HackMag – Page 21 – Tech magazine for cybersecurity specialists

Ethernet Abyss. Network pentesting at the data link layer

Date: 13/02/2023

Author: Caster

When you attack a network at the data link layer, you can ‘leapfrog’ over all protection mechanisms set at higher levels. This article will walk you through most of the attack vectors targeting this lowest level of the network.

Read full article →

Gateway Bleeding. Pentesting FHRP systems and hijacking network traffic

Date: 12/02/2023

Author: Caster

There are many ways to increase fault tolerance and reliability of corporate networks. Among other things, First Hop Redundancy Protocols (FHRP) are used for this purpose. In this article, I will explain how pentesters interact with FHRP in the course of network attacks.

Read full article →

Top 5 Ways to Use a VPN for Enhanced Online Privacy and Security

Date: 22/01/2023

Author: Duygu Demiroz

This is an external third-party advertising publication.

Read full article →

What Challenges To Overcome with the Help of Automated e2e Testing?

Date: 15/12/2022

Author: Functionize Team

This is an external third-party advertising publication.

Read full article →

Playful Xamarin. Researching and hacking a C# mobile app

Date: 03/06/2022

Author: Mazay

Java or Kotlin are not the only languages you can use to create apps for Android. C# programmers can develop mobile apps using the Xamarin open-source platform. Today, I will explain how to research such apps and find ways to hack them.

Read full article →

Challenge the Keemaker! How to bypass antiviruses and inject shellcode into KeePass memory

Date: 03/06/2022

Author: snovvcrash

Recently, I was involved with a challenging pentesting project. Using the KeeThief utility from GhostPack, I tried to extract the master password for the open-source KeePass database from the process memory. Too bad, EDR was monitoring the system and prevented me from doing this: after all, KeeThief injects shellcode into a remote process in a classical oldie-goodie way, and in 2022, such actions have no chance to go unnoticed.

Read full article →

Vulnerable Java. Hacking Java bytecode encryption

Date: 03/06/2022

Author: JaboHack

Java code is not as simple as it seems. At first glance, hacking a Java app looks like an easy task due to a large number of available decompilers. But if the code is protected by bytecode encryption, the problem becomes much more complicated. In this article, I will explain in detail how to circumvent this protection mechanism.

Read full article →