Search results

Step 1: IpLogger is a website which allows you to see traffic on image files. This is a very useful method and can help you get the IP of practically anyone if you know what to do A little SE will get you a long way, but for this method no SE is needed at all! Go to...

[0x01] Copy Function Bypass: The PHP copy function copies a file. The copy() function returns True on success and False on failure. copy() Syntax:copy(source, destination)# source (required): Specifies the file to copy.# destination (required): Specifies the file to copy to. [0x02] Walk...

Introduction: LFD stand for Local File Disclosure.Through LFD a client can view source code of PHP files and read sensitive data like backend database logins. Dorks: inurl:"download?path=" inurl:"download?filepath=" inurl:"download?fpath=" inurl:"download.php?filepath="...

Brief Introduction Hey guys. Haven't seen a tutorial about any online brute-forcing methods, so I decided to make one. We gonna use the UNIX distribution of THC-Hydra and I'll go through some of its main features and different attack methods. I. How to install First you’ll need Backtrack, of...

Parameter Pollution: Since the idea of HPP is to re-use parameters and rewrite their initial value, let's see a primitive example of that. Suppose we have the following URL: http://example.com/index.php?page=profile.php&username=Keeper In this case, we can rewrite the username parameter with...

The Vulnerability: To restrict access to a specific page or file on the website, the page is returned completely to anyone who requests it but with a "302 Moved Temporarily" status and a Location header specifying an address to redirect to for unauthorized users or guests. The browser, being a...

Hope everyone can find this tutorial useful. This is my first tutorial over here, and my second post I believe? :) Any feedback would be highly appreciated. So let's start. --1. Online Admin Scanning This is the first thing you should do. It's the basic thing. There are 2 good online scanners at...

Local File Download members!There are many web applications vulnerable to local file download due to scripts meant to be for downloading specific files, such as PDFs. I will give you a brief explanation about the origin of the vulnerability and how it is exploited. Hope you like it The...

Introduction. I already know you are all familiar with Google... If you're not, you don't deserve to live on this planet. In this tutorial I'm going to try and cover how powerful Google can be, if you use it correctly. If you know how to use it, you have already succeeded in 60% of Web-Hacking...

0x01 - Introduction [+] Who is this tutorial for? Before we start I just want to state that I assume you have basic understanding about PHP, MySQL and some common vulnerabilities and how they work. You don't have to be a professional programmer, but you need to be able to read and understand...