How Vim Can Make a Hacker’s Life Easier with Macros and Registers
How Vim Can Make a Hacker’s Life Easier with Macros and Registers
Why Every Hacker Should Master Vim Macros and Registers
If you’re deep into hacking, pentesting, or security research, you know that automation is key. Repetitive tasks like manipulating payloads, encoding/decoding strings, or tweaking shell scripts can become tedious. Enter Vim macros and registers! These powerful features let you record and replay keystrokes, making your workflow insanely efficient.
No that I dont use IDE’s the likes of Visual Studio code (sometimes I do). However they can never match the raw power of vi/vim/nvim or any of the vim family of editors. To reap the maximum benefit, you have to learn the basics of using the editor in normal mode ( which is by the not the editing mode).
Continue readingUsing Burp with Containers In Docker
Making Docker Containers Trust Burp Suite’s CA for Testing
When testing applications running inside Docker containers, intercepting traffic with Burp Suite can be challenging because containers don’t automatically trust Burp’s CA certificate. Without trust, HTTPS requests from inside the container will fail with certificate errors.
In this post, I’ll show you how to:
- Add Burp Suite’s CA to your host system
- Pass the trusted CA to Docker containers
- Ensure seamless HTTPS traffic interception for testing
Let’s get started!
Continue readingCyborg Room Walkthrough
Room Overview
Room URL: Cyborg
Room IP: 10.10.79.217
- This will be different for you.
Recon
We begin our reconnaissance phase by scanning the target using Nmap. This helps us identify the open ports and services running on the machine.
|
|
Web Enumeration
Next, we perform directory enumeration using Gobuster to find hidden directories on the web server.
Continue readingPreparation and Review of eMAPT (INE security FKA eLearnSecurity Mobile Application Penetration Tester
I started thinking about Mobile pentesting sometime back. Finally in Feb/2024, I paid for the yearly subscription for INE and added eMAPT to my cart. If you dont know about eMAPT cert, then head over to eMAPT certification. And as per their home page
The Mobile Application Penetration Tester (eMAPT) certification is issued to cyber security experts that display advanced mobile application security knowledge through a scenario-based exam.
And on Apr/05/2024, I got My Certificate.