Web Hacking – Page 2 – WindowsTechs.com

Microsoft Azure Web Application Firewall (WAF) Launched

Posted on April 6, 2017 by Darknet

Not too long after Amazon launched their cloud protection WAF the Microsoft Azure Web Application Firewall (WAF) has been made generally available in all public Azure DCs. It’s a good move with the majority of websites and services moving into one of the big 3 cloud providers (AWS, Google or Azure) and the vast majority […]

The post…

Read the full post at darknet.org.uk

Continue reading Microsoft Azure Web Application Firewall (WAF) Launched→

Kadimus – LFI Scanner & Exploitation Tool

Posted on March 24, 2017 by Darknet

Kadimus is an LFI scanner and exploitation tool for Local File Inclusion vulnerability detection and intrusion. Installation [crayon-58d574f29c045430221660/] Then you can run the configure file: [crayon-58d574f29c058368581278/] Then: [crayon-58d574f29c… Continue reading Kadimus – LFI Scanner & Exploitation Tool→

LastPass Leaking Passwords Via Chrome Extension

Posted on March 22, 2017 by Darknet

LastPass Leaking Passwords is not new, last week its Firefox extension was picked apart – now this week it’s Chrome extension is giving up its goodies. I’ve always found LastPass a bit suspect, even though they are super easy to use, and have a nice UI they’ve had TOO many serious security issues for a […]

The post LastPass Leaking…

Read the full post at darknet.org.uk

Continue reading LastPass Leaking Passwords Via Chrome Extension→

OWASP VBScan – vBulletin Vulnerability Scanner

Posted on January 27, 2017 by Darknet

OWASP VBScan short for vBulletin Vulnerability Scanner is an open-source project in Perl programming language to detect VBulletin CMS vulnerabilities and analyse them. Features VBScan currently has the following: Compatible with Windows, Linux & OSX Up to date exploit database Full path disclosure Firewall detect & bypass Version check…

Read the full post at darknet.org.uk

Continue reading OWASP VBScan – vBulletin Vulnerability Scanner→

DAVScan – WebDAV Security Scanner

Posted on January 2, 2017 by Darknet

DAVScan is a quick and lightweight WebDAV security scanner designed to discover hidden files and folders on DAV enabled web servers. The scanner works by taking advantage of overly privileged/misconfigured WebDAV servers or servers vulnerable to variou… Continue reading DAVScan – WebDAV Security Scanner→

Minion – Mozilla Security Testing Framework

Posted on December 5, 2016 by Darknet

Minion is a security testing framework built by Mozilla to bridge the gap between developers and security testers. To do so, it enables developers to scan with a wide variety of security tools, using a simple HTML-based interface. It consists of three … Continue reading Minion – Mozilla Security Testing Framework→

OWASP OWTF – Offensive Web Testing Framework

Posted on September 23, 2016 by Darknet

OWASP Offensive Web Testing Framework is a project focused on penetration testing efficiency and alignment of security tests to security standards like: The OWASP Testing Guide (v3 and v4), the OWASP Top 10, PTES and NIST. The purpose of this tool is to automate the manual and uncreative parts of pen testing. For example, Figuring […]

The…

Read the full post at darknet.org.uk

Continue reading OWASP OWTF – Offensive Web Testing Framework→

PunkSPIDER – A Web Vulnerability Search Engine

Posted on September 13, 2016 by Darknet

PunkSPIDER is a global-reaching web vulnerability search engine aimed at web applications. The goal is to allow the user to determine vulnerabilities in websites across the Internet quickly, easily, and intuitively. Please use PunkSPIDER responsibly. I… Continue reading PunkSPIDER – A Web Vulnerability Search Engine→

UFONet – Open Redirect DDoS Tool

Posted on August 15, 2016 by Darknet

UFONet is an open redirect DDoS tool designed to launch attacks against a target, using insecure redirects in third party web applications, like a botnet. Obviously, only for testing purposes. The tool abuses OSI Layer 7-HTTP to create/manage ‘zombies’ and to conduct different attacks using; GET/POST, multi-threading, proxies, origin spoofing…

Read the full post at darknet.org.uk

Continue reading UFONet – Open Redirect DDoS Tool→

Everything You Need To Know About Web Shells

Posted on July 21, 2016 by Darknet

So let’s talk about Web Shells, something many of us are already familiar with, but to level the field – what is a web shell? A web shell is a script that can be uploaded to a web server to enable remote administration of the machine. Infected web servers can be either Internet-facing or internal […]

The post Everything You Need To Know…

Read the full post at darknet.org.uk

Continue reading Everything You Need To Know About Web Shells→