Tag Archives: website-hacking

Download this tool and you win!!

Learn an easy and exceptional way to automate open redirects for fun and profit $$$

Read more

How to earn your first bounty in bug bounty hunting

If you are interested in bug bounty hunting and want to learn about it and earn your first bounty, well please read this.   Bigger Scopes Matter Try to choose programs that have a larger scope, the reason for this is because you have more sub domains to work with and find vulnerabilities. Mentors on Twitter A lot of professional

Read more

Priceline Open Redirect Hackerone Disclosure

What is open redirection? Open redirection is a type of vulnerability where by a website can redirect the user to any other website, this could be used by an attacker to send someone a malicious link to a legitimate site that redirects them to a fake site that steals credentials or downloads a backdoor to their machine.   Priceline Open

Read more

TomTom Website Hacked With XSS | krypt0mux

Story I have been spidering my way through some websites checking for xss vulnerabilities until I came across one in tomtom.com This vulnerability was such an easy one because burpsuite detected it almost instantly.   What is XSS? cross site scripting or xss for short is an injection attack where by an attacker can insert malicious javascript code into the

Read more

The Story Behind Anonymous | The Hacker Wars Documentary

What is Hacktivism? In Internet activism, hacktivism or hactivism (a portmanteau of hack and activism) is the use of technology to promote a political agenda or a social change.   Who are anonymous? The “man without a head” represents anonymity and leaderless organization. Anonymous is a decentralized international hacktivist group that is widely known for its various DDoS cyber attacks against several governments, government institutions and

Read more

10 Most Used Black Hat Hacking Tools | Kali Linux

So, right here I have populated a list of tools used by the most dangerous types of hackers.   Metasploit Framework . Nmap – network mapper. Acunetix WVS – web vulnerability scanner Maltego – powerful reconnaissance. SET – Social engineering toolkit (setoolkit) Nessus vulnerability scanner. Hydra – The powerful brute forcing tool Aircrack-ng – The professional wifi cracker. Wireshark – Packet analyzer.

Read more

Cross Site Scripting Discovery With XSSPwn

Today, I will be showing you how to automatically test for Cross-Site-Scripting vulnerabilities with a tool I made called xsspwn. How does it work? Xsspwn is a Cross-Site-Scripting Testing tool, It will attempt to Inject payloads into a parameter for testing and when the scan finishes it will output all the potential Injections found. Scan output Brute forcing Sometimes, you need

Read more

How to make money hacking without a degree

I’ve really been interested of the idea making money hacking without a degree, if all you are thinking this is not possible or you would consider yourself doing this oneday well, read below to find out. Bug Bounty’s Okay well for most of us it is hard to get a degree in cybersecurity either because of time constraints or a

Read more