Tuesday , August 22 2017

Introduction to HTTP Parameter Pollution

HTTP Parameter Pollution

HTTP Parameter Pollution, or HPP, occurs when a website accepts input from a user and uses it to make an HTTP request to another system without validating that user’s input. This can happen one of two ways, via the server (or back end) and via the client side. Supplying multiple …

Read More »

US Government wants you to hack US Military and Pentagon

US Government wants you to hack US Military and Pentagon

Usually you won’t see any organization or institution allowing you to hack their internal system for any cause but this time without getting into any trouble the US Military is allowing hackers a chance to point out vulnerabilities in their online systems. The permission is granted through a military-wide applicable, …

Read More »

U.S. Govt. Hackers Ready to Hit Back If Russia Tries to Disrupt Election

U.S. Govt. Hackers

According to NBCnews, U.S. military hackers have penetrated Russia’s electric grid, telecommunications networks and the Kremlin’s command systems, making them vulnerable to attack by secret American cyber weapons should the U.S. deem it necessary, according to a senior intelligence official and top-secret documents reviewed by NBC News. Russia no longer …

Read More »

Massive DDOS attack against Dyn DNS knocked out Popular Websites

ddos attack

According to krebsonsecurity, criminals this morning massively attacked Dyn, a company that provides core Internet services for Twitter, SoundCloud, Spotify, Reddit and a host of other sites, causing outages and slowness for many of Dyn’s customers. A widespread cyber-attack was carried out against some of the world’s biggest websites on …

Read More »

Czech police arrest Russian hacker tied to 2012 LinkedIn hack

Police in the Czech Republic have detained a Russian man suspected of participating in the breach of LinkedIn user information in 2012, the company said Wednesday. Czech police said the Russian was arrested in cooperation with the FBI within 12 hours, thanks to a rapid exchange of information with American …

Read More »

What is HTTP request/response header?

http header

World Wide Web commonly known as Web is a collection of electronic hyper text documents stored in a computer linked together like a spider’s web which can be accessed via internet. The web browser is a software program that acts like a computer program e.g firefox, chrome, safari (Web clients). …

Read More »

Russia no longer denies hacking DNC

russia no longer denies hacking dnc

WASHINGTON — U.S. officials blame hackers guided by the Russian government for the attacks on DNC servers earlier this year that resulted in WikiLeaks publishing about 20,000 private emails just before Hillary Clinton’s nominating convention in July. Russia no longer denies hacking DNC. Vladimir Putin said the hacking of thousands …

Read More »

Server-Side Includes (SSI) Injection

server side includes

SSI Injection (Server side Includes) is a server-side exploit technique that allows an attacker to send code into a web application, which will later be executed locally by the web server. SSI Injection SSI are generally the directives that are present on the web applications which are used to feed …

Read More »

Earn $1.5 million for hacking iPhone

hacking iPhone

One of the high marketplace private exploit seller Zerodium has tripled the price of iOS rewards. The engineers and penetration testers of Zerodium (a premium exploit platform) who purchases zero-day vulnerabilities and exploits decided to pay heavy rewards to researchers who are showing interest that ultimately results in discovering unknown …

Read More »

How do buffer overflow attack works?

buffer overflow

When a web application is launched a process is created in a CPU where PMU (Process Management Unit) allocates temporary storage in RAM which holds the data right before it is used by the application. Before going into buffer overflow attack we should learn what it really means. How Buffer …

Read More »

Police arrested a man over Pippa Middleton iCloud hacking

Pippa Middleton iCloud hacking

Investigators have found out Pippa Middleton iCloud hacking was claimed by a 35 years old man. Pippa Middleton is an English socialite, author, columnist, and the younger sister of Catherine, Duchess of Cambridge. The man was arrested on suspicious account of computer misuse. Special team of investigators are still finding …

Read More »

What is DNS Spoofing? How to redirect traffic to fake website?

DNS Spoofing

DNS Spoofing is also known as DNS cache poisoning. It is malicious technique used by attackers to divert legitimate traffic to attacker’s fake website for his own sake. DNS Spoofing The main idea behind DNS spoofing is that attacker introduces a corrupt domain name in the DNS resolver’s cache, where …

Read More »

What is Man-in-the-middle attack (MITM)

man-in-the-middle

In computer security and cryptography (study of techniques for secure communication in the presence of third parties), man-in-the-middle is an attack where an attacker secretly keeps an eye on the communication happening in between two legitimate users while they are not aware of any external threat. Man-in-the-middle attack is one …

Read More »

Cross-Platform Malware can hack Windows, Linux, OS X Computers

Cross-Platform Malware can hack Windows, Linux, OS X Computers

The time moved on when a specially designed malware for any particular system was created. Recently at Kaspersky Lab researchers have discovered a malware that can run on cross-platform operating systems. The malware contains a payload that is designed to hack Windows, Linux and OS X Computers efficiently. Researchers discovered …

Read More »

Introduction to Ethical Hacking and Penetration Testing

Ethical Hacking and penetration testing

In this blog, I’m going to share a lot of modules that are obviously used in ethical hacking and penetration testing. Following are the modules I will be talking about in detail. Hacking Hackers and Types Vulnerabilities Exploits Programming Malwares Zero-day Vulnerability Zero-day Attack Defense in depth Strategy Penetration Testing …

Read More »

Responsive WordPress Theme Freetheme wordpress magazine responsive freetheme wordpress news responsive freeWORDPRESS PLUGIN PREMIUM FREEDownload theme free