Kali Linux VPN options at first can seem a bit confusing but actually there are definitive steps that you can take to … [Read More...]
Featured Articles
How to Analyze Mobile Application Vulnerabilities with MobSF?
There are millions of mobile applications available for Android and iOS users. The download statistics of many of these … [Read More...]
CEH Practice Test
As a security professional, The Certified Ethical Hacker (CEH) and Security+ certifications are great feathers to have … [Read More...]
Latest Blog Updates
Loading...Kali Linux VPN Options and Installation Walkthrough
Kali Linux VPN options at first can seem a bit confusing but actually there are definitive steps that you can take to get VPN configured with ease on Kali Linux. First let us discuss what VPN actually is. It is a virtual private network that is used to provide privacy and anonymity to the users who communicate over a public internet connection. A VPN creates a tunnel (an encrypted channel) for the intended internet traffic and communication to avoid the data breach or interception by the hackers. Different Types of VPN Technologies A VPN technology can be divided into the following two broader … [Read More...]
How to Analyze Mobile Application Vulnerabilities with MobSF?
There are millions of mobile applications available for Android and iOS users. The download statistics of many of these applications are quite remarkable. However, the large number of downloads does not guarantee the safety of any application. For instance, the SHAREit is a famous data-sharing application with over one billion users. Recently, security researchers have found serious bugs in this app that could lead to severe mobile attacks. Finding security flaws and backdoors in mobile applications require knowledge, experience, and dedicated tools. In this article, we shall analyze one such tool called Mobile … [Read More...]
How to Recon and Exploit Web Applications Using Penblood Tool?
Penblood is a web information gathering and vulnerabilities assessment tool. It can help penetration testers in mapping the attack vectors. The tool is capable of collecting the following information automatically. Banner grabbing Port scanning DNS look WHOIS record Traceroute Zone transfer lookup CMS identification Admin panel and external links identification Directory and files fuzzing Shodan search and hosts lookup Reverse IP scanning Subdomain data extraction Besides information gathering, the Penblood tool is also capable of finding SQL and WordPress-related … [Read More...]
How to Use Eazy Modules for Web Information Gathering Tasks?
Information gathering is the foundation to the web-security testing pyramid. A stronger foundation (wealth of information) means less difficulty in staging the next phases of the penetration testing cycle. However, web application firewalls and Cloudflare-like technologies make the web information gathering process difficult. There are only a few tools with the ability to bypass these security challenges and get the desired in-depth information. In this article, we shall analyze the Eazy tool that claims to provide the desired web information along with vulnerabilities assessment features. The Eazy tool is … [Read More...]
CEH Practice Test
As a security professional, The Certified Ethical Hacker (CEH) and Security+ certifications are great feathers to have in your cap. If you are preparing for either one, here’s a list of 10 questions that should help you test your progress (Answers at bottom): Which of the following are some of the methods to perform footprinting? a) Social engineering b) Competitive intelligence c) Zero-day attack d) Both a) and b) What does the WHOIS database contain? a) Information regarding users of domains or IP addresses. b) Information regarding known hacking groups and the techniques they … [Read More...]
Like Us On Facebook
Become a Member
