Enumeration is one of the crucial phase in penetration testing. The result of the enumeration can lead to discovery of vulnerabilities that can be directly exploited. Enumeration allows to gather information such as usernames, group names, host names, algorithms etc. The Nmap Scripting Engine (NSE) is one of the strong features on Nmap allowing users […]

Greeting everyone! Hope All going well Today In This Blog We will explore How To utilize the Content Discovery Phase While You’re Doing a Vulnerability assessment Against Your targeted Web Application.  We Will explore one of the best tools ffuf which is fast web fuzzer. Content: What is ffuf? Installation Of ffuf? Example usage of […]

Hello Guys,Today, We will be learning something about ICS and SCADA What is ICS?Industrial Control Systems (ICS) are in use in Heavy Industries to control the machineries and to carry out heavy Process and Transportations. Whatever around you that are heavy that needs to be lifted or carried out with Heavy Machines are made through […]

Greeting Everyone ! Today In this Blog We will Explore How To Recon Javascript and How To extract all Javascript From Our Targeted Website .  In This Blog we will Explore How to Do Gather all Js File from target , , Extract Endpoint from JS File . We will Explore Some Common Tools Which […]

Greeting Everyone!  Hope everything Going well And Good today In this Blog We will Explore Blind OS Command Injection Which is possible through Out of band Technique In In this Blog we will Use Burp collaborator and How Burp collaborator Help Us to Find Blind based OS command Injection And allow to Inject OS Based […]

Greeting Everyone ! today In this Blog We will explore One Most Common Vulnerability which present in every website IDOR In this Post We Will Learn About IDOR How Attacker Able to misuse this  Vulnerability . In Modern Web application IDOR Basically Found On API Section . What is IDOR ? Insecure direct Object Reference […]

Hello Greeting Everyone ! Today in this Blog We will Explore How OAuth implicit flow Authentication schema Vulnerable if it not properly configured . In This Blog we will Discuss Common attacks flow on 0auth , how 0auth work . Before We start What is 0auth ? OAuth is an open-standard authorization protocol orframework that […]

Greeting Everyone ! Hope Everything Is Going Well And Good Today in this blog we will explore XXE attack Which Is Critical Vulnerability Found on Web Application . We Will Explore In Details What is XXE , How Successfully Perform XXE Attack against Your Target Application . What is XXE Attack ? XXE Attack Which […]

Greeting Everyone ! Hope Everything Is Going Well Today In This Blog We Will Explore Common Security Issue Which related To Weak Session Implementation  Comes Under  Session management Which Contain Different Attack Scenario Such As Session Related issue , Improper Validation Of Session Time Out , Session Not Implement Properly etc. Which Carries Critical Impact […]