], "x00": [38, 39, 40], "x00xt": [39, 40], "x01": [0, 39, 40], "x02rq": [39, 40], "x03": [39, 40], "x03cposix": [39, 40], "x04": [0, 39, 40], "x04host": 19, "x05": [39, 40], "x06": [39, 40], "x07": [38, 39, 40], "x08": [0, 39, 40], "x08_": 0, "x09": [39, 40], "x0a": [0, 19], "x0alogin": 19, "x0ausernam": 19, "x0b": [0, 39, 40], "x0c": [39, 40], "x0d": 19, "x0e": [38, 40], "x0f": [39, 40], "x1": 18, "x10": [0, 39, 40], "x11": [36, 39, 40], "x11_keyboard_exec": 19, "x12": [38, 39, 40], "x13": [39, 40], "x14": [39, 40], "x146": [38, 40], "x15": [39, 40], "x150": 19, "x16": [39, 40], "x17": [38, 39, 40], "x18": [39, 40], "x1a": [38, 39, 40], "x1b9": [38, 40], "x1c": [0, 39, 40], "x1d": [38, 39, 40], "x1f": [39, 40], "x2": 18, "x20": 1, "x21": [39, 40], "x22": 5, "x27": 5, "x28": 0, "x2a": [39, 40], "x2c": [39, 40], "x2f": 0, "x3": 11, "x30": 0, "x31": 0, "x37": 0, "x40": 0, "x43": [39, 40], "x45": [39, 40], "x46": [39, 40], "x48": 0, "x49": [39, 40], "x4a": [39, 40], "x4c": 0, "x4d": [39, 40], "x4e": 0, "x50": 0, "x509": 10, "x51": 0, "x52": 0, "x53": 0, "x58": 0, "x5c": 0, "x5e": 0, "x62": 0, "x64": [5, 19, 21, 37, 40], "x66": [39, 40], "x68": 0, "x69": [0, 39, 40], "x6a": 0, "x6e": 0, "x73": 0, "x78": [39, 40], "x7f": 0, "x7fkx": [38, 40], "x8": 19, "x80": [0, 1, 39, 40], "x83": 1, "x85": [38, 40], "x85q": [39, 40], "x86": [0, 4, 11, 20, 21, 32, 36, 37, 40], "x86_64": [7, 19, 31, 39, 40], "x86fre": 21, "x87": 0, "x89": 0, "x8a": [38, 40], "x8b": [38, 40], "x8f": [38, 40], "x90": 0, "x90k2e": [38, 40], "x91": [38, 40], "x92": 0, "x97": 0, "x98": [38, 40], "x99": [0, 38, 40], "x9c": 0, "xa0": 0, "xa0n": [38, 40], "xaa": [38, 40], "xad": 0, "xampl": 31, "xap": 5, "xapian": 31, "xb0": 0, "xb37": [38, 40], "xb4": [38, 40], "xbe": 0, "xbf_": 0, "xc": 19, "xc0": 0, "xc1": [38, 40], "xc6": [38, 40], "xc8": 0, "xc9": 0, "xcase": [36, 40], "xcc": 0, "xccxccxccxcc": 0, "xcd": 0, "xce": 0, "xceu": [38, 40], "xchat": 31, "xcopi": 20, "xcp": 32, "xd": 0, "xd0": [0, 38, 40], "xd2": [0, 38, 40], "xd4": [0, 38, 40], "xd6": 0, "xd8": [0, 38, 39, 40], "xdb": [39, 40], "xde": 0, "xdev": [37, 40], "xdm": 31, "xdpyinfo": 31, "xdump": 19, "xdw": 4, "xe0": [39, 40], "xe1": [0, 39, 40], "xe2": 1, "xe3": 0, "xe6": 0, "xe9": [38, 40], "xeao": [38, 40], "xec": [38, 40], "xef": 0, "xen": [19, 32, 34], "xenial": [38, 40], "xenserv": 19, "xeru": [38, 40], "xf": [3, 31], "xf0j": [38, 40], "xf1": [38, 40], "xf2": [38, 40], "xf7": 0, "xf8": [38, 40], "xfa": [0, 38, 40], "xfc": 0, "xfce": [31, 34], "xfce4": 31, "xfe": [38, 40], "xff": [0, 39, 40], "xfontset": [36, 40], "xfree86": 19, "xg": 0, "xhcx": 31, "xhost": [36, 40], "xhtml": [39, 40], "xim": [36, 40], "xine": 31, "xinetd": 23, "xinputextens": 19, "xkwzrme2e98rm": 19, "xl": 31, "xm": 3, "xma": [35, 40], "xmass": 3, "xmit": 18, "xmit_thread_prior": 19, "xml": [3, 5, 9, 10, 11, 18, 19, 20, 24, 35, 36, 37, 38, 39, 40], "xmldata": 5, "xmlfile": [36, 40], "xmln": [3, 24], "xmlsoap": 24, "xmlstarlet": 18, "xmpp": [18, 19], "xms2g": 14, "xmx2g": 14, "xnest": [36, 40], "xnor": 3, "xor": [2, 3, 16], "xortool": 2, "xp": [0, 19, 21, 37, 38, 40], "xp_cmd": 5, "xp_cmdshell": 5, "xp_dirtre": 19, "xp_fileexist": 19, "xp_fixeddr": 19, "xp_getnetnam": 19, "xp_grantlogin": 19, "xp_qv": 19, "xp_regread": 19, "xp_revokelogin": 19, "xpath": [38, 40], "xpdf": 31, "xpm": [36, 40], "xpwn": [39, 40], "xqi": [39, 40], "xr": [19, 31, 37, 39, 40], "xrang": [1, 3], "xsd": 20, "xsmp_interact": [36, 40], "xss": [19, 30, 33], "xsy0ji5csr52bil2bka36kfyx325rrup": 19, "xterm": 31, "xterm256": [36, 40], "xterm_clipboard": [36, 40], "xterm_sav": [36, 40], "xtype": 5, "xvf": 31, "xvideo": 19, "xvz": 31, "xx": [3, 17, 18, 19, 20, 23, 31, 36, 39, 40], "xx_openssl": 19, "xxd": [3, 36, 38, 40], "xxd_2": 31, "xxe": [38, 40], "xxx": [0, 18, 19, 20, 35, 36, 39, 40], "xxx2": [37, 40], "xxxdocument": 5, "xxxnwprd": 24, "xxxnwprd2": 24, "xxxnwprd2_mi2_02": 24, "xxxpcx": 19, "xxxt": 19, "xxxx": [19, 20, 31], "xxxxcj": 19, "xxxxdc03": 20, "xxxxdc04": 20, "xxxxdc11": 20, "xxxxdc12": 20, "xxxxhbks1739": 20, "xxxxx": [14, 15, 20, 38, 40], "xxxxx2": 20, "xxxxxee": [38, 40], "xxxxxhostcu": 19, "xxxxxindian": 18, "xxxxxx": [19, 20, 37, 40], "xxxxxx3": 20, "xxxxxxindian": 18, "xxxxxxx": [20, 37, 38, 40], "xxxxxxxwordpress": [38, 40], "xxxxxxxx": [20, 31], "xxxxxxxxx": [20, 31], "xxxxxxxxxx": 20, "xxxxxxxxxxxxxx": 20, "xyz": 5, "xz": 3, "xzcat": 31, "xzless": 31, "y": [0, 1, 2, 3, 4, 5, 14, 19, 31, 32, 33, 36, 38, 40], "y1b6tqjjc9wruofunk2ex6pmoikj8qptvmxyaxwol84mrb89v9vhcbfdrbwfhoa6hzeqvti01thmpqqqgv5l": [36, 40], "yadayada": 5, "yafc": 31, "yaff": 31, "yaffs2": 16, "yahoo": 19, "yai": 19, "yaml": [3, 13, 14, 15, 19, 32], "yank": 31, "yard": 11, "yast": 31, "ydd": 4, "ye": [3, 5, 7, 11, 15, 16, 19, 20, 21, 31, 37, 38, 39, 40], "yeah": 11, "year": [5, 11, 18, 21, 25, 31, 33, 34, 41], "yearli": 25, "yellow": 10, "yellowdog": 31, "yelp": 31, "yersinia": 3, "yesteryear": 11, "yet": [5, 14, 19, 20, 23, 31, 33], "yield": [11, 31, 34], "yml": 32, "yny": 31, "yod": 19, "york": 11, "you": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 25, 26, 27, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41], "youcompletem": 31, "your": [0, 3, 6, 8, 10, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 25, 27, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40], "your_ip": [36, 40], "your_namespac": 13, "your_release_nam": 13, "yourcompani": 3, "yourdomain": 19, "yourip": [36, 37, 40], "youripaddress": [36, 40], "yourproxi": 31, "yourself": [0, 5, 11, 19, 33, 34], "yourselv": 33, "youtub": [3, 19, 36, 40], "yq28ntg": 19, "yr": 19, "yum": [32, 38, 40], "yummi": [31, 37, 40], "ywbvagqaaqbuagcalgbhaguadabtahqacgbpag4azwaoacqabwb1ahqacab1ahqacwb0ahiazqbhag0algbsaguayqbkacgakqapaa0acgb3aggaaqbsaguakaakag8adqb0ahaadqb0ahmadabyaguayqbtac4auablaguaawaoackaiaatag4azqagac0amqapahsadqakacqabwb1ahqaiaarad0aiaakaguabgbjag8": [36, 