Загрузка страницы
Все видеоНовые видеоПопулярные видеоКатегории видео

Hacking IIS (Recon) (Part 1)

Most IIS versions have been confirmed to be vulnerable to IIS shortname enumeration by default. This video goes into detail regarding what shortnames are, and how they are relevant when it comes to testing IIS servers. You will find some example successes in bug bounties at the end of the video.

I plan on making a few videos around IIS and .NET hacking. This is the first video in that series.

Links from the video:

https://twitter.com/irsdl
https://soroush.secproject.com/blog/
https://bit.ly/2DSwtX0
https://www.acunetix.com/blog/web-security-zone/windows-short-8-3-filenames-web-security-problem/
https://github.com/irsdl/IIS-ShortName-Scanner

Attack surface management platform: https://assetnote.io

Precious Time by Ketsa
Creative Commons Attribution
https://creativecommons.org/licenses/by-nc-nd/4.0/
Source: https://ketsamusic.com/track/1998282/precious-time

Видео Hacking IIS (Recon) (Part 1) канала Assetnote
Показать
Комментарии отсутствуют
Введите заголовок:

Введите адрес ссылки:

Введите адрес видео с YouTube:

Зарегистрируйтесь или войдите с
Информация о видео
14 сентября 2020 г. 3:42:36
00:12:43
Assetnote
Правообладателям
Жалоба
Комментарии
Другие видео канала
Hacking IIS (APIs and using BigQuery) (Part 2)Hacking IIS (APIs and using BigQuery) (Part 2)Best Hacking Operating System!Best Hacking Operating System!Bug Bounty Redacted #2: Third Party Subdomain Takeover & Exposed Admin InterfacesBug Bounty Redacted #2: Third Party Subdomain Takeover & Exposed Admin InterfacesHacker101 - JavaScript for Hackers (Created by @STÖK)Hacker101 - JavaScript for Hackers (Created by @STÖK)NahamCon2021 - Hacking IIS - @infosec_auNahamCon2021 - Hacking IIS - @infosec_auyou need to learn Docker RIGHT NOW!! // Docker Containers 101you need to learn Docker RIGHT NOW!! // Docker Containers 101How to Get Better at Hacking | IWCON-S22 Talk by Louis NyffeneggerHow to Get Better at Hacking | IWCON-S22 Talk by Louis NyffeneggerHow To Be Anonymous / Invisible Online - protect your privacy & anonymityHow To Be Anonymous / Invisible Online - protect your privacy & anonymityHackTheBox - OmniHackTheBox - OmniCatch Me If You Can - Shubham Shah & Michael Gianarakis at 44CON 2018Catch Me If You Can - Shubham Shah & Michael Gianarakis at 44CON 2018Bruteforce Attacks and Bypassing Rate Limits with FireproxBruteforce Attacks and Bypassing Rate Limits with FireproxMicrosoft Reflected XSS Vulnerability, SSRF Automation | Thursday Hacking Masala | Episode #8🔥Microsoft Reflected XSS Vulnerability, SSRF Automation | Thursday Hacking Masala | Episode #8🔥AutoRecon - Installation, Usage, & Configuration! #OSCPAutoRecon - Installation, Usage, & Configuration! #OSCPPhishing attacks are SCARY easy to do!! (let me show you!) // FREE Security+ // EP 2Phishing attacks are SCARY easy to do!! (let me show you!) // FREE Security+ // EP 2Vulnerable IIS Web Server - HackTheBox DevelVulnerable IIS Web Server - HackTheBox DevelMicrosoft IIS tilde directory enumeration Vulnerability | POCMicrosoft IIS tilde directory enumeration Vulnerability | POCHow Much Do Blogs Earn in 2021? Things have changed.How Much Do Blogs Earn in 2021? Things have changed.Microsoft PowerShell for Beginners - Video 1 Learn PowerShellMicrosoft PowerShell for Beginners - Video 1 Learn PowerShellHacking MS-SQL - From SQLi to Server AdministratorHacking MS-SQL - From SQLi to Server AdministratorBackslash Powered Scanning: Hunting Unknown Vulnerability ClassesBackslash Powered Scanning: Hunting Unknown Vulnerability Classes
Статистика портала
Яндекс.Метрика
© 2008-2024 «Информационно-развлекательный портал города Верхняя Салда»
| Карта портала | Реклама | Контакты | Сообщить об ошибке | Соглашения
salda.ws salda.ws@mail.ru
Сейчас на сайте: 512 Статистика портала