Hack Your Way Out

 error: externally-managed-environment × This environment is externally managed ╰─> To install Python packages system-wide, try apt install     python3-xyz, where xyz is the package you are trying to     install.     If you wish to install a non-Kali-packaged Python package,     create a virtual environment using python3 -m venv path/to/venv.     Then use path/to/venv/bin/python and path/to/venv/bin/pip. Make     sure you have pypy3-venv installed.     If you wish to install a non-Kali-packaged Python application,     it may be easiest to use pipx install xyz, which will manage a     virtual environment for you. Make sure you have pipx installed.     For more information, refer to the following:     * https://www.kali.org/docs/general-use/python3-external-packages/     * /usr/share/doc/python3.12/README.venv note: If you believe this is a mistake, please contac...

Download Genymotion   .bin file Type command:  chmod +x filename.bin                             ./filename.bin Create an account in Genymotion website. Log in to the the App. Click the "+" button on the top and add a device(phone model). Run this command in terminal: "docker run -it --rm \ -p 8000:8000 \ -p 1337:1337 \ -e MOBSF_ANALYZER_IDENTIFIER=<adb device identifier> \ opensecurity/mobile-security-framework-mobsf:latest" In the <adb device identifier>  add your value at his  place   docker run -it --rm \ -p 8000:8000 \ -p 1337:1337 \ -e MOBSF_ANALYZER_IDENTIFIER=192.168.58.102:5555 \ opensecurity/mobile-security-framework-mobsf:latest Press enter.

  Increase font size of request and response Settings --> User Interface --> HTTP message display

 1. Weak Credentials Try default credentials like "admin:admin", "admin:unknown" Google for default credentials. Ask ChatGPT for defaults. Brute force using burp intruder and check for "200 status code". 2. Username Enumeration Through error message The "username is invalid" error message can indicate whether a username exists in the database. ffuf -request r.txt —fr "Username is invalid" -w ~/Downloads/wordlists/usgrnames.txt When brute-forcing, relying on error messages, codes, or response lengths can be confusing, as valid and invalid responses may look similar. Use FFUF to filter out invalid responses and return only valid usernames. Username Enumeration through Forget Password : 3. Username Enumeration through Forget Password If you find a username, use the same method to brute-force passwords by analyzing response codes and lengths. Some reset password pages may lack request limits, allowing unrestricted attempts. 4. Enumerate t...

  step 1: git clone https://github.com/dwisiswant0/apkleaks.git    step 2:  cd apkleaks/ step 3:  apt install python3-pyaxmlparser step 4:  sudo apt install jadx step 5:  python3  apkleaks.py  -f   ~/Downloads/<app-to-test-android.apk >  

Start by defining a clear objective, such as exploiting a remote code execution (RCE) vulnerability or bypassing authentication on your target. Then, consider how you can achieve this goal using various attack vectors like XSS, SSRF, or others - these are simply tools to help you reach your objective. Use the target as how a normal user would, while browsing keep these questions in mind: 1)How does the app pass data? 2)How/where does the app talk about users? 3)Does the app have multi-tenancy or user levels? 4)Does the app have a unique threat model? 5)Has there been past security research & vulnerabilities? 6)How does the app handle XSS, CSRF, and code injection?

   File and Binary Loading r2 <binary> : Open a binary file. r2 -d <binary> : Open a binary in debugging mode. aaa This is a shortcut for “analyze all." This command analyses our binary and looks for executable sections and looks for calls. when it finds a call, it looks for the destination of the call. afl Display all the functions in the code. V By pressing the capital letter V, show us all the different types of views the assembly view, graph views and the debugging view. Press the letter ‘p’ to navigate between the views. pdf : Print the disassembled function where the current seek is. pdr : Print function recursively (entire call graph). af <address> : Analyze a specific function at <address> . Navigation s <address> : Seek to a specific address. s - or s + : Move backward or forward. s entry0 : Seek to the program's entry point. s sym.main : Seek to the main function (if symbols are present) Disassembly and Debugging pd 10 : Disassemble 10...