<![CDATA[Hcon - Blog]]>

<![CDATA[Hcon - Blog]]>Sat, 18 May 2013 16:07:37 -0800Weebly<![CDATA[Hcon Security Testing Framework (HconSTF) with Tor integration]]>Fri, 19 Apr 2013 06:20:57 GMThttp://www.hcon.in/3/post/2013/04/hcon-security-testing-framework-hconstf-with-tor-integration.html One of the long awaited feature, to integrate Tor (onion routing) into HconSTF !!that will bring solid anonymity with webapp pentesting, good news is it is going to be public in few days as we are currently testing it and making it more solid for anonymity. the bad news is currently only windows version will be there, after public release of it will work on linux version of it. so far we are do with,

HconSTF fully integrated with Tor so every child process will also use Tor by default
Total control over
- user agent
- Referrer
- all type of Cookies
- Http headers fields like x-forwarded-for, client ip, via
so that you can spoof it or remove it, do as you want.

unwanted things disabled like tools and other components which were using continuous internet connection, java, flash, silverlight and other plugins

HconSTF is now in ghajini mode - it forgets everything once you close it

We are still working our level best to bring this special edition,a rock solid release
do let us know if you have any suggestions or ideas in Community HERE
]]><![CDATA[HconSTF v0.5 codename 'Prime' for Linux Release]]>Wed, 10 Apr 2013 21:19:05 GMThttp://www.hcon.in/3/post/2013/04/hconstf-v05-codename-prime-linux-release.html Linux lovers Finally its here, native binary for Linux operating systems.
This has the same features and awesomeness as the windows binary. so yes it is portable !
Tested on Kali, Backtrack, Backbox, Ronin and other major Linux distributions. currently binary for Linux x86 is available will soon make for x64 so stay tuned for that. will have also added one more download mirror for HconSTF download will soon add that for Linux version too.

Get Linux version Download : HERE
Test it on your favorite flavor of Linux and let us know the feedback on it.
]]><![CDATA[HconSTF v0.5 codename 'Prime' Release]]>Fri, 05 Apr 2013 18:34:36 GMThttp://www.hcon.in/3/post/2013/04/hconstf-v05-codename-prime-release.htmlWe are very delighted to announce this, After around 14 months its released, HconSTF v0.5 codename 'Prime' is here

Noticeable things for this version :
Now its more enhanced for,

Web Penetration Testing
Web Exploits Development
Web Malware Analysis
Osint , Cyber Spying and Doxing !!
and moch more with lots of hidden features

so HconSTF v0.5 briefly,

based on Firefox 17.0.1
Designed in Process based methodology
Less in size (40mb packed-80mb extracted), consumes less memory
More than 165+ search plugins
New IDB 0.1 release integrated
underlined Logging for each and every request
more NEW scanners for DomXSS, Reflected XSS
New reporting features like note taking, url logging for easy report making
Smart searchbox - just select and it will copy it and just change search engine to search
Integrated Tor, AdvoR, I2p and more proxies
New Grease monkey scripts (18 scripts)

Soon will release more tutorials for some of the cool new features of it, with one more surprise !
another important note is we need community involvement check out : HERE
For complete Change log : HERE
For more details : Here
Download it : HERE

]]><![CDATA[Check out our founder Ashish Mistry's interview on EHN ]]>Thu, 16 Aug 2012 18:57:03 GMThttp://www.hcon.in/3/post/2012/08/check-out-our-founder-ashish-mistrys-interview-on-ehn.html           We are very delighted, our founder's interview on EHackingNews.com check it out HERE
]]><![CDATA[Announcing Hzine - IT Security / Hacking Magazine]]>Wed, 01 Aug 2012 07:46:51 GMThttp://www.hcon.in/3/post/2012/08/announcing-hzine-it-security-hacking-magazine.html    We are very excited to announce another public project, Hzine - IT Security / Hacking Magazine
Check the Hzine page for more details HERE
]]><![CDATA[New tutorial series by Ahmed on cross-site scripting (xss)]]>Fri, 01 Jun 2012 03:36:14 GMThttp://www.hcon.in/3/post/2012/05/new-tutorial-series-by-ahmed-on-cross-site-scripting-xss.html         Cross-site scripting (xss) is one of the high risk attacks for web , so here we have another author 'Ahmed' with his excellent tutorial series on it. we are very hoping that more security professionals will contribute in Hcon Library and make it a best place to learn and share knowledge. without any delay have a look at articles
]]><![CDATA[Leveraging OSINT in penetration Testing by Ashish Mistry]]>Sat, 12 May 2012 05:49:40 GMThttp://www.hcon.in/3/post/2012/05/leveraging-osint-in-penetration-testing-by-ashish-mistry.htmlHere are slides of talk by Ashish Mistry on 'leveraging OSINT in pentest' at null mumbai
with some links and resources check it HERE
]]><![CDATA[A guide on Dos -DDos by kumar sourav]]>Fri, 11 May 2012 05:44:29 GMThttp://www.hcon.in/3/post/2012/05/a-guide-on-dos-ddos-by-kumar-sourav.html Hello all,
first of all our gratitude to kumar sourav for contributing in Hcon Library
with his guide on distributed / denial of service attacks
have a look at it here
]]><![CDATA[New Tutorial series on SQL injection]]>Mon, 09 Apr 2012 18:46:40 GMThttp://www.hcon.in/3/post/2012/04/new-tutorial-series-on-sql-injection.html        We are thankful to all who supported this library initiative , we are very grateful to author 'Balaji Gopal' sharing his knowledge by the new SQL injection tutorial series, hope to have more people come forward and we all together make a good resource for IT security. have a look at the new tutorial HERE
Please leave your feedbacks and suggestions for tutorials so we can make it more resourceful in comments
]]><![CDATA[New Tutorial Series on Social Engineering]]>Tue, 03 Apr 2012 22:27:07 GMThttp://www.hcon.in/3/post/2012/04/new-tutorial-series-on-social-engineering.html        I have started a tutorial series on social engineering to any one who is starting or want to start a career in Penetration Testing , check out the first introductory tutorial in articles section HERE
]]>