The Nginx Proxy Manager (NPM) is an open-source reverse proxy management system that runs as a Docker container. It is easy to set up and requires no expertise to work with Nginx servers or SSL cer...

Docker installation various depends upon the distribution you use check docker manual Installing Docker Engine on Debian 11 To install Docker on Debian 11, follow these steps: Update a Packa...

Introduction Today we will learn about the server-side request forgery attack. While enumerating, we discovered the FTP credentials through which we gain access to the server via ssh and the root u...

This is a fun box where we can find many ways where we can exploit let’s see how we can get the root into it let’s begin Reconnaissance This phase involves gathering information about the target ...

Reconnaissance Let’s do a quick reconnaissance to find the information about the box by doing a nmap scan to find the open ports As we have ftp port open by seeing at the namp results we have ...

Reconnaissance let’s do the quick scanning to find the open ports on the box nmap -sc -sV -oN file_name ip nmap -SC for default cripts aand -sV for enumerate version -oN for simple nmap format...

This is a easy box we start with file upload vulnerability Reconnaissance Let’s do a quick reconnaissance to find the information about the box by doing a nmap scan to find the open ports we ...

scanning Let’s scan the host to find the open ports with nmap, nikto and gobuster   Looking at the results we have two ports open one is being SSH and HTTP....

what is shell shock vulnerability Shellshock is a security bug causing Bash to execute commands from environment variables unintentionally. In other words if exploited the vulnerability allows the...

scanning Let’s scan the host to find the open ports We have three services open one is being an SSH HTTP & SMB let’s check the web server nothing much interesting hear. we have a billy ...