How-to section is for articles, tips and tricks for stepping into information security field. We will be sharing demos, PoC of different vulnerabilities in this section. Please feel free to contribute in this section by contacting us via email info[at]ehackings.com
If you are a penetration tester and looking for a perfect penetration testing, exploit dev Cheatsheet. Here goes an excellent piece of cheatsheet by @ovid. Imgur link for image download in better format.
wuzz Interactive cli tool for HTTP inspection Wuzz command line arguments are similar to cURL’s arguments, so it can be used to inspect/modify requests copied from the browser’s network inspector with the “copy as cURL” feature. Installation and usage: $ go get github.com/asciimoo/wuzz $ “$GOPATH/bin/wuzz” –help TODO: Colors Response specific filters (xpath, etc..) Better navigation […]
This is a simple demonstration (License|MIT) of form fields hidden from the user but will be filled anyways when using the browser form autofill feature, which poses a security risk for users, unaware of giving their information to the website. Here’s the demo in action on the Google Chrome Browser.
