# BE-Hacktive ## English - [BE-Hacktive](https://blog.be-hacktive.com/master.md): Welcome to the blog where you can learn about and understand cybersecurity in its many forms. - [About the author and the project](https://blog.be-hacktive.com/a-propos-de-lauteur.md) - [Table of contents](https://blog.be-hacktive.com/table-des-matieres.md) - [Contact](https://blog.be-hacktive.com/contact.md): If you have any questions, don't hesitate to send me an e-mail via the contact form below or via one of the BE-Hacktive social networks. - [Technology over time](https://blog.be-hacktive.com/synopsis/la-technologie-dans-le-temps.md): Technology has evolved and will continue to evolve, with all its good and bad points. - [Cybersecurity](https://blog.be-hacktive.com/synopsis/cybersecurite.md) - [CVE](https://blog.be-hacktive.com/synopsis/la-technologie-dans-le-temps-1.md): Common Vulnerabilities and Exposures - [ESKOOLY](https://blog.be-hacktive.com/eskooly-cve/eskooly.md) - [CVE-2024-27709 - SQL Injection in Eskooly Web Product v.3.0](https://blog.be-hacktive.com/eskooly-cve/cve-2024-27709-sql-injection-in-eskooly-web-product-v.3.0.md) - [ESkooly - Broken Authentication](https://blog.be-hacktive.com/eskooly-cve/eskooly-broken-authentication.md) - [CVE-2024-27710 - Privilege Escalation via Authentication Mechanism in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/eskooly-cve/eskooly-broken-authentication/cve-2024-27710-privilege-escalation-via-authentication-mechanism-in-eskooly-web-product-less-than-v3.md) - [CVE-2024-27711 - User Enumeration via Sign-up Process in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/eskooly-cve/eskooly-broken-authentication/cve-2024-27711-user-enumeration-via-sign-up-process-in-eskooly-web-product-less-than-v3.0.md) - [CVE-2024-27712 - User Enumeration via Account Settings in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/eskooly-cve/eskooly-broken-authentication/cve-2024-27712-user-enumeration-via-account-settings-in-eskooly-web-product-less-than-v3.0.md) - [CVE-2024-27713 - Protection mechanism Failure in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/eskooly-cve/cve-2024-27713-protection-mechanism-failure-in-eskooly-web-product-less-than-v3.0.md) - [CVE-2024-27715 - Inadequate Password Update Verification in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/eskooly-cve/cve-2024-27715-inadequate-password-update-verification-in-eskooly-web-product-less-than-v3.0.md) - [CVE-2024-27716 - Cross-site Scripting (XSS) in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/eskooly-cve/cve-2024-27716-cross-site-scripting-xss-in-eskooly-web-product-less-than-v3.0.md) - [CVE-2024-27717 - Cross-Site Request Forgery (CSRF) in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/eskooly-cve/cve-2024-27717-cross-site-request-forgery-csrf-in-eskooly-web-product-less-than-v3.0.md) - [Phishing](https://blog.be-hacktive.com/tip-1-raising-awareness/phishing.md): This first part will define phishing, explain its origins and how it has evolved over the years, and provide tips on how to protect yourself and detect an attack. - [Phishing - Origins](https://blog.be-hacktive.com/tip-1-raising-awareness/phishing/phishing-histoire.md) - [Phishing - Evolution](https://blog.be-hacktive.com/tip-1-raising-awareness/phishing/evolution.md) - [Phishing - Statistics](https://blog.be-hacktive.com/tip-1-raising-awareness/phishing/phishing-statistiques.md) - [Phishing - Techniques](https://blog.be-hacktive.com/tip-1-raising-awareness/phishing/phishing-techniques.md) - [Phishing - Protection](https://blog.be-hacktive.com/tip-1-raising-awareness/phishing/phishing-protection.md) - [Malware](https://blog.be-hacktive.com/tip-1-raising-awareness/malware.md): This first part will define malware, explain its origin as well as its evolution over the years, and give instructions on how to protect yourself and detect an attack. - [Malware - Origines](https://blog.be-hacktive.com/tip-1-raising-awareness/malware/malware-origines.md) - [Malware - Evolution](https://blog.be-hacktive.com/tip-1-raising-awareness/malware/malware-evolution.md) - [Malware - Categories](https://blog.be-hacktive.com/tip-1-raising-awareness/malware/malware-categories.md) - [Malware - Ransomware](https://blog.be-hacktive.com/tip-1-raising-awareness/malware/malware-ransomware.md): This part will define ransomware, explain its origin as well as its evolution over the years, and give instructions on how to protect yourself and detect an attack. - [Passwords](https://blog.be-hacktive.com/tip-1-raising-awareness/passwords.md): This first part will define passwords, explain their origin as well as their evolution over the years, and give instructions on how to better use and protect them. - [Passwords - Origins](https://blog.be-hacktive.com/tip-1-raising-awareness/passwords/passwords-origins.md) - [Passwords - Evolution of authentication](https://blog.be-hacktive.com/tip-1-raising-awareness/passwords/passwords-evolution-of-authentication.md) - [Passwords - Statistics](https://blog.be-hacktive.com/tip-1-raising-awareness/passwords/passwords-statistics.md) - [Passwords - Protect yourself](https://blog.be-hacktive.com/tip-1-raising-awareness/passwords/passwords-protect-yourself.md) - [Definition and Methodology](https://blog.be-hacktive.com/capsule-2-ethical-hacking/definition-and-methodology.md) - [Burp Suite](https://blog.be-hacktive.com/capsule-3-tools/burp-suite.md): We will discover the tool but also the BURP academy which allows you to learn the different vulnerabilities and themes concerning web security. - [Installation](https://blog.be-hacktive.com/capsule-3-tools/burp-suite/installation.md) - [Intercept HTTP traffic with Burp Proxy](https://blog.be-hacktive.com/capsule-3-tools/burp-suite/intercept-http-traffic-with-burp-proxy.md) - [Define the perimeter](https://blog.be-hacktive.com/capsule-3-tools/burp-suite/define-the-perimeter.md) - [Intruder et Repeater](https://blog.be-hacktive.com/capsule-3-tools/burp-suite/intruder-et-repeater.md) - [Page 1](https://blog.be-hacktive.com/capsule-2-ethical-hacking-1/page-1.md) - [Cybersecurity 2023: 5 major threats and how to protect yourself from them](https://blog.be-hacktive.com/articles/cybersecurity-2023-5-major-threats-and-how-to-protect-yourself-from-them.md): As we enter 2024, the digital landscape is more complex than ever. Cybersecurity has become a top priority for individuals and businesses. - [Am I a victim of data leaks?](https://blog.be-hacktive.com/articles/am-i-a-victim-of-data-leaks.md) - [LOG4J: The vulnerable bookstore that is shaking the planet](https://blog.be-hacktive.com/articles/log4j-the-vulnerable-bookstore-that-is-shaking-the-planet.md) - [LOG4SHELL: COME, SEE, LIVE](https://blog.be-hacktive.com/articles/log4shell-come-see-live.md) - [Protecting Your Child Online: Tips for Safer Internet Day](https://blog.be-hacktive.com/articles/protecting-your-child-online-tips-for-safer-internet-day.md) - [ChatGPT: Revolution or threat?](https://blog.be-hacktive.com/articles/chatgpt-revolution-or-threat.md): ChatGPT: between technological revolution and confidentiality dilemma. Discover the potential and the pitfalls. - [The FBI dismantles Raptor Train: A Chinese Botnet that Infected 260,000 IoT Devices Worldwide!](https://blog.be-hacktive.com/articles/fbi-demonte-botnet-raptor-train-iot.md) - [Active exploitation of TP-Link, Apache and Oracle vulnerabilities detected](https://blog.be-hacktive.com/news/active-exploitation-of-tp-link-apache-and-oracle-vulnerabilities-detected.md): Date: 02-05-2023 - [Microsoft stresses the urgency of patching Exchange servers locally](https://blog.be-hacktive.com/news/microsoft-stresses-the-urgency-of-patching-exchange-servers-locally.md): Date: 27-01-2023 ## French - [BE-Hacktive](https://blog.be-hacktive.com/french/master.md): Bienvenu sur le blog qui vous permettra d'apprendre et de comprendre la cybersécurité sous plusieurs formes. - [A propos de l'auteur et du projet](https://blog.be-hacktive.com/french/a-propos-de-lauteur.md) - [Table des matières](https://blog.be-hacktive.com/french/table-des-matieres.md) - [Contact](https://blog.be-hacktive.com/french/contact.md): Pour