Blog Archives - Page 3 of 132 - Hakin9

Apr'22

Spring4Shell-scan - a fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities

Blog

Features Support for lists of URLs. Fuzzing for more than 10 new Spring4Shell payloads (previously seen tools uses only 1-2 …

Apr'22

List of Free Python Resources [Updated April 2022]

Blog

Marta Sienicka

Python is considered a beginner-friendly programming language and its community provides many free resources for beginners and more advanced users. …

Apr'22

Lnkbomb - Malicious shortcut generator for collecting NTLM hashes from insecure file shares

Blog

Magdalena Jarzębska

Lnkbomb is used for uploading malicious shortcut files to insecure file shares. The vulnerability exists due to Windows looking for …

Apr'22

Windows 10 exploitation with just one image by Anastasis Vasileiadis

Blog

Magdalena Jarzębska

Metasploit is the latest in the field of information security and penetration control. It has almost redefined how we can …

Apr'22

Account Takeover Fraud: What You Need to Know

Blog

Magdalena Jarzębska

In the 21st century, fraud is a business transferred from offline to online. In recent years, internet users have increased …

Apr'22

Ostorlab - a composable security scanning platform for all assets

Blog

Magdalena Jarzębska

Security testing requires often chaining tools together, taking the output from one, mangling it, filtering it and then pushing it …

Apr'22

KrbRelay - Framework for Kerberos relaying

Blog

Magdalena Jarzębska

Relaying 3-headed dogs. More details at https://googleprojectzero.blogspot.com/2021/10/windows-exploitation-tricks-relaying.html and https://googleprojectzero.blogspot.com/2021/10/using-kerberos-for-authentication-relay.html This should be working on most fully patched Windows systems. There may be difficulties …

Apr'22

Coraza - Golang modsecurity compatible web application firewall library

Blog

Magdalena Jarzębska

Welcome to OWASP Coraza Web Application Firewall, OWASP Coraza is a golang enterprise-grade Web Application Firewall framework that supports Modsecurity's …

Apr'22

vAPI - Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises

Blog

Magdalena Jarzębska

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios in the means …

Apr'22

365Inspect - a PowerShell script that automates the security assessment of Microsoft Office 365 environments

Blog

Magdalena Jarzębska

Purpose Further the state of O365 security by authoring a PowerShell script that automates the security assessment of Microsoft Office …

Page 3 of 132‹ Previous 1 234 5 6 7 Next ›Last »

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Blog

Latest news around the world

Spring4Shell-scan - a fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities

List of Free Python Resources [Updated April 2022]

Lnkbomb - Malicious shortcut generator for collecting NTLM hashes from insecure file shares

Windows 10 exploitation with just one image by Anastasis Vasileiadis

Account Takeover Fraud: What You Need to Know

Ostorlab - a composable security scanning platform for all assets

KrbRelay - Framework for Kerberos relaying

Coraza - Golang modsecurity compatible web application firewall library

vAPI - Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises

365Inspect - a PowerShell script that automates the security assessment of Microsoft Office 365 environments

Categories

Featured Products

IT Pack Magazines

Magazines

Creating a Ransomware With Python

OSINT for Hackers

HAKIN9 Premium Monthly Subscription

BOARD ONLY - DVID Challenge (W46)

Drone Wi-Fi Hacking (W33)

Wireless Hacking Tools

HAKIN9 Premium subscription

IoT Security - the DVID Challenge - 2nd EDITION (W46)

https://hakin9.org/wp-content/uploads/2020/01/hakin91-copy-1-1.png

Blog

Latest news around the world

Categories

Newsletter

Thank you!

Featured Products

IT Pack Magazines

Magazines

Creating a Ransomware With Python

OSINT for Hackers

HAKIN9 Premium Monthly Subscription

BOARD ONLY - DVID Challenge (W46)

Drone Wi-Fi Hacking (W33)

Wireless Hacking Tools

HAKIN9 Premium subscription

IoT Security - the DVID Challenge - 2nd EDITION (W46)

https://hakin9.org/wp-content/uploads/2020/01/hakin91-copy-1-1.png