I downloaded this module from https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/http/joomla_http_header_rce.rb , added it to /usr/share/metasploit-framework/modules/exploits/multi/http/ and when I ran "msfconsole" I got an error saying ...more
In Metasploit, there's an auxilary module that detects joomla version and it requires RHOST. Is it possible to set RHOST to http://example.com? It flags an error when I do that. So how can i pass the domain name as rhost?
After pinging and getting the IP of a website when i browsed to the ip the server redirected me to http://ip/cgi-bin/defaultwebpage.cgi . Why is that?? B/c I need to find the path to the installation of Joomla in that site.
Is it possible to get a virtual ATM maybe a VMware or Virtual Box image in order to pentest it???
Have you guys successfully exploited the stagefright vuln.? I found a python script on github(also posted in this forum) I was able to generate mp4 file but I couldn't get a shell back :(
If i have the username and password in md5 encryption how can i login with it??
I pinged a site http://zemenbank.com/ and i got http://67.210.104.80/ when browsing with the above ip it should of landed me to the homepage instead i got an empty .cgi page. how can i know the exact path to the homepage with the ip??
Hey guys, I want to inject a code into a video file or an image so that the injected code executes when the video/image is opened. How can i do this?
Let's say you want to get remote access to a web server running linux. As a hacker how would you accomplish this? What tool would you use? Steps to follow?
How can I hack a Apache websever using metasploit on kali and gain remote access? As I did research on 2 servers the first one runs Apache/2.4.7 (Unix) and the second one runs Apache-Coyote/1.1!
How can find a link that is vulnerable to SQL Injection from a site for e.g. example.com and find that link from example.com ?