These are my notes from this excellent course … Postman Beginner’s Course — API Testing It is not a replacement for this course, it is just my notes, more written information can be found here:- https://github.com/vdespa/introduction-to-postman-course I have used some of the notes from git hub and I used Postman web – Postman Web link — https://web.postman.co/home My Notes … First API request via Postman …

I am working through some of the rooms to help develop my skills on TryHackMe, below is a walk through for this room https://tryhackme.com/room/basicpentestingjt Find open services Use NMAP to find open ports sudo nmap IP ADDRESS Look for Hidden directories To look for hidden directories, we will be using OWASP DirBuster, to start the application in…

To find out when a Linux account’s password was last changed, you can view the shadow file in the terminal as root: - sudo cat /etc/shadow This will bring up the accounts and hashed passwords in the terminal, the third value is the date the password was changed. NAME …

Nessus Essentials is a free vulnerability assessment tool for upto 16 IP address. The free version comes with some excellent and free tools:- Windows Install STEP 1 — https://www.tenable.com/downloads/nessus?loginAttempted=true STEP 2 — You then need to “get activation Code” STEP 3 — Installed as default, once the installation has been completed, your…

Introduction Appsheets allows users to create “no-code” applications to collect and/or connect to data. It is very similar to PowerApps from Microsoft and allows users to create mobile, tablet and web apps. AppSheets has been purchased by Google but can use data sources like DropBox, Office 365, Salesforce and more. How to Create an application Create…

The below script can be run against a single or multiple websites…

As a total Noob to Python, it may seem a pretty simple to add date to the end of a file name … but it took me an hour to work it out *facepalm inserted here* First in my script, I imported the “date” portion of the from the “datetime”…

Below are some notes I made to help prepare me for the SY0–501 exam which I passed on the 30th December 2020 … RC4 — is a streaming cipher algorithm that encodes plain text bit by bit. Bycrypt Algorithm — is based on the blowfish cipher and is a key…

When using iFrame in a web page it is important to configure it as a sandbox and set only the attributes need to run. The below infromation and sandbox attributes can be found here … https://www.w3schools.com/tags/att_iframe_sandbox.asp “The sandbox attribute enables an extra set of restrictions for the content in the…