CVE-2000-0649

Test for CVE-2000-0649, and return an IP address if vulnerable

CVE-2000-0649 CVE-2000-0649 is a low risk vulnerability that can potentially disclose the internal IP addresses of the server Official details are here: Rapid7 CVE NIST This particular vulnerability became of interest to me because it seems to affect current NGINX and some Apache setups as well This tool tests for the vulnerability on a given IP or domain, and is deliberate

Windows IIS admin

win-iisadmin Windows IIS admin For extensive reading see the SSL Labs document page [IIS BASIC HARDENING CHECKLIST]   Apply common CVE registry changes 🚧👷‍♂️🚧 Ensure web content is on non-system partition Ensure ‘host headers’ are on all sites 🎉 Ensure ‘directory browsing’ is set to disabled Ensure ‘application p

You WHAT???

HackGPTV2 You WHAT??? (kali㉿kali) ┌──(kali㉿kali)-[~/Desktop] └─$ python3 mainpy Enter your prompt: You are in a Kali Linux Environment With the command line you have access to numerous tools that are used for penetration testing I want you to use these commands to do a full penetration test on this practice target that has an IP of 192168119103 - use the com

Script fo testing CVE-2000-0649 for Apache and MS IIS servers

CVE-2000-0649 for Apache CVE-2000-0649 is a low risk vulnerability that can potentially disclose the internal IP addresses of the server from the Location parameter in the respose header Official details are here: Rapid7: wwwrapid7com/db/modules/auxiliary/scanner/http/iis_internal_ip/ CVE: wwwcvedetailscom/cve/CVE-2000-0649/ NIST: nvdnistgov/vuln

Test for CVE-2000-0649, and return an IP address if vulnerable

CVE-2000-0649 CVE-2000-0649 is a low risk vulnerability that can potentially disclose the internal IP addresses of the server Official details are here: Rapid7 CVE NIST This particular vulnerability became of interest to me because it seems to affect current NGINX and some Apache setups as well This tool tests for the vulnerability on a given IP or domain, and is deliberate

As a LOTR fan I decided to start my CTF documentations by documenting the process of hacking this VulnHub Machine called Lord Of The Root.

CTF #2 - Lord Of The Root As a LOTR fan I decided to start my CTF documentations by documenting the process of hacking this VulnHub Machine called Lord Of The Root But first, let's have a look to my setup: My Setup A VirtualBox VM running Kali Linux Another VM running LOTRoot You can download the OVA file here A local network for both machines If you want to know ho

As a LOTR fan I decided to start my CTF documentations by documenting the process of hacking this VulnHub Machine called Lord Of The Root.

CTF #2 - Lord Of The Root As a LOTR fan I decided to start my CTF documentations by documenting the process of hacking this VulnHub Machine called Lord Of The Root But first, let's have a look to my setup: My Setup A VirtualBox VM running Kali Linux Another VM running LOTRoot You can download the OVA file here A local network for both machines If you want to know ho