Freaks City

Modular programming is a cornerstone of modern software development. By separating logic into distinct files—such as database handlers, configuration templates, or UI components—developers can maintain cleaner and more efficient codebases. Functions like include or import allow these separate modules to be merged at runtime. While this practice ...

Common Phases of Network Penetration Network penetration typically follows a structured approach: Information Gathering: Collecting intelligence about the target, including public-facing assets, employee details, and technologies in use. External Foothold Establishment: Identifying and exploiting vulnerabilities in public-facing systems to gai ...

File Inclusion and Upload Vulnerabilities File inclusion vulnerabilities occur when a web application dynamically includes files based on user input without proper validation, allowing attackers to include malicious files. Modern server-side languages like PHP (since version 5.2.0) often disable remote file inclusion by default, making Local Fi ...

Penetration Testing Workflow OverviewPhase 1: Reconnaissance and Information GatheringNetwork Infrastructure AnalysisGathering intelligence about the target infrastructure forms the foundation of any security assessment. Key activities include:Deploying Nmap to discover live hosts, open ports, and running services across the target network segm ...

0x01 Reconnaissance and Initial Access The challenge started with a login page. Directory scanning revealed no other entry points. Brute-forcing weak credentials seemed like the obvious approach, but without knowing the username policy, blindly attempting logins could trigger protective measures and expose or block our IP. Observing a "Reg ...

Infrastructure Deployment and Lab Preparasion Establishing a robust environment is the foundation of any security audit. Kali Linux provides various deployment options tailored for cloud, containerized, and mobile environments. Cloud Implementation via Amazon AWS Deploying Kali on Amazon EC2 allows for external penetration testing from a stable ...

Cookie (Stored in Browser) A cookie is a specific piece of data that is permanently stored in the browser. It is merely a data storage functionality implemented by browsers. Cookies are generated by the server, sent to the browser, and saved as key-value pairs in a text file within a directory on the client. On subsequent requests to the same w ...