Hacking Articles
@hackinarticles
21.1K subscribers
1.13K photos
165 files
777 links
House of Pentester
Download Telegram
About
Blog
Apps
Platform
Join
Hacking Articles
21.1K subscribers
Hacking Articles
XSS.pdf
2.4 MB
1.25K views
Hacking Articles
https://www.hackingarticles.in/comprehensive-guide-on-cross-site-scripting-xss/
Hacking Articles
Comprehensive Guide on Cross-Site Scripting (XSS)
Ultimate XSS guide covering DOM/reflected/stored attack. Learn exploitation techniques, real-world examples, and advanced prevention methods.
1.16K views
Hacking Articles
API Penetration Testing Training (Online)

πŸ”— Register here: https://forms.gle/bowpX9TGEs41GDG99
πŸ’¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email: info@ignitetechnologies.in

Hurry up, get enrolled yourself with Ignite Technologies’ fully exclusive Training Program "API Penetration Testing Training."

βœ”οΈ Table of Content

πŸ“˜ Course Introduction
πŸ” How API works with Web application
βš–οΈ Types of APIs and their advantages/disadvantages
πŸ”Ž Analysing HTTP request and response headers
πŸ›‘οΈ API Hacking methodologies
πŸ“„ Enumerate web pages and analyse functionalities
πŸ•΅οΈ API passive reconnaissance Strategies
πŸš€ API active reconnaissance (Kite runner)
πŸ”§ Introduction to POSTMAN
πŸ” Testing for Excessive data exposure
πŸ“‚ Directory indexing / brute force
πŸ”‘ Password mutation
🎯 Password spray attacks against web application
πŸ›‘οΈ Introduction to JSON Web Token
πŸ•΅οΈ Hunting for JWT authentication vulnerabilities
πŸ’£ Exploiting JWT unverified signature
πŸ”“ Cracking JWT secret keys
🚫 Bypass JWT removing signature
πŸ’‰ Exploit jku header injection
πŸ”§ Exploit KID in JSON web tokens
πŸ” Attacking 0Auth 2.0
πŸ“Š Introduction to OWASP TOP 10 API
βš”οΈ Hunting and exploiting XXS in API
πŸ•΅οΈ Testing for the ReDOS attack in the API web application
πŸ’₯ Exploiting XML vulnerabilities
πŸ”§ WordPress XML-RPC attack
🌐 Exploiting WSDL/SOAP to RFI
πŸ€– API Automated Vulnerability scanning
πŸ’‰ Testing SQL/NoSQL Injection in an API
πŸ”“ Exploiting object-level access control
πŸ”§ Exploiting Function level access control
πŸ“‘ Testing in-band SSRF vulnerabilities in an API
🌍 Testing out-band SSRF vulnerabilities in an API
βš™οΈ Testing OS Command Injection
β˜• Exploiting Java deserialization vulnerabilities
πŸ—‚οΈ Testing for improper assets management
πŸ“¦ Testing for Mass assignment vulnerabilities
🚧 Bypass filter, space, and blacklisted characters
πŸ” Bypass Captcha and MFA
πŸ“‹ Remediations and Reporting
❀1
1.39K views
Hacking Articles
IPv4 vs IPv6
❀1
1.19K views
Hacking Articles
CLI Tools for Linux Admin
❀2
1.19K views
Hacking Articles
Home Network Security Tips
❀2
1.25K views
Hacking Articles
Azure Cloud Servics
1.25K views
Hacking Articles
Password manger for Linux
1.26K views
Hacking Articles
Bug Bounty Training Program (Online)

πŸ”— Register here: https://forms.gle/bowpX9TGEs41GDG99
πŸ’¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email: info@ignitetechnologies.in

Hurry up, get enrolled yourself with IGNITE TECHNOLOGIES’ fully exclusive Training Program β€œBug Bounty.”

βœ”οΈ Table of Content
πŸš€ Introduction to WAPT & OWASP Top 10
πŸ›  Pentest Lab Setup
πŸ” Information Gathering & Reconnaissance
πŸ’» Netcat for Pentester
βš™οΈ Configuration Management Testing
πŸ” Cryptography
πŸ”‘ Authentication
πŸ•’ Session Management
πŸ“‚ Local File Inclusion
🌐 Remote File Inclusion
πŸ“ Path Traversal
πŸ’£ OS Command Injection
πŸ”€ Open Redirect
πŸ“€ Unrestricted File Upload
🐚 PHP Web Shells
πŸ“ HTML Injection
🌟 Cross-Site Scripting (XSS)
πŸ”„ Client-Side Request Forgery
πŸ›‘ SQL Injection
πŸ“œ XXE Injection
🎁 Bonus Section
❀4
1.49K views
Hacking Articles
Gined Access
1.19K views
Hacking Articles
Credential Dumping
1.16K views
Hacking Articles
Famous Cyber Security Hack
πŸ”΄βš«Full HD: https://github.com/Ignitetechnologies/Mindmap/blob/main/Cyber%20Hack/Famous%20Cyber%20Security%20Hack%20UHD.png
1.14K views
Hacking Articles
Emerging Neurotech Risks Explained Through Restaurant Analogies

✴ Twitter: https://x.com/hackinarticles


Understand neurotechnology’s ethical and security risks with bite-sized restaurant scenarios:

☒ NT01 - Mental Privacy Violation
Waiter eavesdrops on diners’ thoughts β†’ Sells preferences to advertisers
Risk: Unauthorized neural data harvesting for targeted ads.

