drd_'s Latest Posts
How To: Perform Directory Traversal & Extract Sensitive Information
SQL Injection 101: Common Defense Methods Hackers Should Be Aware Of
SQL Injection 101: How to Avoid Detection & Bypass Defenses
SQL Injection 101: Advanced Techniques for Maximum Exploitation
SQL Injection 101: How to Fingerprint Databases & Perform General Reconnaissance for a More Successful Attack
SQL Injection 101: Database & SQL Basics Every Hacker Needs to Know
How To: Attack Web Applications with Burp Suite & SQL Injection
Next Page
Prev Page Sites
- Hot
- Latest
-
How To: Fingerprint Web Apps & Servers for Better Recon & More Successful Hacks
-
How To: Write Your Own Subdomain Enumeration Script for Better Recon
-
How To: Clear the Logs & Bash History on Hacked Linux Systems to Cover Your Tracks & Remain Undetected
-
How To: Use Banner Grabbing to Aid in Reconnaissance & See What Services Are Running on the System
-
How To: Discover Hidden Subdomains on Any Website with Subfinder
-
How To: Use Gtfo to Search for Abusable Binaries During Post-Exploitation
-
How To: Escape Restricted Shell Environments on Linux
-
How To: Use Linux Smart Enumeration to Discover Paths to Privesc
-
How To: Fuzz Parameters, Directories & More with Ffuf
-
How To: Bypass PowerShell Execution Policy to Pwn Windows
-
How To: Bypass File Upload Restrictions on Web Apps to Get a Shell
-
How To: Crack Password-Protected ZIP Files, PDFs & More with Zydra
-
How To: Crack SSH Private Key Passwords with John the Ripper
-
How To: Conduct a Pentest Like a Pro in 6 Phases
-
How To: Use Postenum to Gather Vital Data During Post-Exploitation
-
How To: Write Your Own Bash Script to Automate Recon
-
How To: Python 2 vs. Python 3 — Important Differences Every Hacker Should Know
-
How To: Audit Web Applications & Servers with Tishna
-
How To: Get Started with Kali Linux in 2020
-
How To: Gather Information on PostgreSQL Databases with Metasploit
-
How To: Enumerate SMB with Enum4linux & Smbclient
-
How To: Crack SSH Private Key Passwords with John the Ripper
-
How To: Exploit EternalBlue on Windows Server with Metasploit
-
How To: Crack Shadow Hashes After Getting Root on a Linux System
-
How To: Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To: Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
-
How To: Brute-Force FTP Credentials & Get Server Access
-
How To: Get Root with Metasploit's Local Exploit Suggester
-
How To: Scan Websites for Interesting Directories & Files with Gobuster
-
How To: Exploit WebDAV on a Server & Get a Shell
-
How To: Escape Restricted Shell Environments on Linux
-
How To: Attack Web Applications with Burp Suite & SQL Injection
-
How To: Exploit Java Remote Method Invocation to Get Root
-
SQL Injection 101: How to Fingerprint Databases & Perform General Reconnaissance for a More Successful Attack
-
How To: Perform a Pass-the-Hash Attack & Get System Access on Windows
-
How To: Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To: Exploit Shellshock on a Web Server Using Metasploit
-
How To: Use SQL Injection to Run OS Commands & Get a Shell
-
How To: Hack Apache Tomcat via Malicious WAR File Upload
-
How To: Bypass File Upload Restrictions on Web Apps to Get a Shell
-
How To: Use Command Injection to Pop a Reverse Shell on a Web Server
-
How To: Exploit Remote File Inclusion to Get a Shell
-
How To: Use Metasploit's WMAP Module to Scan Web Applications for Common Vulnerabilities
-
How To: Fuzz Parameters, Directories & More with Ffuf
-
How To: Manually Exploit EternalBlue on Windows Server Using MS17-010 Python Exploit
-
How To: Perform Local Privilege Escalation Using a Linux Kernel Exploit
-
How To: Upgrade a Dumb Shell to a Fully Interactive Shell for More Flexibility
-
How To: Enumerate NetBIOS Shares with NBTScan & Nmap Scripting Engine
-
How To: Crack Password-Protected ZIP Files, PDFs & More with Zydra
-
How To: Clear the Logs & Bash History on Hacked Linux Systems to Cover Your Tracks & Remain Undetected
-
How To: Advanced Techniques to Bypass & Defeat XSS Filters, Part 1
-
How To: Use Metasploit's Timestomp to Modify File Attributes & Avoid Detection
-
How To: Beat LFI Restrictions with Advanced Techniques
-
How To: Generate a Clickjacking Attack with Burp Suite to Steal User Clicks
-
How To: Identify Missing Windows Patches for Easier Exploitation
-
How To: Use LinEnum to Identify Potential Privilege Escalation Vectors
-
How To: Elevate a Netcat Shell to a Meterpreter Session for More Power & Control
-
How To: Compromise a Web Server & Upload Files to Check for Privilege Escalation, Part 2
-
How To: Discover XSS Security Flaws by Fuzzing with Burp Suite, Wfuzz & XSStrike
-
How To: Use John the Ripper in Metasploit to Quickly Crack Windows Hashes