2020-07-15 17:43:14 +02:00
# Table of contents
* [HackTricks ](README.md )
2021-05-27 15:02:25 +02:00
* [About the author ](about-the-author.md )
2021-04-04 20:57:11 +02:00
* [Getting Started in Hacking ](getting-started-in-hacking.md )
2020-07-15 17:43:14 +02:00
* [Pentesting Methodology ](pentesting-methodology.md )
2021-06-27 16:28:05 +02:00
* [External Recon Methodology ](external-recon-methodology/README.md )
* [Github Leaked Secrets ](external-recon-methodology/github-leaked-secrets.md )
2020-12-21 18:28:41 +01:00
* [Phishing Methodology ](phishing-methodology/README.md )
2021-05-27 15:02:25 +02:00
* [Clone a Website ](phishing-methodology/clone-a-website.md )
2020-12-21 18:28:41 +01:00
* [Detecting Phising ](phishing-methodology/detecting-phising.md )
* [Phishing Documents ](phishing-methodology/phishing-documents.md )
2020-07-15 17:43:14 +02:00
* [Exfiltration ](exfiltration.md )
* [Tunneling and Port Forwarding ](tunneling-and-port-forwarding.md )
* [Brute Force - CheatSheet ](brute-force.md )
* [Search Exploits ](search-exploits.md )
## Shells
2021-10-18 13:21:18 +02:00
* [Shells (Linux, Windows, MSFVenom) ](shells/shells/README.md )
2021-07-21 21:18:43 +02:00
* [MSFVenom - CheatSheet ](shells/shells/msfvenom.md )
2020-07-15 17:43:14 +02:00
* [Shells - Windows ](shells/shells/windows.md )
* [Shells - Linux ](shells/shells/linux.md )
2020-08-19 13:54:25 +02:00
* [Full TTYs ](shells/shells/full-ttys.md )
2020-07-15 17:43:14 +02:00
## Linux/Unix
* [Checklist - Linux Privilege Escalation ](linux-unix/linux-privilege-escalation-checklist.md )
* [Linux Privilege Escalation ](linux-unix/privilege-escalation/README.md )
2021-06-23 19:08:03 +02:00
* [PAM - Pluggable Authentication Modules ](linux-unix/privilege-escalation/pam-pluggable-authentication-modules.md )
2021-06-23 00:54:32 +02:00
* [SELinux ](linux-unix/privilege-escalation/selinux.md )
2021-01-28 14:40:17 +01:00
* [Logstash ](linux-unix/privilege-escalation/logstash.md )
2021-10-18 13:21:18 +02:00
* [Containerd (ctr) Privilege Escalation ](linux-unix/privilege-escalation/containerd-ctr-privilege-escalation.md )
* [Docker Basics & Breakout ](linux-unix/privilege-escalation/docker-breakout/README.md )
* [AuthZ& AuthN - Docker Access Authorization Plugin ](linux-unix/privilege-escalation/docker-breakout/authz-and-authn-docker-access-authorization-plugin.md )
* [Docker Breakout / Privilege Escalation ](linux-unix/privilege-escalation/docker-breakout/docker-breakout-privilege-escalation.md )
* [Seccomp ](linux-unix/privilege-escalation/docker-breakout/seccomp.md )
* [AppArmor ](linux-unix/privilege-escalation/docker-breakout/apparmor.md )
* [Namespaces ](linux-unix/privilege-escalation/docker-breakout/namespaces.md )
2021-01-06 17:25:09 +01:00
* [electron/CEF/chromium debugger abuse ](linux-unix/privilege-escalation/electron-cef-chromium-debugger-abuse.md )
2021-02-05 12:09:01 +01:00
* [Escaping from Jails ](linux-unix/privilege-escalation/escaping-from-limited-bash.md )
2020-08-25 11:31:20 +02:00
* [Cisco - vmanage ](linux-unix/privilege-escalation/cisco-vmanage.md )
2020-08-07 02:26:17 +02:00
* [D-Bus Enumeration & Command Injection Privilege Escalation ](linux-unix/privilege-escalation/d-bus-enumeration-and-command-injection-privilege-escalation.md )
2020-08-20 13:59:57 +02:00
* [Interesting Groups - Linux PE ](linux-unix/privilege-escalation/interesting-groups-linux-pe/README.md )
* [lxd/lxc Group - Privilege escalation ](linux-unix/privilege-escalation/interesting-groups-linux-pe/lxd-privilege-escalation.md )
2020-08-27 17:17:33 +02:00
* [ld.so exploit example ](linux-unix/privilege-escalation/ld.so.conf-example.md )
* [Linux Capabilities ](linux-unix/privilege-escalation/linux-capabilities.md )
2021-10-19 02:01:07 +02:00
* [NFS no\_root\_squash/no\_all\_squash misconfiguration PE ](linux-unix/privilege-escalation/nfs-no\_root\_squash-misconfiguration-pe.md )
2021-01-06 16:55:19 +01:00
* [Payloads to execute ](linux-unix/privilege-escalation/payloads-to-execute.md )
2021-01-03 01:43:09 +01:00
* [RunC Privilege Escalation ](linux-unix/privilege-escalation/runc-privilege-escalation.md )
* [Splunk LPE and Persistence ](linux-unix/privilege-escalation/splunk-lpe-and-persistence.md )
2020-07-15 17:43:14 +02:00
* [SSH Forward Agent exploitation ](linux-unix/privilege-escalation/ssh-forward-agent-exploitation.md )
2020-08-26 00:42:49 +02:00
* [Socket Command Injection ](linux-unix/privilege-escalation/socket-command-injection.md )
2020-07-15 17:43:14 +02:00
* [Wildcards Spare tricks ](linux-unix/privilege-escalation/wildcards-spare-tricks.md )
2021-10-27 17:52:57 +02:00
* [Linux Active Directory ](linux-unix/privilege-escalation/linux-active-directory.md )
2020-07-15 17:43:14 +02:00
* [Useful Linux Commands ](linux-unix/useful-linux-commands/README.md )
* [Bypass Bash Restrictions ](linux-unix/useful-linux-commands/bypass-bash-restrictions.md )
* [Linux Environment Variables ](linux-unix/linux-environment-variables.md )
2021-07-16 01:26:40 +02:00
## MacOS
2021-07-22 22:13:28 +02:00
* [MacOS Security & Privilege Escalation ](macos/macos-security-and-privilege-escalation/README.md )
2021-08-14 20:01:10 +02:00
* [Mac OS Architecture ](macos/macos-security-and-privilege-escalation/mac-os-architecture.md )
2021-08-16 01:42:26 +02:00
* [MacOS MDM ](macos/macos-security-and-privilege-escalation/macos-mdm/README.md )
* [Enrolling Devices in Other Organisations ](macos/macos-security-and-privilege-escalation/macos-mdm/enrolling-devices-in-other-organisations.md )
2021-08-16 00:40:36 +02:00
* [MacOS Protocols ](macos/macos-security-and-privilege-escalation/macos-protocols.md )
2021-08-10 16:04:23 +02:00
* [MacOS Red Teaming ](macos/macos-security-and-privilege-escalation/macos-red-teaming.md )
2021-08-16 00:40:36 +02:00
* [MacOS Serial Number ](macos/macos-security-and-privilege-escalation/macos-serial-number.md )
* [MacOS Apps - Inspecting, debugging and Fuzzing ](macos/macos-security-and-privilege-escalation/macos-apps-inspecting-debugging-and-fuzzing.md )
2021-07-16 01:26:40 +02:00
2020-07-15 17:43:14 +02:00
## Windows
* [Checklist - Local Windows Privilege Escalation ](windows/checklist-windows-privilege-escalation.md )
* [Windows Local Privilege Escalation ](windows/windows-local-privilege-escalation/README.md )
2020-11-26 22:15:30 +01:00
* [AppendData/AddSubdirectory permission over service registry ](windows/windows-local-privilege-escalation/appenddata-addsubdirectory-permission-over-service-registry.md )
2021-01-24 11:03:34 +01:00
* [Create MSI with WIX ](windows/windows-local-privilege-escalation/create-msi-with-wix.md )
