SubBrute is one of the most popular sub-domain brute forcing tool through which we can easily enumerate the best possible sub-domains of any domain along with all DNS records. It is one of the fastest sub-domain enumeration tool based on... Read more
WPA/WPA2 vastly improves the security of wireless networks; however, the extra protection comes at the price of added complexity to the protocol. Although WPA was developed with security in mind, it does have its own flaws that we can take advantage of. At... Read more
The Apache Web server is a remarkable piece of software. The basic package distributed by the Apache Software Foundation is quite complete and very powerful, and a lot of effort has gone into keeping it from suffering software bloat. One facet... Read more
As seen from the previous articles, SQL injection has the ability to attack a web server database, compromise critical information, and expose the server and the database to a variety of malicious exploits; however, there are measures that can be... Read more
Due to safety reasons, there are some trucking regulations are in place for the truck drivers and other roadway users. However, these hours-of-service regulations may seem a bit complicated even though they are super-specific. These regulations are mainly based on... Read more
1. Character Set: A character set is a specification that determines the set of codes used to represent the characters of a particular language or set of languages. Among the oldest character sets is the ASCII (American Standard Code for... Read more
Unvalidated data Never trust anything you get from a Web browser. The browser is completely outside of your control, and it’s easy to fake values like the HTTP referrer. It’s also easy to fake a hidden field in a form.... Read more
Cryptography is essentially used for converting plain text into cipher text to ensure confidentiality. If a user has the appropriate key, the cipher text can be reversed to get the original plain text. A message digest or hash is a technique... Read more
Although Bluetooth is extremely convenient for short-range wireless data transfers, it also has several security risks if not configured and used securely. Following are some of the common Bluetooth threats: 1. Loss of personal data : An attacker can exploit... Read more
The most prominent components of web applications that intruders will first seek to exploit are vulnerabilities within the web platform. The web platform commonly includes: Web server software (such as IIS or Apache). Extensions to the web server, such as... Read more
Web application hacking is not just about using automated tools to find common vulnerabilities. It is indeed a methodological approach that, if followed, would help reveal many more flaws and potential security vulnerabilities. The following section describes the systematic approach and... Read more
From an end-user perspective, an Android application may appear as a simple standalone application. However, any Android application consists of many components that work in the background to accomplish the given task. Android is a free and open operating system... Read more
The approach used by Microsoft to equip the professionals with role-based skills is remarkable. The tests are specific to roles, making it possible for every specialist to acquire skills of their choice. If you are still wondering where to start,... Read more
n the current world, competition in the job market is fierce. In this regard, you need to get out of your comfort zone to achieve your dream job. That’s why it’s important to have something that will set you apart... Read more
The use of wireless networks has increased exponentially over the last decade or so. Wi-Fi is being extensively used not only by corporate organizations but also by individuals and home users. If you walk or drive through your city you... Read more
Most intrusion detection systems work on a signature basis. It’s quite possible for the attacker to create a custom packet payload that won’t match any of the signatures in the predefined database of the IDS. This way, the attacker can... Read more
Whenever there’s an intrusion into a system (human or malware), it makes a lot of changes in various parts of the affected system. The intrusion might create new files or delete existing ones, change Registry entries, modify user accounts, and so on.... Read more
This article presents various questions you’re likely to be asked by various employers when you interview for a job position after the completion of CEH(Certified Ethical Hacker). What is the difference between encoding, encryption and hashing? What is the difference... Read more
In general, leaking unnecessary information about software behavior significantly aids an attacker in finding weaknesses within your application. Examples include software version information that can be used to footprint a potentially vulnerable version of an application, and error details related to... Read more
The arrangement of files in a Linux system may seem at first to be a semi-arbitrary arrangement of files and directories, based on historic practice. To an extent that’s true, but over the years the layout has evolved for good... Read more
Recent Comments