Penetration Testing Step by Step: Resource Links

There is a ton of stuff on these pages and sites, to much to catalog at the moment. But when I’m looking for an exploit or payload, these are the kinds of places I dig. How to use msfvenom: https://github.com/rapid7/metasploit-framework/wiki/How-to-use-msfvenom “Complete Howto for msfvenom”: https://securitytraning.com/complete-guide-msfvenom/ Colección de herramientas y técnicas para obtener shells reversas en …

Practice Hacking: the Command Injection ISO

Pentester Academy
This entry is part 11 of 11 in the series [ Hacker Night School ]

I love sites like HackThisSite.org and root-me.org, where you can practice your hacking skills legally and safely. There are also some cool pre-vulnerable-ized web applications/sites that you can download, unzip and use on your hacking lab, like DVWA and Mutillidae. Then there are the dedicated virtual machines like Metasploitable, that give you a whole OS …

Learn Python in 43 Minutes (if you’re a really fast learner)

This entry is part 10 of 11 in the series [ Hacker Night School ]

Learning new programming languages is an endless task, because languages go in and out of vogue, and new one offer some substantial improvements (none of them will find you a spouse yet, unfortunately). After a while I recognized that all languages have more in common than they have differences, so when I need to pick …

Hacker Night School: Bug Bounty: Hack Facebook for Fun and Profit!

Security Padlock
This entry is part 9 of 11 in the series [ Hacker Night School ]

Ashley King writes about an experience with bug bounty: “Whilst working on the Facebook Bug Bounty Program in June 2018 we had identified an issue with the webview component used in the Facebook for Android application. The vulnerability would allow an attacker to execute arbitrary javascript within the Android application by just clicking a single …

TOR Browser Search Engines

This entry is part 8 of 11 in the series [ Hacker Night School ]

Tor search engines Disconnect.me Torch http://xmh57jrzrnw6insl.onion/ Ahmia http://Ahmia.fi AlphaBay http://pwoah7foa6au2pul.onion/ Candle http://gjobqjj7wyczbqie.onion/ Not Evil https://hss3uro2hsxfogfq.onion.to/ The Hidden Wiki http://zqktlwi4fecvo6ri.onion/wiki/index.php/Main_Page Grams http://grams7enufi7jmdl.onion/helix/light Helix http://grams7enufi7jmdl.onion/ StartPage https://startpage.com Duckduckgo.com!

Excellent, well-written hacking lessons: HackingTutorials.org

This entry is part 2 of 11 in the series [ Hacker Night School ]

It might seem funny for School for Hackers to like or endorse another hacking tutorial site, but the truth is that sites like Hacking Tutorials are terrific resources for all of us. This really excellent site features detailed, well-written step-by-step tutorials on up-to-the-minute vulnerabilities and exploits: The Top 10 Wifi Hacking Tools in Kali Linux …

Finding and Using Browser-saved Passwords: Another video from Starry Sky

This entry is part 3 of 11 in the series [ Hacker Night School ]

Yeah, we all do it, right? We let our browser store our passwords for all those sites we visit every day. It’s easy, it’s convenient, and it’s really easy to hack. Starry shows us how to reveal these passwords, swipe them and use them in another browser. Plus: he demos what you can do about …