Thursday, May 16, 2019

Find Group Policy Passwords

simple windows command to find group policy passwords in xml

findstr /SI cpassword \\DC\sysvol\DOMAIN\Policies\*.xml

e.g. Groups.xml contains cpassword

Friday, May 10, 2019

New PhishingKitTracker Blog

Just a heads up I'm moving all my PhishingKitTracker blog posts ( @PhishKitTracker - ) over to this new blog url

This blog ( @neonprimetime ) will continue to be for #malware and other #infosec topics

Tuesday, May 7, 2019

IzLaden - Phishing Kit Author

#izladen #phishingkit author

---- | ★ ★ ★ IzlAden BenGazi FREE TOOLS ★ ★ ★ | ---- 
|----------| IzlAden BenGazi V3 TEXT RESULT |--------------|
Coded By IzlAden BenGazi ===> 2016 / 2017




FudPages - Phishing Kit Author

#fudpages #phishingkit author

---------------Created BY fudpages(doit)com-------------
---------------Created BY fudpages-------------
----------- FUDPAGES [.] RU --------------




Blackshop Tools - Phishing Kit Author

#BlackshopTools #phishingkit author
#threatactoremail skype blackshop tools ICQ 657940639 sell all Spamming & Hacking tools ---------------Created By 3b2d31dcd6e2e22af611856644d26e21 b9b61c8c84c51c292f4800afef8f56d1 dc95ec1097920f11590d8aa9ecea50e6 2749a88067675d74bbf01b7776332082 0e489a50c0be2b93940f835bb6301736 39ddb4f240c0e837b738f5d7f26ea5b1

CAZANOVA163 - Phishing Kit Author

#CAZANOVA163 #phishingkit author
#threatactoremail a357bcfb2779420c95b5a4a2700ab30a 63f73f4bc9fc243cb919708286c700d8 $headers = "From: CAZANOVA163 <>\r\n"; $headers = "From: CAZANOVA163 <>\r\n"; <meta name="description" content="xPayPal_2017 v1.1 | Coded By CaZaNoVa163"> <meta name="author" content="CaZaNoVa163">

Anonisma - Phishing Kit Author

#threatactoremail #phishing #phishingkit

 // Coded By Anonisma ===> 2016 / 2017  
 include "./includes/lang".$_SESSION['ANONISMA-AYOUB'];
           ---- | ★ ★ ★ ANONISMA FREE TOOLS ★ ★ ★ | ---- 
 $headers = "From: ANONISMA SMART <>\r\n";
 $text_result_anon .= "|----------| ANONISMA MA DZ TN V3 TEXT RESULT |--------------|\n";

Friday, May 3, 2019

Wireshark Fix for Error No Protocol Specified

Working through a pen testing lab, was getting access denied when trying to capture.
Tried running sudo and it doesn't let you cause it's a security risk.
But when we're in a pen test lab, i'm ok with that risk.
But I was still getting this error "no protocol specified"

> sudo wireshark
No protocol specified
(wireshark:3962): Gtk-WARNING **: cannot open display: :0.0

The fix I found

> export XAUTHORITY=/home/mooreted/.Xauthority 
> sudo wireshark

Wednesday, May 1, 2019

Registry Explorer basic usage

Open up a registry hive such as


with Registry Explorer from Eric Zimmerman!

to view registry contents

Date Time Conversions with DCode

If you have a date/time in numerical format such as in the registry

SOFTWARE\Microsoft\Windows NT\CurrentVersion\InstallDate


Use the software DCode with the format: "Unix:Numeric Value" to get the actual date 11/16/2017