🔰 #RCE via #LFI Log Poisoning - The Death Potion @hacklido
https://shahjerry33.medium.com/rce-via-lfi-log-poisoning-the-death-potion-c0831cebc16d
https://shahjerry33.medium.com/rce-via-lfi-log-poisoning-the-death-potion-c0831cebc16d
Medium
RCE via LFI Log Poisoning - The Death Potion
Hello everyone, I would like to share one of my recent findings on a Vulnerability Disclosure Program. It is related to how I escalated to…
🔰 #Reverse_Engineering Tips — Setup #Kernel #Debugging on #Windows 10 @hacklido
https://medium.com/malware-buddy/reverse-engineering-tips-kernel-debugging-on-windows-10-784e43be7353
https://medium.com/malware-buddy/reverse-engineering-tips-kernel-debugging-on-windows-10-784e43be7353
Medium
[Reverse Engineering Tips] — Setting up Kernel Debugging on Windows 10
The Windows kernel allows the operating system to interact with the hardware and system resources of the computer. It runs the code in a…
🔰 A Small Contribution From CyberXplore Presenting SubBuster An Subdomain #Enumeration #Tool Resolving Into Ip Address & Status Codes With Various Export Options . @hacklido
Visit - https://subbuster.cyberxplore.com
More Features Coming Soon
- Directory Brute-forcing
- SubDomain Takeover Scanning
- Automated Sensitive Information Disclosure Lookup(With Our AI Based Model & Some Regex)
- Much More Don't Forget To Share !
Visit - https://subbuster.cyberxplore.com
More Features Coming Soon
- Directory Brute-forcing
- SubDomain Takeover Scanning
- Automated Sensitive Information Disclosure Lookup(With Our AI Based Model & Some Regex)
- Much More Don't Forget To Share !
🔰 Bypassing Web Application #Firewall Part 1 #websecurity @hacklido
https://medium.com/@iratoon/bypassing-web-application-firewall-part-1-3cfd7a1b1159
https://medium.com/@iratoon/bypassing-web-application-firewall-part-1-3cfd7a1b1159
Medium
Bypassing Web Application Firewall Part — 1
As many of you may know, a Web Application Firewall is a firewall that sits in front of our web applications, and filters, analyzes and…
🔰What is #ZSH, and why should you use it instead of #bash @hacklido
https://www.howtogeek.com/362409/what-is-zsh-and-why-should-you-use-it-instead-of-bash/
https://www.howtogeek.com/362409/what-is-zsh-and-why-should-you-use-it-instead-of-bash/
How-To Geek
What is ZSH, and Why Should You Use It Instead of Bash?
Well, it has more colors.
🔰 Decrypting File encrypted by Monaca Plugin @hacklido
http://blog.rz.my/2020/12/decrypting-monaca-encrypt-plugin.html
http://blog.rz.my/2020/12/decrypting-monaca-encrypt-plugin.html
blog.rz.my
Decrypting File encrypted by Monaca Plugin
🔰 Firefox: How a website could steal all your #cookies @hacklido
https://medium.com/@kanytu/firefox-and-how-a-website-could-steal-all-of-your-cookies-581fe4648e8d
https://medium.com/@kanytu/firefox-and-how-a-website-could-steal-all-of-your-cookies-581fe4648e8d
Medium
Firefox: How a website could steal all your cookies
This is a write up for CVE-2020–15647, explaining how webpages are capable of stealing files from your Android device, including but not…
🔰 Wanna learn how to hack #Bluetooth devices? @hacklido
Try BLE HackMe, a free tool for Windows 10 that simulates various BLE devices without the need for any dedicated hardware and offers various hands-on hacking challenges for practice.
http://smartlockpicking.com/ble_hackme/
Try BLE HackMe, a free tool for Windows 10 that simulates various BLE devices without the need for any dedicated hardware and offers various hands-on hacking challenges for practice.
http://smartlockpicking.com/ble_hackme/
Smartlockpicking
Bluetooth Low Energy HackMe: the best way to learn BLE security basics while having fun!
Bluetooth Low Energy HackMe is is a free, open source tool: hands-on practical introduction to BLE security - without the need of any special hardware. Application simulates various BLE devices using your laptop's built-in Bluetooth adapter. You can actively…
🔰 #Apple Patches Tens of Code Execution Vulnerabilities in #mac OS @hacklido
http://feedproxy.google.com/~r/Securityweek/~3/Vyfzpsbhj6o/apple-patches-tens-code-execution-vulnerabilities-macos
Updates released this week by Apple for its macOS operating systems patch a total of 59 vulnerabilities, including roughly 30 that could lead to the execution of arbitrary code.
read more (https://www.securityweek.com/apple-patches-tens-code-execution-vulnerabilities-macos)
http://feedproxy.google.com/~r/Securityweek/~3/Vyfzpsbhj6o/apple-patches-tens-code-execution-vulnerabilities-macos
Updates released this week by Apple for its macOS operating systems patch a total of 59 vulnerabilities, including roughly 30 that could lead to the execution of arbitrary code.
read more (https://www.securityweek.com/apple-patches-tens-code-execution-vulnerabilities-macos)
🔰 #Nmap for Pentester: Host Discovery @hacklido
https://www.hackingarticles.in/nmap-for-pentester-host-discovery/
Nmap has become one of the most popular tools in network scanning by leaving other scanners behind. Many times the hosts in some organisations are secured using #firewalls or intrusion prevention systems which result in the failure of #scanning due to the present set of rules which are used to block network traffic. In Nmap,... Continue reading →
The post Nmap for Pentester: Host Discovery (https://www.hackingarticles.in/nmap-for-pentester-host-discovery/) appeared first on Hacking Articles (https://www.hackingarticles.in/).
