Fuzzing with Ffuf Github: https://github.com/ffuf/ffuf In a word full of web-fuzzing tools, everyone has a favorite and mine happens to be Ffuf. It might not be as robust as some competitors, but it just freaking works really well and I like the clean output. Here’s some of the common commands…
Tips&Tricks
Continue Reading
What to do When You Forget Your WP-Admin Password
Even in the age of password managers, I’m still horrible about not saving things correctly (or forgetting key bits of information relevant to logins). So if you ever find yourself locked out of your wordpress.org blog, here’s 3 ways you can get back in. 1 – If you have a…
HTB Academy
Continue Reading
HackTheBox Academy – Web Fuzzing
(Sections 1 and 2 coming soon) NOTE: I have blurred out any secret values and flags. There are plenty of walkthroughs that chose to leave them in there, but I think half the fun is figuring it out. Hopefully this helps you get unstuck while you’re working through the module…