How to Use X-XSS-Protection for Evil
Two important headers that can mitigate XSS are:
X-XSS-Protection
Content-Security-Policy
So what is the difference?
Well browsers such as Internet...
Information Gathering : First Step to Hacking
Information Gathering is the first step towards hacking. It is knowing the System, Person or the victim we are targeting in order to be...
Basic Union Based Injection
SQL Injection Basic Union Based Injection. In this tutorial we will learn how to inject Union based injection.
In our last tutorial we learnt how...
Basic of SQL for SQL Injection part 2
Welcome to the second part of basics of SQL for SQL injection. We took this url "http://fakesite.com/report.php?id=23" as an example and then assumed some...
Creating a Login Macro for Burp Suite
This is a step by step guide on how to make a simple login macro for Portswigger's Burp Suite. In the demo I will...
DNS Information Gathering
In this tutorial we will gather DNS information about our target.
But before starting with basics of DIG we must know different types of DNS...
LFI Cheat Sheet
What is an LFI Vulnerability?
LFI stands for Local File Includes - it’s a file local inclusion vulnerability that allows an attacker to include files...
Kali Linux Commands List : Hackers Cheat Sheet
Kali Linux Hacking Commands List : Hackers Cheat Sheet
Hacking or Penetration testing is the practice of testing a computer system, network or Web application...
Information Gathering Part-1
Hello and welcome to my first tutorial on Information Gathering.
In this tutorial we will gather information about our website using some freely online available...
Local File Inclusion(LFI) Basic Tutorial
https://www.youtube.com/watch?v=ttTVNcPnsJY
1.Getting RCE with LFI Via /proc/self/environ
so First Lets Try getting /etc/passwd to Confirm if its Directory Traversal Attack Or not
../ is used to get...