john

The use of BurpSuite tools for safety testing and learning

The use of BurpSuite tools for safety testing and learning

BurpSuite Introduction:BurpSuite is an integrated penetration testing tool with many penetration testing components. It can implement interception requests, packet capture, etc. but is more powerful than fiddler and postman. Burp Suite is a software that does not need to be installed. After the download is complete, you can enable it directly from the command line. However, Burp Suite …

The use of BurpSuite tools for safety testing and learning Read More »

Securely Remote Connect to MySQL with Navicat SSH

Navicat connects to the MySQL database through ssh, without opening the database port (3306 by default), and without creating another user that allows external network connections, which can greatly improve security. Of course, if your server is enabled with ssh service. The following uses Mac version of Navicat as an example to teach you how to …

Securely Remote Connect to MySQL with Navicat SSH Read More »

Several Methods to Run Mimikatz

Mimikatz is an artifact that can obtain memory from the Windows Authentication (LSASS) process, and obtain plaintext passwords and NTLM hashes. Mimikatz is commonly used in intranet penetration to obtain plaintext passwords or hash values ​​to roam the intranet. However, in actual application, we often encounter the interception of killing soft, so here I refer to the information on …

Several Methods to Run Mimikatz Read More »

Some Useful Information Security Websites/Blogs to Visit

1. Brian Krebs 2. Wombat Security 3.  Errata Security 4. Kaspersky Labs 5. Security Bloggers Network 6. Sophos 7. Paul’s Security Weekly 8. Akamai 9. The Security Ledger 10. Graham Cluley 11. Akamai 12. McAfee AntiVirus securing tomorrow 13. Naked Security 14. Shodan  15. NoMoreRansom 16. National Cyber Security Centre 17. Reddit:  r/infosec  r/sysadmin  r/crypto  r/cybersecurity  r/opsec  r/privacy r/intelligence  r/asknetsec 18. Google’s Digital Attack Map 19. OSINT …

Some Useful Information Security Websites/Blogs to Visit Read More »

Apache webpage and security optimization-webpage caching (connotation experiment)

Foreword: Apache’s mod_expries module automatically generates Express tags and Cache-Control tags in the header information of the page. The client browser determines according to the tag that the next visit is to fetch the page in the cache of the local machine, and does not need to make a request to the server again, thereby …

Apache webpage and security optimization-webpage caching (connotation experiment) Read More »

Kaspersky Internet Security 2020Free edition

Software size: 159.72MB Kaspersky is a security software with anti-virus software and firewall functions produced by Russia. It is also a ransomware that protects your digital life in a smarter way. The software has strong active defense technology and powerful killing. Means and quick response ability, mainly aimed at home and individual users, can completely protect users’ …

Kaspersky Internet Security 2020Free edition Read More »