on Cloud, Cybersecurity, JuiceShop, OWASP, Pentest, penetration test, Reporting, Vulnerability Scanning

PlexTrac for Faster Report Writing!

PlexTrac is the next generation platform for cybersecurity professionals. Workflow integrations and automated reporting make PlexTrac the last cybersecurity tool you will ever need.…

on burpsuite, web app, Web Token, Bypass, Cybersecurity, DVWA, Kali Tools, OWASP, Pentest, CSRF, Anti-CSRF

Bypassing Anti-CSRF with Burp Suite Session Handling

Using Burp Suite to bypass anti-CSRF protections with the built-in Session Handling and Macro recorder.…

on burpsuite, Kali Linux, CA, Certificates, Command Line

Adding Burp Suite CA Certificate to Kali Linux Certificate Store

Quick blog post to offer instructions on how to add a Burp Suite CA certificate to the Kali Linux CA Store.…

on Cloud, AWS, Terraform, Red-Baron, TerraformFun, Google Cloud, GoPhish, Automate, Redteaming, Phishing

Going Phishing with Terraform

Terraform is a tool for building, changing, and versioning cloud or local infrastructure safely and efficiently. Using Terraform Red Teams can quickly spin up offensive resources.…

on SMB, Samba, penetration test, Internal Network, Enumeration, SMBClient, NULL Session, Kali Linux, Linux, windows

Using SMBClient to Enumerate Shares

This blog post seeks to demonstrate the vulnerabilities of SMB NULL sessions, and how to test them with smbclient.…