Month: March 2018
Session Hijacking Attacks Explained
Today, I'll discuss "Session Hijacking" attacks. But first, we need to understand what a cookie is. What are "Cookies?"A "cookie" is nothing more than a simple text file containing an arbitrary string of characters. When you visit many of your favorite web sites, the web server stores a cookie on your HD, allowing it to ...
“150 million MyFitnessPal Accounts Compromised,” says Under Armour
As of March 29, 2018, Under Armour is reporting that 150 million MyFitnessPal accounts were compromised, leaving millions of usernames, E-mail addresses, and hashed passwords in an unauthorized third party’s hands. Due to the scope of the incident, this would be the largest data breach this year. If you re-use your MyFitnessPal password for any ...
PenTest Edition: Wi-Fi Testing with Wifite
Wifite is another wireless auditing tool that comes prepackaged in Kali Linux. This is perhaps the easiest tool so far, seeing as it automates the entire process, making it much easier for penetration testers to quickly test the security of wireless networks. You may be wondering if it's okay to display the SSIDs and BSSIDs ...
10 Network Diagnostic Command-Line Utilities Every Network Tech Should Know
At first, I was going to write about all the different diagnostic command-line utilities, but after a thorough reflection, I realized how exhaustive that would be. For that reason, I've decided to restrict this post to network command-line tools only. Here are a few of the network commands every network tech should know. 1. ipconfig, ...
PenTest Edition: Kismet Wireless
Kismet is a type of passive 802.11 (wireless) data-link layer packet sniffer and network detector. As long as you possess a network adapter that supports Monitor mode, you can sniff and identify 802.11a/b/g/n networks. Kismet is available for Linux, FreeBSD, NetBSD, OpenBSD, and Mac OS X. Although you can download and install it on a Windows ...
The Cybersecurity Man 