2020-09-01 22:17:55 +02:00
* [DPAPI - Extracting Passwords ](windows/windows-local-privilege-escalation/dpapi-extracting-passwords.md )
2020-08-31 00:32:59 +02:00
* [SeImpersonate from High To System ](windows/windows-local-privilege-escalation/seimpersonate-from-high-to-system.md )
2020-08-30 23:17:43 +02:00
* [Access Tokens ](windows/windows-local-privilege-escalation/access-tokens.md )
2020-08-30 20:59:50 +02:00
* [ACLs - DACLs/SACLs/ACEs ](windows/windows-local-privilege-escalation/acls-dacls-sacls-aces.md )
2020-07-15 17:43:14 +02:00
* [Dll Hijacking ](windows/windows-local-privilege-escalation/dll-hijacking.md )
* [From High Integrity to SYSTEM with Name Pipes ](windows/windows-local-privilege-escalation/from-high-integrity-to-system-with-name-pipes.md )
2020-08-30 20:59:50 +02:00
* [Integrity Levels ](windows/windows-local-privilege-escalation/integrity-levels.md )
* [JAWS ](windows/windows-local-privilege-escalation/jaws.md )
* [JuicyPotato ](windows/windows-local-privilege-escalation/juicypotato.md )
2020-07-15 17:43:14 +02:00
* [Leaked Handle Exploitation ](windows/windows-local-privilege-escalation/leaked-handle-exploitation.md )
* [MSI Wrapper ](windows/windows-local-privilege-escalation/msi-wrapper.md )
2020-08-30 20:59:50 +02:00
* [Named Pipe Client Impersonation ](windows/windows-local-privilege-escalation/named-pipe-client-impersonation.md )
2020-07-15 17:43:14 +02:00
* [PowerUp ](windows/windows-local-privilege-escalation/powerup.md )
2020-08-30 20:59:50 +02:00
* [Privilege Escalation Abusing Tokens ](windows/windows-local-privilege-escalation/privilege-escalation-abusing-tokens.md )
* [Privilege Escalation with Autoruns ](windows/windows-local-privilege-escalation/privilege-escalation-with-autorun-binaries.md )
2020-07-15 17:43:14 +02:00
* [RottenPotato ](windows/windows-local-privilege-escalation/rottenpotato.md )
2020-08-30 20:59:50 +02:00
* [Seatbelt ](windows/windows-local-privilege-escalation/seatbelt.md )
* [SeDebug + SeImpersonate copy token ](windows/windows-local-privilege-escalation/sedebug-+-seimpersonate-copy-token.md )
* [Windows C Payloads ](windows/windows-local-privilege-escalation/windows-c-payloads.md )
2020-07-15 17:43:14 +02:00
* [Active Directory Methodology ](windows/active-directory-methodology/README.md )
* [Abusing Active Directory ACLs/ACEs ](windows/active-directory-methodology/acl-persistence-abuse.md )
* [AD information in printers ](windows/active-directory-methodology/ad-information-in-printers.md )
* [ASREPRoast ](windows/active-directory-methodology/asreproast.md )
* [BloodHound ](windows/active-directory-methodology/bloodhound.md )
* [Constrained Delegation ](windows/active-directory-methodology/constrained-delegation.md )
* [Custom SSP ](windows/active-directory-methodology/custom-ssp.md )
* [DCShadow ](windows/active-directory-methodology/dcshadow.md )
* [DCSync ](windows/active-directory-methodology/dcsync.md )
* [DSRM Credentials ](windows/active-directory-methodology/dsrm-credentials.md )
* [Golden Ticket ](windows/active-directory-methodology/golden-ticket.md )
* [Kerberos Authentication ](windows/active-directory-methodology/kerberos-authentication.md )
* [Kerberoast ](windows/active-directory-methodology/kerberoast.md )
* [MSSQL Trusted Links ](windows/active-directory-methodology/mssql-trusted-links.md )
* [Over Pass the Hash/Pass the Key ](windows/active-directory-methodology/over-pass-the-hash-pass-the-key.md )
* [Pass the Ticket ](windows/active-directory-methodology/pass-the-ticket.md )
* [Password Spraying ](windows/active-directory-methodology/password-spraying.md )
2020-12-23 00:57:32 +01:00
* [Force NTLM Privileged Authentication ](windows/active-directory-methodology/printers-spooler-service-abuse.md )
2020-07-15 17:43:14 +02:00
* [Privileged Accounts and Token Privileges ](windows/active-directory-methodology/privileged-accounts-and-token-privileges.md )
* [Resource-based Constrained Delegation ](windows/active-directory-methodology/resource-based-constrained-delegation.md )
* [Security Descriptors ](windows/active-directory-methodology/security-descriptors.md )
* [Silver Ticket ](windows/active-directory-methodology/silver-ticket.md )
* [Skeleton Key ](windows/active-directory-methodology/skeleton-key.md )
* [Unconstrained Delegation ](windows/active-directory-methodology/unconstrained-delegation.md )
* [NTLM ](windows/ntlm/README.md )
* [Places to steal NTLM creds ](windows/ntlm/places-to-steal-ntlm-creds.md )
* [PsExec/Winexec/ScExec ](windows/ntlm/psexec-and-winexec.md )
* [SmbExec/ScExec ](windows/ntlm/smbexec.md )
* [WmicExec ](windows/ntlm/wmicexec.md )
* [AtExec / SchtasksExec ](windows/ntlm/atexec.md )
* [WinRM ](windows/ntlm/winrm.md )
* [Stealing Credentials ](windows/stealing-credentials/README.md )
* [Credentials Protections ](windows/stealing-credentials/credentials-protections.md )
* [Mimikatz ](windows/stealing-credentials/credentials-mimikatz.md )
2020-08-31 14:30:26 +02:00
* [Authentication, Credentials, UAC and EFS ](windows/authentication-credentials-uac-and-efs.md )
2020-07-15 17:43:14 +02:00
* [Basic CMD for Pentesters ](windows/basic-cmd-for-pentesters.md )
* [Basic PowerShell for Pentesters ](windows/basic-powershell-for-pentesters/README.md )
* [PowerView ](windows/basic-powershell-for-pentesters/powerview.md )
* [AV Bypass ](windows/av-bypass.md )
## Mobile Apps Pentesting
* [Android APK Checklist ](mobile-apps-pentesting/android-checklist.md )
* [Android Applications Pentesting ](mobile-apps-pentesting/android-app-pentesting/README.md )
2021-04-21 16:06:28 +02:00
* [Android Applications Basics ](mobile-apps-pentesting/android-app-pentesting/android-applications-basics.md )
2021-06-17 15:18:27 +02:00
* [Android Task Hijacking ](mobile-apps-pentesting/android-app-pentesting/android-task-hijacking.md )
2020-07-15 17:43:14 +02:00
* [ADB Commands ](mobile-apps-pentesting/android-app-pentesting/adb-commands.md )
* [APK decompilers ](mobile-apps-pentesting/android-app-pentesting/apk-decompilers.md )
2020-09-10 00:22:27 +02:00
* [AVD - Android Virtual Device ](mobile-apps-pentesting/android-app-pentesting/avd-android-virtual-device.md )
2020-07-15 17:43:14 +02:00
* [Burp Suite Configuration for Android ](mobile-apps-pentesting/android-app-pentesting/android-burp-suite-settings.md )
2021-05-04 13:44:49 +02:00
* [content:// protocol ](mobile-apps-pentesting/android-app-pentesting/content-protocol.md )
2020-07-15 17:43:14 +02:00
* [Drozer Tutorial ](mobile-apps-pentesting/android-app-pentesting/drozer-tutorial/README.md )