40], "yy": [3, 31, 35, 40], "yyyi": 31, "yze24b6salaanszht9myg6q5dnbtwvv2ixv": 19, "z": [0, 2, 3, 4, 5, 11, 18, 19, 20, 23, 25, 31, 35, 36, 37, 40], "z1": [36, 40], "za": 31, "zabbix": 32, "zap": [9, 30, 39, 40], "zbar": 3, "zbarimg": 3, "zbdump": 16, "zbid": 16, "zbstumbler": 16, "zbwireshark": 16, "zcat": 31, "zcb": 19, "zcvf": 31, "zdfabjef600007w": 19, "zdiff": 31, "zed": 30, "zentral": 20, "zephyr": 34, "zero": [1, 3, 4, 5, 11, 14, 18, 19, 31, 32, 33, 35, 40], "zerodha": 25, "zeromq": 32, "zf": [4, 32], "zgb1ag4aywb0agkabwbuacaaywbsaguayqbuahuacaagahsadqakagkazgagacgajabjagwaaqblag4adaauaemabwbuag4azqbjahqazqbkacaalqblaheaiaakahqacgb1aguakqagahsajabjagwaaqblag4adaauaemababvahmazqaoackafqanaaoaaqbmacaakaakahaacgbvagmazqbzahmalgbfahgaaqb0aem": [36, 40], "zgrep": 31, "zip": [1, 5, 8, 14, 16, 19, 21], "zip2john": [38, 40], "zip_longest": 1, "zipfil": [38, 40], "zipimport": 1, "zless": 31, "zlib": 16, "zmail": [36, 40], "zmore": 31, "zombi": 31, "zone": [3, 11, 14, 32, 35, 37, 40], "zonetransf": [18, 19], "zonetransferm": 19, "zoom": 3, "zsh": 31, "zsh5": 31, "zsh_5": 31, "zshrc": 7, "zst": 31, "zsteg": 3, "ztxt": 3, "zwhsaterma8ga1uechmidmlyc3rly2gxhtabbgnvbamtfhzpcnn0zwnoifdlykfk": 19, "zxcvbnm": 3, "zxhlyybtyxn0zxiulnhwx2ntzhnozwxsicdkaxin": 5, "zypp": 31, "zz": 3, "\u00e9": 5, "\u03bcdeb": 31, "\u03c6": 2, "\u03c9": 10, "\ufb01": 5, "\ufb01eld": 5, "\ufb01le": 5, "\ufb01lenam": 5, "\ufb01lter": 5, "\ufb01ne": 5, "\ufb01rst": 5, "\ufb01ve": 5, "\ufb01xed": 5, "\ufb02ag": 5, "\ud835\udc51\ud835\udc52\ud835\udc5d\ud835\udc4e\ud835\udc5f\ud835\udc61\ud835\udc62\ud835\udc5f\ud835\udc52_\ud835\udc61\ud835\udc56\ud835\udc5a\ud835\udc52": 9, "\ud835\udc52\ud835\udc5b\ud835\udc52\ud835\udc5f\ud835\udc54\ud835\udc66_\ud835\udc5f\ud835\udc52\ud835\udc5e\ud835\udc62\ud835\udc52\ud835\udc60\ud835\udc61": 9, "\ud835\udc53": 9, "\ud835\udc5a\ud835\udc4e\ud835\udc65\ud835\udc56\ud835\udc5a\ud835\udc62\ud835\udc5a_\ud835\udc50\ud835\udc62\ud835\udc5f\ud835\udc5f\ud835\udc52\ud835\udc5b\ud835\udc61_\ud835\udc59\ud835\udc56\ud835\udc5a\ud835\udc56\ud835\udc61": 9, "\ud835\udc5a\ud835\udc4e\ud835\udc65\ud835\udc56\ud835\udc5a\ud835\udc62\ud835\udc5a_\ud835\udc63\ud835\udc5c\ud835\udc59\ud835\udc61\ud835\udc4e\ud835\udc54\ud835\udc52_\ud835\udc59\ud835\udc56\ud835\udc5a\ud835\udc56\ud835\udc61": 9, "\ud835\udc62\ud835\udc59\ud835\udc59_\ud835\udc60\ud835\udc5c\ud835\udc50": 9}, "titles": ["Binary Exploitation", "Coding Quick Reference", "Cryptography", "Forensics", "Reverse Engineering", "Learning from the CTF : Web Exploitation", "Learning from the CTF : Web Exploitation", "Learning from the field : Securing your Debian", "Configuring and Securing Series : Windows Environment", "Electric Vehicle Charging Infrastructure", "Electrical Grid", "Industrial Control Systems", "The Essentials", "Appendix - Installation of Applications", "Cloud Tier", "Urban Monitoring Architecture - Edge Side", "Layers in IoT", "Learning from the field : Wireless Pentesting", "Intelligence Gathering", "Vulnerability Analysis", "Exploitation", "Post Exploitation", "Reporting", "Configuration Review", "Remote Function Calls (RFC), SAP GUI, and the DIAG Protocol", "Stock Market", "Feedback", "About Me", "The Magic of Learning", "Contributors", "Cybersecurity in an Enterprise", "Linux Basics", "Cloud Infrastructure Technologies", "Secure Software Development Fundamentals", "Open Source Concepts", "Initial Recon", "From Nothing to a Unprivileged Shell", "Unprivileged Shell to Privileged Shell", "Tips and Tricks", "Appendix", "Vulnerable Machines", "The Magic of Learning"], "titleterms": {"": [5, 21, 31, 34], "1": [3, 19, 20, 25, 30, 31, 32, 36], "10000": 19, "104": 10, "1099": 19, "110": 19, "111": 19, "11211": 19, "113": 19, "135": 19, "1433": 19, "1521": 19, "161": 19, "2": [3, 19, 20, 30, 31, 32, 36], "2049": 19, "21": 19, "22": 19, "23": 19, "25": 19, "264": 19, "27017": 19, "27018": 19, "3": [11, 19, 20, 36], "3260": 19, "3299": 19, "3306": 19, "389": 19, "4": 19, "404": [38, 40], "443": 19, "445": 19, "44818": 19, "47808": 19, "5": 10, "512": 19, "513": 19, "514": 19, "53": 19, "5432": 19, "548": 19, "554": 19, "5555": 19, "587": 19, "5900": 19, "593": 19, "5984": 19, "6000": 19, "60870": 10, "61850": 10, "6379": 19, "79": 19, "8009": 19, "8443": 19, "8554": 19, "873": 19, "88": 19, "9100": 19, "9160": 19, "A": [18, 20, 21, 33], "And": 21, "At": 11, "For": [10, 14, 31], "IT": [10, 11], "If": [14, 31], "In": [11, 21], "No": 19, "On": 14, "That": 32, "The": [5, 11, 12, 18, 21, 24, 28, 31, 41], "To": [38, 40], "With": [14, 31, 39, 40], "a1": 39, "a2": 39, "a3": 39, "a4": 39, "a5": 39, "a6": 39, "aaaa": 18, "abb": 10, "about": [20, 27, 41], "absolut": [31, 37, 40], "abt": 10, "abus": [37, 40], "ac31": 10, "acccheck": [5, 6], "acceler": 20, "accept": 14, "access": [0, 7, 10, 11, 16, 19, 20, 21, 30, 39, 40], "accessenum": 23, "account": [11, 14, 19, 20, 21, 23, 37, 40], "acquisit": [10, 11], "action": [7, 31], "activ": [11, 18, 20, 21, 30, 38, 40], "actor": 11, "ad": [8, 14, 20, 31], "adapt": 8, "adcomput": 8, "add": [8, 15, 20, 31], "addit": [11, 14, 30, 34], "address": [4, 8, 11, 18, 31, 35, 40], "adexplor": 20, "admin": 20, "administr": [8, 20, 21, 31], "adsisearch": 20, "adus": 8, "advanc": [20, 32, 37, 40], "advantag": [11, 34], "advisori": 10, "affect": 20, "afp": 19, "after": 0, "agent": [12, 14, 15, 32], "agreement": 34, "agricultru": 11, "aid": 31, "ajp": 19, "ak": 10, "alert": 11, "algo": 19, "algorithm": [31, 33], "alia": 31, "aliv": 18, "all": [20, 31], "alpin": 32, "altern": [38, 40], "amap": [35, 40], "amazon": 32, "amplif": 19, "amplitud": 3, "amr": 10, "an": [20, 30, 31, 33, 39, 40], "analys": 11, "analysi": [3, 11, 19, 25, 33], "analyt": 34, "analyz": [5, 16, 23], "anchor": 31, "ani": [0, 37, 40], "annual": 25, "anomali": 