Mail.ru: Stored XSS and html injection in biz.mail.ru

Domain, site, application: biz.mail.ru Testing environment: Latest chrome Steps to reproduce 1 go to biz.mail.ru, login 2 go to "My company" 3 create a department named as "alert 4 add an employee in that department 5 create a new subdepartment 6 add the employee from step 4 in our subdepartment...

SIP Based Audit and Attack Tool: Mr. SIP

Mr.SIP is a tool developed to audit and simulate SIP-based attacks. Originally it was developed to be used in academic work to help developing novel SIP-based DDoS attacks and defense approaches and then as an idea to convert it to a fully functional SIP-based penetration testing tool, it has bee...

UPDATE: Gloom-Framework v1.7.5

PenTestIT RSS Feed Update time guys! Please refer my initial blog post about this open source penetration testing framework for Kali Linux. I just saw that it has been updated and we now have Gloom-Framework v1.7.5 with new features and a lot of bug fixes. Actually, it was updated quiet a number ...

Advanced Man In The Middle Framework: Xerosploit

Xerosploit is a penetration testing toolkit whose goal is to perform man in the middle attacks for penetration testing purposes. It brings various modules together that will help you perform very efficient attacks. You can also use it to perform denial of service attacks and port scanning. Powere...

App Layering: Supporting DFS File Shares

The ELM can only access a DFS namespace if SMB 1.0 is enabled on the servers. If SMB 1.0 is disabled, as is becoming more common, the ELM cannot access a DFS namespace directly. Attempts to test the connection will fail...

List of Portable Hardware Devices for Penetration Testing

PenTestIT RSS Feed All of us at some point or the other think of a possibility of "remoting" a penetration test. Five years ago, you would have to engineer something like this for to suit your own requirements. However now, there are commercial tools already available that help you do that and mu...

DGA-Detection - DGA Domain Detection using Bigram Frequency Analysis

More and more malware is being created with advanced blocking circumvention techniques. One of the most prevalent techniques being used is the use of Domain Generation Algorithms which periodically generates a set of Domains to contact a C&C server. The majority of these DGA domains generate rand...

Exploit for Deserialization of Untrusted Data in Redhat Jboss_Enterprise_Application_Platform

Lab for Java Deserialization Vulnerabilities This content is...

Lynis 2.5.5 - Security Auditing Tool for Unix/Linux Systems

We are excited to announce this major release of auditing tool Lynis. Several big changes have been made to core functions of Lynis. These changes are the next of simplification improvements we made. There is a risk of breaking your existing configuration. Lynis is an open source security auditin...

cFire: IP Discovery for Domains behind Cloudflare

PenTestIT RSS Feed If you remember, I blogged about a CloudFail and HatCloud earlier. Those tools help you find the IP addresses of systems that are protected/behind Cloudflare. This post is about a new tool on the block - cFire, which just does not stop at detecting the systems restricted using...

Exploit for Deserialization of Untrusted Data in Apache Struts

struts-pwn - CVE-2017-9805 Exploit ============ An exploi...

The Struts S2-052 vulnerability bug bounce Shell test-vulnerability warning-the black bar safety net

S2-052 had burst a few days, I also join in the fun hurry up and build the case feel a bit. Don't rest is how, me just beginning the test of time, feel able to fulfil the Royal Decree of unparalleled unlimited: there is no echo, the creation of a designated content files are very difficult, and...

“Breaking Bad Security” – Tutorial 2 – Remote Access

Welcome to the second tutorial from our video series, “Breaking Bad Security!” This security series is designed to inform you about different tests, tricks, and free tools you can use to validate your security controls to ensure your environment is secure. In this series, we will provide...

Z3sec: A ZigBee Penetration Testing Framework

PenTestIT RSS Feed All of us know that ZigBee is an IEEE 802.15.4-based low-power, low data rate, and close proximity wireless ad-hoc network. There is now a tool - Z3sec, that can help you perform penetration tests on a multitude of Internet of Things IoT devices that implement the ZigBee...

WireX update: UDP attack capabilities

Akamai would like to acknowledge the research by F5 containing additional information on the capabilities of this malware, released September 2nd. Finding new features The WireX botnet was discovered due to its role in a series of prolonged attacks against several organizations. It was brought to...

Hot air classes on the site of the SQLi and XSS vulnerabilities bug-vulnerability warning-the black bar safety net

Last month in order to practice hand, I choices one of the more popular sites goodwesite.com as I penetrate the leaking test tool. In flaws in the excavation process, I've invented the Web PresenceSQL injectionandXSSflaws. The official start of the article content, let's first briefly understand...

D0xk1t - Web-based OSINT and Active Reconaissance Suite

Active reconnaissance, information gathering and OSINT built in a portable web application. 1.0 Introduction 1. What is this? D0xk1t is an open-source , self-hosted and easy to use OSINT and active reconnaissance web application for penetration testers. Based off of the prior command-line script,...

sdnpwn - An SDN Penetration Testing Toolkit

The Open Networking Foundation defines SDN as “The physical separation of the network control plane from the forwarding plane, and where a control plane controls several devices”. What this means is that the decision making which would traditionally be performed by a router or a switch i.e...

Syntribos: An Open Source API Security Testing Tool

PenTestIT RSS Feed Web application security testing is a multi-faceted and yet important domains today. A few years ago, it was only the front end security tests and then came the backend. As newer endpoints are being exposed, it becomes imperative to test their security too. Syntribos is one suc...

Tulpar - Web Vulnerability Scanner

Tulpar is a open source web vulnerability scanner for written to make web penetration testing automated. Features Sql Injection GET Method XSS GET Method Crawl E-mail Disclosure Credit Card Disclosure Whois Command Injection GET Method Directory Traversal GET Method File Include GET Method Server...