Maveris leadership loves the Olympics and are always looking for an opportunity to provide for collaborative and team building activities, so the Maveris Olympics was born. As a part of the planning team for the internal Maveris Olympics, I offered to create an event. I have always loved CTFs and…
TL;DR: Given just a PCAP of an SMB3 session, the encrypted SMB3 could be decrypted by cracking the NetNTLMv2 hash and computing the Random Session Key
While poking around on the Hacky Holiday’s Space Race CTF, I found a very interesting challenge, “Stolen Research”, revolving around recovering stolen data from…
If you read any of my last two posts, then you are aware I have been spending some time playing around in Google Apps Scripts. So, after the end of Maveristmas, I got to thinking what other fun things could I do with Apps Scripts. I am a fan of…
If you have read the other blog posts related to our company’s virtual week of holiday festivities “Maveristmas” (here, here or here), then you will be fully aware that we used a lot of Google’s Apps Script to help automate and execute the events of the week. During development we…
As part of Merry Maveristmas — A Week of Holiday Festivities, (read more about Maveristmas here) employees gained Magical Maveris Medallions (MMMs) by submitting entries for competitions, voting on submissions from their coworkers, and winning competitions. As employees were awarded MMMs, their total was tracked within a Google Sheet. Some…
I have rewritten this multiple times trying to come up with a catchy intro for this blogpost. At this point, I am going to stop attempting and inform you that this is now one of the many posts out there about creating a Slack App and how a Slack integration…
At Maveris Labs, you’ve typically seen us write about the technical aspects of our cyber security and IT related research. Today, we are going to share something a little more casual. I’d like to discuss how a few coworkers and I used Google Forms, Sheets, and Apps Script to spread…
Bash is the command line interface so many of us use daily during our operations. Yet, how often are you at a loss of remembering what command was run during that thing that you worked so hard to achieve? Or how easily can you retrieve the time and date you…
Today, it is becoming more and more common for Penetration Testers, Security Researchers, Red Teams, and the like to require some sort of tunneling in and out of an organization’s infrastructure. Internal Red Teams, especially, who may need to cordon off their Command and Control Infrastructure will likely employ SSH…
Research from Maveris Team Members. Connect Fearlessly.
