How To

How-to section is for articles, tips and tricks for stepping into information security field. We will be sharing demos, PoC of different vulnerabilities in this section. Please feel free to contribute in this section by contacting us via email info[at]ehackings.com

  • Pentest + Exploit dev Cheatsheet

    Pentest + Exploit dev Cheatsheet

    Feb 19, 2017

    If you are a penetration tester and looking for a perfect penetration testing, exploit dev Cheatsheet. Here goes an excellent piece of cheatsheet by @ovid. Imgur link for image download in better format.

  • wuzz Interactive cli tool for HTTP inspection by @asciimoo

    wuzz Interactive cli tool for HTTP inspection by @asciimoo

    Feb 19, 2017

    wuzz Interactive cli tool for HTTP inspection Wuzz command line arguments are similar to cURL’s arguments, so it can be used to inspect/modify requests copied from the browser’s network inspector with the “copy as cURL” feature. Installation and usage: $ go get github.com/asciimoo/wuzz $ “$GOPATH/bin/wuzz” –help TODO: Colors Response specific filters (xpath, etc..) Better navigation […]

  • Demo of Browser Autofill Phishing

    Demo of Browser Autofill Phishing

    Jan 10, 2017

    This is a simple demonstration (License|MIT) of form fields hidden from the user but will be filled anyways when using the browser form autofill feature, which poses a security risk for users, unaware of giving their information to the website. Here’s the demo in action on the Google Chrome Browser.