hacktricks/pentesting-web/uuid-insecurities.md

# UUID Insecurities

{% hint style="success" %}
Learn & practice AWS Hacking:<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[**HackTricks Training AWS Red Team Expert (ARTE)**](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\
Learn & practice GCP Hacking: <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[**HackTricks Training GCP Red Team Expert (GRTE)**<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)

<details>

<summary>Support HackTricks</summary>

* Check the [**subscription plans**](https://github.com/sponsors/carlospolop)!
* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
* **Share hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.

</details>
{% endhint %}

## Basic Information

Universally Unique Identifiers (UUIDs) ni **nambari za bit 128 zinazotumika kutambulisha habari kwa kipekee** katika mifumo ya kompyuta. UUIDs ni muhimu katika programu ambapo vitambulisho vya kipekee vinahitajika bila uratibu wa kati. Zinatumika mara nyingi kama funguo za hifadhidata na zinaweza kurejelea vipengele mbalimbali kama hati na vikao.

UUIDs zimeundwa kuwa za kipekee na **ngumu kukisia**. Zimejengwa kwa muundo maalum, zimegawanywa katika vikundi vitano vinavyowakilishwa kama tarakimu 32 za hexadecimal. Kuna matoleo tofauti ya UUIDs, kila moja ikihudumia madhumuni tofauti:

* **UUID v1** ni ya msingi wa wakati, ikijumuisha alama ya wakati, mfuatano wa saa, na kitambulisho cha node (anwani ya MAC), lakini inaweza kuonyesha habari za mfumo.
* **UUID v2** ni sawa na v1 lakini inajumuisha marekebisho kwa maeneo ya ndani (siyo kawaida kutumika).
* **UUID v3 na v5** zinaunda UUIDs kwa kutumia thamani za hash kutoka kwa namespace na jina, ambapo v3 inatumia MD5 na v5 inatumia SHA-1.
* **UUID v4** inaundwa karibu kabisa kwa bahati nasibu, ikitoa kiwango cha juu cha kutotambulika lakini ikiwa na hatari kidogo ya nakala.

{% hint style="success" %}
Note that the version and subversion of the UUID usually appears in the same possition inside the UUID. For example in:\
12345678 - abcd - 1a56 - a539 - 103755193864\
xxxxxxxx  - xxxx - Mxxx - Nxxx - xxxxxxxxxxxx

* The **position of the M** Indicates the UUID **version**. In the example above, it’s UUID v**1**.
* The **position of the N** Indicates the UUID variant.
{% endhint %}

## Sandwich attack

"Sandwich Attack" ni aina maalum ya shambulio ambayo **inatumia uwezekano wa kizazi cha UUID v1 katika programu za wavuti**, hasa katika vipengele kama vile upya wa nywila. UUID v1 inaundwa kwa msingi wa wakati, mfuatano wa saa, na anwani ya MAC ya node, ambayo inaweza kufanya iwe rahisi kukisia ikiwa mshambuliaji anaweza kupata baadhi ya UUIDs hizi zilizoundwa karibu kwa wakati.

### Example

Fikiria programu ya wavuti inayotumia UUID v1 kwa ajili ya kuunda viungo vya upya wa nywila. Hapa kuna jinsi mshambuliaji anavyoweza kutumia hii kupata ufikiaji usioidhinishwa:

1. **Initial Setup**:

* Mshambuliaji ana udhibiti wa akaunti mbili za barua pepe: \`attacker1@acme.com\` na \`attacker2@acme.com\`.
* Akaunti ya barua pepe ya lengo ni \`victim@acme.com\`.

2. **Execution**:

* Mshambuliaji anasababisha upya wa nywila kwa akaunti yake ya kwanza (\`attacker1@acme.com\`) na kupokea kiungo cha upya wa nywila chenye UUID, sema \`99874128-7592-11e9-8201-bb2f15014a14\`.
* Mara moja baada ya hapo, mshambuliaji anasababisha upya wa nywila kwa akaunti ya mwathirika (\`victim@acme.com\`) na kisha haraka kwa akaunti ya pili inayodhibitiwa na mshambuliaji (\`attacker2@acme.com\`).
* Mshambuliaji anapata kiungo cha upya kwa akaunti ya pili chenye UUID, sema \`998796b4-7592-11e9-8201-bb2f15014a14\`.

3. **Analysis**:

* Mshambuliaji sasa ana UUID mbili zilizoundwa karibu kwa wakati (\`99874128\` na \`998796b4\`). Kwa kuzingatia asili ya mfuatano ya UUIDs za msingi wa wakati, UUID kwa akaunti ya mwathirika itakuwa na uwezekano wa kuwa kati ya hizi mbili.

