Posts

Showing posts with the label ceeh

amass v2.8.4 releases: In-depth subdomain

Online CEEH - Certified Expert Ethical Hacking Training  enumeration written in Go Amass is the subdomain enumeration tool with the greatest number of disparate data sources that performs analysis of the resolved names in order to deliver the largest number of quality results.
Amass performs scraping of data sources, recursive brute forcing, crawling of web archives, permuting and altering of names, reverse DNS sweeping, and machine learning to obtain additional subdomain names. The architecture makes it easy to add new subdomain enumeration techniques as they are developed.
DNS name resolution is performed across many public servers so the authoritative server will see traffic coming from different locations.
Changelogv2.8.4
enhanced the engine architecture to address #40 and #47 Download Use The most basic use of the tool, which includes reverse DNS lookups and name alterations:
$ amass -d example.com Add some additional domains to the enumeration:
$ amass -d example1.com,example…

exploitable: The ‘exploitable’ GDB plugin

Online Ethical Hacking/CEH/CEHv10/CEEH (Certified Expert Ethical Hacker) Training  GDB ‘exploitable’ plugin The ‘exploitable’ plugin (exploitable/exploitable.py) ‘exploitable’ is a GDB extension that classifies Linux application bugs by severity. The extension inspects the state of a Linux application that has crashed and outputs a summary of how difficult it might be for an attacker to exploit the underlying software bug to gain control of the system. The extension can be used to prioritize bugs for software developers so that they can address the most severe ones first.
The extension implements a GDB command called ‘exploitable’. The command uses heuristics to describe the exploitability of the state of the application that is currently being debugged in GDB. The command is designed to be used on Linux platforms and versions of GDB that include the GDB Python API. Note that the command will not operate correctly on core file targets at this time.
WARNING: This is an engi…