This post describes a brief summary on this subject together with recent tests I did conduct against Citrix ADC/NetScaler in a Lab environment. This post will not show intensive testing or demonstrating offensive techniques mentioned here, though this could perhaps appear in a future post on my other blog https://offsec.vchur.dk […]
admin
Transferring files with Base64 encoding
Transferring files between a Client and Server could be restricted in some environments and we might not be able to transfer a file by using internet file sharing services as an intermediate. In this case if we can do text copy/paste clipboard between client and server, we are most likely […]
Allow access to web apps based on a specific time schedule with Citrix ADC (NetScaler)
Recently I was involved in a project, where one of the objectives was to restrict access to application resources handled by our Citrix ADC, based on a specific time range. So from Monday to Friday between 8-16 access should be allowed in this case, where access to the web applications […]
Site-2-Site IPSEC VPN Tunnel from Microsoft Azure to On-Premises with Citrix NetScaler
NetScaler provides the ability to extend your enterprise network to the Cloud. The NetScaler CloudBridge Connector enables you to move your applications to the cloud to reduce cost and increase reliability. In addition to using CloudBridge Connector between a datacenter and a cloud, you can use it to connect two […]
Protect your web traffic against Internet threats with Citrix NetScaler Secure Web Gateway
In this blog post I will share some of my experiences implementing NetScaler SWG as a Forward Proxy in order to protect and enhance security for your web traffic. Citrix NetScaler Secure Web Gateway addresses security challenges, by letting organizations control which applications users can access, inspecting ssl encrypted traffic, […]
Tunneling application layer traffic through SSH – a method to bypass network restrictions
The purpose of this blog post is to provide information on how and when to use SSH Tunneling and finally a few notes on how to audit and prevent SSH tunneling. I am often testing solutions in a hybrid lab. Having both some public cloud services and my on-prem lab […]
Container based AppDelivery Controller – NetScaler CPX – Part 1
Purpose of this post is to share my experience with running NetScaler CPX from a Docker Image. Our objective is to implement a NetScaler CPX test/development platform as a Docker container based app. In this post we will look into installing and configuring Docker, NetScaler CPX and DVWA […]
Scan and Analyze TLS/SSL with CipherScan
A simple method to figure out which SSL/TLS Ciphersuites are supported by a target, and how these are prioritized. CipherScan can be used to assist to verify a good SSL/TLS configuration on your server.
|
1 |
./cipherscan.py test.site.com |
|
1 |
./analyze.py -t test.site.com |
Download https://github.com/mozilla/cipherscan Install git clone https://github.com/mozilla/cipherscan.git Pre-reqs Python […]
Running NetScaler VPX in Oracle VirtualBox
Finally found it possible to use NetScaler VPX in VirtualBox. Keep in mind that running NetScaler in VirtualBox is NOT supported, use for Test purpose only. Tested with Oracle VirtualBox 5.1.25 and NetScaler VPX 11.1 + 12.0 build 51.24 How To Deploy NSVPX in VirtualBox Download NS VPX for […]
Load Testing HTTP with Locust
In this blog post I will share some examples of basic load testing against web services. I will describe a few examples which easily can be configured to match additional needs and requirements. Locust is an open source load testing tool, it is fairly simple to setup and run basic […]