Cryptocurrencies become more and more relevant in our daily lives. We get bombarded with articles of “Bitcoin’s new high” combined with a picture of rockets taking off. Numerous people see cryptocurrencies as an investment and either hold their coins or do daily trades.Read More »Can cryptocurrencies replace fiat money?
When VS code was released I switched almost immediately from Atom, mainly because it was so much lighter and faster, although both editors are based on Electron aka Heavy File Browser. VS Code not only is the best editor out there, but has a plethora of features without any extension which are not so commonly used and here I am to help you make your life a bit better.Read More »10 Built In Features of VS Code You Need to Know
XML format was probably the most commonly used, before JSON took its place. Like almost every programming language Go or Golang, supports the XML format. In case you are here, it means you were stuck in some of those possible ways to unmarshal your XML code into a nice object.Read More »Complete XML Parsing Guide with Golang
I was recently introduced to Kaonashi through a friend when we wanted to crack some hashes we collected during an assessment. Although you will probably think, “yeah great another wordlist, I already have 1000 of those”, this is not the case. What makes this wordlist special, is that it is NOT one of those Top 1 Million passwords wordlists.Read More »Kaonashi is the Best Wordlist for Password Cracking
During an assessment, I needed a web server which would serve a 204 HTTP response. Is is not so common or easy to find it, so I decided to create one for when needed, which I would be able to use it offline.
Just save the snippet below as a python file and change the status code. When loading the page, it will serve you the status code needed.
In case you are here you know already what WSL2 is and why to use it. For those who don’t know I will just say that it helps you run a Linux distribution inside your Windows operating system.
Like every year during black Friday, companies publish new offers to attract people. We are used to see offers every year by services like
shodan but not this year. Shodan did an one day offer of 1$ for a lifetime registration, a few days ago to celebrate 10 years. Pastebin also didn’t do any offer this year so far, but luckily more offers appeared.
Most of the penetration tests that I did so far, are Web Applications, since even if it is a thick client application, the functionality of it is heavily based on HTTP communication, using API calls or some times, even just having the mobile view of the website inside a WebView.
So today I loaded my website and while it was loading, I noticed that it wasn’t actually loading my starting page but it tried to redirect me to
hellofromhony.com. Of course, it is visible that something was wrong, so using
Burp Suite I tried to follow the order of the events in order to understand when the redirection happened.