11, "anon": 19, "anonym": 19, "ansibl": 32, "answer": 31, "anti": 11, "apach": [19, 32], "apci": 10, "api": 18, "appendix": [0, 4, 5, 13, 14, 18, 39, 40], "appl": 19, "appli": 11, "applic": [5, 7, 10, 11, 13, 14, 16, 20, 23, 30, 31, 32, 33, 35, 40], "approach": [5, 11], "apt": [31, 37, 40], "aquaton": 18, "ar": [33, 34, 37, 40], "arbitrari": [0, 37, 40], "arch": 31, "architectur": [0, 1, 10, 11, 12, 15, 32], "archiv": [36, 40, 41], "area": 18, "argocd": 13, "argument": 31, "argv": 0, "arithmet": 31, "arkad": 14, "arp": 11, "arrai": 31, "articl": 19, "artifact": 11, "ascii": [1, 3], "asdu": 10, "aslr": 0, "asn": 18, "asp": 5, "assembli": 4, "assess": [11, 30], "asset": [11, 25], "assign": 34, "assur": 33, "asymmetr": [2, 33], "attack": [3, 5, 11, 16, 18, 19, 39, 40], "attribut": [11, 31], "auc": 12, "audit": [11, 31, 33], "auditor": 19, "auditpol": 23, "austria": [38, 40], "auth": 19, "authent": [5, 10, 11, 12, 14, 19, 21, 33], "author": [11, 21, 31], "autom": [11, 16, 30, 34], "automat": [10, 14, 31], "avail": [10, 18, 31, 34], "averag": 31, "aw": [14, 32], "awk": 31, "azur": [14, 32], "ba": 21, "back": 31, "backdoor": 16, "backend": [31, 32], "background": 31, "backup": [11, 21], "bacnet": 19, "bai": 10, "balanc": [10, 25], "banner": [7, 19], "bare": [14, 32], "base": [2, 5, 10, 11, 14, 31], "base64": [5, 39, 40], "baselin": 30, "bash": [31, 36, 40], "bash_histori": 11, "basic": [0, 1, 4, 10, 11, 17, 19, 31, 34], "batch": 11, "batteri": 11, "baud": 16, "bear": 25, "beautifulsoup": 1, "becom": [39, 40], "behavior": 31, "behaviour": 0, "benefit": [10, 14, 32], "benevol": 34, "best": 11, "between": [10, 31], "big": 1, "bin": [0, 31, 38, 40], "binari": [0, 16, 20, 31, 36, 37, 40], "binwalk": 3, "bio": 31, "bittorr": 3, "blacklist": [19, 30], "ble": 16, "blind": 5, "block": [10, 31, 32], "blog": [3, 10, 19, 37, 40, 41], "bloodhound": 20, "bmp": 3, "bng": 12, "board": [3, 34], "boolean": 5, "boot": [14, 31], "bosh": 32, "bounc": 19, "boundari": 16, "bounti": 33, "box": [32, 38, 40], "bra": 12, "breach": 30, "breadth": 33, "breaker": 10, "bridg": 32, "brief": 33, "broadcast": 19, "browser": [3, 5, 11, 19], "brute": [19, 36, 40], "bruteforc": 19, "bsc": 12, "bsd": 31, "bt": 12, "bu": 11, "buffer": 0, "bug": 33, "build": [32, 39, 40], "built": [21, 31, 38, 40], "builtin": [30, 31], "bull": 25, "burpsuit": [1, 36, 40], "busi": [11, 34], "bypass": 5, "byte": [0, 39, 40], "bzip": 31, "c": [1, 21, 31], "cach": [11, 19], "cadvisor": 32, "call": [0, 24], "came": [37, 40], "cameradar": 19, "can": [37, 40], "canari": 11, "candid": 11, "capabl": [11, 19, 38, 40], "captur": 5, "carrier": 12, "cascad": 11, "case": [31, 32], "cash": 25, "casm": 10, "cassandra": 19, "cat": 31, "catalog": [19, 20, 32], "categori": 11, "cc": [19, 31], "cd": [31, 32], "cdecl": 0, "cellular": [11, 12], "center": [10, 11, 12, 21], "cento": 14, "centr": 10, "ceph": [14, 32], "cert": [14, 19], "certif": [14, 19, 34, 35, 40], "cewl": 1, "cf": 32, "cgi": [38, 40], "cgroup": [15, 32], "chain": 31, "challeng": [3, 11, 41], "chang": [11, 15, 20, 31], "changecipherspec": 19, "changelog": [0, 10, 30, 40], "channel": 11, "chaoss": 34, "char": 0, "charact": 31, "charg": 9, "chart": 25, "check": [0, 14, 19, 23, 31, 33, 37, 40], "checklist": 25, "checkpoint": 19, "chef": 32, "chemic": 11, "childitem": [38, 40], "chmod": [31, 37, 40], "choos": 34, "chown": [37, 40], "chunk": 3, "ci": 32, "cikr": 11, "cipher": [2, 19], "ciphersuit": 33, "circuit": 16, "cisco": [22, 23], "ciscoconfpars": 23, "cla": 34, "claim": 32, "class": 20, "classic": 11, "classload": 19, "clean": 11, "cleartext": 21, "client": [5, 11, 14, 31, 38, 40], "close": 34, "cloud": [14, 32], "cloudcor": 14, "cloudform": 32, "cluster": 14, "cmd": 31, "cmdlet": 21, "code": [1, 2, 3, 5, 19, 20, 30, 34, 38, 39, 40], "collabor": 34, "collect": [11, 31], "coloni": 11, "com": 18, "command": [19, 20, 31, 37, 38, 39, 40], "comment": 5, "commerci": [11, 32], "commit": 31, "common": [5, 11, 19, 33], "commun": [10, 11, 16, 19, 24, 34], "compani": [30, 34], "compar": [11, 31], "compil": [7, 31, 33], "complet": 27, "complex": [39, 40], "complianc": [8, 11, 30, 34], "complic": 11, "compon": [11, 16, 32], "composit": 33, "compress": 31, "compromis": 18, "comput": [8, 11, 20, 32, 33], "concept": [0, 11, 25, 31, 32, 34], "conclus": [11, 25], "condit": 31, "conf": [15, 31], "confidenti": 31, "config": [31, 39, 40], "configur": [7, 8, 10, 11, 14, 19, 21, 23, 31, 32, 36, 37, 40], "conform": 10, "connect": [11, 16, 19, 20, 37], "consequ": 11, "consid": 34, "consider": [11, 34], "consourc": 32, "constant": 33, "consul": 32, "consumpt": 10, "contain": [11, 32, 37], "container": 32, "containerd": 32, "content": [5, 28, 39, 40], "continu": 11, "contribut": 34, "contributor": [29, 34, 41], "control": [0, 5, 7, 8, 10, 11, 14, 20, 30, 31, 32, 34, 39, 40], "convent": 0, "converg": 11, "convers": 1, "convert": 31, "cooki": 5, "copi": [31, 38, 39, 40], "copper": 11, "copyleft": 34, "copyright": 34, "core": 32, "coreo": 32, "corpor": 11, "cosec": 10, "couchdb": 19, "countermeasur": 11, "countri": 31, "cover": [5, 19], "coverag": 33, "cp": 31, "crack": [21, 38, 40], "crackmapexec": 20, "crash": 0, "creat": [8, 14, 20, 21, 31, 32, 33, 39, 40], "creation": [0, 8, 37, 40], "creddump7": 21, "credenti": [21, 37, 40], "credmap": 21, "cri": 32, "critic": [11, 41], "cron": [31, 37, 40], "crontab": [37, 40], "crunch": 1, "crypto": [38, 40], "cryptograph": 33, "cryptographi": [2, 33], "csc": [38, 40], "csi": 32, "csprng": 33, "csv": [8, 31], "ctf": [5, 6, 38, 40, 41], "ctype": 1, "cultur": 11, "cup": 31, "curl": [31, 36, 38, 40], "curli": [39, 40], "current": [11, 20, 30, 31], "cursor": 31, "curv": [38, 40], "custom": [8, 10, 38, 40], "cut": 31, "cve": 33, "cvss": 33, "cyber": 40, "cyberchef": 3, "cybersecur": [10, 11, 30], "d": [31, 37, 40], "da": 21, "dam": 11, "dart": 