Collaborate Disseminate
If a web app is giving normal "not found" page for /blablablaalsdf but for certain paths, it doesn’t give the normal 404 page but gives Cannot Get /<path> instead, would this be an indicator that this path (and whatever un… Continue reading Can we identify secondary contexts from web application error messages? [closed]
What is the best way to get more information from the information-gathering stages/ reconnaissance when trying CTFs? Is there any workflow for a new cybersecurity student who knows some programming?
for example consider against virtual mac… Continue reading CTF or Bug Bounty info gathering workflows [closed]
If you’re conducting covert military reconnaissance, you probably don’t want the enemy seeing what’s obviously a drone flying overhead. That’s where the Evolution Eagle is intended to come in, as it’s a drone that just looks like a big ol’ bird.Continu… Continue reading Evolution Eagle drone flips the bird at enemy forces
Fly Catcher is an open-source device that can detect aircraft spoofing by monitoring for malicious ADS-B signals in the 1090MHz frequency. Angelina Tsuboi, the developer of Fly Catcher, is an enthusiastic pilot, cybersecurity researcher, and tinkerer. … Continue reading Fly Catcher: Detect aircraft spoofing by monitoring for malicious signals
Open-Source Intelligence (OSINT) refers to gathering, assessing, and interpreting public information to address specific intelligence queries. All the tools listed here are available for free. Amass The OWASP Amass project performs network mapping of a… Continue reading 8 open-source OSINT tools you should try
i have w wordlist of subdomains contains like this :
admin.bugbountytarget.com
portal.bugbountytarget.com
sales.bugbountytarget.com
vpn1.bugbountytarget.com
dev.test.bugbountytarget.com
…
And I want to grep subdomains names without &quo… Continue reading How i can grep only subdomain names without "target.com" [closed]
My goal is to block all incoming unsolicited connections to a Windows computer.
I’ve read that Windows Firewall is stateful and it can tell the difference between solicited and unsolicited traffic.
https://learn.microsoft.com/en-us/previou… Continue reading How to secure Windows computer from any unsolicited connections? [closed]
While AUVs (autonomous underwater vehicles) are often used for scientific studies, they’re sometimes also utilized in more secretive applications, such as surveillance and reconnaissance. A new system helps hide their location, by having them deploy a … Continue reading Micro-AUV tech designed to keep secret underwater missions under wraps
Is whois, nslookup, recon-ng a form of Active reconnaissance or Passive reconnaissance?
Continue reading whois, nslookup, recon-ng are Active or Passive recon? [closed]
Lets say the target company says only *.target.com is in scope.
If i’m doing hosntnames recon, then its easy to stay in scope as only subdomains of target.com is in scope e.g dev.target.com, admin.target.com.
But i have heard pentesters ta… Continue reading How is IP reconaissance different from host names reconaissance?