Відео

Yea you can use it. Paap risk calculator is used my a lot of people in the infosec community to calculate the risk rating/severity of issues/vulnerabilities that they find. It does have its flaws, but so does CVSS. You can find more info about it on ChatGPT or owasp risk calculator (there’s a dedicated website for it by owasp)

Thanks for the feedback. I realized the audio quality is pretty bad with this one. I'll try to make a new one with better visuals. What is that you mean by simulation btw? Is it how we can look for issues in web apps?

@@RahulSinghInfosec by simulation I meant to say injecting the malicious package into web apps and sites, and how to create said packages. I've been trying to inject an npm package into a dummy website but I'm facing issues. A similar walkthrough or simulation of your method seems to be the key!

@ you’ll need to upload your malicious package to npm. Wait for the victim to use it (could be instantaneous, or might take years). Npm, now, also passively scans the uploaded packages, so, yours might get removed in some days, unless you know how to hide the payload or if the payload is quite tricky to reverse engineer.

Thanks for the feedback. Added in the description. Also, here (wiki.wireshark.org/SampleCaptures). Search for dns.cap in the webpage.

So, I think i might have explained in the video. You can try the $ne operator. You can put anything like $ne:”doesnotexisr@x.com”. Since, it’s ne operator, it would result in you being logged in

You use the $ne operator. Since you knew the email here, you use $eq

@hfoxhaxfox1841 That doesn't answer my question but thank you for trying to help. I'm sure I found a way to go about it now when I attempt to try the challenge again.

Look up ‘portswigger nosql’ injection. There are a lot of labs. That might help you with more hands on nosql injection

I’m curious: what did I promote? As for the feedback, thanks, I’ll consider it for future videos. Otherwise, these resources are just a google search away. Will help you in recon

@RahulSinghInfosec Glad you are curious & responsible I was talking about the affiliate/Social media Links in your description You should have added the website link which you showed in your video too so we can read & copy it from the website or should have atleast added the paylods in description that works too for copying 🙂

Thanks for noticing. It was a template that I copy pasted almost every time back in the day which I forgot to remove. I don’t do affiliates anymore.

Thank you for the feedback. I’ll try to search for lesser talked about topics

Hey, You can copy the html source code (of the about me section) and replace the instances of my name with yours. Hope it’s helpful. :)

So, it’ll end up generating the report for all the AWS services (ideally). so, it’ll be IAM, DDB, s3, and all the other services within AWS. But scout suite doesn’t support a few services such as AWS Lambda. so it’ll not spit out any misconfigurations related to lambda.

@RahulSinghInfosec For what did we generate the report in this video

It’s called configuration review. It’s done to see if the assets in the cloud are not misconfigured from a security perspective

Hey, it’s generally hit and trial. So, keep increasing the buffer till the point you get a segmentation fault. Generally, if we read other articles and walkthrough online, people use tools instead of doing this manually. (I don’t remember its name rn). If you are interested, You can probably find the name by reading a couple of walk through articles about buffer overflow

@@RahulSinghInfosec That sounds like a more proper way of doing it, but for ctfs in general I'm curious where you'd have to start looking to find where possible exploitable code is, or what they generally look life, learing rev eng and pwn is so interesting but writeups are still pretty difficult to understand lol. Thanks for the info though

@ agreed. But tbh bufferoverflows are not that common anymore, as people have stared shifting to memory safe languages like rust. If you want to learn, John Hammond videos could help. But to be efficient in a limited time window, these tools are def helpful

Hey, looks like you are venturing into threat intel/notification services (or a domain similar to that). I’m sorry, I’ll not be able to help with that, but what I can tel you that there are a lot of businesses around this. You can see how they operate(try looking for info around this on GitHub). Hope this helps.

yes you can. It's the easiest to make in python as compared to other languages.

Hey, these are ideas based on projects that I’ve seen being used by various companies. They do it at a very large scale but we can mimic their basic structure. Though you might not find the exact open source implementation, you can try looking it up on GitHub. Or try to spend some time learning how these tools work and then integrate them using python or other scripts for your use. Hope this helps

the endpoint is /.git. The host endpoint would be the domain you are testing.

IEEE paper? This is just a YT short on pentesting apps for learning mobile pentesting😅

Hey,I have actually commented under the prediction of a malicious URL project,i don't know how it came under this

"ieee malicious url detection" will take you to IEEE papers. Just to clarify, I didn't refer any IEEE/Research gate paper. This is purely out of curiosity that I wanted to try (and luckily found a medium post along with code)

@@RahulSinghInfosec okay thank you

There typically won’t be a write permission for the shadow file. In this case you’ll have to look for other avenues to perform priv esc

No idea. It just appears to be a GET parameter with a backend logic

Thanks man!! Appreciate the feedback. More interesting topic and test cases coming your way. 😀

@@RahulSinghInfosec I will be waiting

MacBooks with Touch Bar allow you to scroll through the advt!!

@@RahulSinghInfosec oh

www.qubes-os.org/doc/system-requirements/

Thanks for pointing that out. Updated the description with the post and GitHub link.

You can just add their headings in your resume under projects. And write a line or two about them

Okay, so what you can do is type ‘payload all the things’ and you’ll get to the GitHub repo. From there you can just scroll through multiple payload types

Yup

Hey, DFIR is quite tricky. I'll try to explore this one. But from what I understand, there are already a lot of tools available in the market. You can 1) Add features to those tools (most of them are open source) 2) Try your hands on compromised machines and create a report