https://techdoku.nogafam.es/ 2026-04-22T04:09:26+00:00 https://techdoku.nogafam.es/ https://techdoku.nogafam.es/lib/exe/fetch.php?media=wiki:dokuwiki.svg text/html 2020-09-13T09:29:52+00:00 Anonymous (anonymous@undisclosed.example.com) https://techdoku.nogafam.es/doku.php?id=docu:csheet:ofsec:info:mitmproxy_android_install&rev=1599989392&do=diff Install MitmProxy (or other) CA Certificate on Android System Trusted ca-certs (NEEDS ROOT!) In order to make Android devices trust our MitmProxy CA Certificate (or another CA of your wish), we need to install it on the device as a System Trusted Certificate text/html 2020-02-08T20:29:50+00:00 Anonymous (anonymous@undisclosed.example.com) https://techdoku.nogafam.es/doku.php?id=docu:csheet:ofsec:info:netdiscover&rev=1581193790&do=diff Scan network device manufacturers and IPs Scan the whole subnetwork or other network ranges with arp pinging. # syntax (simple) netdiscover -i INTERFACE -r NETRANGE # examples: netdiscover -i eth0 netdiscover -i wlan1 -r 192.168.0.0/16 text/html 2025-07-11T22:19:45+00:00 Anonymous (anonymous@undisclosed.example.com) https://techdoku.nogafam.es/doku.php?id=docu:csheet:ofsec:info:nmap&rev=1752272385&do=diff Map IP network ports with Nmap # wow nmap --mtu 488 -Pn -rF -O --top-ports 9000 THEIPTOSCAN # other working example when SYN-ACK (-sS) method not working nmap -v -sT -Pn -n --top-ports=100 THEIPTOSCAN # complete scan working if using tor nmap --top-ports 10 -sT -PN -n -sV -vv THEIPTOSCAN text/html 2020-02-08T20:17:22+00:00 Anonymous (anonymous@undisclosed.example.com) https://techdoku.nogafam.es/doku.php?id=docu:csheet:ofsec:info:sslscan&rev=1581193042&do=diff Get SSL/TLS vulnerable information about a website Obtain SSL and TLS information about the actual implementations supported by the selected server/domain # syntax sslscan HOST:port # examples: sslscan kali.org:443 sslscan 192.168.1.1:443 text/html 2020-02-08T20:34:59+00:00 Anonymous (anonymous@undisclosed.example.com) https://techdoku.nogafam.es/doku.php?id=docu:csheet:ofsec:info:whatweb&rev=1581194099&do=diff Gather information about the software used by a website Get what software and server version and web applications the server might be using, and some more relevant information. whatweb -v https://anexamplesite.com text/html 2020-02-08T21:27:31+00:00 Anonymous (anonymous@undisclosed.example.com) https://techdoku.nogafam.es/doku.php?id=docu:csheet:ofsec:info:wpscan&rev=1581197251&do=diff WordPress WPScan Analizing tool This tool can analyze WordPress sites to search for vulnerable settings/plugins and mostly common vulnerabilities. # -v | verbose # --url URL | the url of the target website # --rua | use a random user agent on HTTP requests # -e vp | vulnerable plugins mode (vp) # --plugins-detection | aggressive: it will scrap web urls the hardcore way wpscan -v --url https://thewebsite.com --rua -e vp --plugins-detecti…