Collaborate Disseminate
I am a junior pentester currently working for a secure messaging app that includes a webclient. Only the subdomain is in scope and other subdomains are off-limits. Social engineering is also off limits as this is a staging server that mimi… Continue reading Advice on more in depth web app info gathering phase
When I conduct a mobile pentest, I have run into payload encryption in HTTP traffic. In general, the AES key and IV ( initialization vector) are located in APK, and can be used to encrypt the payload using Burp suite extensions such as AES… Continue reading Bypassing AES encryption if the keys are not in local,but in server
I’m new to cybersecurity and learning about pen testing Android security. I need tools for this. I found a website with a list of 75 tools (https://gbhackers.com/android-security-penetration-testing/). But I’m not sure if they’re all meant… Continue reading Android Security Testing and Tools Clarifications
When doing black-box vulnerability assessment (with permission of course) of a subdomain of a website, the first step is enumeration; and the first step of that is finding IP of the subdomain.
If you find this IP, and then upon performing … Continue reading In case of multiple websites using a single IP, and we have been asked to perform vulnerability assessment to ensure its security, how many to target
I’m testing a web application and I found information about sessions that the web application used appears in the source code
for example, they write: we use jsession for a user from the browser and route id and something like that
My ques… Continue reading Information from source code
My apologies if this is not the correct forum for this topic but needed to know, currently, what C2 platforms allow send commands to multiple clients at the same time.
Thanks
If I want to do a pentest for a certain module of a huge project, what is the average time to be estimated ? is there a reference or guide to follow that can help calculate/estimate the time needed ?
Exmaple: A screen with lot of functiona… Continue reading what is the average time estimated for a pentest [closed]
What would be the advantage of binding a common service to a custom port against cybersecurity attacks?
For example I want to make it harder for a hacker to evaluate the attack surface on my server so could I for example bind ssh to port 8… Continue reading Advantages of custom ports against cyberattacks [duplicate]
I was doing some pentesting on a Drupal 10.x application that some colleagues built; I have not reviewed the source code. The dynamic vulnerability scanner I use provoked some exceptions related to a failure to obtain locks on various obje… Continue reading Data integrity protection in Drupal 10.x – how lock conditions might fail
When conducting penetration testing in a PCI-DSS compliance context, we found a known security vulnerability that’s identified by a CVE number.
In this case, the finding in question is CVE-2016-20012, which is marked on the CVE database as… Continue reading How to Approach CVEs Marked as "DISPUTED" and "WON’T FIX" in PCI-DSS Pentest