Hacking Articles
@hackinarticles
21.1K subscribers
1.13K photos
165 files
777 links
House of Pentester
Download Telegram
About
Blog
Apps
Platform
Join
Hacking Articles
21.1K subscribers
Hacking Articles
❀1
1.19K views
Hacking Articles
Subdomain Enumeration Tools
πŸ”΄βš«Full HD: https://github.com/Ignitetechnologies/Mindmap/blob/main/Subdomain%20Enumeration/Subdomain%20Enumeration%20Tools%20HD.png
1.11K views
Hacking Articles
Comprehensive Guide on Cross-Site Scripting (XSS)

✴ Twitter: https://lnkd.in/e7yRpDpY
πŸ”₯ Telegram: https://t.me/hackinarticles

In this article, we’ll take a tour to Cross–Site Scripting and would learn how an attacker executes malicious JavaScript codes over at the input parameters and generates such pop-ups, in order to deface the web-application or to hijack the active user’s session.

πŸ“˜ What is JavaScript?
🎯 JavaScript Event Handlers
πŸ’₯ Introduction to Cross-Site Scripting (XSS)
⚠️ Impact of Cross-Site Scripting

🧬 Types of XSS
β€ƒπŸ” Reflected XSS
β€ƒπŸ’Ύ Stored XSS
β€ƒπŸ§© OM-based XSS

🎯 Cross-Site Scripting Exploitation
β€ƒπŸ” Credential Capturing
 πŸͺ Cookie Capture
 πŸ§ͺ Fuzzing
β€ƒβ€ƒπŸ§° Burp Suite
β€ƒβ€ƒπŸ•·οΈ XSSer

πŸ›‘οΈ Mitigation Steps
1.24K views
Hacking Articles
XSS.pdf
2.4 MB
1.25K views
Hacking Articles
https://www.hackingarticles.in/comprehensive-guide-on-cross-site-scripting-xss/
Hacking Articles
Comprehensive Guide on Cross-Site Scripting (XSS)
Ultimate XSS guide covering DOM/reflected/stored attack. Learn exploitation techniques, real-world examples, and advanced prevention methods.
1.16K views
Hacking Articles
API Penetration Testing Training (Online)

πŸ”— Register here: https://forms.gle/bowpX9TGEs41GDG99
πŸ’¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email: info@ignitetechnologies.in

Hurry up, get enrolled yourself with Ignite Technologies’ fully exclusive Training Program "API Penetration Testing Training."

βœ”οΈ Table of Content

πŸ“˜ Course Introduction
πŸ” How API works with Web application
βš–οΈ Types of APIs and their advantages/disadvantages
πŸ”Ž Analysing HTTP request and response headers
πŸ›‘οΈ API Hacking methodologies
πŸ“„ Enumerate web pages and analyse functionalities
πŸ•΅οΈ API passive reconnaissance Strategies
πŸš€ API active reconnaissance (Kite runner)
πŸ”§ Introduction to POSTMAN
πŸ” Testing for Excessive data exposure
πŸ“‚ Directory indexing / brute force
πŸ”‘ Password mutation
🎯 Password spray attacks against web application
πŸ›‘οΈ Introduction to JSON Web Token
πŸ•΅οΈ Hunting for JWT authentication vulnerabilities
πŸ’£ Exploiting JWT unverified signature
πŸ”“ Cracking JWT secret keys
🚫 Bypass JWT removing signature
πŸ’‰ Exploit jku header injection
πŸ”§ Exploit KID in JSON web tokens
πŸ” Attacking 0Auth 2.0
πŸ“Š Introduction to OWASP TOP 10 API
βš”οΈ Hunting and exploiting XXS in API
πŸ•΅οΈ Testing for the ReDOS attack in the API web application
πŸ’₯ Exploiting XML vulnerabilities
πŸ”§ WordPress XML-RPC attack
🌐 Exploiting WSDL/SOAP to RFI
πŸ€– API Automated Vulnerability scanning
πŸ’‰ Testing SQL/NoSQL Injection in an API
πŸ”“ Exploiting object-level access control
πŸ”§ Exploiting Function level access control
πŸ“‘ Testing in-band SSRF vulnerabilities in an API
🌍 Testing out-band SSRF vulnerabilities in an API
βš™οΈ Testing OS Command Injection
β˜• Exploiting Java deserialization vulnerabilities
πŸ—‚οΈ Testing for improper assets management
πŸ“¦ Testing for Mass assignment vulnerabilities
🚧 Bypass filter, space, and blacklisted characters
πŸ” Bypass Captcha and MFA
πŸ“‹ Remediations and Reporting
❀1
1.39K views
Hacking Articles
IPv4 vs IPv6
❀1
1.19K views
Hacking Articles
CLI Tools for Linux Admin
❀2
1.19K views
Hacking Articles
Home Network Security Tips
❀2
1.25K views
Hacking Articles
Azure Cloud Servics
1.25K views
Hacking Articles
Password manger for Linux
1.26K views
Hacking Articles
Bug Bounty Training Program (Online)

πŸ”— Register here: https://forms.gle/bowpX9TGEs41GDG99
πŸ’¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email: info@ignitetechnologies.in

Hurry up, get enrolled yourself with IGNITE TECHNOLOGIES’ fully exclusive Training Program β€œBug Bounty.”

