Home
Node Security
Cancel

Android Hooking in Frida

Intro guide on how to use Frida to hook Android applications at runtime to inject code and override methods. This guide already assumes you have frida installed and have frida-server installed on y...

JSP War Shell

How to generate a reverse, bind, and in-browser JSP War shell. This will cover generating payloads with MSFVenom and manually creating a war file from our own JSP file(s). JSP War Shell MSFVeno...

SSH Port Forwarding

Guide for basic SSH usage and SSH Port Forwarding. Basic SSH Connect to Host Connect to Host with Private Key Connect to Host with Certain KeyExchange & Cipher ...

Mobile Useful

Collection of commands for when working with Android and iOS devices. Device must be Rooted/Jailbroken for almost all commands. Both Objection Search Files for String Sea...

Netsh Get Info

Collection of interesting and useful commands for the Netsh tool in Windows. Netsh has a huge amount of functionality, this is by no means exhaustive. Description Command ...

Web App Checklist

This page is an interactive tool of this page. All the data for this checklist application is STORED CLIENT-SIDE. This application works by storing data in localStorage so that it’s persistent betw...

Web App Security

General purpose guide for testing Web Applications. This list is not supposed to be exhaustive, nor is the information absolute. Each web application is different and the business case needs to be ...

Certificate Generate Pure NodeJS

This post will show example code of how to generate a Certificate Authority and Host Certificates (signed by the CA we generate) using NodeJS without using OpenSSL. This will be done using the node...

Objection Quick Start

Setup Install Objection Test Objection Find Application Attach to Application Android & iOS Files HTTP Server Hooking Othe...

NodeJS Express Cert Based Mutual Auth

In this post we’ll look at how to add Certificate Based Mutual Authentication to an express HTTPS server. This will allow us to require a User Certificate before being able to communicate with out ...