WordPress eBook Download Plugin 1.1 – Directory Traversal

Posted on Posted in Exploit, Tutorial's

EDB-ID: 39575 CVE: N/A OSVDB-ID: N/A EDB Verified: YES Author: Wadeek Published: 2016-03-21 Download Exploit: Raw Download Vulnerable App: download # Exploit Title: WordPress eBook Download 1.1 | Directory Traversal # Exploit Author: Wadeek # Website Author: https://github.com/Wad-Deek # Software Link: https://downloads.wordpress.org/plugin/ebook-download.zip # Version: 1.1 # Tested on: Xampp on Windows7 [Version Disclosure] ====================================== http://localhost/wordpress/wp-content/plugins/ebook-download/readme.txt […]

Install Redis in Kali Linux

Posted on Posted in Tutorial's

Redis: Redis is an open source, BSD licensed, advanced key-value cache and store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets, sorted sets, bitmaps and hyperloglogs. Step 1: sudo apt-get update sudo apt-get install build-essential sudo apt-get install tcl8.5 wget http://download.redis.io/releases/redis-3.0.0.tar.gz tar xzf redis-3.0.0.tar.gz Step […]

pwnsdx/RandomDNS

Posted on Posted in Hacker News, Tools

RandomDNS aims to improve the security, privacy and anonymity of DNSCrypt. It can randomize the server choice at runtime and can rotate it frequently. What is DNSCrypt? DNSCrypt is a protocol that authenticates communications between a DNS client and a DNS resolver. It prevents DNS spoofing. It uses cryptographic signatures to verify that responses originate […]

Mobile Security Framework: MobSF

Posted on Posted in Tools

Mobile Security Framework is an intelligent, all-in-one open source mobile application (Android/iOS) automated pen-testing framework capable of performing static and dynamic analysis. We’ve been depending on multiple tools to carry out reversing, decoding, debugging, code review, and pen-test and this process requires a lot of effort and time. Mobile Security Framework can be used for […]