ARP Poisoning

Address Resolution Protocol – Poisoning / Spoofing How? An attacker sends falsified ARP messages over the LAN, which results in the linking of an attacker’s MAC address with the IP address of a victim computer or server on the network. Audience? LAN network segments that use ARP Impact? MitM attacks (viewing non encrypted traffic, sessions, […]
Continue reading…

 

SQLMap

Common Flags -u URL -p PARAMETER_TO_TEST -v VERBOSE (1-6, default 1-Show info and warning messages) –cookie=”document.cookie” –level=LEVEL (1-5) –risk=RISK (1-4) –user-agent=”SQLMAP” –headers=”HEADERS” –technique=BEUSTQ (Boolean, Error, Union, Stacked, Time, Query Inline) –dump DUMP DBMS database table entries –dump-all DUMP all DBMS database table entries –users –passwords –is-dba Determines if the current user is a DBA
Continue reading…