Category: Software
-
Gathering Windows, PowerShell and Sysmon Events with Winlogbeat – ELK 7 – Windows Server 2016 (Part II)
In part I of this series, Installing ELK 7 (Elasticsearch, Logstash and Kibana) on Windows Server 2016, I covered the following: Installing and configuring Elasticsearch, Logstash, and Kibana as Windows services Installing and configuring Winlogbeat to forward logs from the ELK server into ELK Installing and configuring Curator as a scheduled task (optional) Now, in…
Written by
-
Installing ELK 7 (Elasticsearch, Logstash and Kibana) – Windows Server 2016 (Part I)
I am a huge fan of the Elastic stack as it can provide a great deal of visibility into even the largest of environments, which can help enable both engineering and security teams rapidly triage technical issues or incidents at scale. There’s also the fact that unlike Splunk, the Elastic software is free to use…
Written by
-
ESXi 6.5 – Error Loading /xorg.v00 Fatal Error: 33 (inconsistent data)
The Error During a recent thunderstorm one of the ESXi 6.5 hosts in my lab environment that was not on a UPS, rebooted from a power fluctuation and when it rebooted I received the following error: Error loading /xorg.v00 Compressed MD5: d04cc03dd29bbe3fe547e9566f79674c Decompressed MD5: 00000000000000000000000000000000 As the error indicates, the file /xorg.v00 appears to be…
Written by
-
PowerEdge R610 – Updating Firmwares When the LifeCycle Controller Fails
Why You Should Always Update Firmwares! Security patches, new features and bug fixes โ These are all very good reasons to ensure firmwares are up to date before moving your new servers into production. Things like the BIOS, RAID Controller, iDrac and network controllers will all usually have updates available. Some of these patches may…
Written by
-
Installing VMware ESXi on an Internal USB?!
One of the things I get the most questions about with my VMware ESXi posts/videos is about installing ESXi onto USB drives and booting it from there, and that question is usually followed by the concern of someone accidentally or even maliciously removing the drive from the chassis. In the case of the Dell PowerEdge…
Written by
-
Home Lab Setup (2017)
In this post and video I give a quick run down of my Home Lab – everything from the rack itself, to the hardware and the basics of what everything is being used for. I started this project towards the end of 2012 with a single Dell PowerEdge 2950 GII and was hoping to teach…
Written by
-
ELK Stack – Installing and Configuring Curator
In this post I am going to quickly cover what is needed to get Curator up and running on the ELK stack. In the last few posts about the ELK stack I covered everything needed to get it installed, configured and ingesting logs reliably. If you missed those posts, you can find them here: ELK…
Written by
-
Installing and Configuring VMware vCenter 6.5 (VCSA)
In this third and final part of my VMware series, I go over all of the basics of getting the VMware vCenter 6.5 Server Appliance up and running. Everything that I show in the video can be done with the evaluation version of vCenter, which gives you up to 2 months of time to play…
Written by
-
Exploiting Apache Struts – CVE-2017-9805
CVE-2017-9805 is yet another very legitimate vulnerability in the Apache Struts framework. In the video, I demonstrate how easy it is to run a simple public python script against a vulnerable remote server, ultimately resulting in a reverse shell back to the attacker. In this post, I will cover all the steps shown in the…
Written by
-
Installing VMware vSphere ESXi 6.5
In this video I go over all of the basics of getting up and running with my favorite hypervisor, VMware vSphere ESXi 6.5. Here is a quick run down of everything covered: Where to install ESXi, hard drive or USB drive? Creating a bootable USB drive with the VMware ESXi ISO image and Rufus Booting…
Written by
