this blog is an interesting tips and tricks site: http://tipstrickshack.blogspot.com/ (also explains hackers terminology a bit) The author describes several hacks on vulnerabilities within wordpress 3.51 (today latest is 3.8). So if you never upgrade your software (wordpress) then it will get hacked that is how it is, one always needs to be aware of … Read more
attacks will come in all types and methods, some will be standard – and some turbo charged. The reason a new vulnerability is such a big deal, is that any little problem vulnerability can cause a hacker to get a small connection with your systems. And unfortunately any small connection can led to larger … Read more
Hydra, w3af, Scapy are all good as well. We can create our own scans using scapy – as we can create our own scan reviews depending on the environment that we need to look at. to make this work – one really needs to understand the tcp networking from rfc793 contact us to learn … Read more
Penetration testing are several acts on various computers and systems. First in “recon” one checks the public profile of the company. Use scan tools, nmap, hping, scapy, burp suite, and others to check the target computers out. (this is the Alpha scan) Then one can use a few pre-built tools to review vulnerabilities … Read more
There are some good tools on the Internet (free) Like this one: http://www.yougetsignal.com/tools/open-ports/ This is just a basic port scan (likely tcp open check) unfortunately a hacker will use multiple scans and some of the different flags a packet can have. There are 2^8 ports and 6 different flags for packets (SYN/ACK/RST/FIN/URG/PSH) A good … Read more
