Hacking Together an ASM Platform Using ProjectDiscovery Tools
IntroductionIn this article, we’re going to walk through hacking together a simple attack surface monitoring platform by using ProjectDiscovery tools, bash, and flask. We will also be using MongoDB & Redis for scan data and scan queues. This tool was written...
ProjectDiscovery's Best Kept Secrets
A tour of ProjectDiscovery's less-known public tools, and how to use them by @pry0ccIntroductionFor those unaware, ProjectDiscovery is a group of talented...
Interactsh v1.0.0
Interactsh v1.0.0 brings more stability, new protocols support, and a slew of other improvements and security fixes. Server Pool Support...
Abusing Reverse Proxies, Part 2: Internal Access
IntroductionAs seen in Part 1: Abusing Reverse Proxies: Metadata, open proxies can allow an attacker to access cloud metadata API services. However,...
Abusing Reverse Proxies, Part 1: Metadata
IntroductionMany cloud service providers offer a "metadata" service on their virtual machines. These services offer sensitive details about the instance and cloud...