7MS #590: Hacking Billy Madison - Part 2
1 min read Pentesting, Podcast

7MS #590: Hacking Billy Madison - Part 2

Today my Paul and I continued hacking Billy Madison (see part one here) and learned some interesting things:

  • You can fuzz a URL with a specific file type using a format like this:
wfuzz  -c -z file,/root/Desktop/wordlist.txt --hc 404 http://x.x.x.x/FUZZ.cap
  • To rip .cap files apart and make them "pretty" you can use tpick:
tcpick -C -yP -r tcp_dump.pcap

Or tcpflow:

apt install tcpflow
tcpflow -r
  • To do port knocking, you can use the knock utility:
sudo git clone https://github.com/grongor/knock /opt/knock
knock 1.2.3.4 21 23 25 69 444 7777777

You might also like...

Jan
19

7MS #607: How to Succeed in Business Without Really Crying - Part 15

1 min read
Jan
12

7MS #606: Hacking OWASP Juice Shop (2024 edition)

1 min read
Jan
05

7MS #605: Navigating the Demands of Tech Leadership with Amanda Berlin of Blumira

1 min read
Jan
01

7MS #604: A Two Tool Teaser

1 min read
Dec
24

7MS #603: Monitoring Your Tailscale Network with Uptime Kuma

1 min read

Popular tags

Podcast Pentesting interviews blue team diy