Ethical hacking and penetration testing

In this article, we will find out where the user password is stored in Windows, how to extract data for cracking the Windows password, how to hack user password and what is Pass the hash attack. Not everyone uses a password on Windows – it is especially rare for usersRead More

PowerShell is a cross-platform automation framework and configuration tool. PowerShell is more than just a scripting program language; PowerShell contains functions for managing local and remote computers. Depending on the installed software (primarily administrative and server software), the number of PowerShell functions (cmdlets) can vary. PowerShell knowledge is necessary forRead More

Table of contents 1. SMB and network folders discovering. Shares and files enumeration 1.1 Samba utilities 1.2 SMB discovering via port scanning 1.3 enum4linux 1.4 nullinux 1.5 SMB Spider 1.6 acccheck 1.7 CredNinja 1.8 SMBMap 1.9 SPARTA 1.10 SMBCrunch 2. Man-in-the-middle attack on SMB. Relays 2.1 Responder 2.2 Inveigh 2.3 Intercepter-NG 2.4 Ettercap. Ettercap Plugins 2.5 MITMf 2.6 Net-Creds 3.Read More

Windows Authentication over the Network Windows implements a wide variety of authentication protocols and various network services. The most common examples of Windows network authentication are: login to a shared network folder sign in computer with Microsoft online account To log on to other computers on a Windows network, authenticationRead More

Is it possible to hack Wi-Fi nowadays? Previously, under articles on the audit of Wi-Fi network security, comments were left in the spirit of “that’s all nonsense, you won’t crack a password for a thousand years”. And this seems to be a correct statement, but if I just need accessRead More

WPScan is a vulnerability scanner for WordPress powered sites. It is a ‘black box’ scanner, that is, it operates without access to website source code. It can be used to discover security issues of remote WordPress sites. The vulnerability search process is as follows: For the specified site, it searchesRead More

Why install Ruby Ruby is a scripting language, that is, pre-compilation is not required to run programs. In this sense, Ruby is an analogue of PHP, Python, PERL and others. Ruby is a fairly popular language and many interesting programs are written on it; in scope of InfoSec, the well-knownRead More

If a password contains Russian, Chinese, Arabic characters or any other non-Latin (non-English) characters, then it can also be cracked in Hashcat, but it also requires an understanding how computers work with strings and encodings, especially when launching a mask attack. We will consider two cases when the password containsRead More

What is Wayback Machine and the Internet Archives In this article we will consider Web Archives of sites or Internet archives: how to recover removed from sites information, how to download non-existent anymore sites and other examples and use cases. The principle of operation of all Internet Archives is similar:Read More

Table of contents 1. How to install Habu on Windows 2. Program to find sites with the same IP in Windows 3. Windows program for searching by username 4. Traceroute in Windows 5. How to scan ports in Windows 6. How to scan a file by all antivirus programs in Windows 7. WHOIS in Windows 8. Quick wayRead More