4. **Brute Force Attack:**

* Mshambuliaji anatumia zana kuunda UUIDs kati ya hizi mbili na kujaribu kila UUID iliyoundwa kwa kujaribu kufikia kiungo cha upya wa nywila (mfano, \`https://www.acme.com/reset/\<generated-UUID>\`).
* Ikiwa programu ya wavuti haipunguzi vizuri kiwango au kuzuia majaribio kama haya, mshambuliaji anaweza haraka kujaribu UUID zote zinazowezekana katika anuwai hiyo.

5. **Access Gained:**

* Mara tu UUID sahihi kwa kiungo cha upya wa nywila ya mwathirika inapogundulika, mshambuliaji anaweza kuunda upya nywila ya mwathirika na kupata ufikiaji usioidhinishwa kwa akaunti yao.

### Tools

* Unaweza kufanya shambulio la sandwich kiotomatiki kwa kutumia zana: [**https://github.com/Lupin-Holmes/sandwich**](https://github.com/Lupin-Holmes/sandwich)
* Unaweza kugundua aina hizi za UUIDs katika Burp Suite kwa kutumia nyongeza [**UUID Detector**](https://portswigger.net/bappstore/65f32f209a72480ea5f1a0dac4f38248).

## References

* [https://versprite.com/blog/universally-unique-identifiers/](https://versprite.com/blog/universally-unique-identifiers/)

{% hint style="success" %}
Learn & practice AWS Hacking:<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[**HackTricks Training AWS Red Team Expert (ARTE)**](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\
Learn & practice GCP Hacking: <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[**HackTricks Training GCP Red Team Expert (GRTE)**<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)

<details>

<summary>Support HackTricks</summary>

* Check the [**subscription plans**](https://github.com/sponsors/carlospolop)!
* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
* **Share hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.

