Pentest Tips and Tricks #2

CONTENTS Tor Nat Traversal DNS brute forcing with fierce Metagoofil metadata gathering tool A best NMAP scan strategy Nmap – Techniques for Avoiding Firewalls Exploit servers to Shellshock Root with Docker Tunneling Over DNS to Bypass Firewall Tor Nat Traversal # install to server $ apt-get install tor torsocks # bind ssh to tor service…Read more Pentest Tips and Tricks #2

Sniffing GSM traffic with HackRF

While my friend and colleague Simone was visiting our ZIMPERIUM – Enterprise Mobile Security TLV office, we got our hands on HackRF and hacked together the unguarded boarders of Radio Frequencies. Simone had the great patience to try and explain me the boring world of complex numbers and friends (more on that here), but my dyslexia…Read more Sniffing GSM traffic with HackRF

Pentest Tips and Tricks

Contents Nmap Full Web Vulnerable Scan Dirb Dir Bruteforce: Nikto web server scanner WordPress Scanner HTTP Fingerprinting SKIP Fish Scanner Nmap Ports Scan NC Scanning Unicornscan Xprobe2 OS fingerprinting Samba Enumeration SNMP Enumeration Windows Useful cmds PuTTY Link tunnel Meterpreter portfwd Enable RDP Access Turn Off Windows Firewall Meterpreter VNC\RDP Add New user in Windows…Read more Pentest Tips and Tricks

Intercept and Decrypt All Snapchats Received Over Your Network Using Snapception

Snapception: Intercept and decrypt all Snapchats received over your network. Installing is easy: pip install snapception Starting it is easy too: snapception --help Usage: snapception [OPTIONS] Options: -v, --verbose        Enable logging -vv, --very-verbose  Include mitmdump in logging -o, --output TEXT    Specify output directory (Default is ~/snaps) --help        …Read more Intercept and Decrypt All Snapchats Received Over Your Network Using Snapception

NoGoToFail: A Network Security Testing Tool For HTTPS And TLS/SSL Bugs

NoGoToFail: A Network Security Testing Tool For HTTPS and TLS/SSL Bugs. An on-path blackbox network traffic security testing tool. Nogotofail is a network security testing tool designed to help developers and security researchers spot and fix weak TLS/SSL connections and sensitive cleartext traffic on devices and applications in a flexible, scalable, powerful way. It includes…Read more NoGoToFail: A Network Security Testing Tool For HTTPS And TLS/SSL Bugs

Smashing The Browser: From Vulnerability Discovery To Exploit Development

Smashing The Browser: From Vulnerability Discovery To Exploit Development. Part 1: Browser Fuzzing Technology This part will first introduce a fuzzer framework (StateFuzzer) developed by myself as well as the fuzzing strategies behind it. Then conclude some effective fuzzing ideas and related vulnerabilities based on results of the fuzzer. Part 2: Advance Browser Exploitation Techniques This…Read more Smashing The Browser: From Vulnerability Discovery To Exploit Development