Hacking With No Tools: How to Break Web Apps Using Just Your Browser ️♂️
1 min read
Summary
The premise of the article is that a hacker’s most valuable tools are their brain, and in a pinch, they can find a way to achieve their goals using only a browser.
The why involves reasons such as being beginner-friendly as no extra software needs to be learned and installed, skills are more important than tools, and in some scenarios, scanners and tools are detected and blocked, unlike a human browsing anonymously.
The article encourages readers to think like a hacker and use your browser’s built-in features strategically to find vulnerabilities.
An example is using the browser’s developer tools to find and manipulate rogue Javascript, which could give an attacker valuable information or the ability to modify data.
Another example given is ahmaudit, a tool that can find pseudorandomly named files on a web server, which could potentially contain sensitive information.
The key take-away is that anyone can and should use their browser to identify vulnerabilities, as this kind of reasoning will serve any information security professional well in their career.