After gaining initial access to the systems, many attackers face the problem of having low privileges over the system. … [Read More...]
Featured Articles
Drive-by Download Attack
Have you ever been browsing the internet and then all of sudden a file downloads into your system? And all that without … [Read More...]
GitLab ExifTool Unauthenticated RCE
In 2021, a critical vulnerability was found in the GitLab server. An issue has been discovered in GitLab CE/EE affecting … [Read More...]
Editorial Picks
How Hackers Create Pharming Malware
This video shows you step by step how hackers create pharming malware on Linux and will show you what you need to know … [Read More...]
Hacking with Shodan
Shodan is an amazing pentesting and hacking tool you just need to know how to properly use it. We've got you covered … [Read More...]
Remote Code Execution
We create our own sample server application and explain how to use Remote Code Execution RCE. Remote Code Execution is … [Read More...]
Latest Blog Updates
Loading...Post Exploitation Credential Stealing
After gaining initial access to the systems, many attackers face the problem of having low privileges over the system. This is because the user or service they compromised has lower access to the system. Due to this, they are unable to run programs or access resources that require higher privileges. In these situations, a way around this is to perform privilege escalation to achieve their goal. There are many ways to do so. Post Exploitation Credential Stealing is one of those by using legit-looking credential prompts. Spoofing Credential Prompt Spoofing credential prompts is an effective privilege … [Read More...]
How Hackers Create Pharming Malware
This video shows you step by step how hackers create pharming malware on Linux and will show you what you need to know to defend yourself against it. … [Read More...]
Drive-by Download Attack
Have you ever been browsing the internet and then all of sudden a file downloads into your system? And all that without any interaction or clicking on any button. This situation arises mostly when navigating to an attacker-owned or infected website. This is pretty harmful if the file is some malicious executable. That file may be a macro, a bat file, or any similar file. But aside from being a nightmare, it is heaven for hackers to drop a malware file on the target system. This kind of attack is called Drive-by Download Attack. Drive-By Download Attack This attack refers to the unintentional download of … [Read More...]
Hacking with Shodan
Shodan is an amazing pentesting and hacking tool you just need to know how to properly use it. We've got you covered with Maria showing us how to quickly learn how to use Shodan like a pro in this latest video. … [Read More...]
GitLab ExifTool Unauthenticated RCE
In 2021, a critical vulnerability was found in the GitLab server. An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not correctly validating image files passed to a file parser, resulting in remote command execution. Improper neutralization of user data in the DjVu file format in ExifTool version 7.44 allows arbitrary code execution when parsing the malicious image. GitLab ExifTool Unauthenticated RCE vulnerability's severity base score is 10. It's a very critical issue. What is GitLab GitLab Community Edition (CE) is an open-source end-to-end software … [Read More...]
Become a Member
