So I'm too busy to write a real post, but I found some interesting stuff about the SamSam ransomware people. The ransomware was actually loaded/executed manually, so this article goes into what they were targetting quite a bit: https://www.infoworld.com/article/3058254/security/patch-jboss-now-to-prevent-samsam-ransomware-attacks.html
Most interesting, a piece of edu library management software is mentioned; I'm going to have to check this out since edus tend to be tons of fun to poke around. Also all the ones in the US are firewalling NFS for obvious reasons which is my go-to for random pwnage (still).
Lastly, if you're having a hard time scanning/getting into cloudflare protected sites, I've mentioned Crimeflare in the past, but I've started using CertDB which is a really really interesting tool! You'll find all sorts of crap, especially staging servers, if you start looking up parts of the company name or domain. I've been taking a slightly illict look at Jimmy John's recently (their founder is really into hunting endangered animals), and it's pulled up all sorts of current and past hosting. I actually need something that I can search for webpages on as well. Scans.io isn't what I'm looking for, zgrab might do the trick, I don't think Shodan keeps the home page; I have to put more work into it. I'm specifically trying to find the original site that sites.jimmyjohns.com/intranet is a proxy to.
Anyway plenty to keep me busy. If JimmyJohn's google's their name, please feel free to go fuck yourselves with an RPG.