Explore >> Select a destination
|
You are here 
|
highon.coffee | ||
| | | | |
glama.ai
|
|
| | | | | Enables AI assistants to execute penetration testing commands and security tools on Kali Linux remotely. Supports automated reconnaissance, vulnerability scanning, and CTF solving through integration with 25+ offensive security tools like nmap, gobuster, and nuclei. | |
| | | | |
blog.ikuamike.io
|
|
| | | | | Difficulty Release Date Author Beginner 2 Mar 2020 Zayotic Summary In this box, we first perform ldap injection on the web application to bypass the login page. Then we are able to read local files by abusing a local file inclusion vulnerability with php base64 filter. From one of the php files we get ldap credentials that we used to authenticate to ldap and dump entries. From the entries we get a base64 encoded password that we could use to ssh into the machine. | |
| | | | |
eapolsniper.github.io
|
|
| | | | | [AI summary] The blog post discusses a critical security vulnerability in Splunk Universal Forwarders, allowing attackers to exploit weak passwords and API access to gain SYSTEM or root privileges on networked systems. | |
| | | | |
rviscomi.dev
|
|
| | | Using regular expressions to parse HTML in BigQuery is a nightmare. Instead, we can use Cheerio in SQL to extract insights about the web. | ||
