Knowledge Base for Penetration Testing
Overview A compilation of commonly used Mobile Application Testing Tools, broken down by tool and denoted by Platform (Android or iOS). MobSF – Platform: Android, iOS MobSF is as close as you’ll likely get to free, Open-Source Vulnerability Scanning for Android and iOS Applications. Extremely intuitive to use. To scan an application, upload the respective […]
Jailbreaking Before you start: You’ll need an Apple ID/ Apple Developer Account via https://appleid.apple.com/ and https://developer.apple.com I believe that Impactor needs a full developer account at this point. unc0ver Jailbreak for iOS 11.0 – 12.2 Cydia Impactor: Unc0ver.ipa: Installing Unc0verMake sure you create a backup in iTunes and/or iCloud before doing this, just to be safe Steps: Using […]
Installing the VM Notes:Once the VM has been powered on this file cannot be edited, so ensure you untick “power on VM after installation”.During the setup process you’ll be asked to configure the file system with read/write access. Ensure you select yes for this for later steps. Configuring Android GUI Intercepting HTTP Traffic with Burp Device […]
Rooting Android & Jailbreaking iOS Android It is recommended to use an android device to test the application. If you cannot get one, then you can use an Android VM. Alternatively, you can configure an Android device. There are lots of guides on the Internet to root an Android device. A guide for Google Pixel rooting […]
Adding Additional Port Forwards During Existing Session A little trick to setup further port forwards within a current SSH session is to press “<shift> <enter> ~ c” simultaneously and then supply the relevant command. Setting Up Multiple RDP Connections On the AWS box (connecting to deployed Kali): Edit the AWS instance .ssh/config to set up […]
Trying to build a Mac Application Penetration Test Checklist…. How to Check if a macOS App is Notarized Version: macOS 11.7.1 You can check if a macOS application is notarized by using the spctl command-line utility. spctl evaluates if the system allows execution, installation, and other operations on files. The first example is an app […]
When on the cusp of receiving an external penetration test, clients want to prepare themselves for it. We often get asked what’s the easiest way to improve their score before the engagement has begun. Below are the top 3 ways to improve your external penetration testing results before it even starts. Account Management Credential-related attacks […]
JSON Web Token (JWT) is the proposed Internet standard, RFC 7519, for creating data with optional signature and/or optional encryption whose payload holds JSON that asserts some number of claims. The tokens are signed using a private secret or a public/private key. Let’s take a deeper dive into decoding and manipulating JWTs. This is a […]
A walkthrough on how to dump hashes in the SAM file using Mimikatz and crack them into cleartext credentials with John the Ripper or Hashcat.
In this article, you will learn how to renew certificates in your Spring Boot apps on Kubernetes with cert-manager and Stakater Reloader. We are going to run two simple Spring Boot apps that communicate with each other over SSL. The TLS cert used in that communication will be automatically generated by Cert Manager. With Cert […]
by 