Skip to main content

Posts

CEH V12 vs CEH V11 Difference

 The EC-Council update launched on 7th September 2022 from its predecessor version 11 Certified Ethical Hacker Version 12 (CEH v12) is now a more up-scaled and advanced version of EC. There are various changes made in the new version 12 in the Certified Ethical Hacker credential. Understand the Difference Between CEH V11 and CEH V12 The attack methodologies and lab techniques have been enhanced and are given a new boost. The CEH v12 is one of the most sought-after and desired programs globally based on information security. In this new version, 500+ new threats and vulnerabilities are included, which can help learners work with better skills and knowledge. Difference Between CEH v11 and CEH v12 CEH V11 CEH V12 Total Number of Modules 20 20 Total Number of Slides 1640 1676 Total Number of Labs 200 220 Total Number of New Labs 92 33 Attack Techniques 420 519 New Technology Added IoT Technology, Serverless Computing, WPA3 Encryption, APT, Fileless Malware, Web   API, and Web Shell MITRE A
Recent posts

WhatsApp Bugs that Could Have Let Attackers Hack Devices Remotely

WhatsApp Bugs that Could Have Let Attackers Hack Devices Remotely Critical WhatsApp has released security updates to address two flaws in its messaging app for Android and iOS that could lead to remote code execution on vulnerable devices. One of them concerns CVE-2022-36934 (CVSS score: 9.8), a critical integer overflow vulnerability in WhatsApp that results in the execution of arbitrary code simply by establishing a video call. The issue impacts the WhatsApp and WhatsApp Business for Android and iOS prior to versions 2.22.16.12. Also patched by the Meta-owned messaging platform is an integer underflow bug, which refers to an opposite category of errors that occur when the result of an operation is too small for storing the value within the allocated memory space. The high-severity issue, given the CVE identifier CVE-2022-27492 (CVSS score: 7.8), affects WhatsApp for Android prior to versions 2.22.16.2 and WhatsApp for iOS version 2.22.15.9, and could be triggered upon receiving a spe

LOG4J VULNERABILITY ASSESSMENT AND MITIGATION

LOG4J VULNERABILITY ASSESSMENT AND MITIGATION What is Log4j?   Log4j, Zero-day exploit the popular Javalogginglibrarylog4j2 was discovered that results in Remote Code Execution (RCE) by logging a certain string.Log4j2 is an open-source, Java-based logging framework commonly incorporated into Apache webservers and Spring-Boot web applications. The vulnerability has been reported with CVE-2021-44228 against the log4j-corejar.CVE-2021-44228 is considered an acritical flaw, and it has a base CVSS score of 10, the highest possible severity rating. Who is Impacted !! Too many services are vulnerable to this exploit as log4j is a wild rang used  Java-based logging utility. Cloud  services like Steam, Apple iCloud,  and applications like  Minecraft have already been found to be vulnerable. Anybody using Apache frameworks services or any Spring- Boot Java-based framework applications that uses log4j2 is likely to be vulnerable. HOW THE EXPLOIT WORKS !!   The exploit works when there is a servic

How to Deploy Multiple Dist file to the Apache Server

How to Deploy Multiple Dist file to the Apache Server   To Deploy Multiple Dist file apache server the Easiest way i have describe below follow the instruction whether your project would be html, PHP or any dist file such as angular you can follow the below Steps. To Deploy any project to the Apache Server We have to make changes in 2 files and one folder. Follow the below process to Deploy the dist file. • Rename the dist file to the project name and copy the file to the Path /var/www/html/   • Make changes in the Index.html or Index.php by giving folder name in base href e.g., /foldername/ • Now Go to /etc/apache2/sites-available and make copy of 000-default.conf or any pervious file for example healthgiggle.conf Copy command cp -r healthgiggle.conf /etc/apache2/sites-available/pjname.conf • Now open the file in vi editor vi pjname.conf and make changes ServerName: Your project name which will appear in URL after main domain e.g., healthgiggle/projectname DocumentRoot: Path of the p