* [Exploiting Content Providers ](mobile-apps-pentesting/android-app-pentesting/drozer-tutorial/exploiting-content-providers.md )
2021-08-01 17:57:36 +02:00
* [Exploiting a debuggeable applciation ](mobile-apps-pentesting/android-app-pentesting/exploiting-a-debuggeable-applciation.md )
2020-07-15 17:43:14 +02:00
* [Frida Tutorial ](mobile-apps-pentesting/android-app-pentesting/frida-tutorial/README.md )
* [Frida Tutorial 1 ](mobile-apps-pentesting/android-app-pentesting/frida-tutorial/frida-tutorial-1.md )
* [Frida Tutorial 2 ](mobile-apps-pentesting/android-app-pentesting/frida-tutorial/frida-tutorial-2.md )
* [Frida Tutorial 3 ](mobile-apps-pentesting/android-app-pentesting/frida-tutorial/owaspuncrackable-1.md )
* [Objection Tutorial ](mobile-apps-pentesting/android-app-pentesting/frida-tutorial/objection-tutorial.md )
* [Google CTF 2018 - Shall We Play a Game? ](mobile-apps-pentesting/android-app-pentesting/google-ctf-2018-shall-we-play-a-game.md )
2021-07-20 12:40:58 +02:00
* [Inspeckage Tutorial ](mobile-apps-pentesting/android-app-pentesting/inspeckage-tutorial.md )
2021-07-19 21:50:23 +02:00
* [Intent Injection ](mobile-apps-pentesting/android-app-pentesting/intent-injection.md )
2020-08-07 10:50:39 +02:00
* [Make APK Accept CA Certificate ](mobile-apps-pentesting/android-app-pentesting/make-apk-accept-ca-certificate.md )
2020-07-15 17:43:14 +02:00
* [Manual DeObfuscation ](mobile-apps-pentesting/android-app-pentesting/manual-deobfuscation.md )
2021-02-01 10:24:10 +01:00
* [React Native Application ](mobile-apps-pentesting/android-app-pentesting/react-native-application.md )
2020-07-15 17:43:14 +02:00
* [Reversing Native Libraries ](mobile-apps-pentesting/android-app-pentesting/reversing-native-libraries.md )
* [Smali - Decompiling/\[Modifying\]/Compiling](mobile-apps-pentesting/android-app-pentesting/smali-changes.md)
* [Spoofing your location in Play Store ](mobile-apps-pentesting/android-app-pentesting/spoofing-your-location-in-play-store.md )
* [Webview Attacks ](mobile-apps-pentesting/android-app-pentesting/webview-attacks.md )
2021-05-21 19:13:19 +02:00
* [iOS Pentesting Checklist ](mobile-apps-pentesting/ios-pentesting-checklist.md )
* [iOS Pentesting ](mobile-apps-pentesting/ios-pentesting/README.md )
* [Basic iOS Testing Operations ](mobile-apps-pentesting/ios-pentesting/basic-ios-testing-operations.md )
* [Burp Suite Configuration for iOS ](mobile-apps-pentesting/ios-pentesting/burp-configuration-for-ios.md )
* [Extracting Entitlements From Compiled Application ](mobile-apps-pentesting/ios-pentesting/extracting-entitlements-from-compiled-application.md )
* [Frida Configuration in iOS ](mobile-apps-pentesting/ios-pentesting/frida-configuration-in-ios.md )
* [iOS App Extensions ](mobile-apps-pentesting/ios-pentesting/ios-app-extensions.md )
* [iOS Basics ](mobile-apps-pentesting/ios-pentesting/ios-basics.md )
* [iOS Custom URI Handlers / Deeplinks / Custom Schemes ](mobile-apps-pentesting/ios-pentesting/ios-custom-uri-handlers-deeplinks-custom-schemes.md )
* [iOS Hooking With Objection ](mobile-apps-pentesting/ios-pentesting/ios-hooking-with-objection.md )
* [iOS Protocol Handlers ](mobile-apps-pentesting/ios-pentesting/ios-protocol-handlers.md )
* [iOS Serialisation and Encoding ](mobile-apps-pentesting/ios-pentesting/ios-serialisation-and-encoding.md )
* [iOS Testing Environment ](mobile-apps-pentesting/ios-pentesting/ios-testing-environment.md )
* [iOS UIActivity Sharing ](mobile-apps-pentesting/ios-pentesting/ios-uiactivity-sharing.md )
* [iOS Universal Links ](mobile-apps-pentesting/ios-pentesting/ios-universal-links.md )
* [iOS UIPasteboard ](mobile-apps-pentesting/ios-pentesting/ios-uipasteboard.md )
* [iOS WebViews ](mobile-apps-pentesting/ios-pentesting/ios-webviews.md )
2020-07-15 17:43:14 +02:00
## Pentesting
* [Pentesting Network ](pentesting/pentesting-network/README.md )
* [Spoofing LLMNR, NBT-NS, mDNS/DNS and WPAD and Relay Attacks ](pentesting/pentesting-network/spoofing-llmnr-nbt-ns-mdns-dns-and-wpad-and-relay-attacks.md )
* [Spoofing SSDP and UPnP Devices with EvilSSDP ](pentesting/pentesting-network/spoofing-ssdp-and-upnp-devices.md )
* [Wifi Attacks ](pentesting/pentesting-network/wifi-attacks/README.md )
* [Evil Twin EAP-TLS ](pentesting/pentesting-network/wifi-attacks/evil-twin-eap-tls.md )
* [Pentesting IPv6 ](pentesting/pentesting-network/pentesting-ipv6.md )
2021-10-18 13:21:18 +02:00
* [Nmap Summary (ESP) ](pentesting/pentesting-network/nmap-summary-esp.md )
* [Network Protocols Explained (ESP) ](pentesting/pentesting-network/network-protocols-explained-esp.md )
2020-07-15 17:43:14 +02:00
* [IDS and IPS Evasion ](pentesting/pentesting-network/ids-evasion.md )
* [DHCPv6 ](pentesting/pentesting-network/dhcpv6.md )
* [Pentesting JDWP - Java Debug Wire Protocol ](pentesting/pentesting-jdwp-java-debug-wire-protocol.md )
* [Pentesting Printers ](pentesting/pentesting-printers/README.md )
* [Accounting bypass ](pentesting/pentesting-printers/accounting-bypass.md )
* [Buffer Overflows ](pentesting/pentesting-printers/buffer-overflows.md )
* [Credentials Disclosure / Brute-Force ](pentesting/pentesting-printers/credentials-disclosure-brute-force.md )
* [Cross-Site Printing ](pentesting/pentesting-printers/cross-site-printing.md )
* [Document Processing ](pentesting/pentesting-printers/document-processing.md )
* [Factory Defaults ](pentesting/pentesting-printers/factory-defaults.md )
* [File system access ](pentesting/pentesting-printers/file-system-access.md )
* [Firmware updates ](pentesting/pentesting-printers/firmware-updates.md )
* [Memory Access ](pentesting/pentesting-printers/memory-access.md )
* [Physical Damage ](pentesting/pentesting-printers/physical-damage.md )
* [Software packages ](pentesting/pentesting-printers/software-packages.md )
* [Transmission channel ](pentesting/pentesting-printers/transmission-channel.md )
* [Print job manipulation ](pentesting/pentesting-printers/print-job-manipulation.md )
* [Print Job Retention ](pentesting/pentesting-printers/print-job-retention.md )
* [Scanner and Fax ](pentesting/pentesting-printers/scanner-and-fax.md )
2020-11-23 19:00:25 +01:00
* [Pentesting SAP ](pentesting/pentesting-sap.md )
2021-04-28 01:18:16 +02:00
* [Pentesting Kubernetes ](pentesting/pentesting-kubernetes/README.md )
* [Enumeration from a Pod ](pentesting/pentesting-kubernetes/enumeration-from-a-pod.md )
2021-04-28 18:27:24 +02:00
* [Hardening Roles/ClusterRoles ](pentesting/pentesting-kubernetes/hardening-roles-clusterroles.md )
2021-04-28 19:14:31 +02:00
* [Pentesting Kubernetes from the outside ](pentesting/pentesting-kubernetes/pentesting-kubernetes-from-the-outside.md )
