hamza.ma
Ethical Hacking,cybercriminalité,audit,vulnérabilité,actualité Sécurité,protection Vie Privée,audit,standard Securite - Page 3
http://www.hamza.ma/page/3
Les dernières tendances, tactiques, stratégies, recherches, et évaluation de la Sécurité des Systèmes d'Information. Générer le mot de passe Root des routeurs sagem Fast 3304-V1 / 3304-V2 / 3464 / 3504. Septembre 12, 2010. Le Login et mot …. Lire la Suite ». DEFCON 18 : télécharger les présentations, documents, outils et extras. Août 23, 2010. La 18 eme édition du DEFCON, l’une des plus prestigieuse conférence de sécurité s’est tenu du 31 juillet au 1 er aout 2010 a las Vegas . Lire la Suite ». Tendance ...
pentestn00b.wordpress.com
davehardy20 | pentest-n00b
https://pentestn00b.wordpress.com/author/davehardy20
Safe To Hack Sites. You have obtained some level of admin creds, (local, domain or otherwise) to a windows server/domain, there is no RDP. There is however the WinRM service, PSRemoting to give it its other name, this allows an admin to create a remote PowerShell session to the server and run commands or scripts, very much like the ssh service used on Linux systems. Continue reading →. August 22, 2016. A new tool written by @benpturner and @. PoshC2 is a proxy aware C2 framework written completely in Pow...
xssed.org
Links | XSSed.com
http://www.xssed.org/links
D1ms IT security blog. Our Brazilian friends of Zone-H. RSnakes and ids web application security blog. RSnakes and ids web application security forum. Kuza55s web security related blog. Sids homepage. Author of the XSS Assistant. Script for the Greasemonkey. Firefox extension. It allows submitting of XSS vulnerabilities to our archive. Home of the famous ICT security conference. Also one of the best ICT security forums on the web. Russ McRees website and blog. This site has been created by p3lo. In order...
holisticinfosec.org
toolsmith | HolisticInfoSec
https://www.holisticinfosec.org/df/toolsmith
Russ McRee writes award-winning. Toolsmith, published monthly. As of September 2015, toolsmith is published exclusively at the HolisticInfoSec blog. Thank you for your continued patronage and support. August 2015 - There Is No Privacy - Hook Analyser vs. Hacking Team. July 2015 - Malware Analysis with REMnux Docker Containers. June 2015 - IoT Fruit - Pineapple and Raspberry. May 2015 - Attack and Detection: Hunting in-memory adversaries with Rekall and WinPmem. February 2015 - Sysmon 2.0 and EventViz.
pentestn00b.wordpress.com
Installing Metasploit Framework GIT version | pentest-n00b
https://pentestn00b.wordpress.com/2012/12/31/installing-metasploit-framework-git-version
Safe To Hack Sites. Installing Metasploit Framework GIT version. Recently with the release of Metasploit 4.5 the developers changed they way the framework is updated, previously it used to be done via ‘svn’, but due to various reasons it has been changed to be updated via ‘git’. There is a way still to allow developers, pentesters or guys who just want the latest version. It follows the the ‘old way’ were the framework shipped without the database, but with support to connect to one. Sudo pacman -S git.
pentestn00b.wordpress.com
My Book Shelf | pentest-n00b
https://pentestn00b.wordpress.com/my-book-shelf
Safe To Hack Sites. Here is a section on the books I’m reading or am going to read. Some of these books I am reading on my New Kindle 3. The Art of Intrusion: The Real Stories Behind the Exploits of Hackers, Intruders and Deceivers – Kevin D Mitnic. The Art of Deception: Controlling the Human Element of Security – Kevin D Mitnick. Penetration Tester’s Open Source Toolkit. Google Hacking for Penetration Testers – Johnny Long. Fuzzing: Brute Force Vulnerability Discovery – Michael Sutton. Fun Over IP Blog.
pentestn00b.wordpress.com
Finding Exposed Http(s) Admin Pages | pentest-n00b
https://pentestn00b.wordpress.com/2013/03/02/finding-exposed-https-admin-pages
Safe To Hack Sites. Finding Exposed Http(s) Admin Pages. This post is a kinda fix for a really great series of posts by Chris Gates (@carnalownage), he wrote a blog post about finding exposed web admin pages on a network using Metasploit’s database, Firefox and a plugin called Linky, read it here http:/ carnal0wnage.attackresearch.com/2012/04/from-low-to-pwned-1-exposed-services.html. Oops edit the http and https labels have reappeared! To get it all working;. Usr/bin/ruby require 'rubygems' require 'csv...
azinfosec.wikidot.com
Resources - azinfosec
http://azinfosec.wikidot.com/resources
Breaches and Major Bugs. Pen Testing and Attacks. Network Fundamentals and Protocols. Miscellaneous Topic Agnostic Resources. Hands on Security Challenges. Pen Testing and Attacks. By Edward Skoudis and Tom Liston. By Stuart McClure (Cylance), George Kurtz (Crowdstrike), and Joel Scambray (Cigital). Http:/ www.hackingexposed.com/. Hacking: Art of Exploitation. The Hacker Playbook 2: Practical Guide to Penetration Testing. Silence on the Wire. By Michael Sikorski, Andrew Honig. Web App Hacker’s Handbook.
nileshkumar83.blogspot.com
Nilesh Kumar: November 2014
http://nileshkumar83.blogspot.com/2014_11_01_archive.html
Trying to feel 'Secure' in the world of 'Insecurities' :) Current Online Users:. Thursday, November 27, 2014. How to download flash content when entire page is loaded as flash. This is a tricky situation as you can't see the page source to look for the tags such as embed etc. All you see is the entire page loads as Flash content and plugins like InspectElement will not work. I came across the similar scenario. Here how to do in case of Chrome. Just disable the plugin from the browser:.
SOCIAL ENGAGEMENT