DAVScan Credits: Graph-X [sociallocker id=”968″]Download Davscan[/sociallocker] DAVScan is a quick and lightweight webdav scanner designed to discover hidden files and folders on DAV enabled webservers. The scanner works by taking advantage of overly privileged/misconfigured WebDAV servers or servers vulnerable to various disclosure or authentication bypass vulnerabilities. The scanner attempts to fingerprint the target server and … Read moreDavscan – A Tool That Fingerprints servers, finds exploits, scans WebDAV
All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities Download Java-Deserialization-Scanner Credits: federicodotta Java Deserialization Scanner Java Deserialization Scanner is a Burp Suite plugin aimed at detect and exploit Java deserialization vulnerabilities. It was written by Federico Dotta, a Security Expert at @ Mediaservice.net. The plugin is made up … Read moreJava Deserialization Scanner
In this guide you will learn how to install additional modules in Metasploit. Metasploit is An open source attack framework first developed by H. D. Moore in 2003. Metasploit is used for hacking into systems for testing purposes. Metasploit provides useful information to people who perform penetration testing, IDS signature development, and exploit research. lets … Read moreInstalling Additional Modules in Metasploit
Wireless Networks can leak a treasure trove of information. In this tutorial we will use Snoopy to find various Wireless Access Points and Access points a device is probing for this can help us determine the name to call our malicious SSID for a evil twin network. When a device is probing for Wireless Access … Read moreSnoopy Tutorial – Finding Previously Connected SSID’S of a Device
smith Credits: jidir (Leave him a star on Github) Download Smith A client/server style agent meant for testing connectivity to and from a machine on a network. Installation python setup.py install or pip install . should install smith. Note: If you want to use the tcp/udp protocol options, you’ll need to install scapy and it’s … Read moreSmith – Client/Server Style Agent For Testing Network Connectivity
In this tutorial I will show you how to use TheFatRat to generate a Undetectable payload (FUD) to gain remote access to a Windows Operating System. What is TheFatRat ?. TheFatRat is a easy tool to generate backdoor’s with msfvenom (a part from metasploit framework) and easy post exploitation attack. This tool compiles a malware … Read moreTheFatRat Tutorial – Generate Undetectable Payload FUD, Bypass Anti-Virus, Gain Remote Access
Portspoof Effective defense against port scanners Short description: Art of Annoyance The Portspoof program primary goal is to enhance OS security through a set of few techniques: 1. All TCP ports are always open Instead of informing an attacker that a particular port is CLOSED or FILTERED a system with Portspoof will return SYN+ACK for … Read morePortspoof
In this article we will learn how to brute force a WPS key using Airodump-ng, Reaver with Pixie Dust addon if your running an older version of reaver update before starting this tutorial. WPA/WPA2 (Wi-Fi Protected Setup) is impelled by most manufactures to secure routers & other wireless devices. A Wireless Interface in Modern Terms is … Read moreCracking WPA/WPA2 WPA Key Wireless Access Point Passphrase
In this Guide I will show you how to Install Arch Linux first of all you will need to go to Arch Linux Official website and download the correct .ISO image for your CPU Architecture you can download these files via HTTP in your web browser or by Torrent using a Torrent Client. In this … Read moreHow to Install Arch Linux
Social Engineering Credential Harvester Method Phishing in SET Social Engineering Credential Harvester Method Phishing in SET, Harvest credentials using SEToolkit SET Kali Linux tutorial, Credential Harvester Kali Linux. Social Engineering relies heavily on human interaction and deception, trickery you get the picture it is a specialist way of extracting data from somebody or a third … Read moreSocial Engineering Credential Harvester Method Phishing in SET
Macchanger is a tool that is used for manipulating the mac address of a wireless or wired network interface. Today I will show you show to spoof you mac address. Changing your mac address helps hide the identity of your hardwares network address and helps overcome limitations such as mac address filtering by routers … Read moreChange or Spoof Network Interface Mac Address Using Macchanger
Embed a Metasploit Payload in an original Android Apk. Welcome back in the last part of the Android Hacking Series we discussed how to create a malicious payload to Hack Android Phones. Today you will learn how to make your malicious Android APK more convincing by injecting a hook of our payload into an original … Read moreEmbedding a Metasploit Payload to an original Android Apk.
Wipe and reinstall a running Linux distro via SSH, without rebooting. Takeover.sh A script to completely take over a running Linux distro (system) remotely, allowing you to log into an in-memory rescue environment, unmount the original root filesystem, and do anything you want, all without rebooting. Replace one distro with another without touching a physical console. … Read moreTakeover.sh – Wipe and reinstall a running Linux system via SSH, without rebooting.
Increasing Wifi TX Power Signal Strength in Linux TX power is a setting for the radio to set its transmitting strength. Higher values amplify the signal strength, but also increase power usage. Tx power level 1 is always the highest level of power a wireless access point. The transmit power level is assigned an integer … Read moreIncreasing Wifi TX Power Signal Strength in Linux