22, "data": [0, 1, 5, 10, 11, 16, 19, 21, 22, 31, 32, 33, 34, 38, 39, 40], "databas": [5, 11, 19, 21, 31], "datasploit": 18, "date": 19, "dc": [11, 20, 32], "dcept": [38, 40], "dcerpc": 19, "dcom": 20, "dd": 31, "debian": [7, 14, 31], "debug": [16, 31, 32], "debugg": 31, "decept": 40, "decompil": 5, "decrypt": [3, 33], "dedic": 11, "deep": 31, "default": 19, "defens": [11, 33], "defin": [16, 20, 32], "definit": [0, 10, 25, 32, 34, 36, 40], "delai": 31, "delet": [14, 20, 31, 38, 40], "deliveri": 21, "demand": 10, "depend": [11, 33], "deploi": 14, "deploy": [11, 32, 33], "depth": 11, "design": [5, 33], "desktop": [20, 31, 37], "destruct": 11, "detect": [3, 5, 11, 19, 30, 31, 33], "determin": [11, 19, 20], "dev": [31, 36, 40], "develop": [11, 31, 33, 34], "devic": [3, 10, 11, 16, 23, 31], "devop": 32, "devsec": 30, "dh": 19, "dhcp": 30, "diag": 24, "diagram": [11, 33], "diagramm": 20, "diamet": 12, "dictatorship": 34, "dif": 16, "diff": 31, "differ": [2, 8, 10, 11, 31, 34], "dig": 18, "digit": 33, "diod": 11, "dirb": [36, 40], "dirbust": [36, 40], "direct": 0, "directori": [7, 20, 21, 30, 31, 32, 37, 38, 40], "disabl": [0, 5, 7, 8, 14, 20, 31], "disadvantag": [11, 32], "discard": 31, "disclaim": 41, "disclosur": [19, 33], "discov": [5, 19, 20, 24], "discoveri": [3, 11, 14, 19, 32], "discret": 11, "disk": [3, 31, 39, 40], "displai": 14, "distinct": 31, "distribut": [10, 11, 31, 32], "dit": [38, 40], "dive": 31, "divers": 34, "dlm": 10, "dn": [3, 8, 11, 18, 19, 35, 40], "dnf": 31, "dnp3": 11, "dnscach": 20, "dnsenum": 18, "dnsrecon": 18, "do": 34, "docker": [32, 39, 40], "dockerfil": [32, 39, 40], "document": [19, 31, 37], "doe": [16, 34], "domain": [8, 14, 18, 19, 20, 30], "domaintool": 18, "domino": 19, "dork": 18, "down": 14, "download": 33, "downstream": 11, "dp": 2, "dpkg": [31, 37, 40], "dra": 12, "drive": [11, 37], "driver": [7, 31, 32], "du": 31, "dump": [3, 19, 21, 39, 40], "dumpster": [11, 18], "dynam": 33, "e": [2, 18, 31, 36, 38, 40], "ea": 21, "each": 31, "echo": 31, "edg": 15, "edit": 31, "editor": 21, "educ": 34, "eeprom": 16, "effect": 11, "efi": 31, "eip": 0, "eir": 12, "elast": 32, "elasticsearch": [30, 32], "electr": [9, 10], "electron": [10, 11], "element": [5, 10, 11], "elev": [11, 21, 37, 40], "elf": [36, 40], "elif": 31, "elk": 30, "ellipt": [38, 40], "em": 10, "email": [11, 39, 40], "embed": [11, 16], "emerg": 11, "empir": 21, "employe": 11, "empti": 31, "emul": [16, 20, 31], "enabl": [0, 14, 20, 31], "encod": 5, "encourag": 34, "encrypt": [2, 16, 19, 31, 33, 38, 40], "end": [23, 31], "endian": 1, "endpoint": 19, "energi": [10, 11], "engin": [4, 11, 16], "enhanc": 12, "enip": 19, "enterpris": [20, 30], "entri": [5, 15, 20], "enum": [19, 20], "enum4linux": [18, 20], "enumer": [8, 18, 19, 20, 24, 36, 37, 38, 40], "env_reset": [38, 40], "environ": [0, 8, 11, 31, 36, 37, 39, 40], "environment": 11, "envoi": 32, "equal": 31, "equip": 12, "equiti": 25, "equival": 3, "eras": 31, "error": [5, 31, 38, 40], "escal": [19, 20, 37, 38, 40], "esm": 12, "esoter": 2, "essenti": [12, 41], "estim": 31, "esxi": 19, "etc": [11, 15, 20, 31, 37, 40], "etcd": 32, "eternalblu": 3, "ethernet": 12, "ethernetip": 19, "evas": 5, "event": [11, 30], "eventlog": 20, "ex": [20, 21, 23], "examin": 0, "exampl": [0, 4, 5, 6, 10, 11, 18, 20, 31, 32, 34, 37, 39, 40], "except": 31, "exchang": [10, 21, 34], "execut": [0, 11, 19, 20, 21, 31, 32, 37, 38, 39, 40], "exiftool": 3, "exist": 33, "exit": 0, "expans": 31, "expect": [36, 39, 40], "exploit": [0, 5, 6, 16, 19, 20, 21, 37, 39, 40], "explor": [18, 20, 24, 31], "expon": 2, "export": 0, "exposur": 33, "expr": 31, "express": 31, "extens": [3, 5], "extern": [11, 18, 31], "extra": [8, 14], "extract": 3, "f": 19, "facil": 11, "fact": 10, "factor": 11, "fail": [31, 34], "fakesmtp": [38, 40], "falco": 14, "famili": 31, "fd": [39, 40], "featur": [1, 14, 32], "fedora": [31, 32], "feed": 10, "feedback": 26, "fep": 10, "fget": 1, "fi": [11, 30], "fiber": 11, "fiddl": 1, "field": [5, 7, 10, 11, 17], "fieldbu": 11, "figur": 8, "file": [0, 1, 3, 7, 11, 19, 20, 21, 31, 32, 34, 36, 37, 38, 39, 40], "file1": [39, 40], "filesystem": [31, 32], "filter": [3, 5, 31, 39, 40], "financ": 11, "find": [0, 3, 14, 18, 19, 20, 31, 33, 35, 37, 40], "finger": 19, "fingerprint": [18, 33], "firefox": [38, 40], "firewal": [10, 11, 19, 23, 30, 31, 37], "firmwar": 16, "first": [31, 33, 38, 40], "flag": 19, "flaw": 5, "flow": [10, 11, 25], "flpsed": 31, "fluentd": 32, "flyover": 18, "focus": 11, "folder": [32, 37, 40], "follow": 11, "food": 11, "forc": [19, 36, 40], "foreground": 31, "foreign": 1, "foreman": 14, "foremost": 3, "forens": [3, 11], "forest": [8, 20], "form": [5, 36, 39, 40], "format": [0, 3, 10, 31], "forward": [11, 30, 36, 40], "fossologi": 34, "foundri": 32, "four": 0, "frame": 0, "framework": [24, 30], "freeipa": 14, "frequenc": 11, "freshen": 31, "from": [0, 1, 3, 5, 6, 7, 10, 14, 16, 17, 31, 36, 37, 38, 39, 40], "fsm": 23, "fsmo": 20, "ftp": [19, 31, 38, 39, 40], "full": [21, 31], "fulli": [36, 40], "function": [0, 1, 5, 10, 11, 24, 31, 32, 39, 40], "fundament": [25, 33], "further": 18, "fuzz": [33, 36, 40], "fwbuilder": 31, "g": 18, "g0tm1lk": [37, 40], "gatewai": 18, "gather": [18, 21, 31, 36, 40], "gdb": [0, 16, 31], "gdpr": 33, "ge": 10, "gener": [1, 10, 11, 19, 25, 31, 33], "geograph": 10, "gerrit": 32, "get": [0, 16, 20, 31, 33, 36, 38, 40], "ghost": 31, "git": [31, 32, 38, 40], "git_ssh": [38, 40], "git_template_dir": [38, 40], "github": 32, "gitk": 31, "gitlab": 13, "given": [38, 40], "global": [0, 20, 31], "glusterf": 32, "gmon_start": 0, "gnu": 31, "goal": 11, "golden": 2, "gomsf": 10, "good": [31, 33], "googl": [18, 19, 32, 36, 40], "goos": 10, "govern": [11, 34], "gpg": [38, 40], "gpp": 20, "gpresult": 23, "grabber": 19, "grafana": 13, "graphic": 31, "grassmarlin": 11, "grep": [31, 38, 40], "grid": 10, "group": [20, 