Uniscan Webserver Fingerprinting Tutorial in Kali Linux

Uniscan is a simple but great tool for Remote File Include, Local File Include and Remote Command Execution vulnerability scanner. In this tutorial we will be exploring the webserver fingerprinting functionality in Uniscan on Kali Linux. The webserver fingerprinting functionality in Uniscan peforms a ping, traceroute, NS lookup, OS detection and service scan with Nmap on the … Read moreUniscan Webserver Fingerprinting Tutorial in Kali Linux

Discovering subdomains with Sublist3r

Discovering-subdomains-with-Sublist3r-ft-1024x490

Today we’re going to do a small tutorial on subdomain enumeration with a tool called Sublist3r. Whether you’re a penetration tester enumerating possible attack vectors or a bug bounty hunter looking for domains that are in scope, subdomain discovery tools are indispensable in every toolkit. Sublist3r is a subdomain discovery tool that is written in Python that … Read moreDiscovering subdomains with Sublist3r

Download XSStrike – Advanced XSS Exploitation Suite

Download Xstrike

XSStrike – Advanced XSS Exploitation Suite XSStrike is really advanced XSS exploitation and detection suite, which contains a very powerful XSS fuzzer and provides no false positive results using fuzzy matching. XSStrike is the first XSS scanner that generate its own payloads. Download xsstrike and test it out. It also have built in an artificial … Read moreDownload XSStrike – Advanced XSS Exploitation Suite