#note – Set cookie by meta tag
<meta http-equiv="Set-Cookie" content="_session_id=0123456789; EXPIRES=Monday, 22-FEB-20 01:00:00 GMT; DOMAIN=localhost; PATH=/;" />
View Article#note – Session fixation
https://www.youtube.com/watch?v=4gVSEU92xI4 https://www.youtube.com/watch?v=Eu70WqFBt2I https://www.owasp.org/index.php/Session_fixation https://www.youtube.com/watch?v=eUbtW0Z0W1g
View Article#note – Account lockout
https://www.youtube.com/watch?v=hweQ5oW6ImA https://www.youtube.com/watch?v=oVH0h14qG1k#t=176.742441
View Article#note – SQL Injection Cheat Sheet
http://pentestmonkey.net/cheat-sheet/sql-injection/postgres-sql-injection-cheat-sheet
View Article#note – python version
http://askubuntu.com/questions/320996/make-default-python-symbolic-link-to-link-to-python3
View ArticleHardware Serials
dmidecode sudo apt-get install dmidecode sudo dmidecode -t sudo dmidecode -t bios sudo dmidecode -t system sudo dmidecode -t baseboard lshw sudo apt-get install -y lshw sudo lshw -class disk
View ArticleRatproxy
ratproxy -v test1 -w test -d blog.btbw.pl -XClfscm ratproxy-report test > test.html
View ArticleCurrent MAC
iwconfig sudo apt-get install macchanger macchanger --help macchanger -s wlan0
View ArticleChange MAC Address
sudo apt-get install macchanger iwconfig wlan0 down machanger -r wlan0 iwconfig wlan0 up
View Articleairodump
sudo apt-get install aircrack-ng sudo airmon-ng sudo airmon-ng start wlan0 airodump-ng mon0 airodump-ng --bssid 00:00:00:00:00:00 --write test-wifi mon0 sudo airmon-ng stop mon0 other sudo iwconfig...
View Articlewireshark ubuntu
https://ask.wireshark.org/questions/16343/install-wireshark-on-ubuntu sudo apt-get install wireshark sudo groupadd wireshark sudo usermod -a -G wireshark YOUR_USER_NAME sudo chgrp wireshark...
View Articlenetdiscover
sudo apt-get install netdiscover sudo netdiscover -i eth0 -r 192.168.0.1/24
View Articlemetasploit & vsftpd 2.3.4
only for educational purposes if you find that your target server use VSFTP 2.3.4, you are are in home, by metasploit you can get access to the server in less then 1 minute msf> use...
View ArticleNight in the hotel – Wireshark
https://www.youtube.com/watch?v=TkCSr30UojM https://www.youtube.com/watch?v=r0l_54thSYU
View ArticleRemove X-Powered-By on wildfly 10
remove X-Powered-By:Undertow/1 header remove filter-refs and response-headers from standalone.xml <subsystem xmlns="urn:jboss:domain:undertow:3.0"> ... <host name="default-host"...
View ArticleFailed to connect to the database: could not connect to server: Connection...
– kali linux – metasploit – Failed to connect to the database: could not connect to server: Connection refused root@kali:~# service postgresql start root@kali:~# service metasploit start root@kali:~#...
View ArticleOne line http server
1. good as capture server to collect all request #!/usr/bin/env bash while true; do echo -e "HTTP/1.1 200 OK\n\n $(date)" | nc -l -p 8099 -q 1 done 2. be careful with this, this is crazy shit, it will...
View ArticleAPI security testing
API Security Testing – How to Hack an API and Get Away with It (Part 1 of 3) API Security Testing – How to Hack an API and Get Away with It (Part 2 of 3) API Security Testing – How to Hack an API and...
View ArticleDNS lookup
#!/usr/bin/env bash url="google.com" if [ -n "$1" ] then url=$1 fi echo "--------------------- DIG ANY ---------------------" dig $url any echo "--------------------- nslookup -type=a...
View Article