PRINT
PRINT
SEND MAIL
SEND MAIL

Month: October 2017

Debian

Cerberus Linux v3

by D4RkN

  Cerberus Linux v3  Cerberus is a penetration testing distribution focusing on automation and anonymity , it aims to have the best tools available on the hacking scene tools like Fuzzbunch, Dandespritz, Cobalt strike, Armitage, Metasploit framework and Metasploit community version set up and ready for use!! It includes custom scripts, custom themes, custom icons!Cerberus distribution is based on Debian testing, it has the capability to use 3 repositories to install packages from kali repo,Debian repo, and cyber sec repo! Cerberus is an Angry…

Read More Cerberus Linux v3
Windows Hacking

Black Window 10 Enterprise

by D4RkN

Black Window 10 Enterprise is the first windows based penetration testing distribution with linux integraded ! The system comes activated with a digital license for windows enterprise ! It supports windows apps and linux apps, gui and terminal apps! It comes with a tone off hacking tools plus all the tools that are included with the latest release of cerberus linux! It has managed to implement cerberus os within windows.Offers the stability of a windows system and it offers the hacking part with a…

Read More Black Window 10 Enterprise
TUTORIALS

Metasploitable 3: Meterpreter Port forwarding

by D4RkN

In this Metasploitable 3 Meterpreter Port forwarding hacking tutorial we will learn how to forward local ports that cannot be accessed remotely. It is very common and good practice to run specific services on a local machine and make them available to that local machine only instead of the full network. On a local network these services are typically administration panels used to configure hardware or software on a single machine which doesn’t need to expose these services to the full network, just like…

Read More Metasploitable 3: Meterpreter Port forwarding
METASPLOIT TUTORIALS

Testing SMB Server Security with Metasploit Pro Task Chains: Part 1

by Black Hat Sec

Server Message Block, or SMB, is an application protocol that is normally used to share files or printers and other devices. When combined with DCE/RPC, SMB can even give you remote control of a Windows machine over a network. It is also a protocol that is highly dangerous if not properly defended, as shown by a series of high-profile attacks that cost billions of dollars in damages (e.g., WannaCry, SMBLoris, Not-Petya, other attacks exploiting EternalBlue). Protecting SMB is a serious business, but it can…

Read More Testing SMB Server Security with Metasploit Pro Task Chains: Part 1
TUTORIALS

Pentester Candidate Program November 2017

by Black Hat Sec

On Saturday the 18th of November 2017, Strategic Security/InfoSec Addicts relaunched the Pentester Candidate Program. This program is designed to satisfy the basic requirements of a penetration tester. The program will cover the most common technical and soft skill requirements. Top candidates will later receive job interviews for a remote penetrating testing job. This is through partnership with several penetration testing firms Top candidates may receive interview opportunities for a cleared penetration testing position. This is more so for those with a US Security…

Read More Pentester Candidate Program November 2017
TUTORIALS

Advanced Burp Suite

by Black Hat Sec

Burp Suite is one of the most popular web application security testing tools. It has a ton of features and can do everything from intercepting and modifying HTTP requests/responses in real time, to scanning web applications for vulnerabilities, to brute forcing login forms, to testing the entropy of session tokens, and it even allows you to increase its functionality by writing plugins for it. As awesome as the tool is – surprisingly few people are really comfortable with it. I decided to put together…

Read More Advanced Burp Suite
TUTORIALS

Extraction of Cookies in iOS Forensics

by Black Hat Sec

All activities of an iOS device user are stored inside the device in different formats and for various purposes as well. This evidence is apparently collected for the sake of serving the iOS user in the very first place. However, this is not the complete case. It is because the evidence obtained and stored cookies are even much more than what the user could ask for or need. Information just like locations, messages, contacts, web surfing habits, notes, pictures and more are available on…

Read More Extraction of Cookies in iOS Forensics
TUTORIALS

Extraction of applications,photos,passwords – iOS forensics

by Black Hat Sec

Extraction of applications,photos,passwords – iOS forensics – There are several directories that one can find for investigation purposes inside an iOS. It is irrespective of whatever the device model is. The structure of directories is common among all iOS devices. The layout utilized for it is a UNIX layout. It is very vital to mention that different file formats exist in this case. Thus, there are some files of format XML, binary data, or SQL databases. Alright, so how are we going to investigate…

Read More Extraction of applications,photos,passwords – iOS forensics
TUTORIALS

Artifacts of an IOS device

by Black Hat Sec

Artifacts of an IOS device This important file is located inside the folder of the root application.Relevant information about the device of interest may be revealed from this critical file. Such information includes the name of the used Apple Account and the date when the iPhone device was primarily purchased by the user. The importance of such information may vary according to the case being investigated.One of the following files will appear in each directory of an application on the iOS device:AccountURLBagType: in a…

Read More Artifacts of an IOS device