Collaborate Disseminate
When we run app.package.attacksurface in drozer, it shows exported activities, content providers etc. I understand it means that they could be vulnerable, but why do they call it "exported"?
Continue reading What does "exported" means in drozer framework?
I am learning buffer overflow and I’m stuck. For the basic examples with very few variables we could spam the stack and kinda overwrite the return address etc.
I am having difficulties examining the stack of a program. You can refer to the… Continue reading How to find addresses and view stack in buffer overflow?
I want to ask why public WIFI is always open and cannot use encryption? For example, customers in coffee shop can use WIFI without password (i.e. no encryption). Why WIFI router cannot configure with WPA2 encryption with simple WPA2 passwo… Continue reading why public WIFI cannot use encryption?
My devices/router have been hacked. I bought a new router and a new phone and both were hacked immediately after purchasing them, ive talked to every cyber security expert in LA and they all say the same thing factory reset items and chang… Continue reading My Devices are hacked – buying a new router and factory reset didnt remove hacker please help [closed]
I went through old threads on this forum and tried –resolve-all but it doesn’t seem to work.
If I use nmap -sn <hostname> It throws an error Failed to resolve <hostname>
If I use nmap -sn –resolve-all <hostname> It stil… Continue reading How to resolve hostnames with nmap to perform scans?
softether vpn + tor
govpn + greentunel + tor
OpenVPN+stunnel+tor
What do you think, which of these vpn bundles is better for data encryption, or you can add something from yourself that you need to add to one or another bundle for bet… Continue reading Which VPN/Tor bundle is better?
I was wondering if it’s reasonable and forensically correct to use Clonezilla for the image of an attacked machine.
Since some of the commercial products are very expensive I’m turning to open source solutions.
Provided that:
is an offlin… Continue reading Clonezilla for forensic disk image
VPN is Proton and a IPhone . A family member and use to be friend continuously hack our accounts . We have tried replacing all electronics multiple times to stop the invasion . Any help would be appreciated .
I’m already into web pentesting. I’m willing to learn android pentesting now.
From what I understand, the server side part like API etc is similar to web pentesting and I need to learn about client side bugs.
Am I correct?
Continue reading Is android pentesting partially similar to web pentesting?
Since application is not responding with allow credentials header, an attacker can’t craft cross domain request with cookies, but I was wondering if allow origin * alone (Without credentials being true) can be exploited?
I know allow origi… Continue reading Is there an issue if application responds with access control allow origin * but there is no allow credentials header?