2020-07-15 17:43:14 +02:00
* [7/tcp/udp - Pentesting Echo ](pentesting/7-tcp-udp-pentesting-echo.md )
* [21 - Pentesting FTP ](pentesting/pentesting-ftp/README.md )
* [FTP Bounce attack - Scan ](pentesting/pentesting-ftp/ftp-bounce-attack.md )
* [FTP Bounce - Download 2ºFTP file ](pentesting/pentesting-ftp/ftp-bounce-download-2oftp-file.md )
* [22 - Pentesting SSH/SFTP ](pentesting/pentesting-ssh.md )
* [23 - Pentesting Telnet ](pentesting/pentesting-telnet.md )
* [25,465,587 - Pentesting SMTP/s ](pentesting/pentesting-smtp/README.md )
* [SMTP - Commands ](pentesting/pentesting-smtp/smtp-commands.md )
* [43 - Pentesting WHOIS ](pentesting/43-pentesting-whois.md )
* [53 - Pentesting DNS ](pentesting/pentesting-dns.md )
* [69/UDP TFTP/Bittorrent-tracker ](pentesting/69-udp-tftp.md )
* [79 - Pentesting Finger ](pentesting/pentesting-finger.md )
* [80,443 - Pentesting Web Methodology ](pentesting/pentesting-web/README.md )
2021-09-19 17:52:48 +02:00
* [403 & 401 Bypasses ](pentesting/pentesting-web/403-and-401-bypasses.md )
2021-07-26 13:31:02 +02:00
* [AEM - Adobe Experience Cloud ](pentesting/pentesting-web/aem-adobe-experience-cloud.md )
2020-07-15 17:43:14 +02:00
* [Apache ](pentesting/pentesting-web/apache.md )
2021-06-26 14:28:58 +02:00
* [Artifactory Hacking guide ](pentesting/pentesting-web/artifactory-hacking-guide.md )
2020-07-15 17:43:14 +02:00
* [Buckets ](pentesting/pentesting-web/buckets/README.md )
* [Firebase Database ](pentesting/pentesting-web/buckets/firebase-database.md )
* [AWS-S3 ](pentesting/pentesting-web/buckets/aws-s3.md )
* [CGI ](pentesting/pentesting-web/cgi.md )
2021-06-26 14:28:58 +02:00
* [Code Review Tools ](pentesting/pentesting-web/code-review-tools.md )
2020-07-15 17:43:14 +02:00
* [Drupal ](pentesting/pentesting-web/drupal.md )
* [Flask ](pentesting/pentesting-web/flask.md )
* [Git ](pentesting/pentesting-web/git.md )
2021-06-26 14:28:58 +02:00
* [Golang ](pentesting/pentesting-web/golang.md )
2020-07-15 17:43:14 +02:00
* [GraphQL ](pentesting/pentesting-web/graphql.md )
* [H2 - Java SQL database ](pentesting/pentesting-web/h2-java-sql-database.md )
* [IIS - Internet Information Services ](pentesting/pentesting-web/iis-internet-information-services.md )
* [JBOSS ](pentesting/pentesting-web/jboss.md )
* [Jenkins ](pentesting/pentesting-web/jenkins.md )
* [JIRA ](pentesting/pentesting-web/jira.md )
* [Joomla ](pentesting/pentesting-web/joomla.md )
2021-06-26 14:28:58 +02:00
* [JSP ](pentesting/pentesting-web/jsp.md )
* [Laravel ](pentesting/pentesting-web/laravel.md )
* [Moodle ](pentesting/pentesting-web/moodle.md )
2020-07-15 17:43:14 +02:00
* [Nginx ](pentesting/pentesting-web/nginx.md )
2021-10-18 13:21:18 +02:00
* [PHP Tricks (SPA) ](pentesting/pentesting-web/php-tricks-esp/README.md )
2021-10-19 02:01:07 +02:00
* [PHP - Useful Functions & disable\_functions/open\_basedir bypass ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/README.md )
* [disable\_functions bypass - php-fpm/FastCGI ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-bypass-php-fpm-fastcgi.md )
* [disable\_functions bypass - dl function ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-bypass-dl-function.md )
* [disable\_functions bypass - PHP 7.0-7.4 (\*nix only) ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-bypass-php-7.0-7.4-nix-only.md )
* [disable\_functions bypass - Imagick <= 3.3.0 PHP >= 5.4 Exploit ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-bypass-imagick-less-than-3.3.0-php-greater-than-5.4-exploit.md )
* [disable\_functions - PHP 5.x Shellshock Exploit ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-php-5.x-shellshock-exploit.md )
* [disable\_functions - PHP 5.2.4 ionCube extension Exploit ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-php-5.2.4-ioncube-extension-exploit.md )
* [disable\_functions bypass - PHP <= 5.2.9 on windows ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-bypass-php-less-than-5.2.9-on-windows.md )
* [disable\_functions bypass - PHP 5.2.4 and 5.2.5 PHP cURL ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-bypass-php-5.2.4-and-5.2.5-php-curl.md )
* [disable\_functions bypass - PHP safe\_mode bypass via proc\_open() and custom environment Exploit ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-bypass-php-safe\_mode-bypass-via-proc\_open-and-custom-environment-exploit.md )
* [disable\_functions bypass - PHP Perl Extension Safe\_mode Bypass Exploit ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-bypass-php-perl-extension-safe\_mode-bypass-exploit.md )
* [disable\_functions bypass - PHP 5.2.3 - Win32std ext Protections Bypass ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-bypass-php-5.2.3-win32std-ext-protections-bypass.md )
* [disable\_functions bypass - PHP 5.2 - FOpen Exploit ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-bypass-php-5.2-fopen-exploit.md )
* [disable\_functions bypass - via mem ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-bypass-via-mem.md )
* [disable\_functions bypass - mod\_cgi ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-bypass-mod\_cgi.md )
* [disable\_functions bypass - PHP 4 >= 4.2.0, PHP 5 pcntl\_exec ](pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable\_functions-open\_basedir-bypass/disable\_functions-bypass-php-4-greater-than-4.2.0-php-5-pcntl\_exec.md )
2020-07-15 17:43:14 +02:00
* [Python ](pentesting/pentesting-web/python.md )
2021-09-19 17:52:48 +02:00
* [Special HTTP headers ](pentesting/pentesting-web/special-http-headers.md )
2021-06-26 14:28:58 +02:00
* [Spring Actuators ](pentesting/pentesting-web/spring-actuators.md )
* [Symphony ](pentesting/pentesting-web/symphony.md )
2020-07-15 17:43:14 +02:00
* [Tomcat ](pentesting/pentesting-web/tomcat.md )
2021-06-26 14:28:58 +02:00
* [Uncovering CloudFlare ](pentesting/pentesting-web/uncovering-cloudflare.md )
2021-10-18 13:21:18 +02:00
* [VMWare (ESX, VCenter...) ](pentesting/pentesting-web/vmware-esx-vcenter....md )
2021-06-26 14:28:58 +02:00
* [Web API Pentesting ](pentesting/pentesting-web/web-api-pentesting.md )
2020-07-15 17:43:14 +02:00
* [WebDav ](pentesting/pentesting-web/put-method-webdav.md )
2020-07-30 20:28:28 +02:00
* [werkzeug ](pentesting/pentesting-web/werkzeug.md )
2020-07-15 17:43:14 +02:00
* [Wordpress ](pentesting/pentesting-web/wordpress.md )
2021-06-26 14:28:58 +02:00
* [XSS to RCE Electron Desktop Apps ](pentesting/pentesting-web/xss-to-rce-electron-desktop-apps.md )
2020-07-15 17:43:14 +02:00
* [88tcp/udp - Pentesting Kerberos ](pentesting/pentesting-kerberos-88/README.md )
