When you don’t realize you’re bleeding or data leaks without hacking by Ivan Glinkin


Sometimes, to get personal or other private information there is no need to crack the system. Web-site owners and/or system administrators have not set policies andrules properly that allows getting unauthorized privileged access or read closed data. The most important thing is that kind of information is publicly available and hackers may not be punished at all for an any activity with it (at least by the Russian law). In this article I will show one of my recent construction company pentest and what issues I’ve been able to reveal. 1. Reconnaissance The pentest area is a web-site based on the 1C-Bitrix CMS upon the NGinx web-server. Based on the whois output, the site is situated on the Russian public web-hosting. I assume there is a simple VPS (virtual private server) because it’s unnecessary to hold the high-performance system for a simple informer site. Let’s look at the web-site and....

February 9, 2021
Notify of
1 Comment
Oldest Most Voted
Inline Feedbacks
View all comments
sky faith
sky faith
5 months ago

I appreciate you getting this done to me so quickly. Thanks for your help.
I got access to my husband iPhone i got all his text messages, call details, WhatsApp details, Facebook messenger. I’m so sad he is cheating on me. I’m sending all evidence to my lawyer. that will used in court against him. contact: (Stephenlogicalhacklord at gmailCom), or text him or WhatsApp +16025626646 he ready to help anytime contact him for your hacking jobs……..

© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023
What certifications or qualifications do you hold?
Max. file size: 150 MB.
What level of experience should the ideal candidate have?
What certifications or qualifications are preferred?

Download Free eBook

Step 1 of 4


We’re committed to your privacy. Hakin9 uses the information you provide to us to contact you about our relevant content, products, and services. You may unsubscribe from these communications at any time. For more information, check out our Privacy Policy.