Ethical hacking and penetration testing

Table of contents 1. SMB and network folders discovering. Shares and files enumeration 1.1 Samba utilities 1.2 SMB discovering via port scanning 1.3 enum4linux 1.4 nullinux 1.5 SMB Spider 1.6 acccheck 1.7 CredNinja 1.8 SMBMap 1.9 SPARTA 1.10 SMBCrunch 2. Man-in-the-middle attack on SMB. Relays 2.1 Responder 2.2 Inveigh 2.3 Intercepter-NG 2.4 Ettercap. Ettercap Plugins 2.5 MITMf 2.6 Net-Creds 3.Read More

Windows Authentication over the Network Windows implements a wide variety of authentication protocols and various network services. The most common examples of Windows network authentication are: login to a shared network folder sign in computer with Microsoft online account To log on to other computers on a Windows network, authenticationRead More

Is it possible to hack Wi-Fi nowadays? Previously, under articles on the audit of Wi-Fi network security, comments were left in the spirit of “that’s all nonsense, you won’t crack a password for a thousand years”. And this seems to be a correct statement, but if I just need accessRead More

WPScan is a vulnerability scanner for WordPress powered sites. It is a ‘black box’ scanner, that is, it operates without access to website source code. It can be used to discover security issues of remote WordPress sites. The vulnerability search process is as follows: For the specified site, it searchesRead More

Why install Ruby Ruby is a scripting language, that is, pre-compilation is not required to run programs. In this sense, Ruby is an analogue of PHP, Python, PERL and others. Ruby is a fairly popular language and many interesting programs are written on it; in scope of InfoSec, the well-knownRead More

If a password contains Russian, Chinese, Arabic characters or any other non-Latin (non-English) characters, then it can also be cracked in Hashcat, but it also requires an understanding how computers work with strings and encodings, especially when launching a mask attack. We will consider two cases when the password containsRead More

What is Wayback Machine and the Internet Archives In this article we will consider Web Archives of sites or Internet archives: how to recover removed from sites information, how to download non-existent anymore sites and other examples and use cases. The principle of operation of all Internet Archives is similar:Read More

Table of contents 1. How to install Habu on Windows 2. Program to find sites with the same IP in Windows 3. Windows program for searching by username 4. Traceroute in Windows 5. How to scan ports in Windows 6. How to scan a file by all antivirus programs in Windows 7. WHOIS in Windows 8. Quick wayRead More

Python is currently very popular and many tools for information gathering, scanning, penetration testing, and security assessments are written in Python. All these tools work seamlessly on Linux. But in fact, the vast majority of tools can work on Windows as well, most of them require just a simple PythonRead More

In this article, we will talk about the Ultimate Facebook Scraper (UFS) program. It saves photos, videos, messages, lists of friends, colleagues, etc., events and all other information from the Facebook user profile. You can specify a list of a large number of users and UFS will save their informationRead More