Restricting Connections to ncat

Posted on Fri 08 April 2016 in howto • Tagged with ncat

We've already seen the usefulness of ncat, including ncat SSL sessions and running chat servers. Now we address the potential issue of unintended users of our listening ncat sessions.

Why would you want to limit access to an ncat listener?

If you're competing in a Capture the Flag event and …

Continue reading

Using ncat as a Chat Server

Posted on Tue 05 April 2016 in howto • Tagged with ncat

Sometimes a quick and easy channel for communication can come in handy. ncat has a nice option for just such a chat server.

Start the server using the -l and --chat flags:

    ubahmapk@laptop:~ > ncat --chat -l -p 8888

Note that you will not see any of the chat traffic …

Continue reading

Using SSL Connections Over ncat

Posted on Sun 20 March 2016 in howto • Tagged with encryption, ncat

ncat is a full rewrite from the nmap team of the traditional netcat (nc) network "Swiss Army Knife".

ncat is full of really slick new features, but the one I will cover here is the ability to do all the wonderful things nc could do, but over an SSL connection …

Continue reading

Keep Calm and ...

Posted on Wed 16 March 2016 in general • Tagged with securityonion, incidenthandling

Just a reminder to keep calm even when it feels like every system around you is crashing down to the ground.

Keep a level head and calmly review the log data available, only ruling an event out when the evidence backs it up.

If you don’t have the necessary …

Continue reading