21, 31, 34, 39, 40], "grub": 7, "guess": 19, "gui": [24, 31], "guidanc": 11, "guidelin": [30, 34], "gzip": 31, "hack": [5, 19], "hackrf": 16, "handl": [5, 33], "handshak": 11, "hard": 31, "hardcod": 16, "harden": [7, 8, 30], "hardwar": [16, 31], "harvest": 18, "hash": [20, 21, 33, 38, 40], "hashdump": 19, "hashicorp": 32, "hat": 31, "hazard": 11, "head": 31, "header": [3, 5], "health": [11, 34], "healthcar": 11, "heap": 0, "heartbeat": 19, "heartble": 19, "helm": 14, "help": [0, 31, 34, 36, 40], "heroku": 32, "hex": [1, 3, 5], "hexdump": 31, "hid": [3, 11], "hidden": [5, 19], "hierarch": 10, "hierarchi": 10, "high": [21, 31], "hijack": [0, 37, 40], "histori": [11, 31, 36, 40], "historian": 10, "hive": [21, 38, 40], "hlr": 12, "hmi": 11, "holder": 34, "hole": [11, 35, 40], "home": [11, 12, 30, 31, 38, 40], "honeypot": 11, "host": [3, 11, 14, 15, 18, 20, 31, 32], "hostkei": 19, "hostnam": [14, 15, 19, 38, 40], "how": [11, 14, 16], "hpdataprotector": 19, "htaccess": [38, 40], "html": [5, 38, 40], "http": [5, 18, 19, 36, 38, 39, 40], "httpd": 19, "human": 11, "hunt": [20, 21, 30], "hybrid": 11, "hydra": [5, 6, 36, 40], "hydroelectr": 10, "hygien": 10, "hypervisor": [21, 32], "i": [4, 10, 11, 14, 16, 18, 20, 21, 31, 34, 40], "i2c": 16, "iaa": 32, "ic": 11, "iccp": [10, 11], "icf": 24, "icm": 24, "icmp": [36, 40], "id": [11, 31], "ida": 4, "ident": [10, 12, 14, 19, 21, 30], "identif": [10, 11, 18], "identifi": [5, 11, 16, 18, 20, 31, 33], "idm": 14, "iec": 10, "ifconfig": 31, "ifupdown": 31, "ii": [0, 14, 19, 21, 39, 40], "iii": [0, 14, 21, 40], "imag": [3, 32, 39, 40], "impacket": 20, "impact": 21, "imperson": 19, "implement": [10, 11, 32], "import": [0, 31], "incid": [11, 33], "includ": [31, 33], "inclus": [39, 40], "increas": 11, "individu": [33, 34], "industri": 11, "influxdb": 13, "influxdb2": 13, "info": [14, 19, 20, 31], "inform": [3, 10, 11, 18, 19, 20, 21, 31, 36, 37, 38, 40], "infrastructur": [9, 11, 14, 18, 30, 32, 41], "ingress": 14, "init": 31, "initi": [0, 3, 14, 18, 20, 31, 32, 35, 36], "initrd": 31, "inject": [0, 5, 19, 38, 40], "inlin": 5, "inod": [39, 40], "input": [0, 5, 11, 31, 38, 39, 40], "insecur": 19, "insert": 31, "insid": [11, 18, 32, 37], "inspect": 16, "instal": [1, 8, 13, 14, 15, 16, 23, 31, 33, 37, 39, 40], "instanc": 32, "instruct": 16, "integ": [1, 5], "integar": 0, "integr": [10, 11, 31], "intellig": [10, 11, 18, 30], "intent": 11, "inter": [11, 16], "interact": [1, 20, 36, 40], "interconnect": 11, "interdepend": 11, "interest": [3, 18, 20, 21, 31, 37], "interfac": [10, 11, 19, 31, 32, 35, 40], "intergr": 16, "intern": [10, 11, 16, 18], "internet": [11, 24, 30, 32], "intranet": 11, "intrigu": 18, "introduct": [3, 5, 23, 25, 34], "intrus": 11, "inveigh": 18, "inventori": [11, 30], "invest": 25, "invok": 20, "io": [1, 18], "iot": 16, "ip": [8, 11, 18, 31, 35, 38, 40], "ipa": 14, "ipc": [31, 32], "ipo": 12, "iptabl": 31, "irb": [36, 40], "iscsi": 19, "iscsiadm": 19, "iso": 10, "isol": 31, "issu": [30, 34, 39, 40], "istio": 32, "its": 31, "iv": [14, 40], "java": [19, 36, 38, 40], "jboss": 19, "jenkin": [19, 32], "job": 31, "john": 21, "join": 31, "jserv": 19, "jsp": [36, 40], "jtag": 16, "juggl": [39, 40], "jump": 4, "jupyterhub": 13, "jxplorer": 20, "k3": 14, "kafka": 14, "kaitai": 3, "keep": 0, "keepass2john": [38, 40], "kei": [11, 14, 31, 32, 33, 36, 38, 40], "kerbero": 19, "kernel": [7, 31, 37, 40], "keyboard": [3, 19, 31], "keycloak": [13, 14], "keystor": [38, 40], "kibana": 30, "kill": 31, "kind": 33, "kit": 20, "knockd": [38, 40], "know": 11, "korelog": 21, "krb5": 19, "kubeadm": 14, "kubectl": 14, "kubeedg": 14, "kubernet": [14, 32], "kuma": 32, "kvasir": 22, "kvm": 32, "l": [19, 31, 37, 40], "lab": 16, "lambda": 32, "lan": [11, 18], "landscap": 11, "languag": [2, 10, 31, 39, 40], "lap": 8, "larg": 31, "later": 30, "layer": [16, 33], "layout": 3, "ld_debug": 0, "ld_preload": 0, "ldap": 19, "ldapsearch": 19, "lead": 34, "leadership": 34, "leak": 19, "learn": [5, 6, 7, 11, 17, 28, 37, 41], "leas": 11, "least": 11, "led": 34, "legaci": [37, 40], "legal": [7, 34], "length": 5, "less": 31, "lesson": 11, "let": 31, "level": [10, 11, 21, 31], "lfi": [39, 40], "li": 12, "liabil": 25, "lib": 31, "libc": 0, "libc_start_main": 0, "librari": [0, 31], "licens": 34, "light": 33, "like": [34, 36, 40], "limit": [5, 11, 31, 33], "line": [5, 11, 19, 31], "link": [18, 31], "linkerd": 32, "linter": 30, "linux": [11, 20, 23, 31, 32, 36, 37, 39, 40], "list": [19, 21, 31, 36, 39, 40], "listen": [35, 40], "listgroup": 19, "littl": 1, "lm": 21, "load": 31, "loadbalanc": 14, "loader": 31, "local": [8, 14, 20, 21, 36, 37, 39, 40], "locat": [0, 12, 19, 31, 37, 40], "log": [3, 5, 7, 10, 11, 31, 32, 36, 40], "logic": 11, "login": [5, 7, 19, 31, 38, 40], "logon": 21, "logstash": 30, "long": [39, 40], "look": [34, 37], "lookup": [18, 19], "loop": [11, 31], "loopback": 21, "lotu": 19, "low": 31, "lsass": 21, "lsat": 23, "lsb": 3, "lte": 12, "lua": [36, 39, 40], "lxd": [39, 40], "lyni": 23, "lynx": [36, 40], "m": [5, 19], "machin": [11, 14, 20, 21, 32, 40, 41], "macro": 3, "magic": [28, 39, 40, 41], "mail": [36, 40], "mail_badpass": [38, 40], "mailbox": 21, "mainstream": 11, "maintain": 11, "mainten": 11, "malbolg": 2, "malwar": 11, "man": 31, "manag": [8, 11, 12, 14, 19, 21, 22, 23, 24, 30, 31, 32, 33, 37, 40], "mangement": 11, "mani": 34, "manipul": [1, 10, 19, 31], "manual": 14, "manufactur": [10, 11], "map": [5, 11, 16, 18], "mapper": [19, 21, 35, 40], "marathon": 32, "market": 25, "master": [11, 19, 31, 32], "materi": 33, "mattermost": 13, "mbr": 31, "mbss": 30, "md5": [38, 40], "mda": 10, "me": [27, 41], "measur": [10, 11], "mechan": [5, 30, 34], "media": [11, 31], "medium": 30, "member": 21, "membership": [20, 39, 40], "memcach": 19, "memori": [0, 3, 4, 11, 21], "mesh": 32, "meso": 32, "messag": [10, 19], "metadata": 