Analysis of the infrastructure of the attacked site This article focuses on the XRay tool, designed to identify subdomains and collect information about them. There are plenty tools for all kind of passive and active information gathering, including many already reviewed on the miloserdov.org website. Tools for enumerating subdomains areRead More
How to redirect all traffic through the Tor network
This article is about the capabilities and limitations of the Tor network, as well as about several programs that will increase your anonymity by hiding the real IP. This article is recommended for reading even if you use a Linux distribution that can enable anonymous mode with a couple clicks.Read More
How to use Android phone as GPS sensor in Linux
Typically, desktop computers and laptops are sold without a GPS chip. This can be explained by the fact that the stationary device does not need to determine the coordinates. Nevertheless, there are several specialized applications for which GPS is needed, for example: compiling a list of Wi-Fi Access Points withRead More
Introduction to IPv6 Addresses: How to Use and How to Explore the Network (Part 2)
It is recommended to start acquaintance with the first part: https://miloserdov.org/?p=3727 How to open IPv6 in a web browser To use an IPv6 address in a URL, simply place it in square brackets: https://[2604:a880:800:c1::2ae:d001]/ If you need to specify a port, then it is put through a colon outside theRead More
Introduction to IPv6 Addresses: How to Use and How to Explore the Network (Part 1)
Can routers and computers work simultaneously with IP and IPv6? IPv6 is the new version of IP. IPv6 networks, IPv6-enabled hardware and software are already fairly widespread – at least in some countries. Now that IP and IPv6 protocols work together, this leads to the existence of virtually two parallelRead More
How to intercept SSH password. Man-in-the-middle attack on SSH
How to intercept SSH password The SSH protocol allows you to connect to another computer to execute commands on it and transfer files. SSH uses strong encryption, so the transmitted network traffic cannot be decrypted or modified. In SSH, you can use two methods to log in the remote computer:Read More
How to capture a Wi-Fi handshake in tcpdump
When tcpdump is running in monitor mode without specifying filters, all wireless frames, including a four-way handshake, will be captured. Subsequently, this handshake can be found using Wireshark using a filter: eapol See the Wireshark Filters article for more details. In order for tcpdump to filter only handshake frames, useRead More
The fastest subdomains enumeration and monitoring (also works on Windows!)
Subdomains enumeration This article is dedicated to Findomain, which will find subdomains in a few seconds. Subdomain Enumeration is used by penetration testers and website security auditors to extend the attack perimeter. Subdomain is: a separate host on another (different from the main site) server, that is, it has itsRead More
Proxy types, how to use proxy, how to check the quality of proxies
Table of contents 1. What is a proxy, how do they differ, types of proxies 2. Proxy Anonymity 3. Where to download proxy lists 4. How to enable proxy 5. How to check proxy anonymity without third-party services 6. Other proxy detection methods 7. Tor Browser Request Headers Conclusion What is a proxy, how do theyRead More
Nmap usage tips
Nmap is used for network analysis and port scanning. The program has a huge number of options. Entire books are devoted to the study of this program! In this article I share some common Nmap usage examples. I encourage you to share interesting nmap tips in the comments as well!Read More