Join my Discord server for private learning To be proficient in hacking, you need some prerequisite knowledge. This knowledge includes having a basic understanding of : networking, operating systems (Windows & Linux) as well as coding/scripting. (for the most part :)

Join our Discord server for private learning material and like-minded individuals! What is HTTP parameter pollution? HTTP Parameter Pollution (HPP) involves manipulating the way a website handles parameters received in HTTP requests. This vulnerability arises when an attacker adds extra parameters to a request, and the targeted website considers them trustworthy, resulting in unexpected behavior…

Join our Discord server for private learning material and a like-minded individuals! What’s a sock puppet and why should you have one? In the world of Open Source Intelligence (OSINT) investigations, the use of sock puppets has become a common procedure for both malicious actors and investigators. A sock puppet is a fake online persona created with the intention of…

Discord is a very well polished messaging platform with a lot of capabilities, one of which is the ability to host your community and bring your followers together, in a server. I am glad to announce that I have put together a Discord server for our community. Click here to…

What is Shodan? Shodan is a search engine like no other. Dubbed the “Google for hackers”, Shodan scans the internet for devices and systems that are connected to the internet, allowing users to see information that would otherwise be hidden. While many people may not have heard of Shodan, it is a powerful…

Enumeration portion : NMAP:

What are IDORs? IDOR (insecure direct object reference) is a broken access control vulnerability The main difference between an classic IDOR vulnerability and a simple BAC vulnerability is that to have an IDOR , we need to have the following conditions met : -> an object identifier exists in the reques (GET or…

What is red teaming? Red teaming is a concept that has become prevalent in the cyber security industry, yet its meaning and purpose is often misunderstood or distorted. This confusion can stem from a number of factors, including the misappropriation of the term in vendor marketing, and a lack of standardization in compliance requirements…

What are open redirects? Open redirect vulnerabilities occur when websites use HTTP or URL parameters to redirect users to a specified URL without user action. This behavior is often used for convenience, but it can also be exploited by attackers. An open redirect attack occurs when an attacker tricks a user into visiting a…