Collaborate Disseminate
I need to perform MITM attack on an app which doesn’t use HttpURLConnection and OkHttp libraries for network connection.
Analysis :
Configured burp on the devices, able to capture request of Chrome browser but not the tes… Continue reading Unable to intercept android app traffic neither in Burp Suite nor in Network Profiler. Can anyone help?
How can I perform DNS rebinding using evil twin at the local level?
I want to perform a DNS-Rebinding-Attack using an evil twin on local level.
The curl command to login into the router
curl “http://192.168.1.1/” –data “… Continue reading How can I perform DNS rebinding using evil twin at the local level?
Here’s an example request we can make to the GitHub API:
curl ‘https://api.github.com/authorizations’ –user “USERNAME”
This will prompt for the account password, to continue:
Enter host password for user ‘USERNAME’:
If… Continue reading Is it insecure to send a password in a `curl` command?
Although many people think of Linux-based operating systems as graphical, really that GUI is just another application running over the bare operating system. Power users, remote administrators, and people running underpowered computers like a Raspberry Pi have a tendency to do more with command line tools. [Igor] did a FOSDEM19 presentation you can see below about how he’s providing web-like services to the command line using web servers and curl as a client.
This is subtly different from just accessing an ordinary web server via curl. The output is meant for display in the terminal. Of course, you could also …read more
command i’ve used ->
curl link… | bash
I’ve downloaded file from github through curl in mac OS but now i can’t locate its location in my system though i can access it.
I don’t want it in my system anyway now.
Context: i maintain a kind of web service server, but with a particular implementation: all data sent by the web service are located in the http header. That means there is only http header in the response (no body part). The… Continue reading A strange problem about size limit in http header [on hold]
I found a website which is not secure and tried to post a form on that site using cURL request in PHP and it worked successfully.
However, that is a simple site with contact form and no special or secure data. Anyone can fil… Continue reading Will it be a crime if I post data into someone’s website using cURL?
I know which Certificate Authority (CA) my server uses for its TLS certs.
My client system also knows who the CA is.
When I use cURL, I can specify –cacert to specify a custom CA file to use, but it seems that this is used IN ADDITION t… Continue reading Can cURL block a rogue CA?
I am trying to connect to a site behind a firewall, that is why I cannot share the URL for verification.
$ curl -vvvv https://example.com:8080/foo/ba/?wsdl –cacert /tmp/cacert-2018-12-05.pem
* Trying a.b.c.d…
* TCP_NODELAY set
* Con… Continue reading Certificate works in Chrome + Firefox but not with curl ("unable to get local issuer certificate") with the recent cacert.pem
I have an issue with new integration that I am working on it.
I should consume a web service provided by external company and this service is over https, so in order to integrate with them, they have shared Three certificates:
Root.cer
… Continue reading ssl handshake failure unable to get local issuer certificate