toute question, n'hésitez pas à m'envoyer un mail via le formulaire de contact ci-dessous ou via un des réseaux sociaux BE-Hacktive. - [Technologie dans le temps](https://blog.be-hacktive.com/french/synopsis/la-technologie-dans-le-temps.md): La technologie a évolué et continuer à évoluer avec les bons et mauvais côtés que cela puisse avoir. - [Cybersécurité](https://blog.be-hacktive.com/french/synopsis/cybersecurite.md) - [CVE](https://blog.be-hacktive.com/french/synopsis/la-technologie-dans-le-temps-1.md): Common Vulnerabilities and Exposures - [ESKOOLY (FR version)](https://blog.be-hacktive.com/french/eskooly-cve/eskooly-fr-version.md) - [ESKOOLY (EN version)](https://blog.be-hacktive.com/french/eskooly-cve/eskooly-en-version.md) - [CVE-2024-27709 - SQL Injection in Eskooly Web Product v.3.0](https://blog.be-hacktive.com/french/eskooly-cve/cve-2024-27709-sql-injection-in-eskooly-web-product-v.3.0.md) - [ESkooly - Broken Authentication](https://blog.be-hacktive.com/french/eskooly-cve/eskooly-broken-authentication.md) - [CVE-2024-27710 - Privilege Escalation via Authentication Mechanism in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/french/eskooly-cve/eskooly-broken-authentication/cve-2024-27710-privilege-escalation-via-authentication-mechanism-in-eskooly-web-product-less-than-v3.md) - [CVE-2024-27711 - User Enumeration via Sign-up Process in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/french/eskooly-cve/eskooly-broken-authentication/cve-2024-27711-user-enumeration-via-sign-up-process-in-eskooly-web-product-less-than-v3.0.md) - [CVE-2024-27712 - User Enumeration via Account Settings in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/french/eskooly-cve/eskooly-broken-authentication/cve-2024-27712-user-enumeration-via-account-settings-in-eskooly-web-product-less-than-v3.0.md) - [CVE-2024-27713 - Protection mechanism Failure in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/french/eskooly-cve/cve-2024-27713-protection-mechanism-failure-in-eskooly-web-product-less-than-v3.0.md) - [CVE-2024-27715 - Inadequate Password Update Verification in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/french/eskooly-cve/cve-2024-27715-inadequate-password-update-verification-in-eskooly-web-product-less-than-v3.0.md) - [CVE-2024-27716 - Cross-site Scripting (XSS) in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/french/eskooly-cve/cve-2024-27716-cross-site-scripting-xss-in-eskooly-web-product-less-than-v3.0.md) - [CVE-2024-27717 - Cross-Site Request Forgery (CSRF) in Eskooly Web Product <= v3.0](https://blog.be-hacktive.com/french/eskooly-cve/cve-2024-27717-cross-site-request-forgery-csrf-in-eskooly-web-product-less-than-v3.0.md) - [Phishing](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/phishing.md): Cette première partie définira le phishing, expliquera son origine ainsi que son évolution au cours des années, et donnera les indications pour se protéger et détecter une attaque. - [Phishing - Origines](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/phishing/phishing-histoire.md) - [Phishing - Evolution](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/phishing/evolution.md) - [Phishing - Statistiques](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/phishing/phishing-statistiques.md) - [Phishing - Techniques](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/phishing/phishing-techniques.md) - [Phishing - Protection](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/phishing/phishing-protection.md) - [Malware](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/malware.md): Cette première partie définira le malware, expliquera son origine ainsi que son évolution au cours des années, et donnera les indications pour se protéger et détecter une attaque. - [Malware - Origines](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/malware/malware-origines.md) - [Malware - Evolution](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/malware/malware-evolution.md) - [Malware - Catégories](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/malware/malware-categories.md) - [Malware - Ransomware](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/malware/malware-ransomware.md): Cette partie définira le ransomware, expliquera son origine ainsi que son évolution au cours des années, et donnera les indications pour se protéger et détecter une attaque. - [Passwords - Mots de passe](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/passwords-mots-de-passe.md): Cette première partie définira les mots de passe, expliquera son origine ainsi que son évolution au cours des années, et donnera les indications pour mieux les utiliser et les protéger. - [Passwords - Origines](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/passwords-mots-de-passe/passwords-origines.md) - [Passwords - Evolution de l'authentification](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/passwords-mots-de-passe/passwords-evolution-de-lauthentification.md) - [Passwords - Statistiques](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/passwords-mots-de-passe/passwords-statistiques.md) - [Passwords - Protégez-vous](https://blog.be-hacktive.com/french/capsule-1-sensibilisation/passwords-mots-de-passe/passwords-protegez-vous.md) - [Définition et Méthodologie](https://blog.be-hacktive.com/french/capsule-2-ethical-hacking/definition-et-methodologie.md) - [Burp Suite](https://blog.be-hacktive.com/french/capsule-3-outils/burp-suite.md): On va découvrir l'outil mais aussi l'académie BURP qui permet d'apprendre les différentes vulnérabilités et thématiques concernant la sécurité web. - [Installation](https://blog.be-hacktive.com/french/capsule-3-outils/burp-suite/installation.md) - [Intercepter le trafic HTTP avec Burp Proxy](https://blog.be-hacktive.com/french/capsule-3-outils/burp-suite/intercepter-le-trafic-http-avec-burp-proxy.md) - [Définir le périmètre](https://blog.be-hacktive.com/french/capsule-3-outils/burp-suite/definir-le-perimetre.md) - [Intruder et Repeater](https://blog.be-hacktive.com/french/capsule-3-outils/burp-suite/intruder-et-repeater.md) - [Page 1](https://blog.be-hacktive.com/french/capsule-2-ethical-hacking-1/page-1.md) - [Cybersécurité 2023: 5 menaces majeures et comment s'en protéger](https://blog.be-hacktive.com/french/articles/cybersecurite-2023-5-menaces-majeures-et-comment-sen-proteger.md): À l'aube de 2024, le paysage numérique est plus complexe que jamais. La cybersécurité est devenue une priorité absolue pour les individus et les entreprises. - [Suis-je victime des fuites de données ?](https://blog.be-hacktive.com/french/articles/suis-je-victime-des-fuites-de-donnees.md) - [LOG4J: La librairie vulnérable qui secoue la planète](https://blog.be-hacktive.com/french/articles/log4j-la-librairie-vulnerable-qui-secoue-la-planete.md) - [LOG4SHELL: VENI,VIDI,VICI](https://blog.be-hacktive.com/french/articles/log4shell-veni-vidi-vici.md) - [Protéger votre enfant en ligne: Conseils pour le "Safer Internet Day"](https://blog.be-hacktive.com/french/articles/proteger-votre-enfant-en-ligne-conseils-pour-le-safer-internet-day.md) - [ChatGPT: Révolution ou menace ?](https://blog.be-hacktive.com/french/articles/chatgpt-revolution-ou-menace.md): ChatGPT : entre révolution technologique et dilemme de confidentialité. Découvrez le potentiel et les pièges. - [Le FBI démantèle Raptor Train : Un Botnet Chinois qui a Infecté 260 000 Appareils IoT dans le monde!](https://blog.be-hacktive.com/french/articles/fbi-demonte-botnet-raptor-train-iot.md) - [Exploitation active des vulnérabilités de TP-Link, d'Apache et d'Oracle détectées](https://blog.be-hacktive.com/french/news/exploitation-active-des-vulnerabilites-de-tp-link-dapache-et-doracle-detectees.md): Date: 02-05-2023 - [Microsoft insiste sur l'urgence de patcher les serveurs Exchange en local](https://blog.be-hacktive.com/french/news/microsoft-insiste-sur-lurgence-de-patcher-les-serveurs-exchange-en-local.md): Date: 27-01-2023 --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on a page URL with the `ask` query parameter: ``` GET https://blog.be-hacktive.com/master.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.