Collaborate Disseminate
I was given a standard non-admin user and a workstation to perform internal pentest assessment. To my surprise, I was able to open cmd prompt as administrator, use psexec and gain a SYSTEM shell giving me local admin access. Is it normal t… Continue reading Should a standard user in a AD domain be able to open cmd prompt as Administrator?
I want to use sqlmap to find SQL injection vulnerabilities.
The problem that I am currently facing is that I need to encode the body of the Request to hex, otherwise the request won’t work.
My request is as follows(I will only post the ess… Continue reading Sqlmap – Post Request with encoded json body
As the title suggests, my nessus scan determines there are a few open ports on my network, Yet when I try scanning the open ports in Nmap, most of them come up as filtered (with "REASON" = no-response).
I am able to access a webs… Continue reading Nessus scan shows open ports but Nmap showing filtered [closed]
Is it possible to run Responder as a flag in the proxychains program when I do some penetration testing activities, such as nmap and crackmapexec in the enumeration process?
Responder command example : sudo proxychains responder -i 192.168… Continue reading Run Responder using proxychains on a remote network
I tried to search for the phases of penetration testing, but I found lots of articles, and each article defines this in a different way, some have 5 phases, some 6, and others 7!
What I am looking for is an official or standard definition … Continue reading What are the official phases of penetration testing?
I have the APK of an application and analyzed it using MobSF static analysis. It says the application talks with Firebase Database and provides a URL.
Obviously, the URL is not accessible.
I am new to this so trying to find tools from GitH… Continue reading How to Scan Firebase Database?
If I own a software and I want to conduct a pen test with pen testers, should I define the scope or do the pen testers assess the software first and they define the scope? How does scope definition happen?
Furthermore, does the term "… Continue reading Defining scope of a software pen test
I was looking for the answer of this question what is header and what is header Attack. And I want to know that how powerful is header attack and is the best way to perform header attacks. If anyone here who can guide me regarding to the h… Continue reading What is header ? and what is the different Between header attacks. And other normal attacks?
I’m not sure if this makes sense, I have no programming experience, but I’m just curious whether it’s possible to exploit a system by exploiting a vulnerability in the programming language the system uses, or by turning that system’s progr… Continue reading Can you hack something using assembly code vulnerability?
I am intercepting the android app’s traffic and there is this weird content seen on the HTTP request and response body. The request is actually sending an image file(.jpg) and this weird content is seen below in the request body. The respo… Continue reading Non readable text values in the Burp http requests and responses