How to create a GPG key pair? How to publish a GPG public key? Here is a short and handy guide ๐ PGP: stands for Pretty Good Privacy and it was created by Symantec GPG: stands for GNU Privacy Guard, an alternative to Symantecโs official PGP software First of all install and test it: Let’s…
Category: Security
Access Apache only from localhost in Linux
When you install Apache you expose your computer on the internet allowing attackers to access your webserver. If you want to restrict the access to external requests you would setup few rules. The easiest way is to write in the root of your webserver (usally located in /var/www/html/ ) a file called .htaccess that should…
How to reinstall ssh key in Linux
Ssh key is very useful if you want to login quickly into applications such as when you want to clone or push from/to Github. Imagine if you set up this ssh key in plenty of services and you have to reinstall the operating system…what a nightmare! Actually there’s a very easy way to setup your…
WPScan: what is and how to install
WPScan is a very interesting and useful tool written in Ruby for scanning WordPress websites and find outdated versions of plugins, known vulnerabilities, enumeration of users etc… It’s very easy to use and very powerful. These are the installation step. After this, let’s install WPScan using gem: To run the scan, first of all update…
Burp and Firefox not proxying localhost
Burp is absolutely one of the best suite of tools for hacking and maybe the most used by the community. In this post I want to show up the solution if you are trying to intercept localhost calls but Burp seems to ignore them. First of all you have to check if your extension is…
Hide Apache and PHP version
Sometimes,ย the most easy way for an hacker to exploit your server is just to know the version of the web server that you are running on your machine. The first thing to do when you setup for example Apache, is to hide this information. In fact, the default setting is to show all the…