Collaborate Disseminate
I’ve encountered a situation during android mobile app pentesting in which I need to dump variables values. Those values are AES key and iv.
But I’m running the app in genymotion.
How would one go about doing this if at all possible?
If it… Continue reading Android app: dump functions parameter values in emulator
I downloaded a Zap addon here : https://drive.google.com/file/d/0BxnT8mQMY9e2aHBJT2hpOWhHV00/edit
Now I wanted to import it in my Owasp Zap but I get the following error :
It says : “cannot load specified addon : not before… Continue reading Cannot Import Zap AddOn in Owasp Zap latest version [closed]
I’m reading a book and it was cited an this blog article : https://zaproxy.blogspot.com/2017/04/exploring-apis-with-zap.html
The problem here is that an old plugin called SOAP Scanner is not available anymore. I was suppose t… Continue reading ZAP SOAP Scanner not available anymore
For Authorization code grant flow, RFC says the authorization server will send back the code to the redirect_uri specified.
I believe it means the browser will recieve a URL like http://webapp/?code=xyz
Now, the code in the browser will se… Continue reading Could the Authorization Server return the code directly to the client instead of using a redirect in OAuth2 Autorization code flow?
When I configure Firefox to use 127.0.0.1:8080 as proxy, with the same settings in burp suite, I can intercept requests in burpsuite.
There is a web app which I need to access BUT I MUST authenticate against a VPN client (ex… Continue reading How to redirect traffic from browser to burpsuite while being connect to a VPN Client
In the picture below (screenshot from a pluralsight course on ISO 27005), we can see that “IT risk technology” is not “Information Risk”. The latter is broader. For information risk, methodologies I know are COBIT, MEHARI, EB… Continue reading Methodologies to conduct technical IT risk assessment [on hold]
I have a mobile app which needs internet. When I use proxies like Fiddler, its traffic goes through it an the app works fine. But when I proxy the phone through burp (I unncheck intercept On and Activate spider to scroll the … Continue reading Can burp replay traffic redirected to it or should I use an original proxy?
I need you help to complete this practice session of mine.
I have xampp and two app : dvwa and a “fake malicious” app called dvwaexploit
When I visit the malicious app, I want to execute a DOM XSS located in dvwa to steal c… Continue reading DVWA DOM XSS exploit using XMLHTTPRequest
I ran burp scanner. It said it found a with firm confidence an OS Injection vulnerability.
Now I’d like to test it.
In site map, I sent the request to repeater. In the repeater, the only thing I did was changing a JSESSIONID… Continue reading Burp repeater not playing request
I have a web app which is has a login portal and secured pages only accessible when login is accepted.
I’m in a whitebox scenario and I want to pentest pages beyond the login portal.
My problem is I don’t know tools or how t… Continue reading How to test post authentication web site (i.e secured resources) in whitebox?