Archive for: March 2024

Active Directory Attacks

28 March 2024 - Posted in Uncategorized by The XSS Rat

Active Directory attacks: Pass-the-Hash (PtH) Attack: Involves stealing hashed credentials from one system and using them to authenticate to another system. Pass-the-Ticket (PtT) Attack: Similar to

Protecting Your Digital Fortress: The Importance of Multi-Factor Authentication

20 March 2024 - Posted in Uncategorized by The XSS Rat

In today's digital age, our lives are increasingly intertwined with the online world. From banking to social media and everything in between, we rely on the internet for countless tasks. However,

SSTI Payloads

15 March 2024 - Posted in Uncategorized by The XSS Rat

${{<%[%'"}}%. ${{7*7}} ${{3*'3'}} <%= 3 * 3 %> ${6*6} {{dump(app)}} {{app.request.server.all|join(',')}} {{config.items()}} {{ [].class.base.subclasses()

Directory Traversal, Quick Guide

11 March 2024 - Posted in Bug bounties by The XSS Rat

Directory traversal, also known as path traversal, is a type of vulnerability that allows an attacker to access files and directories that are outside of the intended directory structure. This can

25 ways to make money with your hacking skills

03 March 2024 - Posted in Uncategorized by The XSS Rat

Here are 25 ways to make money with your skills in ethical hacking: Bug Bounty Hunter: Bug bounty hunters find and report vulnerabilities in software and websites for a bounty. This can be a great