How to install and Configure cPanel/WHM!

Installing cPanel/WHM is fairly easy, you can install cPanel/WHM with only one command. However, in this article, we will discuss how we can first install cPanel/WHM and then perform the after-install steps so that we can get the maximum out of our dedicated server or VPS. Some important things we need to decide which options […]
Continue reading…

 

How to Clean a Hacked WordPress Site!

Getting your site hacked is really a painfull thing, and if you are reading this probably your WordPress site got hacked. The first thing you need to do is don’t get panic. Be calm and let see how we can get your site back to normal. Since WordPress can be really hard for non-technical people […]
Continue reading…

 

Use Burp Proxy to Intercept HTTP Traffic!

Burp proxy is a very nice tool to intercept HTTP traffic, it normally comes pre-installed with kali linux. In this article we will see how we can use burp proxy on Ubuntu and intercept GET and POST requests. I’am writing this separate article for burp proxy because some of its features are promising like stopping […]
Continue reading…

 

Automate Cross Site Scripting (XSS) attack using Beautiful Soup and Mechanize

Python can be used to develop a small customized application to automate cross site scripting attack, it can be very useful if you are performing a penetration test and need to automate few tasks. We will be using two python libraries Beautiful Soup and Mechanize to parse the website document and than submit forms using […]
Continue reading…

 

Combine Python Graphical User Interface with SQL Injection

Python is great language for penetration testing, I saw that people mostly develop python applications with command line versions only. How ever python have such a beautiful library named Tkinter to develop a graphical user based application, in this article we will combine Tkinter with sql injection to create a small GUI application that can […]
Continue reading…

 

Use Python to automate SQL Injection!

Manually testing for SQL Injection on your web application is really a hectic job, and some times the automatic scanners available does not actually fit your needs. Python comes to our rescue with its rich set of available libraries that can easily automate this task for us. You can easily write python scripts that fits […]
Continue reading…

 

How to install and configure ModSecurity on cPanel/WHM!

Website security is very important matter to date, and ModSecurity is one of the best web application firewall out there helping many web masters around the world securing their web application. Already a lot of hosting companies and individual users are using cPanel/WHM to manage their web servers, in this article we will see how […]
Continue reading…

 

How to install ModSecurity (mod_security) in apache web server on Ubuntu!

ModSecurity is one of the best web application level firewall, it can stop most of the common web attacks before even they reach your web application. If your website is vulnerable to an XSS attack, and ModSecurity is installed in your server than it can easily prevent that attack from reaching your web application, that […]
Continue reading…

 

How to hack WordPress through plugins!

Word press is one of the most used blogging platforms, and word press core (word press without plugins) is pretty much secure already. As word press is a blogging platform we need additional plugins to extend its functionalities, there are many plugins available to even completely change your word press installation to an e-commerce site. […]
Continue reading…