* [Harvesting tickets from Windows ](pentesting/pentesting-kerberos-88/harvesting-tickets-from-windows.md )
* [Harvesting tickets from Linux ](pentesting/pentesting-kerberos-88/harvesting-tickets-from-linux.md )
* [110,995 - Pentesting POP ](pentesting/pentesting-pop.md )
* [111/TCP/UDP - Pentesting Portmapper ](pentesting/pentesting-rpcbind.md )
* [113 - Pentesting Ident ](pentesting/113-pentesting-ident.md )
* [123/udp - Pentesting NTP ](pentesting/pentesting-ntp.md )
2020-10-05 19:41:37 +02:00
* [135, 593 - Pentesting MSRPC ](pentesting/135-pentesting-msrpc.md )
2020-07-15 17:43:14 +02:00
* [137,138,139 - Pentesting NetBios ](pentesting/137-138-139-pentesting-netbios.md )
* [139,445 - Pentesting SMB ](pentesting/pentesting-smb.md )
* [143,993 - Pentesting IMAP ](pentesting/pentesting-imap.md )
2021-04-19 19:04:40 +02:00
* [161,162,10161,10162/udp - Pentesting SNMP ](pentesting/pentesting-snmp/README.md )
* [SNMP RCE ](pentesting/pentesting-snmp/snmp-rce.md )
2020-07-15 17:43:14 +02:00
* [194,6667,6660-7000 - Pentesting IRC ](pentesting/pentesting-irc.md )
* [264 - Pentesting Check Point FireWall-1 ](pentesting/pentesting-264-check-point-firewall-1.md )
* [389, 636, 3268, 3269 - Pentesting LDAP ](pentesting/pentesting-ldap.md )
* [500/udp - Pentesting IPsec/IKE VPN ](pentesting/ipsec-ike-vpn-pentesting.md )
* [502 - Pentesting Modbus ](pentesting/pentesting-modbus.md )
* [512 - Pentesting Rexec ](pentesting/512-pentesting-rexec.md )
* [513 - Pentesting Rlogin ](pentesting/pentesting-rlogin.md )
* [514 - Pentesting Rsh ](pentesting/pentesting-rsh.md )
2021-10-18 13:21:18 +02:00
* [515 - Pentesting Line Printer Daemon (LPD) ](pentesting/515-pentesting-line-printer-daemon-lpd.md )
* [548 - Pentesting Apple Filing Protocol (AFP) ](pentesting/584-pentesting-afp.md )
2020-07-15 17:43:14 +02:00
* [554,8554 - Pentesting RTSP ](pentesting/554-8554-pentesting-rtsp.md )
* [623/UDP/TCP - IPMI ](pentesting/623-udp-ipmi.md )
2021-10-18 13:21:18 +02:00
* [631 - Internet Printing Protocol(IPP) ](pentesting/pentesting-631-internet-printing-protocol-ipp.md )
2020-07-15 17:43:14 +02:00
* [873 - Pentesting Rsync ](pentesting/873-pentesting-rsync.md )
* [1026 - Pentesting Rusersd ](pentesting/1026-pentesting-rusersd.md )
2021-05-26 00:52:07 +02:00
* [1080 - Pentesting Socks ](pentesting/1080-pentesting-socks.md )
2021-06-18 19:11:21 +02:00
* [1098/1099/1050 - Pentesting Java RMI - RMI-IIOP ](pentesting/1099-pentesting-java-rmi.md )
2020-07-15 17:43:14 +02:00
* [1433 - Pentesting MSSQL - Microsoft SQL Server ](pentesting/pentesting-mssql-microsoft-sql-server.md )
* [1521,1522-1529 - Pentesting Oracle TNS Listener ](pentesting/1521-1522-1529-pentesting-oracle-listener/README.md )
* [Oracle Pentesting requirements installation ](pentesting/1521-1522-1529-pentesting-oracle-listener/oracle-pentesting-requirements-installation.md )
* [TNS Poison ](pentesting/1521-1522-1529-pentesting-oracle-listener/tns-poison.md )
* [Remote stealth pass brute force ](pentesting/1521-1522-1529-pentesting-oracle-listener/remote-stealth-pass-brute-force.md )
* [Oracle RCE & more ](pentesting/1521-1522-1529-pentesting-oracle-listener/oracle-rce-and-more.md )
* [1723 - Pentesting PPTP ](pentesting/1723-pentesting-pptp.md )
2021-10-18 13:21:18 +02:00
* [1883 - Pentesting MQTT (Mosquitto) ](pentesting/1883-pentesting-mqtt-mosquitto.md )
2020-07-15 17:43:14 +02:00
* [2049 - Pentesting NFS Service ](pentesting/nfs-service-pentesting.md )
* [2301,2381 - Pentesting Compaq/HP Insight Manager ](pentesting/pentesting-compaq-hp-insight-manager.md )
2020-12-31 17:14:52 +01:00
* [2375, 2376 Pentesting Docker ](pentesting/2375-pentesting-docker.md )
2021-04-02 13:54:47 +02:00
* [3128 - Pentesting Squid ](pentesting/3128-pentesting-squid.md )
2020-07-15 17:43:14 +02:00
* [3260 - Pentesting ISCSI ](pentesting/3260-pentesting-iscsi.md )
* [3299 - Pentesting SAPRouter ](pentesting/3299-pentesting-saprouter.md )
* [3306 - Pentesting Mysql ](pentesting/pentesting-mysql.md )
* [3389 - Pentesting RDP ](pentesting/pentesting-rdp.md )
* [3632 - Pentesting distcc ](pentesting/3632-pentesting-distcc.md )
2021-10-18 13:21:18 +02:00
* [3690 - Pentesting Subversion (svn server) ](pentesting/3690-pentesting-subversion-svn-server.md )
* [4369 - Pentesting Erlang Port Mapper Daemon (epmd) ](pentesting/4369-pentesting-erlang-port-mapper-daemon-epmd.md )
2021-01-03 01:43:09 +01:00
* [5000 - Pentesting Docker Registry ](pentesting/5000-pentesting-docker-registry.md )
2021-10-18 13:21:18 +02:00
* [5353/UDP Multicast DNS (mDNS) ](pentesting/5353-udp-multicast-dns-mdns.md )
2020-07-15 17:43:14 +02:00
* [5432,5433 - Pentesting Postgresql ](pentesting/pentesting-postgresql.md )
2021-01-28 14:40:17 +01:00
* [5601 - Pentesting Kibana ](pentesting/5601-pentesting-kibana.md )
2020-07-15 17:43:14 +02:00
* [5671,5672 - Pentesting AMQP ](pentesting/5671-5672-pentesting-amqp.md )
* [5800,5801,5900,5901 - Pentesting VNC ](pentesting/pentesting-vnc.md )
2020-07-16 21:40:43 +02:00
* [5984,6984 - Pentesting CouchDB ](pentesting/5984-pentesting-couchdb.md )
2020-07-15 17:43:14 +02:00
* [5985,5986 - Pentesting WinRM ](pentesting/5985-5986-pentesting-winrm.md )
* [6000 - Pentesting X11 ](pentesting/6000-pentesting-x11.md )
* [6379 - Pentesting Redis ](pentesting/6379-pentesting-redis.md )
2021-10-18 13:21:18 +02:00
* [8009 - Pentesting Apache JServ Protocol (AJP) ](pentesting/8009-pentesting-apache-jserv-protocol-ajp.md )
2020-11-06 01:32:50 +01:00
* [8089 - Splunkd ](pentesting/8089-splunkd.md )
2021-01-06 18:11:57 +01:00
* [9000 - Pentesting FastCGI ](pentesting/9000-pentesting-fastcgi.md )
2020-12-03 00:18:31 +01:00
* [9001 - Pentesting HSQLDB ](pentesting/9001-pentesting-hsqldb.md )
2020-07-15 17:43:14 +02:00
* [9042/9160 - Pentesting Cassandra ](pentesting/cassandra.md )
2021-10-18 13:21:18 +02:00
* [9100 - Pentesting Raw Printing (JetDirect, AppSocket, PDL-datastream) ](pentesting/9100-pjl.md )
2020-07-15 17:43:14 +02:00
* [9200 - Pentesting Elasticsearch ](pentesting/9200-pentesting-elasticsearch.md )
2021-10-18 13:21:18 +02:00
* [10000 - Pentesting Network Data Management Protocol (ndmp) ](pentesting/10000-network-data-management-protocol-ndmp.md )
2020-07-15 17:43:14 +02:00
* [11211 - Pentesting Memcache ](pentesting/11211-memcache.md )
* [15672 - Pentesting RabbitMQ Management ](pentesting/15672-pentesting-rabbitmq-management.md )
* [27017,27018 - Pentesting MongoDB ](pentesting/27017-27018-mongodb.md )
* [44818/UDP/TCP - Pentesting EthernetIP ](pentesting/44818-ethernetip.md )
* [47808/udp - Pentesting BACNet ](pentesting/47808-udp-bacnet.md )
