How to Get Most Out of Amazon Logistics
The purpose of launching Amazon Logistics back in 2015 was to enhance customer satisfaction. The aim was to lessen the shipping time and ultimate protection of the goods. When it comes to sellers, the results vary from seller to seller. Those who utilize services like Amazon Logistics Tracking wisely most likely build a better reputation. To understand it better, let's discuss what...
XSS-Scanner : Scanner That Detects Cross-Site Scripting Vulnerabilities In Website
XSS-Scanner is a cross-site scripting (XSS) is one of the most well known web application vulnerabilities. It even has a dedicated chapter in the OWASP Top 10 project and it is a highly chased vulnerability in bug bounty programs. The scanner gets a link from the user and scan the website for XSS vulnerability by injecting malicious scripts at the...
MOSINT – OSINT Tool For Emails
MOSINT is an OSINT Tool for emails. It helps you gather information about the target email. Features Verification Service { Check if email exist } Check social accounts with Socialscan Check data breaches Find related emails Find related phone numbers Find related domains Scan Pastebin Dumps Google Search DNS Lookup You can turn features on off from the config.json ": "set API KEY here","Social Scan": "True","Leaked DB": "True","Related Phone Numbers"...
Effective Linux Tools for Students
Effective Linux Tools for Students The impact of Information and Communication Technology (ICT) on education is not slight. It has helped enhance learning and overcome learning barriers. ICT has made enough platforms available to improve learning processes. One of such platforms is domyhomework123.com which helps students in getting the right solutions to homework. In the same regard, Linux's operating system has...
Urlhunter : A Recon Tool That Allows Searching On URLs That Are Exposed Via Shortener Services
Urlhunter is a recon tool that allows searching on URLs that are exposed via shortener services such as bit.ly and goo.gl. The project is written in Go. How? A group named URLTeam (kudos to them) are brute forcing the URL shortener services and publishing matched results on a daily basis. urlhunter downloads their collections and lets you analyze them. Installation From Binary You can...
Byp4Xx : Simple Bash Script To Bypass “403 Forbidden” Messages
Byp4Xx is a bash script to bypass "403 Forbidden" responses with well-known methods discussed in #bugbountytips. Installation git clone https://github.com/lobuhi/byp4xx.gitcd byp4xxchmod u+x byp4xx.sh Usage: Start URL with http or https. ./byp4xx.sh http(s)://url/pathOPTIONS:-c Return the entire curl command if response is 200-r Redirects if the response is 3XX Example: ./byp4xx.sh https://www.google.es/test Features: Multiple HTTP verbs/methodsMultiple methods mentioned in #bugbountytipsMultiple headers: Referer, X-Custom-IP-Authorization...Allow redirectsReturn the entire curl command...
HyperDbg : The Source Code Of HyperDbg Debugger
HyperDbg is designed with a focus on using modern hardware technologies to provide new features to the reverse engineering world. It operates on top of Windows by virtualizing an already running system using Intel VT-x and Intel PT. This debugger aims not to use any APIs and software debugging mechanisms, but instead, it uses Second Layer Page Table (a.k.a....
Oblivion : Data Leak Checker And OSINT Tool
Oblivion is a tool focused in real time monitoring of new data leaks, notifying if the credentials of the user has been leak out. It's possible too verify if any credential of user has been leak out before. The Oblivion have two modes: Oblivion Client: graphical mode.Oblivion Server: mode with API functionalities. NOTE: The Oblivion Client and the Oblivion Server are...
RogueWinRM : Windows Local Privilege Escalation From Service Account To System
RogueWinRM is a local privilege escalation exploit that allows to escalate from a Service account (with SeImpersonatePrivilege) to Local System account if WinRM service is not running (default on Win10 but NOT on Windows Server 2019). Briefly, it will listen for incoming connection on port 5985 faking a real WinRM service.It's just a minimal webserver that will try to negotiate...
SharpMapExec : A Sharpen Version Of CrackMapExec
SharpMapExec is a sharpen version of CrackMapExec. This tool is made to simplify penetration testing of networks and to create a swiss army knife that is made for running on Windows which is often a requirement during insider threat simulation engagements. Besides scanning for access it can be used to identify vulnerable configurations and exfiltrate data. The idea for the...
