SQL Injection is the most commonly found vulnerability in web applications according to Open Web Application Security … [Read More...]
Featured Articles
How hackers easily create a phish site
Among all Cyber threats out there, phishing is probably the easiest kind of attack you can fall for. From malicious ads … [Read More...]
Why Responder Will Change Your Life
Responder is one of the coolest pentesting tools in my opinion because it works very well and get the job done. You … [Read More...]
Latest Blog Updates
Loading...The Ultimate SQL Injection Cheat Sheet
SQL Injection is the most commonly found vulnerability in web applications according to Open Web Application Security Project (OWASP). Moreover, SQL Injection or SQLi attack is not only a web application attack, but this attack vector can also be applied on Android, iOS Apps and all those applications which uses SQL databases for its data storage. Because this attack vector is so common is the reason we’ve just spent a ton of time trying to create the most in-depth guide and cheat sheet on SQL injection with examples that will rival anything else you have previously seen. What is SQL and SQLi? SQL stands for … [Read More...]
How hackers easily create a phish site
Among all Cyber threats out there, phishing is probably the easiest kind of attack you can fall for. From malicious ads that redirect you to a fake login website, to the classic chain messages that your relatives may send you. Anyone can fall prey to them and hackers can easily create these phishing sites. However, phishing sites aren’t all created equal. Let’s say you’re working for a client, and you’ve been contracted to assess how security-aware their employees are. That’s a situation where you can set up a phishing site that automatically logs their credentials to, say, an intranet website that they host. … [Read More...]
Why These Are The Best Access Control Certifications
You may be wondering what access control certifications you can go after to further your career and it can get a bit confusing. We put together what we think are the best certifications when it comes to identity and access management that will also get you noticed. In Information Security, access control methods are applied to restrict the availability of data (and resources) to those who comply with the security policy. Two general Access control models are: (1) Role-Based Access Control (RoBAC) and (2) Rule-Based Access Control (RuBAC) models. In RoBAC model, the users are granted access to the data and … [Read More...]
A Guide to Cyber-security Career Paths
Cyber-attacks, especially by organized groups of hackers, are on the rise for the last few years. As a countermeasure, the demand for cyber-security professionals by organizations is also growing. Although the main objective of hiring security professionals is the protection of data, that doesn't mean that only data scientists can be a part of the cyber-security team. Cyber-security field has a wide range of job offers for both, IT and non-IT professionals. The variety of options, especially for those with no security or IT background, sometimes creates difficulty in choosing the right career path. To address … [Read More...]
Why Responder Will Change Your Life
Responder is one of the coolest pentesting tools in my opinion because it works very well and get the job done. You literally get it running and it does all the hard work for you gathering credentials and I haven't found a tool that compares to this one for what it does. Responder is a python tool, capable of harvesting credentials through Man in the Middle (MiTM) attack within the Windows networks. The tool makes use of Windows default name resolution protocols and rogue servers to accomplish the task. The three protocols exploited by the tool include LLMNR, NBT-NS, and MDNS. Background MDNS … [Read More...]
Like Us On Facebook
Become a Member
