, ,

KALI LINUX TOOLS : DEBLAZE (Web App Hacking)

How To Use Deblaze on Kali Linux

how to hack website on kali linux deblaze tutorials k4linux

In our series of articles about Kali Linux Tools, today we share with you a new Tutorial about How to use Deblaze on Kali Linux to pentest Website Application.

Kali Linux : Deblaze

Through the use of the Flex programming model and the ActionScript language, Flash Remoting was born. Flash applications can make request to a remote server to call server side functions, such as looking up accounts, retrieving additional data and graphics, and performing complex business operations.

However, the ability to call remote methods also increases the attack surface exposed by these applications.

This tool will allow you to perform method enumeration and interrogation against flash remoting end points. Kali Linux Deblaze came about as a necessity during a few security assessments of flash based websites that made heavy use of flash remoting. I needed something to give me the ability to dig a little deeper into the technology and identify security holes.

On all of the servers I’ve seen so far the names are not case sensitive, making it much easier to bruteforce. Often times HTTP POST requests won’t be logged by the server, so bruteforcing may go unnoticed on poorly monitored systems.

Deblaze on Kali Linux provides the following functionality:
o Brute Force Service and Method Names
o Method Interrogation
o Flex Technology Fingerprinting

What do you think?

15 points
Upvote Downvote

Total votes: 41

Upvotes: 28

Upvotes percentage: 68.292683%

Downvotes: 13

Downvotes percentage: 31.707317%

Don't worry, we don't spam

Leave a Reply

Your email address will not be published. Required fields are marked *