Cyber Security Blogs

HackTheBox- Hospital

This blog focuses on the ‘Hospital’ machine, a Medium-level challenge available on the ‘HackTheBox’ platform. It serves as an initial assessment to evaluate your expertise in Windows server penetration testing. During the ‘Hospital’ machine challenge, you’ll get to showcase your proficiency with Pentesting tools like nmap, gobuster, netcat, john, git, rpcclient, certutil, and conducting enumeration on public exploits. Without delay, let’s dive into this penetration testing adventure.

HackTheBox- Hospital Read More »

Vulnerabilities in Other Authentication Mechanism Portswigger

PortSwigger- Vulnerabilities in Other Authentication Mechanism

PortSwigger, Write-ups

This blog focuses on the identification and exploitation of Authentication vulnerability on web applications. We will be providing a detailed walkthrough of PortSwigger’s labs which you can access on the PortSwigger. We have three categories here on this website. So in this blog, we will be covering the third one which is ‘Vulnerabilities in other Authentication mechanisms’. You guys can check out ‘Vulnerabilities in Password-based login’ and ‘Vulnerabilities in Multi-factor Authentication’.

PortSwigger- Vulnerabilities in Other Authentication Mechanism Read More »

Multi-Factor Authentication Vulnerabilities

PortSwigger- Vulnerabilities in Multi-Factor Authentication

PortSwigger, Write-ups

PortSwigger- Vulnerabilities in Multi-Factor Authentication Read More »

PortSwigger- Authentication Vulnerability- Password-Based Login

PortSwigger, Write-ups

This blog focuses on the identification and exploitation of Authentication vulnerability. We will be providing a detailed walkthrough of PortSwigger’s labs which you can access on the PortSwigger website. We have three categories here on this website. So in this blog, we will be covering the first one which is ‘Vulnerabilities in password-based login’. Without any delay, let’s start our penetration testing process.

PortSwigger- Authentication Vulnerability- Password-Based Login Read More »

PortSwigger – Server-Side Request Forgery (SSRF)

PortSwigger, Write-ups

This blog centers on the identification and exploitation of Server Side Request Forgery (SSRF) vulnerability. We will be providing a detailed walkthrough of PortSwigger’s labs which you can access on the PortSwigger website. Without any delay, let’s start our penetration testing process.

PortSwigger – Server-Side Request Forgery (SSRF) Read More »

HackTheBox- Clicker

HackTheBox, Write-ups

This blog focuses on the ‘Clicker’ machine, a Medium-level challenge offered on the ‘HackTheBox’ platform. It serves as an introductory evaluation to assess your competency in Linux server penetration testing. During the ‘Clicker’ challenge, you’ll get the opportunity to showcase your abilities using Pentesting tools like Rustscan, mount, Burp Suite, Ghidra, and performing enumeration on public exploits.

HackTheBox- Clicker Read More »

Pig Butchering Scam – Growing Concern!

Generic

A Pig Butchering Scam, as its name suggests, involves gaining the victim’s trust before exploiting them. Scammers use fake profiles to establish a sense of trust, leveraging emotions like love and friendship. They then manipulate this trust to persuade individuals into sending money for purported job offers or high-return investments, ultimately swindling them.

Pig Butchering Scam – Growing Concern! Read More »

PortSwigger- OAuth Authentication

Write-ups, PortSwigger

This blog centers on the identification and exploitation of vulnerabilities within OAuth Authentication functionality, specifically focusing on the OAuth 2.0 version. It features an in-depth walkthrough of PortSwigger’s labs, where you can explore OAuth Authentication in more detail.

PortSwigger- OAuth Authentication Read More »

QR Codes- A Gateway To Risk

Generic

Quick Response (QR) codes are among the most common tech-related codes used in business and marketing today. It has become increasingly popular due to its ability to be used in various contexts, such as grocery shopping, restaurant dining, airport gate location, event entry, television viewing, and even street shopping like vegetable or fruit vendors. These QR codes have become a convenient and efficient substitute for paper documents, enabling users to access information quickly and easily through their smartphones.

QR Codes- A Gateway To Risk Read More »

HackTheBox- Analytics

2 Comments / Write-ups, HackTheBox

This blog is dedicated to the ‘Analytics’ machine, a beginner-level challenge available on the ‘HackTheBox’ platform. It offers an excellent opportunity to gain experience in Linux system infiltration. This task serves as an initial assessment to gauge your proficiency in the field of server penetration testing. Throughout the ‘Analytics’ machine challenge, you will have the chance to demonstrate your skills in utilizing Pentesting tools such as Nmap, Rustscan, Metasploit-Framework, and conducting enumeration on public exploits. Without further ado, let’s embark on this penetration testing journey.

HackTheBox- Analytics Read More »