The Royal Mint of Spain, also known with the acronym FNMT (from the Spanish Fábrica Nacional de Moneda y Timbre) is a public institution of the state of Spain that, among other tasks, issues digital certificates for natural persons (in…
The Slowloris script opens two connections to the server, each without the final CRLF. After 10 seconds, second connection sends additional header. Both connections then wait for server timeout. If second connection gets a timeout 10 or more seconds after…
Self-signed certificates are widely used for testing purposes. In self-signed certificates, user creates a pair of public and private keys using a certificate creation tool and signs the document with the public key. The receiver requests the sender for the…
This post explains how can we identify the model of a wireless router using Linux. Step by step 1. Set your wireless adapter in monitor mode Check this post about how to put a wireless adapter in monitor mode in…
Wireless network interface controllers (WNIC’s) can operate in different modes: Managed mode: the only packets that are received in the computer are the one directed to it. Promiscuous mode: it is a listening mode that exists for both wired and…
First of all, you need to know your IP and the network range where it belongs to. It is important to perform scanning that you understand the meaning of IPv4 addresses. You can check this post explaining about it. Open…
This post explains briefly the network protocol IPv4 and summarizes the main aspects of it. IPv4 Characteristics IPv4 is based on best effort. It does not guarantee delivery. The datagrams are not delivered in order. It is resilient, and uses…
sqlmap is a command line tool to automatize SQL injections. Examples Retrieve tables on DB (–tables;)] specify database with -D: sqlmap -u “” –cookie=<“cookie value which you have copied in step #5”> -D moviescope –tables Retrieve columns from a table…
Testing for SQL Injection ||6 ‘||6’ (||6) ‘ OR 1=1– OR 1=1 ‘ OR ‘1’=’1 ; OR ‘1’=’1′ %27+–+ “or 1=1– ‘ or 1=1 /* or 1=1– ” or “a”=”a Admin’ OR ‘ ‘ having 1=1– ‘ OR ‘text’= N’text’…
This post explain what is Metasploit Framework and its uses regarding Certificated Ethical Hacker (CEH) Exam. It is not intented to be an overall review of the tool. It is focused on CEH v10. What is Metasploit Framework? Metasploit Framework…