Collaborate Disseminate
I am interested in testing a website’s new feature which is available on a single a web page (addition in original website) and have some editable fields. Other than checking input validation on those fields through MITM (which I am doing … Continue reading Penetration Testing of a Web Page instead of whole site
I have been assigned a task to analyze a small level malware or virus that can attached to a doc or pdf file and when executed provide target IP and system other information. Where can I get an example as I have already looked on Github?
… Continue reading POC of malware/virus attached to PDF or DOC file for spying [closed]
I am looking for some java applications (other than Manage Engine) vulnerable to Blind SQL Injection attacks for Authentication Bypass. I explored exploitdb and others but didn’t find anything interesting.
Can anybody help me with some lin… Continue reading Blind SQL Injection POC in Java
I am given a task to poc Bluekeep exploit. I have found a working exploit here which gave me two options, one is bluescreen which works fine for me but when I want a shell, target (windows server 2008 R2) resets the connection immediatel… Continue reading Server sends reset during TLS connection: Bluekeep POC
I am exploiting bluekeep vulnerability in windows server 2008 R2 using metasploit framework. When I run the exploit windows/rdp/cve_2019_0708_bluekeep_rce, it ends in BSOD on server and then server restarts. I searched on internet and fou… Continue reading Finding NonPagedPool Start and End Address using volatility
I am trying to pass good reputable malicious traffic from an IPS. There are several sources on internet to explore datasets like the oldest I think DARPA set (not available in pcap format and not that efficient for modern day… Continue reading Public Availability of a good Dataset in PCAP (TCPDUMP) format for IDS/IPS testing
I have been looking for some options in order to fuzz windows based GUI application. I have an application binary (exe) which has some GUI forms, first it asks for Login and demand username and password in boxes (usual GUI st… Continue reading Fuzzing of GUI based windows applications
I am interesting in knowing how Drupal, Wordpress and Joomla have managed password encryption (hashing algorithims) across their various releases, from the very first to the latest.
Thanks.
Continue reading How various CMS encrypt password across past releases
I have used AFL recently for fuzzing of OpenSSL and it worked great. Now I am interesting in fuzzing mobile applications like I have got some .apk and .ipa files which I need to fuzz.
I searched on internet and found out abo… Continue reading Fuzzing of Mobile Applications
I am learning Buffer Overflow, so the question might seem silly but here it is.
I started with this very simple buggy program
int main(int argc, char *argv[])
{
char buf[128];
printf(“You entered value %s\n”, argv[1]);
strcpy(buf,ar… Continue reading Unable to understand $EIP changes with Buffer Overflow