Don't say we didn't warn you.
This is post 17 of 17 in the series “[ Hacker Night School ]” Cross Site Request Forgery CSRF is a very specialized form of XSS. It relies on the victim being logged into a site, so the attacker can make a false request – to drain the victim’s bank account, for instance. Where to …
This is post 16 of 17 in the series “[ Hacker Night School ]” Wifi Cracking: Start With the Basics: WEP WEP is so old and weak you’ll hardly ever find it in use, though there are always the few who haven’t paid attention. WEP cracking is a great way to get familiar with the …
Continue reading “[ Hacker Night School ] :: WEP Cracking Basics in Kali”
This is post 5 of 5 in the series “[ Hacking 101 ]” Javascript Javascript runs locally, in your browser. That means you can view it with your browser’s debug console, run it and tinker with it. One issue is locating the scripts your target page uses, which may be listed in META tags or …
This is post 1 of 3 in the series “[ Auditing With the OWASP Top 10 ]” This course is designed for web developers who want to learn how their applications can be attacked, and how to remediate threats, organized around the OWASP Top 10. [ Table of Contents ]
This is post 5 of 5 in the series “[ How to Teach Hacker Highschool ]” This is the fifth unit of my course for teachers, which brings together a lot of material I generated while working as Project Manager for the Hacker Highschool v2 Rewrite Project, 2012-2016. This session helps you get started with …
Continue reading “[ How to Teach Hacker Highschool: Unit 5 ]”
This is post 10 of 17 in the series “[ Hacker Night School ]” Want to make your life easier once you’ve gotten a foothold on your Windows target? Enable Remote Desktop. See this article: https://www.interfacett.com/blogs/how-to-remotely-enable-and-disable-rdp-remote-desktop/ TL;DR: In cmd.exe: Reg add “\\computername\HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server” /v fDenyTSConnections /t REG_DWORD /d /f In Powershell: Invoke-Command –Computername “server1”, “Server2” –ScriptBlock …
This is post 2 of 2 in the series “[ Bug Bounty ]” https://www.youtube.com/user/Zigoo0/videos Bug Bounty Cheat Sheet on Github: https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/xss.md