– Always looking for something awesome –
How to create a GPG key pair? How to publish a GPG public key? Here is a short and handy guide 🙂 PGP: stands for Pretty Good Privacy and it was created by Symantec GPG: stands for GNU Privacy Guard, an alternative to Symantec’s official PGP software First of all install and test it: Let’s…
When you install Apache you expose your computer on the internet allowing attackers to access your webserver. If you want to restrict the access to external requests you would setup few rules. The easiest way is to write in the root of your webserver (usally located in /var/www/html/ ) a file called .htaccess that should…
Ssh key is very useful if you want to login quickly into applications such as when you want to clone or push from/to Github. Imagine if you set up this ssh key in plenty of services and you have to reinstall the operating system…what a nightmare! Actually there’s a very easy way to setup your…
WPScan is a very interesting and useful tool written in Ruby for scanning WordPress websites and find outdated versions of plugins, known vulnerabilities, enumeration of users etc… It’s very easy to use and very powerful. These are the installation step. After this, let’s install WPScan using gem: To run the scan, first of all update…
Burp is absolutely one of the best suite of tools for hacking and maybe the most used by the community. In this post I want to show up the solution if you are trying to intercept localhost calls but Burp seems to ignore them. First of all you have to check if your extension is…
Sometimes, the most easy way for an hacker to exploit your server is just to know the version of the web server that you are running on your machine. The first thing to do when you setup for example Apache, is to hide this information. In fact, the default setting is to show all the…