בלוג על אבטחת מידע – מחשבות, היבטים ותיאוריה. אוהב חי ונושם אבטחת מידע. אז קצת על עצמי כ – 13 שנה עוסק בתחום IT ושנתיים באבטחת המידע. מתעסק בכל הקשור לאבטחת מידע מרמת ביצוע התקיפה בפועל אל מול סוגים שונים של מערכות הכוללות גם את הפן האפליקטיבי וגם את הפן התקשורתי, ועד רמת תכנון הפיתרון […]
Read More →Many web and mobile applications rely on web services communication for client-server interaction. Most common data formats for web services are XML, whether SOAP or RESTful, and JSON. While a web service may be programmed to use just one of them, the server may accept data formats that the developers did not anticipate. This may […]
Read More →Scanning is a pretty common first step when trying to identify Windows systems that are missing critical patches. However, there is a faster way to start the process. Active Directory stores the operating system version and service pack level for every Windows system associated with the domain. Historically that information has been used during penetration […]
Read More →Today we are gonna talk about Veil-Catapult.Veil-Catapult is payload delivery for when metasploit’s psexec getting caught by AV.It utilizes Veil-Evasion to generate AV-evading binaries, impacket to upload/host the binaries, and the passing-the-hash toolkit to trigger execution.It officially supported on kali linux only.I`m going to show you how to install Veil-Catapult in backtrack? First if you […]
Read More →