Notices tagged with pentesting
shako (shako)'s status on Monday, 06-Mar-2017 02:05:18 CET shako I am running multiple #tor hidden services; I have come to realize someone was trying to wget some stuff like backup.tar.gz, .ssh/, .htaccess, sql.tar.gz, shell.php, php.info, and you can pretty much figure out other important stuff like that.
Because I am a freak, those kinds of attacks are useless on my servers (prefer to do text manipulation instead of using MYSQL) #txtMode4Life #emacs;
however, that person is making sense making those kinds of requests. I have worked in small web hostings companies and let me tell you this. it can easily work !
old backup files here and there. And the funny part is you can figure out ALL the websites the company hosts by looking at its vhosts. (pen testing folks will understand this) and that kind of information is designed to be public anyway (nothing fancy here);
#kali #pentesting #security
Pedro Gras (ghostdancer)'s status on Thursday, 02-Feb-2017 20:53:13 CET Pedro Gras #Pentesting Tools #Cheatsheet http://qttr.at/1ob4 !security