[TeaPot]

Hi guys, I've done some ctf and challenge but now I want to test it on real target so what do you advice me to find some vulnerable websites to train myself and maybe make a bit of money ?

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Leeching | https://breachforums.hn/Forum-Ban-Appeals if you feel this is incorrect.

[XTN]

it's not that easy, CTF and real world are two different things as i said in the SB.
But, if u wanna start looking around, i suggest u to strat from Shodan...

[TeaPot]

it's not that easy, CTF and real world are two different things as i said in the SB.
But, if u wanna start looking around, i suggest u to strat from Shodan...

Ah yes thanks that's a good place to start, and have you any advice to compromise a system like in real world is phishing that works in most case or is there also a lot of exploitation needed?

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Leeching | https://breachforums.hn/Forum-Ban-Appeals if you feel this is incorrect.

[XTN]

it's not that easy, CTF and real world are two different things as i said in the SB.
But, if u wanna start looking around, i suggest u to strat from Shodan...

Ah yes thanks that's a good place to start, and have you any advice to compromise a system like in real world is phishing that works in most case or is there also a lot of exploitation needed?

if u are going tho sart phishsing depends on who are u phishing, what kind of company and lot of other consideration.
The most common technique to comprise company is to find an SQLi and get all the data from them.

[TeaPot]

ok thanks a lot I'll try

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Leeching | https://breachforums.hn/Forum-Ban-Appeals if you feel this is incorrect.

[CyberNinja]

it's not that easy, CTF and real world are two different things as i said in the SB.
But, if u wanna start looking around, i suggest u to strat from Shodan...

Ah yes thanks that's a good place to start, and have you any advice to compromise a system like in real world is phishing that works in most case or is there also a lot of exploitation needed?

If you want to start by phishing you should first focus on doing a full reconnaissance of your target company and its workers, emails, campaigns you could use to your advantage, vulnerable workers and what kind of sites they frequent, etc. You could use signalhire or snov.io which collect information about a company's employees, emails, occupations, etc, as it pulls the info from the internet.

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Beep boop you're a bot.

[TeaPot]

If you want to start by phishing you should first focus on doing a full reconnaissance of your target company and its workers, emails, campaigns you could use to your advantage, vulnerable workers and what kind of sites they frequent, etc. You could use signalhire or snov.io which collect information about a company's employees, emails, occupations, etc, as it pulls the info from the internet.

ok thanks for the ref i'll try

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Leeching | https://breachforums.hn/Forum-Ban-Appeals if you feel this is incorrect.

[Vetrified]

SQL Injection

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Leeching | http://breached26tezcofqla4adzyn22notfqw...an-Appeals if you feel this is incorrect.

[Alcxtraze]

Welcome to the fam null

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Attempted Scamming Thread-DATABASE-Database-Empik-com-Poland-11-825-92 | http://breached26tezcofqla4adzyn22notfqw...an-Appeals if you feel this is incorrect.