Collaborate Disseminate
Webbies Toolkit is a pair of tools that enable asynchronous web recon & enumeration including SSL detection, banner grabbing and presence of login forms. Webbies Features Respects scope (including redirects) Uses same DNS resolver for enumeration and retrieval by patching aiohttp TCPConnector Cached DNS requests by wrapping aiodns SSLContext…
Read the full post at darknet.org.uk
Continue reading Webbies Toolkit – Web Recon & Enumeration Tools
I’ve tried to enumerate users on my system (where I’m running postfix) using telnet:
telnet myserver.com 25
250-myserver.com
250-PIPELINING
250-SIZE 10240000
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN… Continue reading How to prevent SMTP user enumeration in Postfix?
Guatemala City, By Rigostar (Own work) [CC BY-SA 3.0], via Wikimedia Commons. In search of new interesting high-impact DNS vulnerabilities I decided to take a look at the various top-level domains (TLDs) and analyze their configurations for errors. Upon some initial searching it turns out there is a nice open source service which helps DNS… Read More Continue reading Hacking Guatemala’s DNS – Spying on Active Directory Users By Exploiting a TLD Misconfiguration
How to discover hidden SSIDs ? I know there are tool like WiGLE WiFi (Mobile) which can identify hidden SSID. How those tools are exactly working. How it is discovering hidden SSID WiFi beacons ?
How to discover hidden SSIDs ? I know there are tool like WiGLE WiFi (Mobile) which can identify hidden SSID. How those tools are exactly working. How it is discovering hidden SSID WiFi beacons ?
I’m new to information security. I’m reading ceh v8 sybex. Following on rpc enumeration. I got windows uid. How can this information be helpful for system hacking?
Recently, I found that Digital Ocean suffered from a security vulnerability in their domain import system which allowed for the takeover of 20K domain names. If you haven’t given that post a read I recommend doing so before going through this write up. Originally I had assumed that this issue was specific to Digital Ocean… Read More Continue reading The Orphaned Internet – Taking Over 120K Domains via a DNS Vulnerability in AWS, Google Cloud, Rackspace and Digital Ocean
I did a vulnerability scan on a machine and found a DCE Services Enumeration vulnerability. This is described as:
Distributed Computing Environment (DCE) services running on the remote host can be enumerated by connecting on port 135 and… Continue reading How to enumerate DCE services on open port 135?
The above image is taken from here and was taken by Steve Jurvetson. DigitalOcean is a cloud service provider similar to Amazon Web Services or Google Cloud. They offer cloud DNS hosting as one of their product lines – a nice guide on how to set up your domain to use their DNS can be… Read More Continue reading Floating Domains – Taking Over 20K DigitalOcean Domains via a Lax Domain Import System
SubBrute is a community driven project with the goal of creating the fastest, and most accurate subdomain brute-forcing tool. Some of the magic behind SubBrute is that it uses open resolvers as a kind of proxy to circumvent DNS rate-limiting. This design also provides a layer of anonymity, as SubBrute does not send traffic directly […]
The…
Read the full post at darknet.org.uk