</details>
{% endhint %}
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								# UUID Insecurities
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								{% hint style="success" %}
 								Learn & practice AWS Hacking:<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[**HackTricks Training AWS Red Team Expert (ARTE)**](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\
 								Learn & practice GCP Hacking: <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[**HackTricks Training GCP Red Team Expert (GRTE)**<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								<details>
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								<summary>Support HackTricks</summary>
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								* Check the [**subscription plans**](https://github.com/sponsors/carlospolop)!
 								* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
 								* **Share hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
 								</details>
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								{% endhint %}
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								## Basic Information
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								Universally Unique Identifiers (UUIDs) ni **nambari za bit 128 zinazotumika kutambulisha habari kwa kipekee** katika mifumo ya kompyuta. UUIDs ni muhimu katika programu ambapo vitambulisho vya kipekee vinahitajika bila uratibu wa kati. Zinatumika mara nyingi kama funguo za hifadhidata na zinaweza kurejelea vipengele mbalimbali kama hati na vikao.
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								UUIDs zimeundwa kuwa za kipekee na **ngumu kukisia**. Zimejengwa kwa muundo maalum, zimegawanywa katika vikundi vitano vinavyowakilishwa kama tarakimu 32 za hexadecimal. Kuna matoleo tofauti ya UUIDs, kila moja ikihudumia madhumuni tofauti:
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								* **UUID v1** ni ya msingi wa wakati, ikijumuisha alama ya wakati, mfuatano wa saa, na kitambulisho cha node (anwani ya MAC), lakini inaweza kuonyesha habari za mfumo.
 								* **UUID v2** ni sawa na v1 lakini inajumuisha marekebisho kwa maeneo ya ndani (siyo kawaida kutumika).
 								* **UUID v3 na v5** zinaunda UUIDs kwa kutumia thamani za hash kutoka kwa namespace na jina, ambapo v3 inatumia MD5 na v5 inatumia SHA-1.
 								* **UUID v4** inaundwa karibu kabisa kwa bahati nasibu, ikitoa kiwango cha juu cha kutotambulika lakini ikiwa na hatari kidogo ya nakala.
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
 								{% hint style="success" %}
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								Note that the version and subversion of the UUID usually appears in the same possition inside the UUID. For example in:\
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
+								12345678 - abcd - 1a56 - a539 - 103755193864\
 								xxxxxxxx  - xxxx - Mxxx - Nxxx - xxxxxxxxxxxx
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								* The **position of the M** Indicates the UUID **version**. In the example above, it’s UUID v**1**.
 								* The **position of the N** Indicates the UUID variant.
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
+								{% endhint %}
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								## Sandwich attack
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								"Sandwich Attack" ni aina maalum ya shambulio ambayo **inatumia uwezekano wa kizazi cha UUID v1 katika programu za wavuti**, hasa katika vipengele kama vile upya wa nywila. UUID v1 inaundwa kwa msingi wa wakati, mfuatano wa saa, na anwani ya MAC ya node, ambayo inaweza kufanya iwe rahisi kukisia ikiwa mshambuliaji anaweza kupata baadhi ya UUIDs hizi zilizoundwa karibu kwa wakati.
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								### Example
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								Fikiria programu ya wavuti inayotumia UUID v1 kwa ajili ya kuunda viungo vya upya wa nywila. Hapa kuna jinsi mshambuliaji anavyoweza kutumia hii kupata ufikiaji usioidhinishwa:
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+. **Initial Setup**:
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								* Mshambuliaji ana udhibiti wa akaunti mbili za barua pepe: \`attacker1@acme.com\` na \`attacker2@acme.com\`.
 								* Akaunti ya barua pepe ya lengo ni \`victim@acme.com\`.
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+. **Execution**:
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								* Mshambuliaji anasababisha upya wa nywila kwa akaunti yake ya kwanza (\`attacker1@acme.com\`) na kupokea kiungo cha upya wa nywila chenye UUID, sema \`99874128-7592-11e9-8201-bb2f15014a14\`.
 								* Mara moja baada ya hapo, mshambuliaji anasababisha upya wa nywila kwa akaunti ya mwathirika (\`victim@acme.com\`) na kisha haraka kwa akaunti ya pili inayodhibitiwa na mshambuliaji (\`attacker2@acme.com\`).
 								* Mshambuliaji anapata kiungo cha upya kwa akaunti ya pili chenye UUID, sema \`998796b4-7592-11e9-8201-bb2f15014a14\`.
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+. **Analysis**:
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								* Mshambuliaji sasa ana UUID mbili zilizoundwa karibu kwa wakati (\`99874128\` na \`998796b4\`). Kwa kuzingatia asili ya mfuatano ya UUIDs za msingi wa wakati, UUID kwa akaunti ya mwathirika itakuwa na uwezekano wa kuwa kati ya hizi mbili.
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+. **Brute Force Attack:**
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								* Mshambuliaji anatumia zana kuunda UUIDs kati ya hizi mbili na kujaribu kila UUID iliyoundwa kwa kujaribu kufikia kiungo cha upya wa nywila (mfano, \`https://www.acme.com/reset/\<generated-UUID>\`).
 								* Ikiwa programu ya wavuti haipunguzi vizuri kiwango au kuzuia majaribio kama haya, mshambuliaji anaweza haraka kujaribu UUID zote zinazowezekana katika anuwai hiyo.
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+. **Access Gained:**
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								* Mara tu UUID sahihi kwa kiungo cha upya wa nywila ya mwathirika inapogundulika, mshambuliaji anaweza kuunda upya nywila ya mwathirika na kupata ufikiaji usioidhinishwa kwa akaunti yao.
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								### Tools
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								* Unaweza kufanya shambulio la sandwich kiotomatiki kwa kutumia zana: [**https://github.com/Lupin-Holmes/sandwich**](https://github.com/Lupin-Holmes/sandwich)
 								* Unaweza kugundua aina hizi za UUIDs katika Burp Suite kwa kutumia nyongeza [**UUID Detector**](https://portswigger.net/bappstore/65f32f209a72480ea5f1a0dac4f38248).
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								## References
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
 								* [https://versprite.com/blog/universally-unique-identifiers/](https://versprite.com/blog/universally-unique-identifiers/)
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								{% hint style="success" %}
 								Learn & practice AWS Hacking:<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[**HackTricks Training AWS Red Team Expert (ARTE)**](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\
 								Learn & practice GCP Hacking: <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[**HackTricks Training GCP Red Team Expert (GRTE)**<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								<details>
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								<summary>Support HackTricks</summary>
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								* Check the [**subscription plans**](https://github.com/sponsors/carlospolop)!
 								* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
 								* **Share hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.
-												Translated ['generic-methodologies-and-resources/basic-forensic-methodol

											
										
										
											2024-06-05 13:52:31 +00:00
 								</details>
-												Translated ['pentesting-web/browser-extension-pentesting-methodology/REA

											
										
										
											2024-07-19 16:10:31 +00:00
+								{% endhint %}