Recon.cloud is a website that gathers information about AWS assets of many companies. They advertise having discovered over 330,000 of them. It might be a good way to find hidden subdomains that may be overlooked by other tools.
#27
Finally, a useful DB with CVEs
I’m often very frustrated when looking for information about CVEs. Often, I find a useless description, along with a score of like 9/10 which sounds great but later turns out not so exploitable. AttackerKB is a Rapid7 project that gathers information about CVEs and...
Web3 learning corner #4
In the last two weeks, I didn’t do anything practical related to learning web3. It’s mostly due to me preparing a new BBRE Pemium website. But I watched two videos in this time. Advanced Smart Contract Hacking One was a presentation from RSA Conference 2019 about...
How to get better at hacking?
Louis Nyffenegger, the founder of PentesterLab, speaks about “How to get better at Hacking?” based on his experience of seeing a lot of people get into the industry or improve their skills. It’s especially for you if you hit a plateau and you’ve stayed at the same...
New XSS vectors
Recently, one of the XSS gurus - Gareth Heyes, found a few new XSS vectors. Many times I was annoyed when using the XSS cheat sheet. I was marking that I can only use a specific HTML tag, let’s say an “a” tag. The payload that I am supposed to use also uses the style...
How to start reviewing code?
This week, I took some notes from the “How to Analyze Code for Vulnerabilities?” talk by Vickie Li from the OWASP DevSlop channel. She shared some tips from a developer’s point of view on how to analyse code to find vulnerabilities. It’s mostly about manual source...
Parsing HTML responses with Python
We are continuing the topic of using python as a hacking tool. Today, I will focus on processing HTTP responses using the Beautiful Soup library. It’s useful to parse HTML and it allows you to scrape data from websites without having to use headless browsers which...