This week I upgraded my Macbook to the latest version and since the update, I realized that every time I opened a new terminal I had this warning issue from Oh-my-Zsh. [oh-my-zsh] Can’t update: not a git repository. If you search a bit, there are several messages explaining that this error may be due to the application folder has been messed up and the .git folder being lost. It wasn’t
Fixed – [oh-my-zsh] Can’t update: not a git repository.
Burp Suite Academy lab – Stored XSS into HTML context with nothing encoded
This lab contains a stored cross-site scripting vulnerability in the comment functionality.To solve this lab, submit a comment that calls the alert function when the blog post is viewed. Access to the lab https://0a7900e404a806d2c000170700c90074.web-security-academy.net Solution Click on View post button: https://0a7900e404a806d2c000170700c90074.web-security-academy.net/post?postId=6 At the bottom of the page, there is a comments section where you can add a message. We can try to use the comment system to place our payload. Now access again to
Burp Suite Academy lab – Reflected XSS into HTML context with nothing encoded
Today we start a new series of CTF lab solutions. In this case, we start to solve labs from the Burp Suite Academy from portswigger.net Objective: This lab contains a simple reflected cross-site scripting vulnerability in the search functionality.To solve the lab, perform a cross-site scripting attack that calls the alert function. Solution: The lab’s URL is always a random series of characters followed by the domain web-security-academy.netIn this case,
What is my external ip?
This is a small script to know what is our external ip from the terminal.
This is another of the Very easy HTB Starting Point boxes. $ nmap -sV -p- 10.129.143.75 –min-rate 5000 As we can see in the Nmap results we hava a MongoDB version 3.6.8 MongoDB is a NoSQL database.You can find more information in their documentation here: https://www.mongodb.com/docs To be able to interact with the db, we need to install the MongoDB package into our Kali Linux. it is included in the
How to fix – Warning apt-key is deprecated
Last week I tried to install Ulauncher into a Linux Mint 21 freshly installed. After installing Ulauncher using: sudo add-apt-repository ppa:agornostal/ulauncher && sudo apt update && sudo apt install ulauncher I got this error: «Warning apt-key is deprecated«. After some Googling, I found this that help me to fix it. Fixing process: $ sudo apt-key list Now, we need to remember the last 8 Hexa digits (99503176) of the corresponding
Bat is a cat clone tool with many extra features: Syntax highlighting Git integration Show non-printable characters Automatic paging File concatenation Installation For a macOs sytem. (For other systems check the specific installation description in the documentation) ❯ brew install bat Usage Display a single file on the terminal ❯ bat file.txt Display multiple files at once ❯ bat *.txt Read from the stdin and detect the syntax automatically ❯
There will not be a new post this week due to the Amsterdam Schiphol chaos with the queues, flight cancellations, multiple hotel reallocations… If we can go back home, hopefully next week you will have a new one again. Sorry for any inconvenience…
Obsidian – «EMFILE: too many open files» after upgrading to Obsidian 0.15.6
After the last Obsidian upgrade to 0.15.6 in my Ubuntu 22.04 TLS with KDE, I got a message «EMFILE: too many open files» when trying to run the application whatever vault I tried to open. After searching a bit, I found this webpage where there is a workaround than can used to run Obsidian in the meantime the issue is fixed. You just have to increase the max_user_instances in the
VMware – Cannot open dev-vmmon – No such file or directory» error – Ubuntu 22.04 LTS
After an update for my Ubuntu 22.04 LTS, a new kernel was installed and again VMWare Workstation 16 could not start my Kali VM machine. I got a vmmon error: I’ve been an alternative solution to this problem more than the small workaround of modifying the default kernel to start in the Grub menu.After some Googling I found this script that worked fine. https://github.com/LinuxEuphony/vmware-host-modules-builder-cli The script is pretty simple to