https://www.hackingarticles.in/nmap-for-pentester-host-discovery/
Nmap has become one of the most popular tools in network scanning by leaving other scanners behind. Many times the hosts in some organisations are secured using #firewalls or intrusion prevention systems which result in the failure of #scanning due to the present set of rules which are used to block network traffic. In Nmap,... Continue reading →
The post Nmap for Pentester: Host Discovery (https://www.hackingarticles.in/nmap-for-pentester-host-discovery/) appeared first on Hacking Articles (https://www.hackingarticles.in/).
Hacking Articles
Nmap for Pentester: Host Discovery
Learn how to use Nmap for host discovery, a crucial step in penetration testing and network scanning techniques.
🔰 #RAM - Generated #Wi-Fi Signals Allow Data Exfiltration From Air-Gapped Systems
@hacklido
http://feedproxy.google.com/~r/Securityweek/~3/s4lK4X-XQnU/ram-generated-wi-fi-signals-allow-data-exfiltration-air-gapped-systems
Covert Wi-Fi signals generated by DDR SDRAM #hardware can be leveraged to exfiltrate data from air-gapped computers, a researcher claims.
read more
(https://www.securityweek.com/ram-generated-wi-fi-signals-allow-data-exfiltration-air-gapped-systems)
@hacklido
http://feedproxy.google.com/~r/Securityweek/~3/s4lK4X-XQnU/ram-generated-wi-fi-signals-allow-data-exfiltration-air-gapped-systems
Covert Wi-Fi signals generated by DDR SDRAM #hardware can be leveraged to exfiltrate data from air-gapped computers, a researcher claims.
read more
(https://www.securityweek.com/ram-generated-wi-fi-signals-allow-data-exfiltration-air-gapped-systems)
🔰 Restler #Fuzzer : #API Fuzzing #Tool For Automatically Testing #Cloud Services @hacklido
https://kalilinuxtutorials.com/restler-fuzzer/
RESTler is the first stateful #REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security and reliability bugs in these services. For a given cloud service with an OpenAPI/Swagger specification, RESTler analyzes its entire specification, and then generates and executes tests that exercise the service through its REST API. […]
The post Restler Fuzzer : API Fuzzing Tool For Automatically Testing Cloud Services (https://kalilinuxtutorials.com/restler-fuzzer/) appeared first on Kali Linux Tutorials (https://kalilinuxtutorials.com/).
https://kalilinuxtutorials.com/restler-fuzzer/
RESTler is the first stateful #REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security and reliability bugs in these services. For a given cloud service with an OpenAPI/Swagger specification, RESTler analyzes its entire specification, and then generates and executes tests that exercise the service through its REST API. […]
The post Restler Fuzzer : API Fuzzing Tool For Automatically Testing Cloud Services (https://kalilinuxtutorials.com/restler-fuzzer/) appeared first on Kali Linux Tutorials (https://kalilinuxtutorials.com/).
Kali Linux Tutorials
Restler Fuzzer : API Fuzzing Tool For Automatically Testing Cloud Services
RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security and reliability
🔰 This overlooked feature in Visual Studio Code can speed release time @hacklido
http://techgenix.com/visual-studio-code-release-time/
Visual Studio Code is a big help when writing ARM templates. This Quick Tip spotlights a feature that can find problems before they cause headaches.
The post This overlooked feature in Visual Studio Code can speed release time (http://techgenix.com/visual-studio-code-release-time/) appeared first on TechGenix (http://techgenix.com/).
http://techgenix.com/visual-studio-code-release-time/
Visual Studio Code is a big help when writing ARM templates. This Quick Tip spotlights a feature that can find problems before they cause headaches.
The post This overlooked feature in Visual Studio Code can speed release time (http://techgenix.com/visual-studio-code-release-time/) appeared first on TechGenix (http://techgenix.com/).
🔰 New model #parsing #DNS data @hacklido
https://github.com/odedshimon/BruteShark/releases/tag/v1.1.3
https://github.com/odedshimon/BruteShark/releases/tag/v1.1.3
GitHub
Release New Module: Parsing DNS Data · odedshimon/BruteShark
New Module Release: DNS Module.
The module Enables to parse DNS queries.
DNS data also shown in the Network Map user window.
Thanks to @BrendanGrant for implementing this module!
The module Enables to parse DNS queries.
DNS data also shown in the Network Map user window.
Thanks to @BrendanGrant for implementing this module!
🔰 googleprojectzero/Jackalope
#Binary, coverage-guided #fuzzer for #Windows and #mac OS
Language: C++
Stars: 183 Issues: 0 Forks: 17 @hacklido
https://github.com/googleprojectzero/Jackalope
#Binary, coverage-guided #fuzzer for #Windows and #mac OS
Language: C++
Stars: 183 Issues: 0 Forks: 17 @hacklido
https://github.com/googleprojectzero/Jackalope
GitHub
GitHub - googleprojectzero/Jackalope: Binary, coverage-guided fuzzer for Windows, macOS, Linux and Android
Binary, coverage-guided fuzzer for Windows, macOS, Linux and Android - googleprojectzero/Jackalope