mastodon.world is one of the many independent Mastodon servers you can use to participate in the fediverse.
Generic Mastodon server for anyone to use.

Server stats:

8.9K
active users

#pentesting

11 posts10 participants0 posts today

Happy to see things finally falling into place!
SLiM is running smoothly on the live system, and BashCoreX (the GUI evolution of BashCore) is starting to take shape!

I'm now installing the CLI toolset via apt inside the chroot.

Next up: testing everything, then bringing in tools from GitHub, GitLab, and the rest of the wild.

Let’s push it further! 🍻

My favorite pentesting setup.

Today i'm setting up the #KaliLinux #Docker #container for my #ansible #playbook. This setup has some pretty cool advantages for me.

I can:

  • access the shell and files using #SSH and #SFTP.
  • customize the installation to the fullest extend using the #Dockerfile.
  • easily route the #networktraffic through a #vpn using #gluetun.
  • reproduce the setup (i love Docker).
  • use GUI apps from that container using X11Forwarding or by installing a #vnc server.

This has been my favorite #pentesting setup so far for obvious reasons. I can access a fully configured pentesting environment on all my devices, always accessible and ready to go.

In case anyone is interested in the setup, it will be included in my ansible playbook, which will be published on this repository.

🪷 Ansible IaC for my servers and desktops. Contribute to aaronsbytes/iac development by creating an account on GitHub.
GitHubGitHub - aaronsbytes/iac: 🪷 Ansible IaC for my servers and desktops🪷 Ansible IaC for my servers and desktops. Contribute to aaronsbytes/iac development by creating an account on GitHub.

Here is a preview of the next release of Car Arsenal for Kali Linux 2025.2!

Renamed from CAN Arsenal to Car Arsenal to cover more car hacking stuff.

Added a lot of tools, feature and code rewrite! And im not even done!

Music used : @LinkinPark Lost in the Echo

youtube.com/shorts/iSm9BuxZ6HQ

@kimocoder @yesimxev @kalilinux @kalilinux@bird.makeup @davidbombal @androidmalware2

youtube.comBefore you continue to YouTube

AI-powered features are the new attack surface! Check out our new blog in which LMG Security’s Senior Penetration Tester Emily Gosney @baybedoll shares real-world strategies for testing AI-driven web apps against the latest prompt injection threats.

From content smuggling to prompt splitting, attackers are using natural language to manipulate AI systems. Learn the top techniques—and why your web app pen test must include prompt injection testing to defend against today’s AI-driven threats.

Read now: lmgsecurity.com/are-your-ai-ba

Web app security prompt injection testing iage
LMG SecurityAre Your AI-Backed Web Apps Secure? Why Prompt Injection Testing Belongs in Every Web App Pen Test | LMG SecurityDiscover how prompt injection testing reveals hidden vulnerabilities in AI-enabled web apps. Learn real-world attack examples, risks, and why your pen test must include LLM-specific assessments.