Android for Pentester: Drozer
Drozer is an android application security testing framework developed by FSecureLABS that makes it easy for a tester to create test cases and check for possible vulnerabilities in the components of an...
View ArticleBurp Suite For Pentester: HackBar
Isn’t it a bit time consuming and a boring task to insert a new payload manually every time for a specific vulnerability and check for its response?So, today in this article we’ll explore one of the...
View ArticleBurp Suite for Pentester: Burp Sequencer
Whenever we log into an application, the server issues a Session ID or a token, and all over from the internet we hear that the session ID we get is unique, but what, if we could guess the next unique...
View ArticleBurp Suite for Pentester: Turbo Intruder
Is fuzzing your favorite attack type, but you didn’t enjoy it due to the low speed and high memory usage when you work over with some big dictionaries?So, today over with this article, we’ll explore...
View ArticleThick Client Pentest Lab Setup: DVTA
Thick client applications are not new and have been around for many years and can be still easily found within a variety of organizations. Thick clients are majorly used across organizations for their...
View ArticleAndroid Pentest: Beginner’s Guide to Frida
IntroductionFrida is a dynamic instrumentation toolkit that is used by researchers to perform android hooking (intercepting IPC and modifying it to make a function perform desired function). Frida uses...
View ArticleConceal HackTheBox Walkthrough
Today we're going to solve another boot2root challenge called "Conceal". It's available at HackTheBox for penetration testing practice. This laboratory is of a difficult level, but with adequate basic...
View ArticleCTF collection Vol.1: TryHackMe Walkthrough
Today we’re going to solve another Capture The Flag challenge called “CTF collection Vol.1 “. It’s available at TryHackMe for penetration testing practice. This lab is not difficult if we have the...
View ArticleBurp Suite for Pentester: Active Scan++
Using Burp Suite as an automated scanner? Wondering right, even some pentesters do not prefer it, due to the less issues or the vulernabilties it carries within. But what, if the burp scanner itself...
View ArticleTabby HacktheBox Walkthrough
Today, we’re sharing another Hack the box Challenge Walkthrough box: Tabby and the machine is part of the retired lab, so you can connect to the machine using your HTB VPN and then start to solve the...
View ArticleBurp Suite for Pentester: Software Vulnerability Scanner
Not only the fronted we see or the backend we don’t, are responsible to make an application be vulnerable. A dynamic web-application carries a lot within itself, whether it’s about JavaScript...
View ArticleOmni HackTheBox Walkthrough
Today we're going to solve another boot2root challenge called "Omni". It's available at HackTheBox for penetration testing practice. This laboratory is of a easy level, but with adequate basic...
View ArticleDevguru Vulnhub Walkthrough
Today we’re going to solve another boot2root challenge called “Devguru” and the credits go to Zayotic for designing one of the interesting challenges. It’s available at VulnHub for penetration testing...
View ArticleBurp Suite for Pentester: Burp’s Project Management
A Burp project is basically a file over where we store and organize our work for a specific test. But what if you’re working on a particular application and you might take days to test that?Today, in...
View ArticleMango HackTheBox Walkthrough
Today we're going to solve another boot2root challenge called "Mango". It's available at HackTheBox for penetration testing practice. This laboratory is of a easy level, but with adequate basic...
View ArticleServMon HacktheBox Walkthrough
Today, we’re going to solve another Hack the box Challenge called “ServMon” and the machine is part of the retired lab, so you can connect to the machine using your HTB VPN and then start to solve the...
View ArticleThick Client Pentesting Lab Setup Part- 2
In the previous article, we have discussed about of the Lab setup of Thick Client: DVTAYou can simply take a walkthrough by visiting here: - Thick Client Pentest Lab Setup: DVTAIn this article, we are...
View ArticleAndroid Penetration Testing: WebView Attacks
IntroductionInitially, there was a time when only HTML used to display web pages. Then came JavaScript and along came dynamic pages. Further down the line, some person thought opening dynamic pages...
View ArticleBastard HackTheBox Walkthrough
Today we're going to solve another boot2root challenge called "Bastard". It's available at HackTheBox for penetration testing practice. This laboratory is of a easy level, but with adequate basic...
View ArticleCascade HacktheBox Walkthrough
Today, we’re going to solve another Hack the box Challenge called “Cascade” and the machine is part of the retired lab, so you can connect to the machine using your HTB VPN and then start to solve the...
View Article