intel are running a webserver on your pc at localhost:16992 (using intel me mei amt rpat)

intel are running a webserver on your intel core vpro, i5, i7, i9 “business” pc at localhost:623 and localhost:16992 (using intel me mei amt rpat)

just browse to http://localhost:623 or http://localhost:16992 on your “business” pc now

pc’s based on intel “consumer” chipsets should not be affected and you will see NOTHING but on DELL OptiPlex, LENOVO ThinkPad and HP EliteBook “business” PCs you may see the text “INTEL ACTIVE MANAGEMENT TECHNOLOGY”

if so you may want to keep reading

2011 – all about intel me mei amt and rpat

• http://www.tomshardware.com/reviews/vpro-amt-management-kvm,3003.html
• http://www.tomshardware.com/reviews/vpro-amt-management-kvm,3003-8.html

2016 – the prediction of a vulnerability

• http://hackaday.com/2016/01/22/the-trouble-with-intels-management-engine/

2017 – the announcement of the vulnerability

• https://www.intel.com/content/www/us/en/architecture-and-technology/intel-amt-vulnerability-announcement.html
• https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr

2017 – some more intel me mei amt rpat tools

• https://www.intel.com/content/www/us/en/support/detect.html
• https://www.intel.com/content/www/us/en/support/software/chipset-software/000005974.html
• https://software.intel.com/en-us/articles/getting-started-with-intel-active-management-technology-amt
• https://downloadcenter.intel.com/download/26505/Intel-Setup-and-Configuration-Software-Intel-SCS-?v=t
• https://downloadcenter.intel.com/download/26375/Intel-Manageability-Commander?product=67709

 

RADMIN have a Intel AMT KVM viewer you can try to remote control your PC

• http://support.radmin.com/index.php?/Knowledgebase/Article/View/9/9/How-to-set-up-Intel-AMT-features

penetration testing with @kali #gnu/#linux and @patervamaltego #maltego #datamining #visualiser

penetration testing with opensource @kali #gnu/#linux and opensource @patervamaltego #maltego #datamining #visualiser

• https://www.kali.org/
• https://www.youtube.com/watch?v=RUnhnj-Z-FA
• https://www.paterva.com/web7/downloads.php#tab-3

#ssh stop timeouts

you can stop ssh timeouts by creating the file .ssh/config with the following content

$ cat ~/.ssh/config 
Host *
ServerAliveInterval 60

then

$ chmod 644 .ssh/config

ssh without passwords

local host

• ssh-keygen -t rsa
• cd .ssh
• vi id_rsa.pub (COPY SSH KEY)

remote host

• ssh-keygen -t rsa
• cd .ssh
• touch authorized_keys
• chmod 600 authorized_keys
• vi authorized_keys (PASTE SSH KEY)

see also

• http://www.debian.org/devel/passwordlessssh
• http://www.eng.cam.ac.uk/help/jpmg/ssh/authorized_keys_howto.html
• https://help.ubuntu.com/community/SSH/OpenSSH/Keys