Monthly Archive: November 2017

ANDROID PENETRATION TESTING LAB – DIVA

What is DIVA? DIVA (Damn insecure and vulnerable App) is an App intentionally designed to be insecure. We are releasing the Android version of Diva. We …

By Cloudi November 30, 2017

Android Penetration Testing Lab- Android-InsecureBankv2

Mobile Security

About Android-InsecureBankv2 This vulnerable Android application is named “InsecureBankv2” and is made for security enthusiasts and developers to learn the Android insecurities by testing this vulnerable …

By Cloudi November 23, 2017

Local File Inclusion – Sending Emails to Remote Code Execution

Network Security

Local file inclusion Local File Inclusion (LFI) is the process of including files, that are already locally present on the server. This vulnerability occurs when a …

By Cyclone November 10, 2017

Evil-Droid – Create, Generate and Embed APK Payloads

Mobile Security

Evil-Droid is a framework that create & generate & embed apk payload to penetrate android platform. Install Dependencies : metasploit-framework xterm Zenity Aapt Apktool Zipalign Download …

By Cloudi November 9, 2017

Linux networking-inteface configuration

Unix/Linux

Debian nic configuration /etc/network/interfaces The /etc/network/interface/ file is a core network interface card configuration file on debian dhcp client The screenshot below shows that our computer …

By Win Stark November 4, 2017

Setting labs and exploit Apache Struts2 S2-048 (CVE-2017-9791)

Network Security

Apache Struts 2.3.x – Struts1 Integration Remote Code Execution A vulnerablity that possible RCE in the Struts Showcase app in the Struts 1 plugin example in …

By Cyclone November 3, 2017

All things in moderation