Hacking Tools

Using w3af for SQL injection scanning

December 3, 2016 Hacking Tools, SQL Injection

W3AF is great Open Source tool for detecting not only SQL Injection vulnerabilities but also things like cross side scripting , PHP misconfiguration and more. In our lab we will be running w3af on KALI Linux. We will look into basic install and usage.

Using WPScan to discover WordPress vulnerabilities

November 24, 2016 Hacking Tools

WPScan tool is exelent for finding WordPress valnarabilities. In this how to we will look at installing this tool and doing basic scan against our target site.
More information can be found at wpscan site

Using tcpdump

November 5, 2016 Hacking Tools

TCPDUMP is a command based utility that is very robust and extremely useful for sniffing traffic. Here is some basic usage of this command.

Using netcat

October 31, 2016 Hacking Tools

First lets take a look at how to connect to remote system using netcat. We have 2 CentOS 7 based systems.
First install netcat on both systems

yum install nc

Start netcat on one of the systems

nc -l 4444

No connect from other system

nc remote-host 44444

Now if you type any text on one of the systems it will appear on the remote one.

Lets take a look at how to transfer data files or block level files between two remote systems.
Netcat is Unix/Linux based command that can establish connection between remote systems and write files or lets us access systems remotely. On CentOS based systems it can be installed with following command.