Exploiting Apache Struts S2-045 (CVE-2017-5638) vulnerability Apache Struts is an open source project maintained by the Apache Software Foundation, an open source MVC framework for creating enterprise Java Web applications, offering two versions of the framework products: Struts 1 and Struts 2. Struts2 is a MVC design based on the Read more
Google using Google Dorking How to use Google like a pro using Google Dorking Google Dorking enables users to stitch their queries together in a long query and get hitherto unknown information from Google. Through this article we take the proficiency of Google as a hacking tool. If you have a PC/laptop, Read more
Kali Linux can now run in a browser Specially for hackers : You can now run Kali Pentesting OS in your web browser This bit of news is going to elate hackers and security researchers. Kali Linux is one of the most loved distros by the security community and it Read more
Hacking website using SQL Injection Before leaning how to exploit website with SQL Injection, let’s first to try learn the core methodologies and the abstraction behind the scenes. What is SQL Injection? SQL Injection is a malicious attack where malicious users can inject SQL commands (commonly referred to as malicious Read more
New Malware Samples Target Android Users The Cybercriminals are setting their eyes on new Android devices, as 750,000 Android malware apps are found in the first quarter of 2017, this means, almost 8,400 new malware cases are found every single day. According to the security firm G Data by the end Read more
Enable SSH on Kali Linux Kali Linux does not come with SSH enabled. SSH is the preferred method of remote management for most Linux based systems. Secure Shell (SSH) is a cryptographic network protocol for secure data communication, remote command-line login, remote command execution, and other secure network services between two networked computers. It connects, via a secure channel over an Read more
NETATTACK The netattack.py is a python script that allows you to scan your local area for WiFi Networks and perform deauthentification attacks. The effectiveness and power of this script highly depends on your wireless card. USAGE SCANNING FOR WIFI NETWORKS python netattack.py -scan -mon This example will perform a WiFi Read more
ssh scan Key Benefits Minimal Dependancies – Uses native Ruby and BinData to do its work, no heavy dependancies. Not Just a Script – Implementation is portable for use in another project or for automation of tasks. Simple – Just point ssh_scan at an SSH service and get a JSON Read more
Zero Day Vulnerability In Microsoft Security Researchers Detected Zero Day Vulnerability in Microsoft Security Companies McAfee and FireEye detects Microsoft Zero-day Bug in Office 2016 which is running on Windows 10. A scenario of this Zero day vulnerability attack is Malicious document file E-mailing to victim contains an embedded OLE2link Read more
Find And Kill A Remote Connecting Malware On Windows The simple and easy steps on how to find, kill and delete a remote connecting malware using command prompt on Windows 10. These steps use PID of an unwanted remote connection and based on that, we take the further actions to delete Read more