☒ NT02 - Brain Hacking (BCI Exploits)
Chef remotely alters a dish order β†’ Customer forced to eat spam
Risk: Hackers hijack brain-computer interfaces (BCIs) to manipulate actions.

☒ NT03 - Cognitive Bias Exploitation
Menu prices flash in red β†’ Diners overpay without realizing
Risk: Neurostimulation subtly influences decisions (e.g., purchases, voting).

☒ NT04 - Deep Brain "Chef" Tampering
Kitchen AI overrides chef’s recipes β†’ Diners addicted to salty food
Risk: Implanted devices hacked to alter behaviors or cravings.

☒ NT05 - Neuro-Discrimination
VIPs get premium brain upgrades β†’ Others stuck with slow service
Risk: Socioeconomic divides widen with cognitive enhancement tech.
1.34K views
Hacking Articles
Emerging_Applications_Of_Neurotechnology_And_Their_Implications.pdf
1.8 MB
1.21K views
Hacking Articles
πŸš€ AI Penetration Training (Online) – Register Now! πŸš€

πŸ”— Register here: https://forms.gle/bowpX9TGEs41GDG99
πŸ’¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email: info@ignitetechnologies.in

Limited slots available! Hurry up to secure your spot in this exclusive training program offered by Ignite Technologies.

🧠 LLM Architecture
πŸ” LLM Security Principles
πŸ—„οΈ Data Security in AI Systems
πŸ›‘οΈ Model Security
πŸ—οΈ Infrastructure Security
πŸ“œ OWASP Top 10 for LLMs
βš™οΈ LLM Installation and Deployment
πŸ“‘ Model Context Protocol (MCP)
πŸš€ Publishing Your Model Using Ollama
πŸ” Introduction to Retrieval-Augmented Generation (RAG)
🌐 Making Your AI Application Public
πŸ“Š Types of Enumeration Using AI
🎯 Prompt Injection Attacks
🐞 Exploiting LLM APIs: Real-World Bug Scenarios
πŸ”‘ Password Leakage via AI Models
🎭 Indirect Prompt Injection Techniques
⚠️ Misconfigurations in LLM Deployments
πŸ‘‘ Exploitation of LLM APIs with Excessive Privileges
πŸ“ Content Manipulation in LLM Outputs
πŸ“€ Data Extraction Attacks on LLMs
πŸ”’ Securing AI Systems
🧾 System Prompts and Their Security Implications
πŸ€– Automated Penetration Testing with AI
1.45K views
Hacking Articles
6 Most Common API Security Issues
πŸ‘1
1.21K views
Hacking Articles
iOS Vuln Assesment
1.16K views
Hacking Articles
0Auth 2.0
❀2
1.13K views
Hacking Articles
Medusa Mindmap

πŸ”΄βš«Full HD: https://github.com/Ignitetechnologies/Mindmap/blob/main/medusa/medusa%20UHD.png
❀1
1.04K views
Hacking Articles
SAIL Framework: Secure AI Risks Explained Through Restaurant Scenarios
✴ Twitter: https://x.com/hackinarticles

Understand AI security risks with bite-sized restaurant analogies from the SAIL Framework (Secure AI Lifecycle):

☒ SAIL 1.1 - Inadequate AI Policy
Chef ignores food safety rules β†’ Kitchen fails health inspection
Risk: No AI governance = unchecked vulnerabilities.

☒ SAIL 3.1 - Data Poisoning
Rival sabotages ingredients β†’ Diners get sick
Risk: Corrupt training data skews AI decisions.

☒ SAIL 4.1 - Untested Model
New dish served without taste-test β†’ Allergic reactions
Risk: Unvalidated AI models cause harmful outputs.

☒ SAIL 5.3 - Direct Prompt Injection
Customer writes "Add poison" on order β†’ Chef obeys
Risk: Malicious prompts hijack AI behavior.

☒ SAIL 6.5 - Indirect Prompt Injection
Hidden note in delivery box β†’ Kitchen follows rogue recipe
Risk: External data manipulates AI covertly.

☒ SAIL 7.2 - Missing Real-time Alerts
Food spoils silently β†’ No one notices
Risk: Undetected model drift or attacks.
❀2
1.15K views
Hacking Articles
A Practical Guide for Building and Deploying Secure AI.pdf
33.8 MB
1.03K views