security

Steps to encrypt usb drive with VeraCrypt [100% secure]

Step by step instructions to encrypt USB drive using veracrypt software using a strong password and a strong hashing algorithm to ensure maximum security

Kennedy Muthii7 min read
security

How to perform in-browser OSINT using Mitaka

Mitaka which is an open-source intelligence tool to check and confirm the authenticity of various components we interact with as we use the internet for our daily activities. All the checks have been done from within the …

Kennedy Muthii5 min read
security

SMTP Enumeration Tutorial [100% Working]

smtp enumeration oscp, smtp enumeration cheat sheet, smtp enumeration kali, smtp enumeration hacktricks, smtp enumeration nmap, smtp enumeration tools

Deepak Prasad6 min read
security

Learn hacking with Metasploitable 2 [Step-by-Step]

Step by step beginners guide exploit remote services in Linux using Metasploitable 2 and Kali Linux. We learn to exploit samba server, ftp server on port 21 and VNC Server using vulnerabilities in these services

Kennedy Muthii6 min read
security

How to configure secure Kerberized NFS Server ( RHEL / CentOS 7)

Setup Kerberized NFS share secured with kerberos authentication for LDAP Users using IPA server on RHEL / CentOS 7 Linux added security with sec=krb5p NFS share

Deepak Prasad6 min read
security

How to track IP address using an Image

step by step instructions to track ip address of any computer using an image.

Kennedy Muthii5 min read
security

L3MON - Hack Android Mobile Remotely [Step-by-Step]

Step by step instructions to hack android remotely using l3mon RAT i.e Remote Administration Tool. Install malware on the android to access the mobile.

Kennedy Muthii6 min read
security

Fail2ban SSH config on Ubuntu 18.04 and RHEL/CentOS 8

5 steps guide to Install and configure fail2ban SSH on RHEL/CentOS 7/8 Ubuntu 18 with examples. Fail2ban log rotation list banned ip firewall iptables multiport

Deepak Prasad12 min read
security

Install Node.js and NPM Kali Linux

Step by Step instructions to install node.js and npm on kali linux with screenshots. Two different methods to install node.js and NPM using default repository and official archive

Deepak Prasad5 min read
security

Perform a Local File Inclusion Attack [100% Working]

Local file inclusion (LFI) is a type of cyber attack in which an attacker is able to gain access to sensitive information stored on a server by exploiting the

Kennedy Muthii6 min read
security

How to check security updates list & perform linux patch management RHEL

Perform Linux patch management in RHEL 6/7/8 Linux in LIVE production environment. Identify vulnerabilities list and security updates list then apply patch

Deepak Prasad11 min read
security

How to use Andriller - Forensic Tool [SOLVED]

Andriller is a popular and comprehensive android forensic tool that provides a powerful suite of features for forensic experts and law enforcement agencies to

Kennedy Muthii5 min read
security

Top 5 Subdomain Enumeration Tools [Web Application Pentest]

In this tutorial article, we have learnt the top 5 tools used for Subdomain Enumeration in Web application Pentesting. All the tools in this post are very essential for a web application pentest and I would advise to at …

Deepak Prasad9 min read
security

How to HACK WiFi password [100% Working]

We will share step by step instructions to understand the different terminologies and steps involved to hack wifi password using Kali Linux.

Deepak Prasad7 min read
security

Tutorial - Lockphish V2.0 PIN phishing attack

Many devices use PIN to protect privacy of their users. In this guide, we will be using lockphish tool to phish for pin locks for different target operating

Kennedy Muthii5 min read
security

Man In The Middle Attack | ARP Spoofing With arpspoof

A Man in the Middle attack is one of the most popular attacks carried on local networks. arpspoof use to perform ARP Spoofing

Deepak Prasad6 min read
security

How to build Windows Remote Access Trojan?

After the installation is complete, we can now proceed to install, run and use RAT-el to build a Windows RAT payload. We download the tool’s file from its

Kennedy Muthii6 min read
security

MobSF: Android App Pentesting [Step-by-Step]

Mobile app pentesting is a crucial process that ensures the safety of data and sensitive information stored in mobile applications. With the rising number of

Kennedy Muthii5 min read
security

APKHunt: Android App Pentesting [Step-by-Step]

APKHunt is a powerful tool used in the android app pentest. Android app pentest, short for Android application penetration testing, is the process of

Kennedy Muthii5 min read
security

Hack Android Remotely with Ghost Framework

In this guide, we will be running Ghost framework on a Kali Linux PC.

Kennedy Muthii5 min read
security

How to use SpiderFoot?

Spiderfoot is a versatile and powerful open-source reconnaissance tool that can gather intelligence about a target. This tool is designed to automate various

Kennedy Muthii5 min read
security

How to Bypass Android Lock Screen? [100% Working]

Android PIN bypass refers to the process of bypassing the PIN code that is used to lock and secure an Android device. This can be done through various

Kennedy Muthii5 min read
security

Browser-in-the-Browser Attack

A browser-in-the-browser attack is an exploit that involves an attacker using a malicious browser to gain access to a target system. This type of attack is

Kennedy Muthii4 min read
security

How to setup Android Pentesting Lab [100% Free]

Step by Step instructions to setup Android pentesting lab with examples

Kennedy Muthii6 min read
security

Perform Postgres DB Brute Force Attack

In this guide, I will show how an attacker can perform a Postgres brute force attack on a target system to gain access to a database.

Kennedy Muthii5 min read
security

Perform VNC Brute Force Attack

In this guide, I will illustrate ways a bad actor may perform a VNC brute force attack to gain access and control a target computer.

Kennedy Muthii5 min read
security

How to Brute Force Attack on Web Forms? [Step-by-Step]

In the previous guide, we learned how to generate a word list using Crunch. In this guide, we will learn how to brute force a web form using THC-Hydra. We

Kennedy Muthii5 min read
security

Wordlist Generator using Crunch

Use crunch as wordlist generator or generating password strings for brute force attacks

Kennedy Muthii5 min read
security

Automated web cache deception attack [Tutorial]

Many of the websites on the internet are still prone to a web cache deception attack. In this kind of attack, a bad actor will “fool” a webserver to serve

Kennedy Muthii5 min read
security

Use canary tokens for intrusion detection [Tutorial]

Step by Step instructions to use canary tokens for intrusion detection

Kennedy Muthii6 min read