Forwarded from @Phantasm_Lab
QRLJacking - A New Social Engineering Attack Vector
https://github.com/OWASP/QRLJacking
🕴🏼 @PhantasmLab
QRLJacking or Quick Response Code Login Jacking is a simple social engineering attack vector capable of session hijacking affecting all applications that rely on the “Login with QR code” feature as a secure way to login into accounts. In a nutshell, the victim scans the attacker’s QR code which results in session hijacking.https://github.com/OWASP/QRLJacking
🕴🏼 @PhantasmLab
GitHub
GitHub - OWASP/QRLJacking: QRLJacking or Quick Response Code Login Jacking is a simple-but-nasty attack vector affecting all the…
QRLJacking or Quick Response Code Login Jacking is a simple-but-nasty attack vector affecting all the applications that relays on “Login with QR code” feature as a secure way to login into account...
UsabilityHub - Become a Tester
https://usabilityhub.com/
🕴🏼 @PhantasmLab
UsabilityHub is a remote user research platform that takes the guesswork out of design decisions by validating them with real users.https://usabilityhub.com/
🕴🏼 @PhantasmLab
Lyssna
The remote user research platform for human insights
Lyssna is your go-to user research platform. The best teams use Lyssna so they can deeply understand their audience and move in the right direction – faster. Get started for free.
UpLabs - The Global Network For Creatives
https://www.uplabs.com/
🕴🏼 @PhantasmLab
Uplabs is the leading community of creatives, offering the best digital inspiration and downloads, every day.https://www.uplabs.com/
🕴🏼 @PhantasmLab
UP.Labs
Welcome | UP.Labs
UP.Labs transforms physical industry by building vertical AI startups. Subscribe to our newsletter Level.UP for bespoke analysis on venture studios, portfolio breakthroughs, and the critical shifts in mobility and infrastructure that matter to corporate leaders…
Glify - Visual is in our DNA
https://www.gliffy.com/
🕴🏼 @PhantasmLab
Gliffy online tools power visual communication and collaboration.https://www.gliffy.com/
🕴🏼 @PhantasmLab
https://www.udemy.com/projeto-restful-crud-javascript-nodejs-express-mysql/?couponCode=DEVS-FREE-WEB
Udemy
Online Courses - Learn Anything, On Your Schedule | Udemy
Udemy is an online learning and teaching marketplace with over 213,000 courses and 62 million students. Learn programming, marketing, data science and more.
30º Hangout - Pentest, Bug Bounty e muito 0day
https://www.youtube.com/watch?v=LwGPHcTnWn4
🕴🏻 @Phantasm_Lab
https://www.youtube.com/watch?v=LwGPHcTnWn4
🕴🏻 @Phantasm_Lab
Forwarded from MUNDO INFORMATICA
Cookie-based SQL Injection
https://resources.infosecinstitute.com/cookie-based-sql-injection/#gref
🕴🏼 @Phantasm_Lab
Injecting malicious code in cookie: Unlike other parameters, cookies are not supposed to be handled by users. Outside of session cookies which are (usually) random, cookies may contain data in clear or encoded in hexadecimal, base64, hashes (MD5, SHA1), serialized information. If we can determine the encoding used, we will attempt to inject SQL commands.https://resources.infosecinstitute.com/cookie-based-sql-injection/#gref
🕴🏼 @Phantasm_Lab
Infosec Resources
Cookie-based SQL Injection
Did you say a "Cookie" ? A cookie, also known as an HTTP cookie, web cookie, or browser cookie, is used for an origin website to send state information to
https://www.udemy.com/pentesting-webapplications-from-a-testers-perspective/?couponCode=REALDISCOUNT
Udemy
Best Cybersecurity Online Courses - Updated [August 2023]
Learn to foil hackers and viruses with a cyber security course on Udemy. Real world experts teach many skills that can help keep computers and networks safe.
Honeytrap is an extensible and opensource system for running, monitoring and managing honeypots.
https://github.com/honeytrap/honeytrap
🕴🏼 @Phantasm_Lab
To start using Honeytrap: See our documentation on docs.honeytrap.io.https://github.com/honeytrap/honeytrap
🕴🏼 @Phantasm_Lab
GitHub
GitHub - honeytrap/honeytrap: Advanced Honeypot framework.
Advanced Honeypot framework. Contribute to honeytrap/honeytrap development by creating an account on GitHub.