-
some plugins in test tools will produce several outputs on the same port like "services" in OpenVAS.
for example:
services,127.0.0.1,3128, "a web server is running"
services,127.0.0.1,3128, "a web …
-
Subscribe to this issue and stay notified about new [weekly trending repos in Perl](https://github.com/trending/perl?since=weekly).
-
I'm very interested in having `http-enum` replace gobuster.
I'm attempting to use the lua fingerprint database described [here](https://github.com/nmap/nmap/issues/2251#issuecomment-781040281), and…
-
Chtělo by to nějaký základní popis projektu, jak jej používat, jak se zapojit do vývoje a tak.
-
backtrack/kali
OWASP
Nessus
Nikto
openvas
AWVS
Appscan
HP webinspect
Inspect
Metaspoit
sqlmap
burpsuite
msf
nexpose
bugtrap
Java Rasp
PKAV web scanner
SkyWolf
sniffer
wiresha…
-
Create a grep plugin that will find private keys in HTTP responses. I just found a private key with nikto and a little bit of luck :+1:
The key was un a format that matched: `-----BEGIN RSA PRIVAT…
-
http://got17.cn/1064/
51CTO的网课,本篇利用nmap搜索开放端口,nikto、dirb挖掘敏感目录找到一个登陆界面和一个测试界面,审计源代码,破解用户名和口令登陆后台,使用命令测试界面执行反弹shell,得到低权用户权限,后面一种是审计代码猜出root口令(太有CTF内味了),另一种是正常方法,审计代码查询定时任务,篡改定时任务源码,反弹得到root权限,获得fla…
-
-
When scanning a host that runs Apache 2.4.18 on both 80 (for http) and 443 (for https), the scheme doesn't appear to change to https, causing the ssl enum scans to fail. My initial guess was that the…
-
![image](https://user-images.githubusercontent.com/66612123/110749642-5a736680-827c-11eb-9687-6974df579ad3.png)
dnsrecon is not running due to the missing -d switch
![image](https://user-images.gi…