* [50030,50060,50070,50075,50090 - Pentesting Hadoop ](pentesting/50030-50060-50070-50075-50090-pentesting-hadoop.md )
## Pentesting Web
2021-06-26 14:03:36 +02:00
* [Web Vulnerabilities Methodology ](pentesting-web/web-vulnerabilities-methodology.md )
2021-06-27 18:17:04 +02:00
* [Reflecting Techniques - PoCs and Polygloths CheatSheet ](pentesting-web/pocs-and-polygloths-cheatsheet/README.md )
* [Web Vulns List ](pentesting-web/pocs-and-polygloths-cheatsheet/web-vulns-list.md )
2021-01-26 14:53:03 +01:00
* [2FA/OTP Bypass ](pentesting-web/2fa-bypass.md )
2020-07-15 17:43:14 +02:00
* [Abusing hop-by-hop headers ](pentesting-web/abusing-hop-by-hop-headers.md )
2020-08-06 11:07:38 +02:00
* [Bypass Payment Process ](pentesting-web/bypass-payment-process.md )
2020-07-15 17:43:14 +02:00
* [Captcha Bypass ](pentesting-web/captcha-bypass.md )
* [Cache Poisoning and Cache Deception ](pentesting-web/cache-deception.md )
* [Clickjacking ](pentesting-web/clickjacking.md )
2021-10-18 13:21:18 +02:00
* [Client Side Template Injection (CSTI) ](pentesting-web/client-side-template-injection-csti.md )
2020-07-15 17:43:14 +02:00
* [Command Injection ](pentesting-web/command-injection.md )
2021-10-18 13:21:18 +02:00
* [Content Security Policy (CSP) Bypass ](pentesting-web/content-security-policy-csp-bypass.md )
2021-10-19 02:01:07 +02:00
* [Cookies Hacking ](pentesting-web/hacking-with-cookies/README.md )
* [Cookie Tossing ](pentesting-web/hacking-with-cookies/cookie-tossing.md )
* [Cookie Jar Overflow ](pentesting-web/hacking-with-cookies/cookie-jar-overflow.md )
2021-10-21 01:25:53 +02:00
* [Cookie Bomb ](pentesting-web/hacking-with-cookies/cookie-bomb.md )
2020-07-15 17:43:14 +02:00
* [CORS - Misconfigurations & Bypass ](pentesting-web/cors-bypass.md )
2021-10-18 13:21:18 +02:00
* [CRLF (%0D%0A) Injection ](pentesting-web/crlf-0d-0a.md )
* [Cross-site WebSocket hijacking (CSWSH) ](pentesting-web/cross-site-websocket-hijacking-cswsh.md )
* [CSRF (Cross Site Request Forgery) ](pentesting-web/csrf-cross-site-request-forgery.md )
2020-07-15 17:43:14 +02:00
* [Dangling Markup - HTML scriptless injection ](pentesting-web/dangling-markup-html-scriptless-injection.md )
* [Deserialization ](pentesting-web/deserialization/README.md )
2021-10-22 12:16:40 +02:00
* [NodeJS - \_\_proto\_\_ & prototype Pollution ](pentesting-web/deserialization/nodejs-proto-prototype-pollution/README.md )
* [Client Side Prototype Pollution ](pentesting-web/deserialization/nodejs-proto-prototype-pollution/client-side-prototype-pollution.md )
2021-10-18 13:21:18 +02:00
* [Java JSF ViewState (.faces) Deserialization ](pentesting-web/deserialization/java-jsf-viewstate-.faces-deserialization.md )
2020-07-15 17:43:14 +02:00
* [Java DNS Deserialization, GadgetProbe and Java Deserialization Scanner ](pentesting-web/deserialization/java-dns-deserialization-and-gadgetprobe.md )
2021-10-18 13:21:18 +02:00
* [Basic Java Deserialization (ObjectInputStream, readObject) ](pentesting-web/deserialization/basic-java-deserialization-objectinputstream-readobject.md )
* [CommonsCollection1 Payload - Java Transformers to Rutime exec() and Thread Sleep ](pentesting-web/deserialization/java-transformers-to-rutime-exec-payload.md )
* [Basic .Net deserialization (ObjectDataProvider gadget, ExpandedWrapper, and Json.Net) ](pentesting-web/deserialization/basic-.net-deserialization-objectdataprovider-gadgets-expandedwrapper-and-json.net.md )
2021-10-19 02:01:07 +02:00
* [Exploiting \_\_VIEWSTATE knowing the secrets ](pentesting-web/deserialization/exploiting-\_\_viewstate-knowing-the-secret.md )
* [Exploiting \_\_VIEWSTATE without knowing the secrets ](pentesting-web/deserialization/exploiting-\_\_viewstate-parameter.md )
2020-12-17 14:13:28 +01:00
* [Domain/Subdomain takeover ](pentesting-web/domain-subdomain-takeover.md )
2020-07-15 17:43:14 +02:00
* [Email Header Injection ](pentesting-web/email-header-injection.md )
2020-12-27 15:58:40 +01:00
* [File Inclusion/Path traversal ](pentesting-web/file-inclusion/README.md )
2021-03-20 00:08:07 +01:00
* [phar:// deserialization ](pentesting-web/file-inclusion/phar-deserialization.md )
2020-10-15 15:16:06 +02:00
* [File Upload ](pentesting-web/file-upload/README.md )
* [PDF Upload - XXE and CORS bypass ](pentesting-web/file-upload/pdf-upload-xxe-and-cors-bypass.md )
2020-12-04 14:32:04 +01:00
* [Formula Injection ](pentesting-web/formula-injection.md )
2020-07-15 17:43:14 +02:00
* [HTTP Request Smuggling / HTTP Desync Attack ](pentesting-web/http-request-smuggling.md )
2021-04-20 12:02:21 +02:00
* [H2C Smuggling ](pentesting-web/h2c-smuggling.md )
2020-07-15 17:43:14 +02:00
* [IDOR ](pentesting-web/idor.md )
2021-10-18 13:21:18 +02:00
* [JWT Vulnerabilities (Json Web Tokens) ](pentesting-web/hacking-jwt-json-web-tokens.md )
2020-07-15 17:43:14 +02:00
* [NoSQL injection ](pentesting-web/nosql-injection.md )
* [LDAP Injection ](pentesting-web/ldap-injection.md )
2021-06-26 17:50:17 +02:00
* [Login Bypass ](pentesting-web/login-bypass/README.md )
2021-06-26 18:04:21 +02:00
* [Login bypass List ](pentesting-web/login-bypass/sql-login-bypass.md )
2020-07-15 17:43:14 +02:00
* [OAuth to Account takeover ](pentesting-web/oauth-to-account-takeover.md )
* [Open Redirect ](pentesting-web/open-redirect.md )
2020-07-30 10:35:12 +02:00
* [Parameter Pollution ](pentesting-web/parameter-pollution.md )
2020-12-17 14:13:28 +01:00
* [PostMessage Vulnerabilities ](pentesting-web/postmessage-vulnerabilities.md )
2020-07-15 17:43:14 +02:00
* [Race Condition ](pentesting-web/race-condition.md )
* [Rate Limit Bypass ](pentesting-web/rate-limit-bypass.md )
2021-06-27 16:55:59 +02:00
* [Registration Vulnerabilities ](pentesting-web/registration-vulnerabilities.md )
2021-01-26 14:53:03 +01:00
* [Regular expression Denial of Service - ReDoS ](pentesting-web/regular-expression-denial-of-service-redos.md )
2021-04-07 15:16:44 +02:00
* [Reset/Forgotten Password Bypass ](pentesting-web/reset-password.md )
2021-06-10 01:55:49 +02:00
* [SAML Attacks ](pentesting-web/saml-attacks/README.md )
* [SAML Basics ](pentesting-web/saml-attacks/saml-basics.md )
2021-06-07 18:48:00 +02:00
* [Server Side Inclusion/Edge Side Inclusion Injection ](pentesting-web/server-side-inclusion-edge-side-inclusion-injection.md )
2020-07-15 17:43:14 +02:00
* [SQL Injection ](pentesting-web/sql-injection/README.md )
* [MSSQL Injection ](pentesting-web/sql-injection/mssql-injection.md )
* [Oracle injection ](pentesting-web/sql-injection/oracle-injection.md )
* [PostgreSQL injection ](pentesting-web/sql-injection/postgresql-injection/README.md )
