Technical Bandey

One of the questions that we often hear is "What systems can i use to test against?" Based on this, we thought it would be a good idea throw together an exploitable VM that you can use for testing purposes. Metasploitable is an Ubuntu 8.04 server install on a VMWare 6.5 image. A number of vulnerable packages are included, including an install of tomcat 5.5 (with weak credentials), distcc, tikiwiki, twiki, and an older mysql. You can use most VMware products to run it, and you'll want to make sure it's configured for Host-only networking unless it's in your lab - no need to throw another vulnerable machine on the corporate network. It's configured in non-persistent-disk mode, so you can simply reset it if you accidentally 'rm -rf' it. SERVICE ENUMERATION On service enumeration of the machine we get multiple ports open. EXPLOITATION This machine is vulnerable to a metasploit exploit which return a reverse shell with root user. e...

Code Injection/Execution In this vulnerability an attacker maliciously takes advantage of a script which contains system functions/calls, to read or execute files on a remote server. This is synonymous to having a backdoor shell. Needless to say that under certain circumstances privilege escalation is possible. In this example a script is using the exec() function to execute the ping command. However, the host is dynamic as it is being passed via an HTTP GET request. PHP Injection/Execution PHP code injection is a vulnerability that allows an attacker to inject custom code into the server side scripting engine. This vulnerability occurs when an attacker can control all or part of an input string that is fed into an eval() function call. Eval will execute the argument as code.

SECURITY Now You can download Kali Linux from Microsoft Store by  AAKASH AGARWAL   on  MARCH 22, 2018    0 CO SECURITY Now You can download Kali Linux from Microsoft Store Since Microsoft introduced the WSL (Windows sub-system Linux) in Microsoft store, many Linux-based distributions are occupying the MS Store. Earlier Ubuntu was made available for download by the Microsoft. Now, The Red Giant has come up with the option to download the much popular Kali Linux OS on Windows 10 from the Microsoft store. Kali Linux is a Debian derived a Linux-based operating system that is specially designed for  penetration testing and security auditing . Kali Linux is funded and managed by Offensive Security Ltd, a leading provider of penetration testing and security training agency. Kali Linux  is open source software, stuffed with numerous penetration testing tools and digital forensics used for purp...

Undoubtedly, WhatsApp is one the most the popular insta messaging apps with 1.5 billion active users. WhatsApp is a Facebook-owned messaging app and has become a household name in the most recent times. March 22, 2018  7:38 PM WhatsApp is one the most the popular insta messaging apps with 1.5 billion active users. (Reuters) Undoubtedly,  WhatsApp  is one the most the popular insta messaging apps with 1.5 billion active users. WhatsApp is a Facebook-owned messaging app and has become a household name in the most recent times. Now, here is your chance to work for it. The online messaging app is looking for people for WhatsApp communications in India. The job is available in Gurugram and New Delhi. Interested candidates can visit the mentioned link below to apply for the same. Here is the Job Profile: (As mentioned on LinkedIn) We’re looking for someone to lead WhatsApp’s communications in India — where more people use the app than any other country. This is...