How do you use the search function in metasploit?

CySecBot
1 minute

Trust me, I feel stupid asking this, but how does the search function work? Check this out:

msf6 > search name:wordpress_login [-] No results from search msf6 > use wordpress_login_enum Matching Modules ================ # Name Disclosure Date Rank Check Description - ---- --------------- ---- ----- ----------- 0 auxiliary/scanner/http/wordpress_login_enum normal No WordPress Brute Force and User Enumeration Utility Interact with a module by name or index. For example info 0, use 0 or use auxiliary/scanner/http/wordpress_login_enum

Why didn’t it return the result “wordpress_login_enum” when I searched “wordpress_login” ? How can I more effectively use the search function?

submitted by /u/Lazy-Reserve-131
[link] [comments]

Anonymous hosting

CySecBot
1 minute

I have 2 goals Not be tracked 2.host a website anonymously I have only ever used windows and hosted sites using IIS. I think I will need linux. Here are my plans please help me out 1.) Use public library computer to contact someone on craigslist for …

problem with getting handshake

CySecBot
1 minute

Hello, i am new in it. And i have a problem with wifi hacking tools. When i use aircrack-ng or wifite i cant get a handshake. Does anyone know how to solve it? Sorry for mistakes, English is not my native language. submitted by /u/fughes …

breaking news

Android mobile devices from top vendors in China have pre-installed malware

GlobalDefenseBot
3 minutes

Researchers reported that the top-of-the-line Android mobile devices sold in China are shipped with malware. China is currently the country with the largest number of Android mobile devices, but a recent study conducted by researchers from the University of Edinburgh and the Trinity College of Dublin revealed that top-of-the-line Android devices sold in the country […]

The post Android mobile devices from top vendors in China have pre-installed malware appeared first on Security Affairs.

Totally new and looking for advice

CySecBot
1 minute

Hey guys, I finally after a couple of years found time to do my long time biggest wish of learning to hack. Just installed Kali Linux on my PC, and I’m looking for some advice on how/where to get started. And also i wanna hear you guys and where you started and if you can start all over again, how would you do it? Any tutorials, projects, languages that are fundamental please brighten me on them. Also please don’t hate on the post I’m a complete newbie.

submitted by /u/NidoxX
[link] [comments]

Secure Remember Me for Login using PHP Session and Cookies

CySecBot
1 minute

This is not my area of expertise (to put it lightly).

I have a site I am using (non IT professional) and it remembers me for x period after log in.When I then go back I don’t need to log in again on Chrome. However, the site is set up so when I perform an action within that website (e.g. selling currency) I have to rekey the password to confirm the transaction.

In this scenario, it spits out the password in plain text into the actual site URL and the transaction fails. So it looks like the site doesn’t “really” remember me (cookie problem?) but then obviously showing my “secure” password in the URL in plain text is a bit concerning. If I refresh the site and try again – it works fine, no password exposed and the transaction works.

I use this site for some financial activity and I reported to them but they haven’t fixed it. Is there a risk here (as I don’t want to get my account hacked) as if so I am going to close out my account.

submitted by /u/FordNY
[link] [comments]