Hack Like a Pro: How to Hack Web Apps, Part 1 (Getting Started)
Welcome back, my budding hackers! With this article, I am initiating a new series that so many of you have been asking for: Hacking Web Applications.
Session Search Results
How To: Bypass UAC & Escalate Privileges on Windows Using Metasploit
UAC is something we've all dealt with on Windows, either as a user, administrator, or attacker. It's a core feature of the Windows security model, and for the most part, it does what it's supposed to. But it can be frustrating as a hacker when attempting privilege escalation, but it's easy enough to bypass UAC and obtain System access with Metasploit.
Android for Hackers: How to Exfiltrate WPA2 Wi-Fi Passwords Using Android & PowerShell
It's easier than you might think to hack into Wi-Fi routers using just one unrooted Android phone. This method doesn't require brute-forcing the password, a Windows OS for converting PowerShell scripts into EXE format, a reliable VPS for intercepting hacked Wi-Fi passwords, or Metasploit for post-exploitation tricks.
How To: Use Commix to Automate Exploiting Command Injection Flaws in Web Applications
The ability to execute system commands via a vulnerable web application makes command injection a fruitful attack vector for any hacker. But while this type of vulnerability is highly prized, it can often take quite a bit of time to probe through an entire application to find these flaws. Luckily, there is a useful tool called Commix that can automate this process for us.
How To: Turn Your iPad or iPhone into a Wi-Fi Party Jukebox That Anyone Can Add Songs To
I've had the thankless duty of choosing the music for far too many get-togethers, and no matter how good you think your music taste is, or how many new tracks you have on your iPhone or iPod, you will never—ever—satisfy everyone.
Hack Like a Pro: How to Use PowerSploit, Part 1 (Evading Antivirus Software)
Welcome back, my greenhorn hackers! A few years back, Microsoft implicitly recognized the superiority of the Linux terminal over the GUI-based operating system by developing PowerShell. Since Windows 7, every Windows operating system has had PowerShell installed by default, and they even made PowerShell capable of running Linux commands on Windows!
How To: I Tried 5 Different Pomodoro Apps Over 5 Days — Here's Which Helped Me Get the Most Done
Procrastination is an ugly beast. At first, it seems so innocent to spend five minutes checking Reddit or Twitter. You'll get started on work right after. Next thing you know, it's 1 a.m. and that paper is due in seven hours. Before you start another YouTube video, know you don't have to be like Spongebob. You can be like me, taking control of your productivity with the right app.
How To: Make a Fully Undetected Backdoored Program
You always wanted to make an undetected payload and make it look legit, Well this is what this tutorial is about, You're going to learn how to backdoor any (Unfortunately only 32-Bit) software, Let's get into it
How To: Bring a Stripper Home in GTA 5 Without Embarrassing Yourself Online
It's easy to forget sometimes that even when you're sitting in the basement playing Grand Theft Auto 5 Online that you're not really alone. Everything you say into the mic can be heard by anyone else in that same session.
Raspberry Pi: WiFi Analyzer
It has been a while since my last Raspberry Pi tutorial , but now I am back with another tutorial. This one I should note isn't your typical tutorial, but as always lets boot up our Pi and wreck havoc.
Hack Like a Pro: How to Remotely Install an Auto-Reconnecting Persistent Back Door on Someone's PC
Welcome back, my hacker wannabees! Most of my recent posts have addressed using Metasploit’s Meterpreter and what we can do once we have embedded it on the victim’s system. This includes remotely installing a keylogger, enabling the webcam, enabling the microphone and recording, disabling the antivirus software, among many other things. The list is almost unlimited.
How To: Run Your Favorite Graphical X Applications Over SSH
While SSH is a powerful tool for controlling a computer remotely, not all applications can be run over the command line. Some apps (like Firefox) and hacking tools (like Airgeddon) require opening multiple X windows to function, which can be accomplished by taking advantage of built-in graphical X forwarding for SSH.
How To: Manipulate User Credentials with a CSRF Attack
Web 2.0 technology has provided a convenient way to post videos online, keep up with old friends on social media, and even bank from the comfort of your web browser. But when applications are poorly designed or incorrectly configured, certain flaws can be exploited. One such flaw, known as CSRF, allows an attacker to use a legitimate user's session to execute unauthorized requests to the server.
