Search the Community
Showing results for tags 'web server'.
Hi guys, I am new to this forum and after looking around nearly everywhere, I am unable to find an answer to this question and hoped you could help. After scanning a website with nkito, the result showed that it was vulnerable to the sips vulnerability and that I could login as admin without knowing the password. However, after inputting the information in the url, I was simply redirected to the login page which also contains a captcha. Is there anyway I can still exploit the vulnerability such as using Metasploit?? Please help
I recently bought the new essentials filed kit form the hakshop https://hakshop.com/collections/hak5-field-kits/products/hak5-essentials-field-kit I looked at the hak5 youtube channel to see some hacks for the rubber ducky how they work and the creation process but and I liked the idea of the 15 Second Password Hack, Mr. Robot Style - Hak5 2101 as well as the 2 and 3 second hash hacks but there was one major problem for me throughout these video Darren used a web server with a web browser interface to hold the hashed files and the hack files like the rx.php and im.pxl. I was wondering how I can make a web server just a carbon copy of his (obviously different site name) so I can view it on a browser like chrome or firefox form any location with the ssh capabilities and console access so i can get the hack running like he did because that was a struggle for me and I probably doing something wrong and cant make one. This is a really cool hack especially because it can be simplified to 2 seconds possibly less, I'm just struggling to get the server to work. It would be nice if it could be made so its invisible like a vps. Preferably free Thanks Jsync