2021-10-19 02:01:07 +02:00
* [dblink/lo\_import data exfiltration ](pentesting-web/sql-injection/postgresql-injection/dblink-lo\_import-data-exfiltration.md )
2020-07-15 17:43:14 +02:00
* [PL/pgSQL Password Bruteforce ](pentesting-web/sql-injection/postgresql-injection/pl-pgsql-password-bruteforce.md )
* [Network - Privesc, Port Scanner and NTLM chanllenge response disclosure ](pentesting-web/sql-injection/postgresql-injection/network-privesc-port-scanner-and-ntlm-chanllenge-response-disclosure.md )
2021-10-18 13:21:18 +02:00
* [Big Binary Files Upload (PostgreSQL) ](pentesting-web/sql-injection/postgresql-injection/big-binary-files-upload-postgresql.md )
2020-07-15 17:43:14 +02:00
* [RCE with PostgreSQL Extensions ](pentesting-web/sql-injection/postgresql-injection/rce-with-postgresql-extensions.md )
* [MySQL injection ](pentesting-web/sql-injection/mysql-injection/README.md )
* [Mysql SSRF ](pentesting-web/sql-injection/mysql-injection/mysql-ssrf.md )
2020-07-22 21:36:23 +02:00
* [SQLMap - Cheetsheat ](pentesting-web/sql-injection/sqlmap/README.md )
* [Second Order Injection - SQLMap ](pentesting-web/sql-injection/sqlmap/second-order-injection-sqlmap.md )
2021-10-18 13:21:18 +02:00
* [SSRF (Server Side Request Forgery) ](pentesting-web/ssrf-server-side-request-forgery.md )
* [SSTI (Server Side Template Injection) ](pentesting-web/ssti-server-side-template-injection/README.md )
2021-06-07 11:30:58 +02:00
* [EL - Expression Language ](pentesting-web/ssti-server-side-template-injection/el-expression-language.md )
2021-05-01 17:23:19 +02:00
* [Reverse Tab Nabbing ](pentesting-web/reverse-tab-nabbing.md )
2020-07-15 17:43:14 +02:00
* [Unicode Normalization vulnerability ](pentesting-web/unicode-normalization-vulnerability.md )
* [Web Tool - WFuzz ](pentesting-web/web-tool-wfuzz.md )
* [XPATH injection ](pentesting-web/xpath-injection.md )
2021-10-18 13:21:18 +02:00
* [XSLT Server Side Injection (Extensible Stylesheet Languaje Transformations) ](pentesting-web/xslt-server-side-injection-extensible-stylesheet-languaje-transformations.md )
2020-07-15 17:43:14 +02:00
* [XXE - XEE - XML External Entity ](pentesting-web/xxe-xee-xml-external-entity.md )
2021-10-18 13:21:18 +02:00
* [XSS (Cross Site Scripting) ](pentesting-web/xss-cross-site-scripting/README.md )
2020-12-24 10:46:40 +01:00
* [PDF Injection ](pentesting-web/xss-cross-site-scripting/pdf-injection.md )
2020-07-15 17:43:14 +02:00
* [DOM XSS ](pentesting-web/xss-cross-site-scripting/dom-xss.md )
2021-10-18 13:21:18 +02:00
* [Server Side XSS (Dynamic PDF) ](pentesting-web/xss-cross-site-scripting/server-side-xss-dynamic-pdf.md )
2020-07-15 17:43:14 +02:00
* [XSS Tools ](pentesting-web/xss-cross-site-scripting/xss-tools.md )
2021-10-20 02:45:58 +02:00
* [Iframes in XSS and CSP ](pentesting-web/xss-cross-site-scripting/iframes-in-xss-and-csp.md )
2021-10-18 13:21:18 +02:00
* [XSSI (Cross-Site Script Inclusion) ](pentesting-web/xssi-cross-site-script-inclusion.md )
2020-07-15 17:43:14 +02:00
* [XS-Search ](pentesting-web/xs-search.md )
## Forensics
2021-05-28 19:27:17 +02:00
* [Basic Forensic Methodology ](forensics/basic-forensic-methodology/README.md )
2021-09-06 18:03:19 +02:00
* [Baseline Monitoring ](forensics/basic-forensic-methodology/file-integrity-monitoring.md )
2021-05-28 19:40:28 +02:00
* [Anti-Forensic Techniques ](forensics/basic-forensic-methodology/anti-forensic-techniques.md )
* [Docker Forensics ](forensics/basic-forensic-methodology/docker-forensics.md )
* [Image Adquisition & Mount ](forensics/basic-forensic-methodology/image-adquisition-and-mount.md )
* [Linux Forensics ](forensics/basic-forensic-methodology/linux-forensics.md )
2021-05-28 19:51:59 +02:00
* [Malware Analysis ](forensics/basic-forensic-methodology/malware-analysis.md )
2021-05-28 19:27:17 +02:00
* [Memory dump analysis ](forensics/basic-forensic-methodology/memory-dump-analysis/README.md )
* [Volatility - CheatSheet ](forensics/basic-forensic-methodology/memory-dump-analysis/volatility-examples.md )
2021-05-28 19:40:28 +02:00
* [Partitions/File Systems/Carving ](forensics/basic-forensic-methodology/partitions-file-systems-carving/README.md )
2021-05-29 15:27:23 +02:00
* [EXT ](forensics/basic-forensic-methodology/partitions-file-systems-carving/ext.md )
2021-05-28 19:53:46 +02:00
* [File/Data Carving & Recovery Tools ](forensics/basic-forensic-methodology/partitions-file-systems-carving/file-data-carving-recovery-tools.md )
2021-05-28 19:40:28 +02:00
* [NTFS ](forensics/basic-forensic-methodology/partitions-file-systems-carving/ntfs.md )
* [Pcap Inspection ](forensics/basic-forensic-methodology/pcap-inspection/README.md )
* [DNSCat pcap analysis ](forensics/basic-forensic-methodology/pcap-inspection/dnscat-exfiltration.md )
2021-09-05 15:49:24 +02:00
* [USB Keystrokes ](forensics/basic-forensic-methodology/pcap-inspection/usb-keystrokes.md )
2021-05-28 19:40:28 +02:00
* [Wifi Pcap Analysis ](forensics/basic-forensic-methodology/pcap-inspection/wifi-pcap-analysis.md )
* [Wireshark tricks ](forensics/basic-forensic-methodology/pcap-inspection/wireshark-tricks.md )
2021-05-28 19:27:17 +02:00
* [Specific Software/File-Type Tricks ](forensics/basic-forensic-methodology/specific-software-file-type-tricks/README.md )
* [.pyc ](forensics/basic-forensic-methodology/specific-software-file-type-tricks/.pyc.md )
* [Browser Artifacts ](forensics/basic-forensic-methodology/specific-software-file-type-tricks/browser-artifacts.md )
2021-10-18 13:21:18 +02:00
* [Desofuscation vbs (cscript.exe) ](forensics/basic-forensic-methodology/specific-software-file-type-tricks/desofuscation-vbs-cscript.exe.md )
2021-05-28 19:27:17 +02:00
* [Local Cloud Storage ](forensics/basic-forensic-methodology/specific-software-file-type-tricks/local-cloud-storage.md )
* [Office file analysis ](forensics/basic-forensic-methodology/specific-software-file-type-tricks/office-file-analysis.md )
* [PDF File analysis ](forensics/basic-forensic-methodology/specific-software-file-type-tricks/pdf-file-analysis.md )
* [PNG tricks ](forensics/basic-forensic-methodology/specific-software-file-type-tricks/png-tricks.md )
* [Video and Audio file analysis ](forensics/basic-forensic-methodology/specific-software-file-type-tricks/video-and-audio-file-analysis.md )
* [ZIPs tricks ](forensics/basic-forensic-methodology/specific-software-file-type-tricks/zips-tricks.md )
* [Windows Artifacts ](forensics/basic-forensic-methodology/windows-forensics/README.md )
2021-09-06 16:49:06 +02:00
* [Windows Processes ](forensics/basic-forensic-methodology/windows-forensics/windows-processes.md )
