Khirawadhi

A Hacker’s Mind, A Poet’s Soul

Tag: Kali Linux

  • XZ Utils Backdoor

    XZ Utils Backdoor

    khirawdhi

    What is XZ Utils, and what is the XZ backdoor? XZ Utils and its underlying library liblzma is a free software tool that implements both XZ and LZMA, which are two compression/decompression algorithms widely used in Unix-based systems, including Linux systems. XZ Utils is used by many operations on those systems for compressing and decompressing…

  • What and How : Cain & Abel
    , , , , ,

    What and How : Cain & Abel

    khirawdhi

    Cain and Abel is a password recovery tool that is often used in the field of cybersecurity. It is primarily designed for Microsoft Windows operating systems and has functionalities related to network analysis and password cracking. Here are some key aspects of Cain and Abel: It’s important to note that while Cain and Abel has…

  • What is RDP, How to enumerate for privilege escalation.
    , , ,

    What is RDP, How to enumerate for privilege escalation.

    khirawdhi

    RDP stands for Remote Desktop Protocol. It is a proprietary protocol developed by Microsoft, which provides a user with a graphical interface to connect to another computer over a network connection. The user can interact with the remote computer as if they were physically present at its location. Key features of RDP include: RDP is…

  • FTP and how to Pentest FTP
    , , , ,

    FTP and how to Pentest FTP

    khirawdhi

    FTP stands for File Transfer Protocol. It is a standard network protocol used to transfer files from one host to another over a TCP-based network, such as the internet. FTP is commonly used for transferring web page files from their creator to the computer that acts as their server for everyone on the internet. FTP…

  • Exploitation : Heartbleed Vulnerability : Ubuntu Server 12.04
    , , , , , , , , ,

    Exploitation : Heartbleed Vulnerability : Ubuntu Server 12.04

    khirawdhi

    What is Heartbleed Vulnerability? It’s a vulnerability in the OpenSSL Cryptographic software Library, where it doesn’t do bound check for input validation in the heartbeat extension where data can be accessible then it shouldn’t be, Authorization Credentials can be seen in plain text aka leaking of information bypassing the confidentiality. What we need: 1) Ubuntu…

  • Exploitation with Eternalblue : Win7
    , , , , , , , ,

    Exploitation with Eternalblue : Win7

    khirawdhi

    What is Eternalblue? It’s a software vulnerability in Microsoft windows OS works by exploiting Microsoft Server Message Block 1.0 (SMB) on various Microsoft Windows versions. SMB or Server Message block is a network file sharing protocol, which allow applications on a computer to read and write to files and to request services on the same…