enumeration – Page 4 – WindowsTechs.com

using Uuid for security

Posted on May 27, 2020 by ELA

I read that uuid does not bring any security advantages

But I can’t find why It doesn’t bring a little bit of extra security in the scenario below ?:

Consider that right now the session id is encrypting the auto-increment id (no uuid is … Continue reading using Uuid for security→

Predict the next base64 code in an enumnation attack on sequntial integers that have been turned to base64 code

Posted on May 15, 2020 by Vish

1tL1K/nYW1Q= corresponds to 41154

sR4 ngjRepM= corresponds to 41155

“hint the above code does have a space”

the above codes are base64 and correspond to some string + orderids

I am doing this in .NET

If someone able to crack the serie… Continue reading Predict the next base64 code in an enumnation attack on sequntial integers that have been turned to base64 code→

Check how many domains are hosted on a linux server (server side)

Posted on April 18, 2020 by drxl_3321

How do I check from server side/using bash shell how many domains are hosted on the server?

The goal is to discover how many domains are hosted on the server that are exposed via http/https. (Can be connected to remotely)

I know I can ca… Continue reading Check how many domains are hosted on a linux server (server side)→

Username enumeration with multiple inputs

Posted on March 30, 2020 by AgentOrange90

Consider the case of username enumeration, where a hacker is able to determine a username based on UI feedback being different from a successful entry vs a failed entry.

For example, a website’s forgot password page asks for a username. … Continue reading Username enumeration with multiple inputs→

How to prevent Directory Enumeration Attacks (DirB or Directory Buster)

Posted on December 15, 2019 by wolfhuntme

I am dabbling in pen testing (OWASP Juice Shop) and I realized many web application attacks start from enumeration where the attacker uses DirB to find vulnerable Web Objects or Directories to attack or access. So what i want… Continue reading How to prevent Directory Enumeration Attacks (DirB or Directory Buster)→

nmap and service detection

Posted on August 5, 2019 by angusrose

I’m currently enumerating a VM the results of which show me two open ports 22 and 3306 with SSH and mysql being the services running on them. However, when I further investigate 3306 with Metasploit or nmap using the various … Continue reading nmap and service detection→

Tools for file system enumeration (LFI/directory traversal exploitation) [on hold]

Posted on July 28, 2019 by Awaaaaarghhh

I’m familiar about a tool called DirBuster which allows to enumerate files and directories on a server. Is there any tool which allows to enumerate servers internal (non-public) files and directories, e.g. through some LFI/pa… Continue reading Tools for file system enumeration (LFI/directory traversal exploitation) [on hold]→

How to enumarate HP iLO version?

Posted on July 4, 2019 by bypass1

I have got a webinterface of HP iLO version 2.xx. Any idea of how to find out the subversion of 2? I want to find out if this iLO is vulnerable to RCE exploit.

Continue reading How to enumarate HP iLO version?→

It is possible to enumerate/discover IIS applications from outside?

Posted on May 24, 2019 by Roberto

I wonder if it is possible that someone, from the Internet, could be able to discover services provided via IIS by knowing only the IP address.

If yes, how? And how can I protect my IIS from this kind of enumeration?

Continue reading It is possible to enumerate/discover IIS applications from outside?→

Using DIRB to find directories behind authentication [on hold]

Posted on May 18, 2019 by Ehack2

I came across DIRB which is used to find directories or files on the server. I have a website which has a login and every page will redirect to login page before you sign in. How do I run dirb on sites with authentication?

… Continue reading Using DIRB to find directories behind authentication [on hold]→