-
https://book.hacktricks.xyz/network-services-pentesting/8009-pentesting-apache-jserv-protocol-ajp
The package "libapache2-mod-jk" is no longer available in Kali Linux. It's necessary for the "AJP P…
-
Hi,
First, thank you for cloud.hacktricks.xyz this is really awesome ! I would like to contribute by adding new content regarding CI/CD pipeline and more specifically on secret extraction.
We d…
-
First of all, thanks for maintaining this project. It's an amazing resource :)
What I wanted to say is that commits aren't being used properly here. Most commit messages are empty:
![2022-05-26 22…
-
https://book.hacktricks.xyz/mobile-pentesting/android-app-pentesting/bypass-biometric-authentication-android
There is a site with a description of security weaknesses. Need to check whether applicabl…
-
I was using Upload_Bypass for the first time to test a target and I couldn't make it work unless I changed most codecs from `latin-1` to `utf-8`. I'm not sure if this is local to my setup, but might b…
-
先将实际利用方法了解、复现
暂时先参考以下内容
https://adsecurity.org/
https://www.ired.team/
https://www.thehacker.recipes/
https://book.hacktricks.xyz/welcome/readme
https://github.com/GhostPack
-
### Query PR
https://github.com/github/codeql/pull/15314
### Language
Python
### CVE(s) ID list
- [CVE-2023-46134](https://github.com/man-group/dtale/security/advisories/GHSA-jq6c-r9xf-…
R3x updated
10 months ago
-
I had trouble getting tccutil to work on macOS 12.4, but once I had enabled access to the TCC database via `csrutil disable`, this worked like a charm:
```
sudo sqlite3 "/Library/Application Suppo…
-
*Description*:
The way that EG sets up `HTTPRoute`s by default in Envoy Proxy today is that if TLS is enabled downstream, then ALPN negotiation is enabled with the default values `h2, http/1.1` . C…
-
Hi When I connect the smb server from Windows, the login is normal, but it says empty folder.
And when I create a file or folder, there is no response.
However, if i go inside the docker, i can se…