Pen Test
A collection of 9 posts
Find Subdomains Fast with OWASP Amass: Don't Miss Hidden Entry Points
In this lab, you'll practice asset discovery with OWASP Amass. Get a comprehensive list of subdomains you might not have even known existed.
ยท Hangga Aji Sayekti
Pentora Box: Pen-Test Practice Labs
Turn tutorials into action. Pick a lab, spin up your environment, step through real-world tools, and challenge yourself without fear. Designed for self-learners, security enthusiasts and budding pentesters.
ยท Abhishek Prakash
Pen-Testing Lab: Hunting and Exploiting SQL Injection With SQLMap
Learn how to find and then exploit SQL injection, test it in a secure environment in this pen-test lab.
ยท Hangga Aji Sayekti
Automating XSS Hunting with Dalfox [Pen Testing Hands-on]
Learn about using Dalfox for XSS injection on Kali Linux with a demo scan against a safe target. Copy, paste, profit. For lab purposes only.
ยท Hangga Aji Sayekti
PenTesting 101: Using TheHarvester for OSINT and Reconnaissance
Gather intelligence about your target website with TheHarvester in this pen-testing practice tutorial.
ยท Hangga Aji Sayekti
How to Fingerprint Websites With WhatWeb - A Practical, Hands-On Guide
Another one of our simple, hands-on pen-testing tutorials. This one teaches you to finger a website for status code, server info, CMS etc.
ยท Hangga Aji Sayekti
Simulating and Detecting Malware Attacks on Linux With ClamAV
A simple exercise to simulate malware detection on Linux systems with ClamAV open-source antivirus engine.
ยท Hangga Aji Sayekti
Finding Subdomains with Subfinder in Linux
Checking subdomains of a website provides new scopes for vulnerability assessment.
ยท Hangga Aji Sayekti
Use tcpdump to Monitor HTTP Traffic and Extract Sensitive Data like Password and Cookies
A hands-on tutorial you can follow to analyze http traffic for sensitive data such as cookies and passwords.
ยท Hangga Aji Sayekti