Scanning

Find Related Domains and Subdomains with assetfinder

January 27, 2022 Linux, Scanning, Security, Security Tools, Windows

assetfinder is a Go-based tool to find related domains and subdomains that are potentially related to a given domain from a variety of sources including Facebook, ThreatCrowd, Virustotal and more. assetfinder uses a variety of sources including those in the infosec space and social networks which can give relevant info: …

Vulnerability Scanner For Container Images & Filesystems

November 3, 2021 CentOS, Docker, Linux, Python, Scanning, Security Software

A vulnerability scanner for container images and filesystems. Easily install the binary to try it out. Works with Syft, the powerful SBOM (software bill of materials) tool for container images and filesystems.

How to Prevent DOM-based Cross-site Scripting

January 8, 2019 Browser, Cheat Sheet, How to, News, Others, Password, Scanning, Security

There’s no denying the role that JavaScript has played in making web applications the sleek, interactive, online experiences that we know and love today. This powerful scripting language brought interactivity and animation to the web. But with great power comes great responsibility. Cross-site-scripting (XSS) remains a persistent stalwart among the …

Identify website technologies with WhatWeb

November 15, 2018 Browser, Database, Hacking, How to, JSON, Linux, Password, Scanning, Security, Technical Documentation, Windows, WordPress

WhatWeb identifies websites. Its goal is to answer the question, “What is that Website?”. WhatWeb recognises web technologies including content management systems (CMS), blogging platforms, statistic/analytics packages, JavaScript libraries, web servers, and embedded devices. WhatWeb has over 1700 plugins, each to recognise something different. WhatWeb also identifies version numbers, email …

Advanced Persistent Threat Activity Exploiting Managed Service Providers

October 31, 2018 Monitoring, Network Traffic, Password, Scanning, Security, Sound, US-Cert, Virtual Private Network (VPN)

Organizations should configure system logs to detect incidents and to identify the type and scope of malicious activity. Properly configured logs enable rapid containment and appropriate response. Response An organization’s ability to rapidly respond to and recover from an incident begins with the development of an incident response capability. An …

blackMORE Ops Learn one trick a day ….

Enabling AMD GPU for Hashcat on Kali Linux: A Quick Guide

Failed to open directory on Kali Linux Virtualbox

Can’t connect to WiFi in Linux

Setting up Damn Vulnerable Web Application (DVWA) – Pentesting Lab

Starter Guide on Hacking and Information Security: The Two Paths

Free Android Penetration Testing Toolkit & Risk Assessment

Penetration Testing Tools for Beginners

Detect SQL Injection (SQLi) and XSS

Netflix’s Chaos Monkey: Embracing Failure for Resilience

How to Install Unraid NAS: Complete Step-by-Step Guide for Beginners (2025)

Complete WSL AI Development Environment Guide: CUDA, Ollama, Docker & Stable Diffusion Setup

Whispers: A Powerful Static Code Analysis Tool for Credential Detection

Enabling AMD GPU for Hashcat on Kali Linux: A Quick Guide

Migrate Plex Server – Ubuntu

Boot Ubuntu Server 22.04 LTS from USB SSD on Raspberry Pi 4

Find Related Domains and Subdomains with assetfinder

Vulnerability Scanner For Container Images & Filesystems

How to Prevent DOM-based Cross-site Scripting

Identify website technologies with WhatWeb

Advanced Persistent Threat Activity Exploiting Managed Service Providers

Netflix’s Chaos Monkey: Embracing Failure for Resilience

How to Install Unraid NAS: Complete Step-by-Step Guide for Beginners (2025)

Starter Guide on Hacking and Information Security: The Two Paths

A detailed guide on installing Kali Linux on VirtualBox

20 things to do after installing Kali Linux 1.x

Install AMD ATI proprietary fglrx driver in Kali Linux 1.0.6