-
Ghoul HackTheBox
Recon # nmap -sC -sV -Ao nmap 10.10.10.101 # Nmap 7.92 scan initiated Tue Sep 27 15:23:09 2022 as: nmap -sC -sV -Ao nmap.again 10.10.10.101 Nmap scan report for 10.10.10.101 Host is up (0.090s latency). Not shown: 996 closed tcp ports (conn-refused) PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH...
-
The scope of a penetration test
different types of penetration testing There are three types of pentests which define the initial knowledge of the attacker. White-Box, Gray-Box, Black-Box. This has consequences for the duration, costs and the finding depth of the vulnerabilities. Black-Box test In a black-box test the attacker has no knowledge about the system...
-
OWASP Broken Access Control
importance A01:2021-Broken Access Control moves up from the fifth position; 94% of applications were tested for some form of broken access control. The 34 Common Weakness Enumerations (CWEs) mapped to Broken Access Control had more occurrences in applications than any other category. description Access control should ensure that users can...