In case you are here you know already what WSL2 is and why to use it. For those who don’t know I will just say that it helps you run a Linux distribution inside your Windows operating system.
After a long time of absence, another post for black Friday is here. A selection of the best deals for security analysts and security hobbyists in the Infosec world. Like every year we expect some discounts for security courses, services and I believe there will be even more deals about cloud hosting.
Let’s get straight to the point!
Like every year during black Friday, companies publish new offers to attract people. We are used to see offers every year by services like
shodan but not this year. Shodan did an one day offer of 1$ for a lifetime registration, a few days ago to celebrate 10 years. Pastebin also didn’t do any offer this year so far, but luckily more offers appeared.
Most of the penetration tests that I did so far, are Web Applications, since even if it is a thick client application, the functionality of it is heavily based on HTTP communication, using API calls or some times, even just having the mobile view of the website inside a WebView.
So today I loaded my website and while it was loading, I noticed that it wasn’t actually loading my starting page but it tried to redirect me to
hellofromhony.com. Of course, it is visible that something was wrong, so using
Burp Suite I tried to follow the order of the events in order to understand when the redirection happened.
Everyone who doesn’t live under a rock, knows and probably used Burp Suite, by PortSwigger. Recently a Beta 2.0 version was released with multiple new features and a new dashboard to control all the processing running, from one tab. In this post I will write about some features of Burp, that I found useful and I use almost daily to make my life easier.