βœ”οΈ Table of Content
πŸš€ Introduction to WAPT & OWASP Top 10
πŸ›  Pentest Lab Setup
πŸ” Information Gathering & Reconnaissance
πŸ’» Netcat for Pentester
βš™οΈ Configuration Management Testing
πŸ” Cryptography
πŸ”‘ Authentication
πŸ•’ Session Management
πŸ“‚ Local File Inclusion
🌐 Remote File Inclusion
πŸ“ Path Traversal
πŸ’£ OS Command Injection
πŸ”€ Open Redirect
πŸ“€ Unrestricted File Upload
🐚 PHP Web Shells
πŸ“ HTML Injection
🌟 Cross-Site Scripting (XSS)
πŸ”„ Client-Side Request Forgery
πŸ›‘ SQL Injection
πŸ“œ XXE Injection
🎁 Bonus Section
❀4
1.49K views
Hacking Articles
Gined Access
1.19K views
Hacking Articles
Credential Dumping
1.16K views
Hacking Articles
Famous Cyber Security Hack
πŸ”΄βš«Full HD: https://github.com/Ignitetechnologies/Mindmap/blob/main/Cyber%20Hack/Famous%20Cyber%20Security%20Hack%20UHD.png
1.14K views
Hacking Articles
Emerging Neurotech Risks Explained Through Restaurant Analogies

✴ Twitter: https://x.com/hackinarticles


Understand neurotechnology’s ethical and security risks with bite-sized restaurant scenarios:

☒ NT01 - Mental Privacy Violation
Waiter eavesdrops on diners’ thoughts β†’ Sells preferences to advertisers
Risk: Unauthorized neural data harvesting for targeted ads.

☒ NT02 - Brain Hacking (BCI Exploits)
Chef remotely alters a dish order β†’ Customer forced to eat spam
Risk: Hackers hijack brain-computer interfaces (BCIs) to manipulate actions.

☒ NT03 - Cognitive Bias Exploitation
Menu prices flash in red β†’ Diners overpay without realizing
Risk: Neurostimulation subtly influences decisions (e.g., purchases, voting).

☒ NT04 - Deep Brain "Chef" Tampering
Kitchen AI overrides chef’s recipes β†’ Diners addicted to salty food
Risk: Implanted devices hacked to alter behaviors or cravings.

☒ NT05 - Neuro-Discrimination
VIPs get premium brain upgrades β†’ Others stuck with slow service
Risk: Socioeconomic divides widen with cognitive enhancement tech.
1.34K views
Hacking Articles
Emerging_Applications_Of_Neurotechnology_And_Their_Implications.pdf
1.8 MB
1.21K views
Hacking Articles
πŸš€ AI Penetration Training (Online) – Register Now! πŸš€

πŸ”— Register here: https://forms.gle/bowpX9TGEs41GDG99
πŸ’¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email: info@ignitetechnologies.in

Limited slots available! Hurry up to secure your spot in this exclusive training program offered by Ignite Technologies.

🧠 LLM Architecture
πŸ” LLM Security Principles
πŸ—„οΈ Data Security in AI Systems
πŸ›‘οΈ Model Security
πŸ—οΈ Infrastructure Security
πŸ“œ OWASP Top 10 for LLMs
βš™οΈ LLM Installation and Deployment
πŸ“‘ Model Context Protocol (MCP)
πŸš€ Publishing Your Model Using Ollama
πŸ” Introduction to Retrieval-Augmented Generation (RAG)
🌐 Making Your AI Application Public
πŸ“Š Types of Enumeration Using AI
🎯 Prompt Injection Attacks
🐞 Exploiting LLM APIs: Real-World Bug Scenarios
πŸ”‘ Password Leakage via AI Models
🎭 Indirect Prompt Injection Techniques
⚠️ Misconfigurations in LLM Deployments
πŸ‘‘ Exploitation of LLM APIs with Excessive Privileges
πŸ“ Content Manipulation in LLM Outputs
πŸ“€ Data Extraction Attacks on LLMs
πŸ”’ Securing AI Systems
🧾 System Prompts and Their Security Implications
πŸ€– Automated Penetration Testing with AI
1.45K views
Hacking Articles
6 Most Common API Security Issues
πŸ‘1
1.21K views
Hacking Articles
iOS Vuln Assesment
1.16K views
Hacking Articles
0Auth 2.0
❀2
1.13K views