Best approach for a site with no SSL
#7
(01-02-2021, 01:19 PM)9ys Wrote: If you want to get cerdinals or db you have nothing to do with the presence of the ssl, it has nothing to do with. Cuz ssl is a means of transporting data in secure/encrypted mode.
Even ssl vulnerabilities can't help you get cerdinals or db, EXCEPT if you are in the same network with the administrator or users of the website.


Well, finally u must learn more about web pentesting, and take a basic look inside webservers  https://www.tecmint.com/best-open-source...rvers/amp/ , then learn more about how to discover and exploit web vuln in different FRAMWORKS, It's a bit big because each web framework differs from one to another u can start by php or python or smth else, Then practice and act, just be patient Big Grin . Good luck Wink

Hi,
I do run my own servers ( apache, nginx), crack WIFI, test run a botnet, modified a crypter.
For sure I'm just starting though.

I tried scanning the site with a cms detector but nothing came up. I'm guessing it's not wordpress or commmon frameworks.
Reply


Messages In This Thread
RE: Best approach for a site with no SSL - by 9ys - 01-02-2021, 01:19 PM
RE: Best approach for a site with no SSL - by Majin-Buu - 01-02-2021, 01:32 PM
RE: Best approach for a site with no SSL - by 9ys - 01-02-2021, 01:44 PM

Possibly Related Threads…
Thread Author Replies Views Last Post
  PassGAN: A Deep Learning Approach for Password Guessing Insider 1 6,242 01-26-2022, 09:43 PM
Last Post: enmafia2
  How to reduce the risk of being tracked when creating a phishing site? tR0J_0Ut4LuV 7 22,139 02-20-2021, 08:44 PM
Last Post: tR0J_0Ut4LuV
  McAfee Institute Partial Site Rip. [45GB][Mega] Hellsing 0 8,559 03-30-2019, 10:17 PM
Last Post: Hellsing
  Android 7 SSL Inspection EnigmaCookie 4 18,009 05-24-2018, 01:49 PM
Last Post: EnigmaCookie