Brute Forcing Forms with Hydra Hydra is more capable than just brute-forcing services, this tool can also brute force web forms. Dirb/DirBuster not returning anything? Change the user-agent. Some applications can be programmatically set up to deflect penetration testing. In...
Hardening ASP.NET Response Headers (Code) A reliable way to harden your ASP.NET web application is to remove and skew the response headers via code. This will throw off automated scans that are performing banner grabbing in an attempt to identify vulnerabilities. There are ways to do this in IIS, however, performing this in code...
SSH Tunneling When you need to access a server/client behind a firewall that doesn't allow port forwarding you can use SSH tunneling to bypass that if an SSH server is running. Pivoting is a sneaky technique that hackers use to access computers, servers, and services behind firewalls. These examples will use OpenSSH. I think...
Docker Compose: WORDPRESS_CONFIG_EXTRA The Docker image for WordPress contains a property called "WORDPRESS_CONFIG_EXTRA", this allows code to be passed directly to the wp-config.php file. This is great because you can fully customize your WordPress wp-config.php file. Queryable Variable for Enabling Debug My normal PHP code will not work:
53.3 ° F