3, "metal": [14, 32], "metallb": 14, "metasploit": [19, 20, 21, 24, 36, 37, 38, 39, 40], "meter": 10, "meterpret": [36, 40], "method": [3, 5, 11, 19, 20, 31, 36, 40], "methodologi": 19, "metric": 14, "micro": [30, 32], "microphon": 21, "microservic": 32, "microsoft": [19, 20, 21, 33], "microwav": 11, "mimikatz": 20, "minidump": 21, "minim": 33, "minimum": 30, "miscellan": 0, "mistak": 33, "mitig": 11, "mitm": 19, "mkf": 31, "mm": 10, "mmc": 20, "mmc20": 20, "mnt": 32, "mobi": 32, "mobil": 12, "modbu": 11, "mode": [4, 19, 31, 32, 36, 38, 40], "model": [11, 32, 33, 34], "modif": 31, "modifi": [14, 31, 39, 40], "modul": [19, 20, 31, 36, 39, 40], "modulu": 2, "mof": 20, "mongo": 19, "mongodb": 19, "monitor": [10, 15, 31, 32, 33], "more": [32, 37, 40], "mosquitto": 14, "most": 31, "mostli": 34, "mount": [3, 19, 31, 32], "mous": 3, "move": [8, 31], "movement": 30, "msb": 3, "msc": 12, "msf": [20, 36, 40], "msfvenom": [36, 40], "mssql": 19, "multi": [11, 31, 32], "multipl": [0, 31], "multiplex": 31, "mx": 18, "mysql": [5, 19, 36, 37, 40], "n": 2, "name": [18, 19, 20, 30, 32, 36, 40], "namespac": 32, "nation": [10, 11], "nativ": [20, 32], "nbtscan": 18, "nc": [36, 40], "ndmp": 19, "nessu": [11, 23], "nest": 21, "net": [5, 8, 18, 20, 23], "netbio": [11, 18, 19], "netcat": [35, 36, 40], "netceas": 8, "netcomput": 20, "netdiscov": [35, 40], "netdom": 20, "netfilt": 31, "netflow": 11, "netgroupmemb": 20, "netplan": 31, "netsess": 20, "netstat": 11, "netus": 20, "network": [0, 1, 3, 8, 10, 11, 12, 18, 19, 20, 23, 30, 31, 32, 37, 38, 40], "networkd": 31, "new": [8, 19, 20, 21, 30, 31], "nf": [19, 31], "nfsshell": 19, "ng": 18, "nginx": 14, "nice": 31, "nid": 11, "nikto": [36, 40], "nipper": 23, "nltest": 20, "nmap": [11, 18, 19, 31, 35, 36, 37, 40], "nntp": 19, "node": 14, "nomad": 32, "nomenclatur": [10, 30], "non": [0, 19, 31], "none": 19, "normal": 31, "note": 0, "noth": [36, 40], "notic": 34, "npm": 37, "nse": 19, "nsid": 19, "nslookup": 18, "nss": 12, "nt": 21, "ntd": [38, 40], "ntlm": [18, 21], "ntlmv1": 18, "ntr": 12, "nuclear": 11, "null": [31, 32], "number": [18, 31, 33], "numpi": 1, "o": [5, 8, 11, 14, 31, 32], "objdump": 4, "object": [8, 10, 20], "obligatori": 41, "obtain": 21, "off": 31, "offset": 0, "okd": 32, "oldsmar": 11, "onli": [38, 40], "opaqu": 5, "opc": 11, "open": [0, 11, 19, 22, 31, 34], "openchain": 34, "openfaa": 14, "openli": 34, "openocd": 16, "openshift": 32, "openssh": 14, "openssl": 19, "openstack": 14, "openvpn": [36, 40], "oper": [5, 10, 11, 14, 18, 21, 23, 30, 31, 36, 40], "opportun": 11, "opsec": 11, "option": [11, 18, 36], "oracl": [5, 19], "orchestr": [23, 32], "org": [36, 40], "organ": 11, "orient": 0, "origin": 34, "os": 32, "osi": [10, 11], "oss": 34, "ot": 11, "other": [0, 3, 5, 10, 11, 12, 18, 19, 20, 30, 31, 32, 33, 37, 38, 40], "ou": [8, 20], "out": [8, 21, 36, 38, 40], "outlook": 21, "output": [11, 18, 31], "outsid": [18, 36, 40], "outsourc": 11, "over": [16, 19, 39, 40], "overflow": 0, "overwrit": 0, "own": [37, 40], "owner": [11, 19, 31, 37, 40], "p": [2, 20, 31, 38, 40], "paa": 32, "pac": 11, "packag": [7, 16, 31, 34, 37, 40], "packer": 32, "packet": 16, "page": [38, 39, 40], "pair": 32, "pam": 7, "param": 19, "paramet": [0, 5, 10, 31, 36, 40], "part": [19, 38, 40], "particular": 20, "partit": 31, "pass": [3, 19, 20], "passiv": [11, 18], "passivetot": 18, "passthru": [5, 6], "passwd": [31, 37, 40], "password": [7, 8, 11, 19, 20, 21, 31, 33, 36, 37, 38, 40], "past": 31, "patch": 11, "patent": 34, "path": [19, 31], "pathnam": 31, "pattern": [1, 3, 31], "pc": 11, "pcap": [1, 3], "pdc": 20, "pdf": [3, 31], "pdfinfo": 31, "pdfmod": 31, "pdftk": 31, "penetr": 33, "pentest": [16, 17, 41], "pentrat": 30, "peopl": 11, "perform": [11, 18], "perl": [36, 40], "permiss": [7, 23, 31, 34, 37, 40], "persist": 32, "person": 11, "pgw": 12, "phar": [39, 40], "phish": 11, "phone": 12, "photon": 32, "php": [1, 5, 6, 36, 39, 40], "physic": 11, "pi": [10, 15], "pick": 25, "pickl": [39, 40], "pictur": 3, "pid": 32, "pie": 0, "piet": 2, "pillag": 21, "pim": 30, "ping": [18, 19, 31], "pinout": 16, "pip": 37, "pipe": 31, "pipelin": 11, "pjl": 19, "pkg": 31, "placement": 11, "plain": [39, 40], "plan": 10, "plane": 32, "plant": 11, "platform": [11, 32], "plc": [10, 11], "plink": [36, 40], "plt": 0, "plugin": [11, 32], "png": 3, "point": [5, 19, 23], "pointer": 0, "polici": [11, 20], "policyanalyz": 23, "poll": 11, "poodl": 19, "pool": 10, "pop3": 19, "popular": 11, "port": [1, 3, 10, 11, 16, 18, 19, 31, 35, 36, 40], "portal": 18, "posit": 31, "possibl": [36, 40], "possibli": 37, "post": [19, 21, 36, 39, 40], "postgresql": 19, "postscript": 31, "potenti": 11, "power": [10, 11], "powerlin": 11, "powerline2": 11, "powerpoint": 3, "powershel": [3, 20, 21, 31, 37, 38, 40], "powerup": [37, 40], "powerview": 20, "ppoe": 12, "practic": [11, 31], "preg_replac": [39, 40], "prepar": 11, "preprocessor": 11, "prese": 31, "preseed": 31, "previou": 31, "principl": [10, 33], "print": 31, "printer": [19, 31], "prioriti": [11, 31], "privaci": 33, "privat": [36, 38, 40], "privesc": 23, "privileg": [11, 19, 20, 21, 30, 31, 37, 38, 40], "probe": [12, 19], "problem": [37, 40], "proc": [31, 36, 39, 40], "procdump": 21, "procedur": [11, 19], "process": [1, 11, 16, 31, 33, 37, 38, 40], "profession": 23, "profibu": 11, "profil": 12, "program": [0, 1, 2, 4, 11, 31, 33, 37], "programm": 11, "project": [32, 34], "prompt": 31, "properti": [20, 34], "proprietari": 34, "protect": [0, 10, 11, 33, 38, 40], "protocol": [5, 10, 11, 19, 21, 24, 33], "provid": [7, 31, 32], "provis": 32, "proxi": [30, 36, 40], "ps1": 31, "pseudo": 33, "psexec": 20, "pspy": [37, 40], "pst": 21, "pth": 20, "ptt": 20, "public": [2, 11, 14, 33, 38, 40], "publicli": 18, "puppet": [14, 15, 21, 32], "puppetserv": 14, "purpos": 11, "put": [36, 40], "pwn": 1, "pwntool": 1, "pxe": 14, "python": [1, 36, 