Goby is a new network security testing tool developed by Chinese Zhao Wu Zwell (author of Pangolin, JSky, FOFA) Support dual languages, Chinese and English. . . It is stated that this tool is suitable for internal security penetration testing and detection of the enterprise, and aims to improve the internal security of the enterprise. The introduction …
A Powerful Enterprise Security Detection Penetration Tool – Goby Read More »
1. Flagfox: can display the national flag of the site, as well as the IP address, domain name, server location and other information of the web page Click on the small flag below
Introduced When an attacker acquires server permissions, he or she usually uses some backdoor technology to maintain the permissions he currently gets, and once the server is implanted in the back door, it is much easier for the attacker to enter the next time Objective Since the attack may be discovered, it may be previously obtained to …
BurpSuite Introduction:BurpSuite is an integrated penetration testing tool with many penetration testing components. It can implement interception requests, packet capture, etc. but is more powerful than fiddler and postman. Burp Suite is a software that does not need to be installed. After the download is complete, you can enable it directly from the command line. However, Burp Suite …
The use of BurpSuite tools for safety testing and learning Read More »
Burp Suite Knockpy HostileSubBruteforcer sqlmap Nmap Eyewitness Shodan What CMS Nikto Recon-ng idb Wireshark Bucket Finder Google Dorks IPV4info.com JD GUI Mobile Security Framework Firefox Plugins: FoxyProxy UserAgentSwitcher Firebug Hackbar Websecurify CookieManager+ XSS Me Offsec Exploit-db Search Wappalyzer
First of all, we need to know that the function of prohibiting copy and paste on a website is generally implemented by JS. It is usually implemented by the following statement: var bodyMain = document.getElementById (‘bodyMain’); // prohibiting copy and paste setting is FALSE bodyMain.oncopy = function(){ return false; } // prohibiting copy and paste setting …
One Method to Crack Websites Prohibiting Copy and Paste Read More »
Mimikatz is an artifact that can obtain memory from the Windows Authentication (LSASS) process, and obtain plaintext passwords and NTLM hashes. Mimikatz is commonly used in intranet penetration to obtain plaintext passwords or hash values to roam the intranet. However, in actual application, we often encounter the interception of killing soft, so here I refer to the information on …
