Finally welcome on my website https://chojnowski.it

Hell yeah! Yes it is true from today my website https://chojnowski.it have a SSL certificate.

Check propagation DNS records all over the world - script

Today I put on my website, simple and quick script test where your DNS records are available.
Titbit: do you know that my domain chojnowski.it aren't available in: Mexico_City (Mexico), Tirana (Albania), Johannesburg (South Africa), New South Wales (Australia) - very interesting ;)
Remember: sometimes your domain may be not available in diferrent countries, don't worry ;)

List of CTF/hack/wargames/vulnerable webpages (primarily practice)

Today I have for you list websites where you can test your knowledge/technical skill of security. Most of websites are "OFFLINE" I mean you have to use virtual machine on your computer.
Legend:
ONLINE - you can start fun on the website (online challenge)
OFFLINE - you have to download software to your computer
WEB - type of vulnerability
VM - virtual machine
CODE - software is code and you have to install on your virtual machine
LOGIN - Website require create account
NO LOGIN - Website not require create account

(ONLINE / LOGIN) https://www.hack.me/
(ONLINE / LOGIN) https://www.hackthis.co.uk
(ONLINE / LOGIN) http://Enigmagroup.org/
(ONLINE / LOGIN) https://lab.pentestit.ru/
(ONLINE / NO LOGIN) http://overthewire.org
(ONLINE / NO LOGIN) http://smashthestack.org
(ONLINE / NO LOGIN) http://ctf.infosecinstitute.com
(ONLINE / LOGIN) https://ctf365.com/
(ONLINE / LOGIN) https://www.root-me.org
(OFFLINE / VM) https://exploit-exercises.com/
(OFFLINE / VM) http://www.cis.syr.edu
(ONLINE / LOGIN) http://www.wechall.net
(OFFLINE / WEB / CODE) dvwa
(OFFLINE / WEB / VM) OWASP_Broken_Web_Applications_Project
(OFFLINE / WEB / CODE) OWASP_Mutillidae_2_Project
(OFFLINE / WEB / VM) hackxor
(OFFLINE / WEB / VM / CODE) vuln-web-app
(OFFLINE / WEB / VM) lampsecurity
(OFFLINE / WEB / VM) virtualhacking
(OFFLINE / WEB / VM) metasploitable
(OFFLINE / WEB / CODE) exploitcoilvuln
(OFFLINE / WEB / CODE) OWASP_WebGoat_Project

Interesting links from OWASP Project

Below the best projects, materials about website/application security from OWASP Project.
- Testing Guide - OWASP Testing Project
- List of the 10 Most Critical Web Application Security Risks - OWASP Top Ten Project 2013. Version 2016 should be this year or early next year.
- Fundamentals of testing web application technical security controls and secure development.OWASP Application Security Verification Standard Project (OWASP ASVS)
- Cheat sheets provide collection of information on specific web application security topics - OWASP Cheat Sheet Series
- Describe the most important control and control categories in your projects (for all architects and developers) - OWASP Proactive Controls
- Utility checks publicly disclosed, vulnerabilities in your software (Java, .NET) - OWASP Dependency Check

Metasploit Unleashed - Free Ethical Hacking Course + video

If you reflect how is first step to learn ethical hacking, you should consider free course about how tool Metasploit Unleashed.
Official free ethical hacking is available here
Minimum hardware requirements (on VM):
- HDD: 10 GB
- RAM: 512 MB
- CPU: 500 Mhz
farther you can take a look on free video materials
Have fun! ;)

FreeIPA, problem with your IP address server?

If you have a problem during installing FreeIPA on virtual machine and get below error message:
invalid ip address 192.168.122.33 for ipa.example.com: cannot use ip network address
you should change mask from /32 to /24 (or some other network mask)
Problem is visible in line inet when you enter command:
[admin@ipa1 ~]$ ip addr | grep 192.168.122.255
inet 192.168.122.12/32 brd 192.168.122.255 scope global eth0

Hardering RedHat Enterprise 7 (Security Guide)

Security friends, below I would like to present security guide for Red Hat Enterprise ver. 7=>, it is very clear and easy way to learn how hardering Linux (Red Hat, Centos, Fedora and other distro which is based on Red Hat). By the way I recommend other materials from http://www.redhat.com/.
Security Guide here
All documents for Red Hat Enterprise Linux here

List tools for pentester

It is list over 235 tools for pentester/ethical hacker/security expert with description from my distro: Kali Linux. The list can you help quick find proper tool for your expectation.
Below example:
hping3 +++ Active Network Smashing Tool
p0f +++ Passive OS fingerprinting tool
sslstrip +++ SSL/TLS man-in-the-middle attack tool
Download here.
IF you want see all basic tools from official website click here.

Hello guys

It is my first post on my page. Section "Home" will be use to post a short and very very short information, tips and links about security, open source and everything what is interesting. Sometimes I may post information about update homepage or information about me.
If you want know more about me please click here
If you want know about me projects please click here