Learn Pentesting like a Pro | pentesting.academy | Substack

Learn different techniques to create custom wordlists from the content of a website and how to use John the Ripper or Hashcat to crack Windows or Linux passwords. Create tailored wordlists cewl www.example.com -m 6 -w example-cewl.txt Edit John the ripper config file:

pentesting.academy

5 hr ago

In a Server-Side Request Forgery (SSRF) attack, the attacker can abuse functionality on the server to read or update internal resources. The attacker…

pentesting.academy

Feb 6

Passive reconnaissance is a critical step for bug bounties or penetration testing engagements, get ready!

pentesting.academy

Feb 3

Understand what are the most common security threats within the Ethereum Smart Contracts

pentesting.academy

Jan 21

To grab big bounties in Web3 you rather get inside the Matrix =D

pentesting.academy

Jan 20

After using nmap and unicornscan for a while, RustScan is probably the fastest to scan TCP and UDP ports, learn how to use it

pentesting.academy

Jan 18

When looking for new vulnerabilities, fuzzing, is a great technique to crash apps with unexpected data, learn how to do it.

pentesting.academy

Jan 18

Learn several techniques to scan hosts, bypass firewalls and scan the whole IPv4 universe.

pentesting.academy

Jan 13

Learn Pentesting like a Pro

About Archive Sitemap

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts