How to build a TCP proxy (Part 1) : Intro : https://t.co/BuiM18u66w
Fake DNS Server (Part 2) : https://t.co/K6pGHupmTq
Proxy Server (Part 3) : https://t.co/Lcp11C8VLB
Fake Certificate Authority (Part 4) : https://t.co/jG6sb1RHUp
Fake DNS Server (Part 2) : https://t.co/K6pGHupmTq
Proxy Server (Part 3) : https://t.co/Lcp11C8VLB
Fake Certificate Authority (Part 4) : https://t.co/jG6sb1RHUp
Robert Heaton
How to build a TCP proxy #1: Intro | Robert Heaton
It was a weird and smoky afternoon in San Francisco. My downstairs neighbors had apparently never heard of vaporizers, and the Sierra Nevada was on fire. I had planned to spend the rest of the day attacking the user-location features of popular dating apps.…
Best firefox addons for Hacking:
-HackBar
-Cookies Manager+
-User-Agent Switcher
-Tamper Data
-FoxyProxy Standard
-Wappalyzer:
-HttpRequester
-RESTClient:
-Tampermonkey
-XSS Me
-SQL Inject Me
-iMacros
-FirePHP
-HackBar
-Cookies Manager+
-User-Agent Switcher
-Tamper Data
-FoxyProxy Standard
-Wappalyzer:
-HttpRequester
-RESTClient:
-Tampermonkey
-XSS Me
-SQL Inject Me
-iMacros
-FirePHP
Just posted Low-Hanging Apples: Hunting Credentials and Secrets in iOS Apps https://t.co/GNQ6sY4IeA
spaceraccoon.dev
Low-Hanging Apples: Hunting Credentials and Secrets in iOS Apps — spaceraccoon.dev
Motivation Diving straight into reverse-engineering iOS apps can be daunting and time-consuming. While wading into the binary can pay of...
lsassy 1.0.0 is finally out !
🔸 Remotely dump lsass with built-in Windows tools only, procdump is no longer necessary
🔸 Remotely parse lsass dumps to extract credentials
🔸 Link to Bloodhound to detect compromised users with path to Domain Admin
https://t.co/NxIFkc2DUk
🔸 Remotely dump lsass with built-in Windows tools only, procdump is no longer necessary
🔸 Remotely parse lsass dumps to extract credentials
🔸 Link to Bloodhound to detect compromised users with path to Domain Admin
https://t.co/NxIFkc2DUk
GitHub
GitHub - Hackndo/lsassy: Extract credentials from lsass remotely
Extract credentials from lsass remotely. Contribute to Hackndo/lsassy development by creating an account on GitHub.
CVE-2019-10758 post-auth Remote Code Execution in mongo-express < 0.54.0 via endpoints that uses the
however there are lots of no-auth mongo-express ...
shodan: https://t.co/9J4qhXL1Im
poc: https://t.co/mtChbxVDrw
toBSON methodhowever there are lots of no-auth mongo-express ...
shodan: https://t.co/9J4qhXL1Im
poc: https://t.co/mtChbxVDrw
GitHub
GitHub - masahiro331/CVE-2019-10758
Contribute to masahiro331/CVE-2019-10758 development by creating an account on GitHub.
Resources-for-Beginner-Bug-Bounty-Hunters : A list of resources for those interested in getting started in bug bounties https://t.co/OiU5febmIl
GitHub
nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties - nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
Awesome mobile security - one place to find all android and ios security related stuffs like labs, talks, papers, courses, and tools : https://t.co/4pyUYjAeoe
GitHub
vaib25vicky/awesome-mobile-security
An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it. - vaib25vicky/a...
One of the scarier bugs: with Microsoft’s go-ahead & after many hours spent, I’m excited to finally publish this writeup and PoC! https://t.co/suHzsgtfd9
allysonomalley.com
Saying Goodbye to my Favorite 5 Minute P1
In this post, I’m going to reveal the fastest, easiest P1 that I’ve ever reported – multiple times! It’s the sort of oversight that seems so simple to avoid, but surprisingl…
How-to-exit-Vim — A comprehensive guide to exiting Vim.
It’s 11x more glorious than you’re thinking right now.
https://t.co/7CHolSSBGx
It’s 11x more glorious than you’re thinking right now.
https://t.co/7CHolSSBGx
GitHub
hakluke/how-to-exit-vim
Below are some simple methods for exiting vim. Contribute to hakluke/how-to-exit-vim development by creating an account on GitHub.