Hacking Windows 10: How to Break into Somebody's Computer Without a Password (Setting Up the Payload)
A powered-off Windows 10 laptop can be compromised in less than three minutes. With just a few keystrokes, it's possible for a hacker to remove all antivirus software, create a backdoor, and capture webcam images and passwords, among other highly sensitive personal data.
How To: Use Metasploit's Timestomp to Modify File Attributes & Avoid Detection
It is said that the best way to avoid detection when hacking is to leave no trace, and often that means not touching the filesystem at all. But realistically, in most cases, it's impossible not to interact with the filesystem in one way or another. The next best thing to do to throw off any investigators is to change the file attributes to hide activity. We can do this with Metasploit's Timestomp.
News: Microsoft Introduced Acer's New Windows Mixed Reality Development Edition Headset
This morning, in an early morning session at GDC 2017, Brandon Bray, a senior program manager lead at Microsoft, revealed a mixed reality headset made in collaboration with Acer—a different headset than the one we saw from Acer at CES 2017 earlier this year. Also at the event, the name for Microsoft's holographic system seems to have changed from Windows Holographic to Windows Mixed Reality.
Hack Like a Pro: How to Hack Windows Vista, 7, & 8 with the New Media Center Exploit
Welcome back, my tenderfoot hackers! Recently, Microsoft released a new patch (September 8, 2015) to close another vulnerability in their Windows Vista, 7, 8, and 8.1 operating systems. The vulnerability in question (MS15-100) enabled an attacker to gain remote access to any of these systems using a well-crafted Media Center link (MCL) file.
How To: Select Basic Garden Tools and Learn Basic Plant Types
Gardening school is in session and Shirley is teaching the absolute basics, such as: what to wear, what tools to use, what is the difference between an annual, perennial, and biennial? What is a garden zone, and which one is yours? Class is in session, so spit out your gum and listen up. Time to learn Gardening 101.
Networking Foundations: Exploring UDP via Wireshark(Part 1)
Hello ladies and gentlemen, I'm back with another informative(hopefully) article for you all. Once again I would like to apologize for my absence for about a week or so. I have some stuff going on with my life and university and I haven't found enough time to make a fully in-depth article. In this article I'm going to walk you through one of the main networking protocols when it comes to communication across the Internet between programs, aka UDP(User Datagram Protocol).
How To: Completely Remove the Media Controls in Android 11's Quick Settings When You're Done Playing Music
As you test out the new Quick Settings media controls in Android 11 and form an opinion, you'll notice one of the changes they made to the player besides the new location. For example, when you swipe away the mini version of these controls, the music keeps playing and the player still appears in the expanded view.
How To: Use Metasploit's Web Delivery Script & Command Injection to Pop a Shell
One of the best ways to improve your skills as a hacker is to learn to combine different avenues of attack to achieve success. What if it were possible to get a victim to connect to our machine and execute a chosen payload on our behalf? This is indeed possible with the almighty Metasploit and the aid of a technique known as command injection.
Hacking Windows 10: How to Find Sensitive & 'Deleted' Files Remotely
Deleted bank statements and private photos are still within an attacker's grasp, so don't think that emptying your recycling bin is enough to keep your files from coming back to life. It's possible for a hacker to recover compromising files and images from a backdoored computer completely without the victim's knowledge.
How To: Remove a Participant in a Zoom Video Call & Ban Them from Joining Again
As more and more people use the video conferencing service Zoom, the chances of trolling behavior and attacks only increase. But it's not just "Zoombombers" you need to worry about. A heated discussion between family, friends, or colleagues could turn sideways real quick, and sometimes the best course of action is to remove the participant from the group video meeting altogether.
Hands-On: Whiteboard App For Magic Leap Lets You Share Your Strategic Genius In Augmented Reality
The business world is currently figuring out how to deal with the coronavirus crisis, with many offices opting to work remotely for at least the next few weeks as a safety precaution. Predictably, this has thrown remote meeting software back into the spotlight, especially augmented reality solutions.
How To: Enable Gaming Preferred Mode on Google Wifi or Nest Wifi for Smoother Stadia Streaming
Although not quite as common today with the always-connected world we live in, you still might be having bandwidth wars in your home right now. If the internet connection in your area is mediocre, you know the feeling well. Google Stadia recommends having a 25 Mbps connection for playing in 4K, so you can expect to need at least that much to maintain a smooth, high-quality gaming session.
