Collaborate Disseminate
Before starting quick notes to consider this case.
The method of how this session was generated is not relevant for the question
What access controls are outside the application for it’s protection are not relevant for the question
The sce… Continue reading CSP vulnerability scanning with initiated session in webapp
In my security course, I have to create an attack that will steal the victim’s username and password, even if the victim is diligent about only entering their password when the URL address bar is correct. The solution needs to be an HTML d… Continue reading How to perform XSS attack on site using htmlspecialchars
I was learning about port scanning and I understand, what, why and how.
However, I do not understand why a Bug Bounty hunter or a penetration tester (strictly for web app assessment) would run a port scan on a web domain.
Let’s say through… Continue reading Impact of port scanning on the web domain itself
In the last few days, I received a challenge. This challenge was based on an XSS vulnerability reflected in a website.
When the site makes a certain request via POST, in the body there is a parameter that allows script injections. I alread… Continue reading XSS reflected in a parameter via POST (Body)
The general idea of web penetration:
SQL injection: Now the version greater than 5.0 cannot read and write files (resulting in the inability to obtain permissions), and the utilization point of not dba permissions is very small
xss: xss h… Continue reading penetration-test [closed]
As the title says, in the rules of engagement I have my scope, used method, etc. but I’ve been wondering if I should also include a list of tools (such as NMAP, Dirb/Ffuf, etc.) that might be used.
And if not, how should I be transparent w… Continue reading In the RoE for a pentest, do you include a list of all tools?
This was covered in Linux PrivEsc, task 15, in this TryHackMe room.
I am having trouble understanding how this debugging mode is executing the commands in the PS4 variable, and why I must put /usr/local/bin/suid-env2 instead of another pat… Continue reading Abusing Shell Feature for Privilege Escalation
There is plenty of material online in various forms, including but not limited to books, certifications (such as OSCP), tutorials, CTFs, and platforms such as VulnHub.
The above all seem to mostly focus on internal penetration testing, wit… Continue reading Resources for conducting external penetration tests? [closed]
I need to perform a security audit/assessment on 4G LTE hardware equimements :
4G landline wireless phone (not android OS but with many features such as WiFi hotspot)
4G Wifi home router
Is there any standard/guideline/procedure (or any … Continue reading Is there any guideline or procedure for 4G hardware equipement (4G landline phone and home Wifi router) security audit/assessment?
Hello I have BeeBox running on a VirtualBox Machine, but when I try to connect to the IP of the machine from the browser of my host computer I cannot connect to it.
How can I solve it? So how can I setup bee-box so I can see the bee-box se… Continue reading BeeBox on VirtualBox cannot connect to server