In the ever-evolving landscape of web security, Cross-Site Scripting (XSS) stands as one of the most pernicious vulnerabilities. XSS allows…

Shell scripting is a versatile tool.

For too long, web race-condition attacks have focused on a tiny handful of scenarios. Testing for them is inherently unreliable, compounded by known challenges relating to time constraints and network

I always love the saying:

Introduction

I always love the saying:

De las personas que me leéis aquí, ¿estáis alguna en Mastodon?

🚀 Supercharge Your Bug Hunting with Brilliant One-Liners and Crush Vulnerabilities! 🚀

In the ever-evolving landscape of the modern Internet age, the importance of cybersecurity cannot be overstated. As our lives become…

Introduction

Often, as cyber warriors, we need to check whether our systems or the systems of others are vulnerable to various known vulnerabilities and…

When trying to hack a website, it can be extremely useful to get the parameters of various pages. These may include php, woff, css, js, png, svg, php, jpg and more. Each of these parameters can…

Often, in order to hack a website, we need to connect and exploit an object. This can be an administrative panel or a subdirectory that is vulnerable to attacks. The key, of course, is to find these…

In previous articles in this series, we created a forensic image of the attacker’s hard drive and RAM and used Autopsy to recover deleted…

The systems SCADA/ICS they use many different communication protocols than standard IT systems. The most widely used and de facto standard…

In the previous article in the SCADA Hacking series, we built a sophisticated, low-interaction SCADA honeypot with the conpot.

More it looks like with fraud than with threat to her better safety at cyberspace, vishing is known as a effort theft of information or…

Autopsy: As you know, files that are “deleted” remain on the storage medium until they are replaced. Deleting these files simply makes the…

In this guide, we will create a SCADA/ICS Honeypot. As you know, a honeypot is a computer system that looks and acts like a vulnerable…

FOCA was launched in 2009 and is now in its third edition. Although a Linux version is included with Kali, it is quite old. Let’s download…