Web Exploitation / Web Vulnerability Analysis / WebApp PenTest
by do son · Published December 22, 2016 · Last modified December 12, 2017
Introduce Cross-site request forgery [CSRF], also known as a one-click attack or session riding or Sea-Surf and abbreviated as CSRF or XSRF, is a type of malicious attack exploit of a website (“Web Application”);...
Web Vulnerability Analysis / WebApp PenTest
by do son · Published December 21, 2016 · Last modified February 9, 2018
Both in the traditional PC Web platform or mobile terminal platform, client-side or server-side, the JavaScript fairly good performance and reflect the rich framework to support, so it as a mainstream development language has...
Exploitation / Information Gathering / Maintaining Access / Network PenTest / Post Exploitation / Vulnerability Analysis / Web Exploitation / Web Information Gathering / Web Vulnerability Analysis / WebApp PenTest
by do son · Published December 21, 2016 · Last modified August 1, 2017
A penetration test (pentest for short) is a method of attacking a computer’s systems in the hope of finding weaknesses in its security. If the pentest successfully gains access, it shows that computer functionality...
Web Vulnerability Analysis / WebApp PenTest
by do son · Published December 12, 2016 · Last modified July 27, 2017
Vane is a vulnerability scanner that scans WordPress for all webmasters to scan for WordPress vulnerabilities and find and fix problems before they go live. It is a great WordPress security assessment tool, this...
Web Information Gathering / Web Vulnerability Analysis
by do son · Published December 2, 2016 · Last modified December 3, 2023
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6700 potentially dangerous files/programs, checks for outdated versions of over 1250 servers, and...
Web Vulnerability Analysis / WebApp PenTest
by do son · Published November 8, 2016 · Last modified May 6, 2018
Damn Small XSS Scanner (DSXS) is a fully functional Cross-site scripting vulnerability scanner (supporting GET and POST parameters) written in under 100 lines of code. As of optional settings, it supports HTTP proxy together...
Web Exploitation / Web Vulnerability Analysis
by do son · Published November 7, 2016 · Last modified July 27, 2017
Damn Small JS Scanner (DSJS) is a fully functional JavaScript library vulnerability scanner written in under 100 lines of code. It has to be noted that it is a derivative work from Retire.js project....
Web Vulnerability Analysis / WebApp PenTest
by TheBlaCkCoDeR · Published October 20, 2016 · Last modified July 27, 2017
Cross-site request forgery [CSRF], also known as one-click attack or session riding or Sea-Surf and abbreviated as CSRF or XSRF, is a type of malicious attack exploit of a website (“Web Application”); where unauthorized...
Secure Your Connection
