Virtual hosts can be bound to a host name (for example, study.loc), to IP (for example, 127.0.0.3) and to a port (*:81). The second and the third way are good because we do not have to provide DNS resoling of virtual host name (this is usually achieved by changing theRead More
Fluxion 4 Usage Guide
What is Fluxion for? Fluxion is a security auditing and social-engineering research tool. It is a remake of linset by vk496 with (hopefully) less bugs and more functionality. The script attempts to retrieve the WPA/WPA2 key from a target access point by means of a social engineering (phishing) attack. It'sRead More
bettercap 2.x: how to install and use in Kali Linux
Table of contents 1. Difference between bettercap 2 and bettercap 1.6 2. How to install bettercap 2 in Kali Linux 3. Download and install the latest version of bettercap 4. bettercap usage guide 4.1 Local network monitoring 4.2 Interactive and non-interactive mode. The -eval and -caplet options. Caplets 4.3 HowRead More
Fast and simple method to bypass Captive Portal (hotspot with authorization on the web-interface)
What is Captive Portal? With a Captive Portal you may encounter at the airport, hotel, condo, business centers, also now some mobile operators organize Wi-Fi access points using intercepting portals (hotspot with authorization on the web-interface). If you do not quite understand what I mean, then look at the screenshot:Read More
Transition from MySQL 5 to MySQL 8
MySQL 8.0 became the version available for download by default (the previous current version was MySQL 5.7). Therefore, now it is considered that it is ready for use in production. I took several hours to solve the problems that occurred during the update process, I very much hope that thisRead More
In Kali Linux, the default user will be a normal (not root) user
On April 6, 2018, a file called TODO-FOR-NO-ROOT-TRANSITION was added to the repository of the package responsible for the Kali Linux menu. The file is small and contains technical information with reminders addressed to the maintainers of Kali Linux, what they need to pay attention to when they create shortcutsRead More
How to extract all handshakes from a capture file with several handshakes
A single network data capture file (pcap format) can contain more than one handshake. This can happen, for example, with the continued Airodump-ng capturing, as a result it can got several handshakes from one or more access points. Handshakes from files captured in ‘noisy’ conditions need additional verification and cleaning.Read More
BackBox Linux Usage Tips and Tricks
BackBox Linux is another Linux distributive for penetration testing. The OS has its own features, and I have no doubt that it will find its fans. The key features of BackBox are: based on Ubuntu (more friendly) lightweight desktop environment (should work well even on the old hardware) built-in anonymousRead More
Automatic search the database of hacked access points
The whole article is devoted to the 3WiFi database and its usage (‘3WiFi: open database of Wi-Fi Access Points passwords’) there I explain what and how to find in this database. Quite often looking in the window of the program Airodump-ng, I think it would be great to check all visibleRead More
How to make a web-server on Windows accessible to others
After installing the web server, you may need to make it available to others on the local or wide area network. It may be necessary, for example, to test your site on different platforms (see how the site looks on mobile phones) or if you created a service (file sharing,Read More