To achieve a more successful phishing campaign and to protect client credentials in transit, adding an SSL certificate to your phishing pages can a great addition. This guide assumes that you already have GoPhish set up and a phishing domain registered. For detailed instructions on how to set up GoPhish, review their documentation. To…
n00py Blog- Microsoft Word upload to Stored XSS
- Exploiting complex XSS payloads in a constrained parameter
- Bsides Puerto Rico 2017-2018 Presentation
- Raining shells on Linux environments with Hwacha
- Exploiting blind Java deserialization with Burp and Ysoserial
- Detecting CrackMapExec (CME) with Bro, Sysmon, and Powershell logs
- VulnHub Walkthrough: RickdiculouslyEasy 1
- How to Burp Good
- SSL Phishing with GoPhish and LetsEncrypt
- VulnHub Walkthrough: Donkey Docker