37, 39, 40], "q": [2, 38, 40], "qpdf": 31, "qrcode": 3, "qualit": 25, "qualiti": [10, 33, 34], "queri": [5, 19, 20, 31], "question": 31, "quick": [1, 36, 40], "quit": 19, "quot": 5, "rabbit": [35, 40], "radare2": 0, "radio": [11, 16], "raid": 3, "ram": 31, "ran": 12, "rancher": 14, "rand": 1, "random": [1, 8, 31, 33], "rang": 18, "rar2john": [38, 40], "raspberri": 15, "rate": 16, "ratio": 2, "raw": 3, "rc": 31, "rce": 19, "rconfig": 23, "rdesktop": 20, "reactor": 11, "read": [1, 10, 16, 19, 31], "reader": [19, 31], "readi": 19, "reason": 34, "recal": 31, "receiv": 1, "recommend": [11, 33], "recon": [3, 18, 35], "reconnaiss": [18, 20, 36, 40], "record": [18, 19, 21, 31], "record_m": 21, "recov": [11, 38, 40], "recoveri": 11, "recurs": 19, "red": 31, "redact": 3, "redhat": [14, 31], "redi": 19, "redirect": [31, 38, 40], "refer": [0, 1, 5, 10, 19, 34, 37, 38, 40], "region": 10, "regist": [0, 4, 12, 20], "registri": [20, 21, 37], "regular": 31, "rel": [31, 37, 40], "relai": 19, "relat": 10, "relationship": [11, 20], "releas": [32, 33], "reliabl": [38, 40], "reload": 31, "remedi": 10, "rememb": 34, "remot": [8, 10, 11, 19, 20, 24, 36, 38, 39, 40], "remov": [11, 14, 15, 20, 31], "renam": 8, "renew": 10, "renic": 31, "replac": 31, "repo": 14, "report": [3, 22, 23, 25, 33], "repositori": [12, 32], "repudi": 31, "request": 5, "requir": [10, 31], "reset": 20, "resolut": 31, "resolv": 15, "resourc": [11, 20, 34], "respect": 34, "respond": [11, 18, 33], "respons": [5, 11, 33], "rest": 5, "restrict": [36, 40], "result": 11, "retir": 11, "return": [0, 1, 31], "return2libc": 0, "reus": [11, 33, 34], "reusabl": 33, "revers": [3, 4, 16, 18, 19, 36, 40], "review": 23, "rexec": 19, "rfc": 24, "rid": 20, "right": 20, "ring": 11, "ripper": 21, "risk": [11, 33], "rldc": 10, "rlogin": 19, "rmi": 19, "rnc": 12, "robtex": 18, "rockstar": 2, "rook": 14, "room": 11, "root": [31, 39, 40], "rootds": 19, "rout": [11, 12, 31], "router": [11, 19, 23, 30], "rpath": 0, "rpc": 19, "rpcdump": 19, "rpcinfo": 19, "rpclient": 20, "rpm": 31, "rsa": [2, 38, 40], "rsh": 19, "rsync": [19, 31, 37, 40], "rto": 10, "rtsp": 19, "rtu": [10, 11], "rubberglu": [38, 40], "rubi": [36, 40], "rule": [11, 14, 21, 25, 31], "run": [16, 38, 40], "runc": 32, "runlevel": 31, "runtim": 32, "rvim": [36, 40], "s1": 14, "s2": [14, 33], "s2a": 14, "s2b": 14, "s3": [14, 33], "safeti": 11, "salesforc": 22, "salt": 32, "sam": 21, "same": 2, "sampl": 19, "sanit": 11, "sap": [19, 24], "sbin": 31, "sc": 20, "sca": 33, "scada": [10, 11], "scan": [3, 11, 16, 18, 20, 31, 35, 40], "scanner": [11, 19], "scapi": 1, "scenario": 18, "schedul": [10, 20, 31, 37], "schema": 19, "scheme": [5, 11], "schneider": 10, "scl": 10, "scp": [31, 36, 40], "scraper": 19, "screen": [5, 31], "screenshot": 18, "script": [5, 18, 31, 37, 40], "seabird": [38, 40], "search": [18, 19, 21, 31], "searchsploit": [36, 40], "seccur": [38, 40], "seclist": [36, 40], "second": 31, "secret": 16, "section": 31, "sector": 11, "secur": [1, 7, 8, 10, 11, 14, 16, 21, 30, 31, 33, 34, 36, 38, 40], "secure_path": [38, 40], "securemot": 19, "securestr": [38, 40], "sed": 31, "see": 31, "seed": 1, "segment": 11, "self": [21, 39, 40], "send": [1, 33], "sensit": 37, "sensor": 11, "seri": 8, "serial": [1, 5], "serpico": 22, "server": [5, 8, 10, 11, 14, 18, 19, 20, 21, 30, 31, 35, 39, 40], "serverinfo": 19, "serverless": [14, 32], "servic": [8, 11, 14, 18, 19, 20, 21, 24, 30, 31, 32, 37], "session": [1, 8, 20, 21, 38, 39, 40], "set": [0, 7, 8, 16, 31, 39, 40], "setgid": 31, "setuid": 31, "setup": 30, "sever": 31, "sh": [0, 36, 40], "shadow": 31, "share": [0, 30, 31, 33, 39, 40], "shareabl": 31, "sheet": 25, "shell": [1, 3, 19, 31, 36, 37, 38, 40], "shellbrowserwindow": 20, "shellcheck": 31, "shellexecut": 20, "shellshock": [38, 40], "sherlock": [37, 40], "shippabl": 32, "shortcut": 31, "show": [20, 31], "showmount": 19, "sicam": 10, "sid": 19, "side": [5, 15, 19], "siemen": 10, "signal": 31, "signatur": [11, 33], "sigtran": 12, "simpl": [31, 39, 40], "singl": [31, 32], "site": 11, "slave": 11, "sldc": 10, "sleep": 31, "slow": 3, "small": 30, "smaller": 34, "smb": [19, 39, 40], "smbex": 20, "smbexec": 20, "smbmap": 20, "smbrelai": 20, "smo": 5, "smtp": 19, "smtp_version": 19, "snapshot": 21, "sneaki": [36, 40], "snif": 16, "sniff": 18, "snmp": [10, 18, 19, 37], "snoop": 19, "snort": 11, "so": 11, "socat": [36, 40], "social": 11, "sock": [36, 40], "soft": 31, "softwar": [10, 16, 32, 33, 34], "solarwind": 23, "solut": [8, 10, 12, 32], "sort": 31, "sound": 3, "sourc": [10, 11, 22, 34], "sp_password": 5, "space": 31, "spawn": [36, 40], "spdx": 34, "special": 31, "specif": [8, 10, 11, 20, 31], "spectrum": 3, "spi": 16, "spider": [36, 40], "spiderfoot": 18, "split": 31, "spn": 20, "springbok": 23, "sql": [5, 19, 20], "srand": 1, "srv": [18, 19], "ss": [38, 40], "ssh": [14, 19, 31, 36, 38, 40], "ssh2": 19, "ssh_config": [38, 40], "sshing": [36, 40], "sshv1": 19, "ssl": [19, 35, 40], "ssldump": 3, "sslv2": 19, "sssd": 14, "sstv": 3, "stack": [0, 5, 32], "stage": [31, 32], "stakehold": 34, "standard": [10, 30, 32, 38, 40], "star": 11, "starboard": 14, "start": [20, 31, 38, 40], "startup": [31, 37], "state": [11, 21, 31], "statement": [4, 25, 31], "static": [8, 31, 33], "station": 10, "statist": 21, "statu": [5, 14], "stdin": 0, "stealthi": [36, 40], "steganographi": 3, "steghid": [3, 38, 40], "stegonagraphi": 3, "stegsolv": 3, "step": 5, "stickybit": 31, "stock": 25, "storag": [3, 21, 31, 32], "store": [19, 32, 33], "stori": [18, 20, 21], "straight": 10, "strateg": 34, "strategi": 34, "stream": [38, 39, 40], "string": [0, 3, 5, 19, 31], "strong": 34, "struct": 3, "structur": [5, 10, 12], "stty": [36, 40], "stuff": [5, 20, 31], "stuxnet": 11, "style": 31, "su": [7, 31, 36, 40], "submiss": 19, "subscrib": 12, "substat": 10, "substitut": [2, 31], "subsystem": 21, "sudo": [14, 