Jun 19

SQLI-Real-Victim

Hello guys, in this tutorial I have real victim in my article, and I do not really want to censor it because they act like an idiot people and they did not pay me because I have reported a lot of vulnerability in their website like : Sqli-Xss-Idor-,… But in this…

Sqli

3 min read

Jun 17

Hacking 6.5+ million websites(Wordpress)

CVE-2022–29455 (Elementor) — — — — — — — — — — — — — — — — — — — — — — — — — — — - CVE-2022–29455 DOM-based Reflected Cross-Site Scripting (XSS) vulnerability in Elementor’s Elementor Website Builder plugin <= 3.5.5 versions. DOM Based XSS Definition DOM Based XSS (or as it is called…

Wordpress Vulnerabilities

2 min read

Hacking 6.5+ million websites(Wordpress)

Jun 16

Hacking Idea — Part One

Do not try to bypass antiviruses just try to change your mindset as hacker. One day I was focusing on creating FUD malware then I told to myself, Why am I doing that ?? And I got Idea from the baby hacker of my mind. He told me : Bro…

Hacking Idea

3 min read

Jun 15

Bug Bounty — Injection Part

Injection flaws are very common in applications today. These flaws occur because user controlled input is interpreted as actual commands or parameters by the application. Injection attacks depend on what technologies are being used and how exactly the input is interpreted by these technologies. Some common examples include: SQL Injection…

Injection

4 min read

Jun 13

SSH Brute Forcing With Python

The powerful Python language is supported by a number of modules that easily extend its capabilities. Paramiko is an SSHv2 implementation that will be useful in building SSH clients and servers. The example below shows one way to build an SSH password brute force attack script. As is often the…

Brute Force

3 min read

Jun 12

Hash Cracker With Python

A Hash is often used to safeguard passwords and other important data. As a penetration tester, you may need to find the cleartext value for several different hashes. The Hash library in Python allows you to build hash crackers according to your requirements quickly. — Hashlib is a powerful module that supports a wide range of algorithms. Leaving aside some of the more exotic ones you will see in the list above, hashlib will support most of the commonly used hashing algorithms.

Python

2 min read

Jun 11

Port Scanner With Python

In this article, we will be looking at a script to build a simple port scanner. — Source : import sys import socket import pyfiglet ascii_banner = pyfiglet.figlet_format("arshiadev") print(ascii_banner) ip = '192.168.1.6' open_ports =[] ports = range(1, 65535) def probe_port(ip, port, result = 1): try: sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM) sock.settimeout(0.5) r = sock.connect_ex((ip, port)) if…

Port Scanning

3 min read

Jun 10

Directory Enumeration With Python

As in the previous article point out, reconnaissance is one of the most critical steps to the success of a penetration testing engagement. Once subdomains have been discovered, the next step would be to find directories. — Source : import requests import sys sub_list = open("wordlist.txt").read() directories = sub_list.splitlines() for dir in directories: dir_enum = f"http://{sys.argv[1]}/{dir}.html" r = requests.get(dir_enum) if r.status_code==404: pass else: print("Valid directory:" ,dir_enum)

Python

1 min read

Directory Enumeration With Python

As in the previous article point out, reconnaissance is one of the most critical steps to the success of a penetration testing engagement. Once subdomains have been discovered, the next step would be to find directories.

Source :

import requests 
import sys 

sub_list = open("wordlist.txt").read() 
directories = sub_list.splitlines()

for dir in directories:
    dir_enum = f"http://{sys.argv[1]}/{dir}.html" 
    r = requests.get(dir_enum)
    if r.status_code==404: 
        pass
    else:
        print("Valid directory:" ,dir_enum)

At first glance, you will certainly notice the similarities with the subdomain enumeration script. This script takes an approach based on a for loop and passes all “404” responses.

Make sure you have downloaded the wordlist file from Task 2 before proceeding with the following questions. The wordlist was also added to the AttackBox and is located in the following path /usr/share/wordlists/PythonForPentesters/wordlist2.txt

Support me

Follow my Medium channel
Subscribe my Youtube channel : https://www.youtube.com/channel/UChXo71jBw-7N7n7yKzBVDZg

Jun 9

Subdomain Enumeration With Python

Python gives us an easy way to automate tasks during a penetration test. Any tasks that you have to perform regularly are worth automating. While the automation process comes with a learning curve, the mid and long-term gains are worth it. — Finding subdomains used by the target organization is an effective way to increase the attack surface and discover more vulnerabilities. The script will use a list of potential subdomains and prepends them to the domain name provided via a command-line argument.

Subdomains Enumeration

1 min read

Jun 7

How to bypass antiviruses by using Shelter

Shellter is another antivirus Evasion tool, which infects the PE dynamically and is also used to inject shellcode into any 32-bit native Windows application. It allows attackers to either customize the payload or utilize the Metasploit framework. …

Antivirus Bypass

3 min read

How to bypass antiviruses by using Shelter