I downloaded this module from https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/http/joomla_http_header_rce.rb , added it to /usr/share/metasploit-framework/modules/exploits/multi/http/ and when I ran "msfconsole" I got an error saying ...more
Nahom Agidew's Popular Posts
How can I hack a Apache websever using metasploit on kali and gain remote access? As I did research on 2 servers the first one runs Apache/2.4.7 (Unix) and the second one runs Apache-Coyote/1.1!
In Metasploit, there's an auxilary module that detects joomla version and it requires RHOST. Is it possible to set RHOST to http://example.com? It flags an error when I do that. So how can i pass the domain name as rhost?
Is it possible to get a virtual ATM maybe a VMware or Virtual Box image in order to pentest it???
Hey guys, I want to inject a code into a video file or an image so that the injected code executes when the video/image is opened. How can i do this?
How can find a link that is vulnerable to SQL Injection from a site for e.g. example.com and find that link from example.com ?
After pinging and getting the IP of a website when i browsed to the ip the server redirected me to http://ip/cgi-bin/defaultwebpage.cgi . Why is that?? B/c I need to find the path to the installation of Joomla in that site.
Have you guys successfully exploited the stagefright vuln.? I found a python script on github(also posted in this forum) I was able to generate mp4 file but I couldn't get a shell back :(
Forum Thread : Does Anyone Have an Idea/Way/Technique to Get Around the New Facebook Password Recovery/Reset Method?
A while ago It was fairly easy to reset facbook password by answering security questions but now they made it more secure by asking government issued IDs. So anyone has an idea to get around this obstacle???
If i have the username and password in md5 encryption how can i login with it??
I pinged a site http://zemenbank.com/ and i got http://220.127.116.11/ when browsing with the above ip it should of landed me to the homepage instead i got an empty .cgi page. how can i know the exact path to the homepage with the ip??
Let's say you want to get remote access to a web server running linux. As a hacker how would you accomplish this? What tool would you use? Steps to follow?