Recently, I analyzed an AngularJS web application that executed queries on the backend in a way that I've never seen before. I tried to identify the backend used and to…
During this article I will show how it is possible to obtain NTLM password hashes from a Windows Web Server by chaining some well-known web vulnerabilities with internal network misconfigurations.…