Skip to content
GainSec

GainSec

Where OSINT, Hacking, Penetration Testing, Privacy, Piracy, Information Security, Cyber Security and Law are a lifestyle.

  • Home
  • Projects
  • Shop
  • Press
  • Inquiries
  • About Me
  • Archives
  • FAQ
  • Cart
  • $0.00 0 items

Category: Web Application Pen Testing

OneListForAll added to Treehouse Wordlists!

An awesome wordlist repo added to TreeHouse Wordlists! Yay!

gainsec Web Application Pen Testing Leave a comment February 11, 2022February 5, 2022

STOP USING DEFAULT PASSWORDS

A large trove of default username and passwords for all kinds of products!

gainsec External Penetration Tests, Internal Penetration Test, Web Application Pen Testing Leave a comment January 16, 2022January 15, 2022

Interested in XXE?

XXE is an awesome web application attack vector. Here is a great recommended short course on the subject!

gainsec Beginner Tips, Web Application Pen Testing Leave a comment January 12, 2022January 11, 2022

A great example of one of my favorite cyber-attack types

Some commentary on a supply chain attack recently discovered and disclosed!

gainsec Supply Chain Attack, Web Application Pen Testing Leave a comment January 10, 2022January 9, 2022

The best list for API Offensive and Defensive Security!

A MUST have for anyone who is experienced or new to API/Web Application penetration testing.

gainsec API Penetration Testing, Beginner Tips, Web Application Pen Testing Leave a comment January 6, 2022January 5, 2022

Web App Pen Test against SalesForce

First step in a web application penetration test against SalesForce.

gainsec External Penetration Tests, Web Application Pen Testing Leave a comment July 17, 2021July 16, 2021

Burp Extension for Adobe Web Apps; Sign me up

This is a must-have Burp Suite Extension for when you're testing Adobe (AEM) web applications. Use this first, then run aem_hacker to double check!

gainsec Burp Extension, Burp Plugin, Web Application Pen Testing Leave a comment July 15, 2021July 14, 2021

Interesting Wordlist Added to TreeHouse Wordlists

Still working on TreeHouse Wordlists. Found a super interesting resource, called DomainsProject. Check it out!!

gainsec External Penetration Tests, Web Application Pen Testing Leave a comment July 9, 2021July 8, 2021

ALL THINGS SSRF

Whether you're a Bug Bounty Hunter, Penetration Tester, Student, Researcher, CTF Player or all of the above, this knowledge about SSRF's certainly can't hurt.

gainsec OWASP, Web Application Pen Testing Leave a comment July 2, 2021July 1, 2021

Under Utilized Tools/Resources #80

A extensive "new" XSS wordlist! Grab it now while it's hot for your next web app pen test!

gainsec External Penetration Tests, Information Security, Web Application Pen Testing Leave a comment April 15, 2021April 14, 2021

Posts navigation

Older posts
Newer posts

Twitter Feed

My Tweets

Follow Us

  • GitHub
  • Twitter
  • Instagram
  • Tumblr
  • Pinterest
  • LinkedIn
  • YouTube
  • LinkedIn
  • Twitch
  • Facebook
  • Etsy
 

Loading Comments...