Fixed – [oh-my-zsh] Can’t update: not a git repository.

This week I upgraded my Macbook to the latest version and since the update, I realized that every time I opened a new terminal I had this warning issue from Oh-my-Zsh. [oh-my-zsh] Can’t update: not a git repository. If you search a bit, there are several messages explaining that this error may be due to the application folder has been messed up and the .git folder being lost. It wasn’t

Burp Suite Academy lab – Stored XSS into HTML context with nothing encoded

This lab contains a stored cross-site scripting vulnerability in the comment functionality.To solve this lab, submit a comment that calls the alert function when the blog post is viewed. Access to the lab Solution Click on View post button: At the bottom of the page, there is a comments section where you can add a message. We can try to use the comment system to place our payload. Now access again to

Burp Suite Academy lab – Reflected XSS into HTML context with nothing encoded

Today we start a new series of CTF lab solutions. In this case, we start to solve labs from the Burp Suite Academy from Objective: This lab contains a simple reflected cross-site scripting vulnerability in the search functionality.To solve the lab, perform a cross-site scripting attack that calls the alert function. Solution: The lab’s URL is always a random series of characters followed by the domain web-security-academy.netIn this case,

What is my external ip?

This is a small script to know what is our external ip from the terminal.

HTB Mongod

This is another of the Very easy HTB Starting Point boxes. $ nmap -sV -p- –min-rate 5000 As we can see in the Nmap results we hava a MongoDB version 3.6.8 MongoDB is a NoSQL database.You can find more information in their documentation here: To be able to interact with the db, we need to install the MongoDB package into our Kali Linux. it is included in the

How to fix – Warning apt-key is deprecated

Last week I tried to install Ulauncher into a Linux Mint 21 freshly installed. After installing Ulauncher using: sudo add-apt-repository ppa:agornostal/ulauncher && sudo apt update && sudo apt install ulauncher I got this error: «Warning apt-key is deprecated«. After some Googling, I found this that help me to fix it. Fixing process: $ sudo apt-key list Now, we need to remember the last 8 Hexa digits (99503176) of the corresponding

Bat overview

Bat is a cat clone tool with many extra features: Syntax highlighting Git integration Show non-printable characters Automatic paging File concatenation Installation For a macOs sytem. (For other systems check the specific installation description in the documentation) ❯ brew install bat Usage Display a single file on the terminal ❯ bat file.txt Display multiple files at once ❯ bat *.txt Read from the stdin and detect the syntax automatically ❯

Short break

There will not be a new post this week due to the Amsterdam Schiphol chaos with the queues, flight cancellations, multiple hotel reallocations… If we can go back home, hopefully next week you will have a new one again. Sorry for any inconvenience…

Obsidian – «EMFILE: too many open files» after upgrading to Obsidian 0.15.6

After the last Obsidian upgrade to 0.15.6 in my Ubuntu 22.04 TLS with KDE, I got a message «EMFILE: too many open files» when trying to run the application whatever vault I tried to open. After searching a bit, I found this webpage where there is a workaround than can used to run Obsidian in the meantime the issue is fixed. You just have to increase the max_user_instances in the

VMware – Cannot open dev-vmmon – No such file or directory» error – Ubuntu 22.04 LTS

After an update for my Ubuntu 22.04 LTS, a new kernel was installed and again VMWare Workstation 16 could not start my Kali VM machine. I got a vmmon error: I’ve been an alternative solution to this problem more than the small workaround of modifying the default kernel to start in the Grub menu.After some Googling I found this script that worked fine. The script is pretty simple to