Category: Web Applications

Security audit of the SKYWORTH GN542VF router – how to hack the admin panel password without leaving the web browser!

Alex April 5, 2022 default passwords, hacking, HTML, JavaScript, passwords, routers, web browsers Web Applications No Comments »

How to detect and identify the type of Web Application Firewall (WAF)

Alex July 21, 2021 identYwaf, infogathering, server scanning and server protection, Tor, WAF, WAF bypass, WAFW00F, webapps, WhatWaf Web Applications No Comments »

Attacks targeting proxy servers

Alex July 19, 2021 Bettercap, hacking, HTTP Basic authentication, HTTP Digest authentication, Man-In-The-Middle attacks, passwords, Wireshark, Wireshark Filters Web Applications No Comments »

Monitoring the emergence of new subdomains in real time

Alex July 5, 2021 Certificate Transparency, infogathering, perimeter, subdomain, Sublert, web-sites, webapps Web Applications No Comments »

How to run PHP script without a web server

Alex March 29, 2021 Linux, Linux command line, PHP, Web Server, Windows, Windows Command Line Web Applications, Work Environment No Comments »

Basics of working with a web server for a pentester

Alex March 8, 2021 Apache, cloning websites, DNS spoofing, Fake DNS, IP, Kali Linux, phishing, Virtual Hosts, Web Server, web-sites Web Applications, Work Environment No Comments »

Best Kali Linux tools in WSL (Windows Subsystem for Linux) (Part 2)

Alex October 31, 2020 delete metadata, dictionaries, fping, Kali Linux, maskprocessor, Masscan, mat, mat2, metadata, network scanning, ping, portscanning, Win-Kex, Windows, Windows Subsystem for Linux (WSL) Anonymity, data encryption and anti-forensics, Web Applications No Comments »

How to hack HTTP Basic and Digest Authentication

Alex October 30, 2020 brute-force, htdigest, htpasswd, HTTP Basic authentication, HTTP Digest authentication, offline brute-force, online brute-force, passwords, Patator, Router Scan by Stas’M, routers, Wireshark Filters Password Attacks, Web Applications No Comments »

How to use User Agent to attack websites

Alex October 30, 2020 Burp Suite, cURL, hacking, HTML, HTTP, HTTP headers, JavaScript, PHP, SQL injection, sqlmap, User Agent, vulnerabilities, web-sites, webapps, XSS Web Applications No Comments »

Best Kali Linux tools in WSL (Windows Subsystem for Linux) (Part 1)