Download Africahackon CTF by John the Troll (487.71 MB) The CTF wanted to cover basics in the beginning where people not only see but observe. On loading the system we notice that there is a web application hosted on it. The application was a wordpress application. Things to note about it are: readme.html was still […]
WordPress is favoured because of its use of plugins. Initially we have covered to articles that would guide in manually hardening wordpress through htaccess and patching the theme but it doesn’t always have to be the case, non tech users would prefer doing the hardening via plugins. Some very nice plugins to do hardening include: […]
WordPress Hardening (htaccess)
Categories
WordPress is among the most widely used CMS in the world. This popularity has also lead to a number of issues within wordpress. We will look at how to harden wordpress using four elements , together or either one depending on level of hardening required. The 4 methods include: Hardening via htaccess Hardening via patching the theme […]
In the previous article we discussed wordpress hardening from a htaccess angle. In this article we will do various modifications to the functions.php file that comes with a wordpress theme , all the directives will be appended to the script without destroying the theme. The directives simply change how it shows things in the frontend, […]
PHP RATs (Reflected & Decoded)
Categories
This is a number of projects that have RATs utilising a PHP backend and executable client. They are fully decoded with source provided, they are not originally developed by me; The main aim of retreiving them and reversing was to simply get an understanding of the malware provider’s thought process in structuring and building the […]
PHP Utilities
Categories
This repository caters for simple scripts to do various attacks and perform various security related functions, currently here in is : Apache Byte Range Server DOS tester KOHA LFI Give Web Head (Directory and File Bruteforce) MD5 Dictionary cracker WordPress Ebook Generator Arbitrary File Download WordPress User Frontend Plugin Unrestricted File Upload Download PHP […]
0x88 Exploit Pack
Categories
This project was not originally by me , All i did was decode the actual exploit pack to enable looking under the hood for researchers so that they understand about how attacks were done using the exploit pack. Currently the attacks packed in it are: Jpg + chm Exploit JRL Exploit ActivX Exploit ActivX2 Exploit XMLHTTP […]
Malware Researcher Kit
Categories
This project is aimed at getting people introduced into the malware world it gives a number of malware samples for analysis and reversing. For the full list of viruses Full List of Viruses Full List of worms Download the Full Kit
NHG Driver Pack
Categories
This project was created to ensure that drivers are available for 2013 versions and earlier it can also check for updates to drivers. Currently it supports a number of operating systems and has drivers for the following : Wireless Cards Ethernet Cards Monitors Bluetooth Monitors SD Card Devices And much more… This project is now […]