SQLSentinel http://sourceforge.net/projects/sqlsentinel/files/ SQL injection is the most dangerous and common web application attack, there are so many tools are available to exploit the SQL-injection vulnerability like Havij and SQLmap but to find a vulnerability is an important step to exploit … Continue reading →

SUBTERFUGE http://code.google.com/p/subterfuge/   Video demonstration:  https://www.youtube.com/watch?v=SofO0ahJ_DI&feature=plcp&context=C466d0f6VDvjVQa1PpcFPUC9Su3lEP309BFFHBssbEZQPuGLRsnAY%3D Explanation Video of how it works:  https://www.youtube.com/watch?v=I7yEHSRxRVk&feature=relmfu Video How to install Subterfuge:   https://www.youtube.com/watch?v=34LiyXhvSlc&feature=related Walk into Starbucks, plop down a laptop, click start, watch the credentials roll in. Enter Subterfuge, a Framework to take the arcane art … Continue reading →

Table of Contents Web Application Security Testing Methodologies Web Application Hacker’s Handbook Testing Checklist Web Application Hacker’s Handbook Chapter 20 Methodology The OWASP Testing Checklist Suites and Frameworks Standalone Scanning Tools Vulnerable Test Websites Utilities Browser Extensions Additional Resources Web … Continue reading →

Add   db_autopwn feature to Metasploit 4 which has currently been taken out of the new Metasploit Thanks to Ultra_Lazer for his instructions on how to do this, I just tried to make it a little simpler for people.. first open … Continue reading →

n1tr0g3n tutorials  SSH Socks5 Proxy set up for Secure Web Browsing away from home If you have ever been scared to surf the over theinternet at an internet cafe like starbucks or Barnes & Nobles…etc I have the perfect and … Continue reading →