News: VAR Football Gives Coaches Another Tool to Train Sports Teams With—The HoloLens
The HoloLens is a natural medium for 3D data visualization, which offers a far more ideal approach over 2D screens to managing multiple resources simultaneously and grasping the bigger picture. We've already seen how management is using holograms to oversee cities, firefighters, and the military, and now training for sports teams is being addressed with VAR Football.
How To: Place a Virus in a Word Document for Mac OS X
This tutorial follows the same idea as my original tutorial for windows, but I've redone it to work with Mac OS X. Here's how to get a meterpreter session from your victim opening a malicious word document:
How To: Restrict Guest Users to One App in Windows 10
For reasons unknown, Microsoft decided to change the way the Guest account feature in the new Windows 10 operating system works. In previous versions, the Guest account feature allowed you to set up a limited account for other users so they don't have access to your important documents and settings. Now, the process requires assigning an email to a new account and configuring share settings.
Subterfuge: MITM Automated Suite That Looks Just Lame.
Remember when MITMing people to pentest webapps and log-ins you had to fire Ettercap,Arpspoof, SSLstrip, then look for credentials in the captured packets?
How To: Change These 30 Settings to Stop Zoombombing & Other Interruptions in Your Zoom Meetings
The "Zoombombing" trend is still strong on the Zoom video meetings service, despite security measures Zoom put in place to stop it. That's why it's up to you, as either a host or co-host, to be proactive about preventing Zoombomber harassment, as well as stopping it whenever it slips through the cracks.
How To: Export your film from iMovie and start a soundtrack in Garageband on Mac OSX
So now that you've finished editing your movie together, it's time to put a sound track together for it. One option is creating a soundtrack in Garageband. In this video you will learn how to export your film from iMovie in the correct format, start up Garageband and insert it into the right type of session in Garageband to start creating your soundtrack for your film.
How To: Do a quick side ponytail with a French braid
Got a cardio kickboxing session but your usual headband is nowhere to be found? Watch this video to quickly tie your follicles into a French-braided side ponytail (you can, of course, wear the ponytail in back if you're not feeling quite that perky).
How To: Perform the Indian Bharatanatyam dance "Namaskar" move
A Bharatanatyam dancer starts and ends every session of dancing with Namaskaram (obeisance). The dancer pays respect to God (Nataraja), teacher (Guru) and audience. She touches Mother Earth and asks her permission to stamp on her during the dance. Learn this introductory move to Indian traditional dancing with this Bharatanatyam how to video.
How To: Warm up from Gazelle track and field training program
To avoid sports-related injuries, it is essential to warm-up before a race or a game or even before a training or practice session. Watch this video tutorial to learn how to warm up before running by doing side steps from Gilbert's Gazelle training program. This how-to video is a must watch for all track and field athletes.
How To: Sequence electronic music in Reason 3
Reason 3.0 is a powerful music-making device by Propellerheads. This session shows you sequencing electronic music in Reason 3.0.
How To: Make vegan lentil burgers
If you missed my performance at this year's Vegetarian Food Fair - or if you spent the whole session marveling at my incredible charisma and missed the actual content of the demo - here's a more permanent version. Like most things I do, the recipe changed since we shot this - try adding some apple cider vinegar to the mix for a different flavor!
How To: Make a new school backpack
The summer's fading fast and it's back to school time again. This week we're breaking you off some tips to help you become the most fashionable in your class, plus we show you how to transform last year's threads into this year's cool, new school gear. Class is now in session!
How To: Make Your iPhone's Camera Remember Your Last Used Exposure Compensation Value for Later
Your ability to control exposure in the Camera app is much better in iOS 14. Instead of setting the exposure for a single shot, you can also lock an exposure compensation value for an entire session while you take photos and videos. A session ends as soon as you exit the app, but you can also remind your iPhone to use your last used ECV the next time you open Camera.
How To: The Fastest Way to Start a Workout with Google Fit
Google Fit houses all of your essential fitness-related information in the cloud for safekeeping at all times. You can easily let your device detect your workout sessions for you automatically based on a variety of sensors. At the same time, the Fit app makes it easy to manually start a workout as well.
How To: Run 2 Facebook Accounts at Once on Your OnePlus
The Facebook app only supports one account being logged in at a time — but what if you need one for work and one for your personal life? That would normally involve logging out and logging in every time you need to switch accounts, but your OnePlus device offers a much better solution.