Category: Tools
-
ELK 5 on Ubuntu 16.04
In this series of posts I am going to cover everything needed to get Elasticsearch, Logstash and Kibana (ELK) up and running on Ubuntu 16.04. In the videos I use the desktop version of Ubuntu, but the process should be the same on the server version. In addition to the ELK stack I will also…
Written by
-
ELK 5 on Ubuntu: Pt. 3 – Installing and Configuring Beats Agents on Windows Clients
In the previous two posts I went over everything from installing Ubuntu to getting the ELK stack setup and ingesting logs from itself. Now in this final post in the series I am going to cover collecting Windows Event and IIS logs from remote Windows clients. Here is the quick run down of exactly what…
Written by
-
ELK 5 on Ubuntu: Pt. 2 – Installing and Configuring Elasticsearch, Logstash, Kibana & Nginx
In part one of this series, I went over the basics of installing and configuring Ubuntu 16.04. Now in this part, I am going to take that same VM and go over everything needed to create a functional ELK stack on a single server. By the end of this post the ELK stack will be…
Written by
-
ELK 5 on Ubuntu: Pt. 1 – Installing and Configuring Ubuntu 16.04
In this post I am going to cover the steps needed to install and configure Ubuntu 16.04 Desktop as the base operating system for what is going to become the ELK Stack server. My intention with this first post is to help people running the ELK services on top of Windows be a little more…
Written by
-
Dell C2100 BMC Password Reset via IPMITool
I recently acquired another Dell C2100 for my lab only to find out that the password on the BMC had been changed from the default root/root combo and I had no clue what the previous owner set it to. As it turns out, you cannot reset the credentials on the BMC via the BIOS or…
Written by
-
Metasploit Framework basics on Kali Linux – Owning a Windows Server
In this post I want to talk about the basics of using the Metasploit Framework that is included on the latest version of Kali Linux. If you don’t already know the Metasploit Framework is a project that makes writing and utilizing exploits relatively easy and it’s components are very modularized. Metasploit has everything you need…
Written by
-
How I remotely access and manage my servers even when they are powered off!
In this video I talk about how I remotely access the servers in my videos “Out-of-band” aka via a Java console even when they are powered off. I have received quite a few questions about this one and figured it was time to do a video. This is what allows me to access the BIOS…
Written by
-
ELK Stack Pt. 2: Collecting logs from remote servers via Beats
In one of my recent posts, Installing Elasticsearch, Logstash and Kibana (ELK) on Windows Server 2012 R2, I explained how to setup and install an ELK server but it was only collecting logs from itself. That in itself isn’t very useful as the real value is when you begin collecting and indexing all of the…
Written by
-
ELK Stack Pt. 1: Installing Elasticsearch, Logstash and Kibana (ELK) on Windows Server 2012 R2
An updated version of this post can be found here: Installing ELK 7 (Elasticsearch, Logstash and Kibana) – Windows Server 2016 What is an ELK stack and why would you want one in your environment? Elasticsearch, Logstash and Kibana (ELK) is the combination of 3 separate pieces of software from the same vendor, Elastic. The…
Written by
-
Simple BGInfo AD logon script
This is my simple logon script for the popular BGInfo utility that uses a few batch scripts along with Group Policy to run at each user login. What this script does: Checks to see if bginfo.exe exist on the local machine, if not copy it from the network share to c:\bginfo\ Copy bg.jpg and default.bgi…
Written by