31, 37, 40], "sudoer": [31, 38, 40], "suggestor": [37, 40], "suid": [31, 37, 40], "suit": 23, "summar": 16, "summari": [3, 10, 33], "superblock": 31, "supervis": 10, "supervisori": 11, "suppli": [10, 11], "support": [11, 31], "surfac": [5, 16, 18], "suse": 31, "suser_snam": 19, "suspend": 21, "svg": 3, "swarm": 32, "switch": [11, 23], "swp": 31, "symlink": [37, 40], "symmetr": [2, 33, 38, 40], "sync": 32, "syntax": [31, 39, 40], "sysctl": [7, 31], "sysdig": 32, "sysintern": 20, "syslog": 11, "system": [0, 10, 11, 19, 21, 23, 24, 31, 36, 37, 38, 39, 40], "systemctl": 31, "systemd": [15, 31], "systeminfo": [37, 40], "sysv": 0, "tab": 31, "tabl": [0, 11, 19, 28, 31], "tag": [38, 40], "tail": 31, "take": [36, 40], "talk": 34, "tanzu": 32, "tar": [31, 37, 40], "target": [0, 20, 21], "tariff": 10, "task": [20, 37], "tcp": [11, 19, 35, 36, 40], "tcpdump": [11, 37, 40], "team": 11, "tear": 14, "technic": [11, 25], "techniqu": 11, "technologi": [5, 11, 32], "tee": [31, 37, 40], "telemetri": 33, "teleport": 14, "televis": 3, "tell": 33, "telnet": [19, 36, 40], "temp": 31, "templat": 1, "temporari": 7, "tenet": 11, "term": [11, 12], "termin": [10, 31], "terminologi": [21, 31], "terraform": [14, 32], "terrorist": 11, "test": [10, 11, 16, 20, 30, 31, 33], "text": [31, 39, 40], "tftp": [3, 39, 40], "than": [37, 40], "them": 37, "thermal": 10, "thing": [0, 32, 34, 38, 40], "thread": 31, "threadfix": 22, "threat": [11, 30, 33], "three": 11, "thru": 31, "thunderbird": [38, 40], "ticket": 20, "tier": 14, "tiger": 23, "tighter": 34, "time": [0, 5, 11, 33, 37, 40], "timelin": 3, "timestamp": 3, "tip": [0, 3, 31, 38, 40], "tl": [3, 19], "tlp": 33, "tm": 10, "tmux": 31, "todo": [8, 13, 18, 19, 20, 21, 27, 31, 34, 36, 38, 40], "token": [14, 37, 40], "tomcat": 19, "tool": [3, 10, 11, 14, 16, 18, 20, 21, 22, 23, 30, 31, 32, 33, 34, 39, 40], "toolkit": [10, 30], "top": 33, "topologi": [11, 19, 20], "tower": 10, "towrit": 10, "tr": 31, "trace": 32, "tracerout": 31, "track": [5, 19, 31], "tradit": 33, "traffic": [3, 33], "tranmiss": 11, "transfer": [18, 19, 39, 40], "transmiss": [3, 10], "transmit": 5, "transport": [11, 12, 33], "travel": 11, "travi": 32, "treatment": 11, "tree": 31, "trend": 11, "trick": [0, 31, 37, 38, 39, 40], "truecrypt": [38, 40], "trust": 20, "trustworthi": 19, "tsql": 19, "tty": [36, 40], "tube": 1, "tuffin": 23, "tunnel": [3, 36, 40], "turn": 31, "two": 0, "type": [3, 5, 11, 12, 16, 20, 31, 32, 33, 34, 39, 40], "typic": 10, "ua": 11, "uart": 16, "ubuntu": [31, 32], "udp": [11, 19, 35, 36, 40], "uefi": 31, "ulimit": [0, 31], "umask": 7, "un": 19, "unattend": [37, 40], "undefin": 7, "understad": 16, "understand": 31, "unicod": 5, "unicornscan": [35, 40], "unifi": 11, "unikernel": 32, "uniniti": 0, "uninstal": 31, "unintent": 11, "union": [5, 32], "uniq": 31, "unit": 10, "unix": [23, 37, 40], "unlock": 14, "unmount": 31, "unprivileg": [36, 37, 40], "until": 31, "unzip": [38, 40], "up": [7, 8, 11, 16, 31, 39, 40], "updat": [8, 12, 30, 31, 33], "upgrad": [14, 31, 37, 38, 40], "upload": [20, 39, 40], "upstart": 31, "upstream": 11, "urban": 15, "uri": [38, 40], "url": [5, 19], "us": [0, 3, 5, 7, 11, 14, 16, 18, 19, 20, 21, 31, 32, 34, 37, 38, 39, 40], "usag": [5, 6, 20, 31], "usb": 3, "user": [5, 7, 8, 10, 11, 14, 19, 20, 21, 30, 31, 32, 36, 37, 38, 40], "userag": [38, 40], "userhunt": 20, "usernam": [20, 21, 36, 40], "users_sess": 20, "userspac": 31, "ut": 32, "util": [1, 19, 31, 38, 40], "v": [11, 25, 31, 32, 34, 40], "v2": 18, "v3": 10, "vagrant": 32, "valid": [5, 8, 31], "valu": [1, 7, 19, 31, 32, 38, 39, 40], "var": 31, "variabl": [0, 11, 31, 36, 37, 40], "vault": 14, "vehicl": 9, "vendor": [10, 11], "verif": 33, "verifi": [1, 20, 31, 39, 40], "version": [0, 11, 18, 19, 20, 23], "vi": [31, 36, 37, 40], "via": [5, 10, 19, 20, 21, 38, 40], "video": [39, 40], "view": [0, 20, 31], "viewstat": 5, "vii": 5, "viii": 5, "viminfo": 31, "vimrc": 31, "virtual": [11, 14, 21, 31, 32], "virtualbox": 32, "viru": 11, "visitor": 12, "vistor": 11, "visual": 16, "vlr": 12, "vm": 32, "vm1": 14, "vm2": 14, "vm2a": 14, "vm3": 14, "vm4": 14, "vm4a": 14, "vm4b": 14, "vm5": 14, "vm6": 14, "vm7": 14, "vmss2core": 21, "vmware": 19, "vnc": 19, "volatil": 3, "volum": 32, "vpn": [11, 36, 40], "vuln": [16, 19, 33, 36, 40], "vulner": [0, 5, 10, 11, 19, 20, 30, 33, 40, 41], "vulnerabl": 11, "vulnreport": 22, "wai": [11, 31], "wan": 11, "warn": 33, "wast": 11, "water": 11, "wc": 31, "wce": 21, "we": 14, "web": [5, 6, 11, 21, 30, 31, 36, 39, 40], "webcam": 21, "webmin": 19, "webserv": 3, "webservic": [36, 40], "websit": 18, "weev": [36, 40], "wep": 17, "wfuzz": [36, 40], "wget": [31, 37, 38, 40], "wgetrc": [38, 40], "what": [10, 11, 16, 33, 34, 37, 40], "whatweb": [36, 40], "when": 11, "where": [37, 40], "while": 31, "whitelist": [11, 30], "who": [11, 34], "whoi": 18, "why": [10, 11, 32, 34], "wi": [11, 30], "wifi": 15, "wildcard": [37, 40], "win": [20, 36, 40], "window": [8, 11, 19, 20, 21, 23, 30, 31, 36, 37, 38, 39, 40], "windump": 11, "winex": 20, "winrm": 20, "wire": [3, 10, 11, 18], "wireless": [3, 11, 17, 18], "wireshark": [3, 11], "without": [5, 14, 20, 36], "wmi": 20, "wmic": 23, "wmiexec": 20, "word": [3, 31], "wordlist": 1, "wordpot": [38, 40], "wordpress": [36, 40], "work": [11, 16, 20, 31, 34], "worker": 14, "workgroup": 20, "workstat": [11, 20], "world": [33, 37, 40], "wrapper": [39, 40], "writabl": [37, 40], "write": [0, 1, 16, 21, 39, 40], "written": [37, 40], "wsu": 30, "x": [14, 31], "x11": 19, "xdebug": [39, 40], "xdpyinfo": 19, "xfreerdp": 20, "xp_cmdshell": 19, "xspy": 19, "xss": [38, 40], "xterm": [36, 40], "xwatchwin": 19, "xwd": 19, "xwininfo": 19, "xxd": 31, "xz": 31, "yara": 11, "your": [5, 7, 11], "yum": [14, 31], "zeek": 11, "zigbe": 16, "zip": [3, 31, 37, 38, 39, 40], "zone": [18, 19], "zookeep": 32, "zypper": 31}}) \ No newline at end of file