2021-05-28 19:27:17 +02:00
* [Interesting Windows Registry Keys ](forensics/basic-forensic-methodology/windows-forensics/interesting-windows-registry-keys.md )
2020-07-15 17:43:14 +02:00
2021-06-09 22:18:38 +02:00
## A.I. Exploiting
2021-06-20 15:28:26 +02:00
* [BRA.I.NSMASHER Presentation ](a.i.-exploiting/bra.i.nsmasher-presentation/README.md )
2021-07-12 11:32:44 +02:00
* [Basic Bruteforcer ](a.i.-exploiting/bra.i.nsmasher-presentation/basic-bruteforcer.md )
2021-07-12 15:25:26 +02:00
* [Basic Captcha Breaker ](a.i.-exploiting/bra.i.nsmasher-presentation/basic-captcha-breaker.md )
2021-07-12 11:32:44 +02:00
* [BIM Bruteforcer ](a.i.-exploiting/bra.i.nsmasher-presentation/bim-bruteforcer.md )
* [Hybrid Malware Classifier Part 1 ](a.i.-exploiting/bra.i.nsmasher-presentation/hybrid-malware-classifier-part-1.md )
2021-06-09 22:18:38 +02:00
2021-08-31 00:36:25 +02:00
## Blockchain
* [Blockchain & Crypto Currencies ](blockchain/blockchain-and-crypto-currencies.md )
2021-07-04 16:49:00 +02:00
## Courses and Certifications Reviews
2021-07-04 17:02:00 +02:00
* [INE Courses and eLearnSecurity Certifications Reviews ](courses-and-certifications-reviews/ine-courses-and-elearnsecurity-certifications-reviews.md )
2021-07-04 16:49:00 +02:00
2021-06-09 22:18:38 +02:00
## Cloud Security
2021-10-06 14:37:22 +02:00
* [Cloud Security Review ](cloud-security/cloud-security-review.md )
2021-06-09 22:18:38 +02:00
* [AWS Security ](cloud-security/aws-security.md )
2021-10-18 13:21:18 +02:00
* [GCP Security ](cloud-security/gcp-security/README.md )
* [GCP - Local Privilege Escalation / SSH Pivoting ](cloud-security/gcp-security/gcp-local-privilege-escalation-ssh-pivoting.md )
* [GCP - IAM Escalation ](cloud-security/gcp-security/gcp-iam-escalation.md )
2021-10-25 18:01:41 +02:00
* [GCP - Other Services Enumeration ](cloud-security/gcp-security/gcp-looting.md )
2021-10-19 16:04:17 +02:00
* [GCP - Interesting Permissions ](cloud-security/gcp-security/gcp-interesting-permissions.md )
2021-10-28 12:44:24 +02:00
* [GCP - Buckets: Public Assets Brute-Force & Discovery, & Buckets Privilege Escalation ](cloud-security/gcp-security/gcp-buckets-brute-force-and-privilege-escalation.md )
2021-10-25 01:51:22 +02:00
* [GCP - Compute Enumeration ](cloud-security/gcp-security/gcp-compute-enumeration.md )
* [GCP - Network Enumeration ](cloud-security/gcp-security/gcp-network-enumeration.md )
2021-10-25 14:39:32 +02:00
* [GCP - KMS & Secrets Management Enumeration ](cloud-security/gcp-security/gcp-kms-and-secrets-management-enumeration.md )
2021-10-25 16:30:32 +02:00
* [GCP - Databases Enumeration ](cloud-security/gcp-security/gcp-databases-enumeration.md )
2021-10-25 18:01:41 +02:00
* [GCP - Serverless Code Exec Services Enumeration ](cloud-security/gcp-security/gcp-serverless-code-exec-services-enumeration.md )
2021-10-28 12:44:24 +02:00
* [GCP - Buckets Enumeration ](cloud-security/gcp-security/gcp-buckets-enumeration.md )
2021-06-09 22:18:38 +02:00
2021-03-04 18:53:35 +01:00
## Physical attacks
* [Physical Attacks ](physical-attacks/physical-attacks.md )
* [Escaping from KIOSKs ](physical-attacks/escaping-from-gui-applications/README.md )
* [Show file extensions ](physical-attacks/escaping-from-gui-applications/show-file-extensions.md )
## Reversing
2021-08-25 00:57:45 +02:00
* [Reversing Tools & Basic Methods ](reversing/reversing-tools-basic-methods/README.md )
2021-09-20 21:46:35 +02:00
* [Angr ](reversing/reversing-tools-basic-methods/angr/README.md )
* [Angr - Examples ](reversing/reversing-tools-basic-methods/angr/angr-examples.md )
2021-10-18 13:21:18 +02:00
* [Z3 - Satisfiability Modulo Theories (SMT) ](reversing/reversing-tools-basic-methods/satisfiability-modulo-theories-smt-z3.md )
2021-08-25 23:16:18 +02:00
* [Cheat Engine ](reversing/reversing-tools-basic-methods/cheat-engine.md )
2021-08-25 00:57:45 +02:00
* [Blobrunner ](reversing/reversing-tools-basic-methods/blobrunner.md )
2021-03-04 18:53:35 +01:00
* [Common API used in Malware ](reversing/common-api-used-in-malware.md )
* [Cryptographic/Compression Algorithms ](reversing/cryptographic-algorithms/README.md )
* [Unpacking binaries ](reversing/cryptographic-algorithms/unpacking-binaries.md )
* [Word Macros ](reversing/word-macros.md )
## Exploiting
2021-10-18 13:21:18 +02:00
* [Linux Exploiting (Basic) (SPA) ](exploiting/linux-exploiting-basic-esp/README.md )
2021-09-26 00:02:15 +02:00
* [Format Strings Template ](exploiting/linux-exploiting-basic-esp/format-strings-template.md )
2021-10-19 02:01:07 +02:00
* [ROP - call sys\_execve ](exploiting/linux-exploiting-basic-esp/rop-syscall-execv.md )
2021-09-26 18:26:39 +02:00
* [ROP - Leaking LIBC address ](exploiting/linux-exploiting-basic-esp/rop-leaking-libc-address/README.md )
* [ROP - Leaking LIBC template ](exploiting/linux-exploiting-basic-esp/rop-leaking-libc-address/rop-leaking-libc-template.md )
2021-03-04 18:53:35 +01:00
* [Bypassing Canary & PIE ](exploiting/linux-exploiting-basic-esp/bypassing-canary-and-pie.md )
* [Ret2Lib ](exploiting/linux-exploiting-basic-esp/ret2lib.md )
* [Fusion ](exploiting/linux-exploiting-basic-esp/fusion.md )
* [Exploiting Tools ](exploiting/tools/README.md )
* [PwnTools ](exploiting/tools/pwntools.md )
2021-10-18 13:21:18 +02:00
* [Windows Exploiting (Basic Guide - OSCP lvl) ](exploiting/windows-exploiting-basic-guide-oscp-lvl.md )
2021-03-04 18:53:35 +01:00
2021-08-31 00:36:25 +02:00
## Cryptography
2020-07-15 17:43:14 +02:00
2021-08-31 00:36:25 +02:00
* [Certificates ](cryptography/certificates.md )
* [Cipher Block Chaining CBC-MAC ](cryptography/cipher-block-chaining-cbc-mac-priv.md )
* [Crypto CTFs Tricks ](cryptography/crypto-ctfs-tricks.md )
2021-10-18 13:21:18 +02:00
* [Electronic Code Book (ECB) ](cryptography/electronic-code-book-ecb.md )
2021-08-31 00:36:25 +02:00
* [Hash Length Extension Attack ](cryptography/hash-length-extension-attack.md )
* [Padding Oracle ](cryptography/padding-oracle-priv.md )
2021-10-18 13:21:18 +02:00
* [RC4 - Encrypt\&Decrypt ](cryptography/rc4-encrypt-and-decrypt.md )
2020-07-15 17:43:14 +02:00
## BACKDOORS
* [Merlin ](backdoors/merlin.md )
* [Empire ](backdoors/empire.md )
* [Salseo ](backdoors/salseo.md )
* [ICMPsh ](backdoors/icmpsh.md )
## Stego
* [Stego Tricks ](stego/stego-tricks.md )
* [Esoteric languages ](stego/esoteric-languages.md )
## MISC
* [Basic Python ](misc/basic-python/README.md )
2020-09-20 22:52:26 +02:00
* [venv ](misc/basic-python/venv.md )
2021-10-06 12:13:49 +02:00
* [Bypass Python sandboxes ](misc/basic-python/bypass-python-sandboxes/README.md )
* [Output Searching Python internals ](misc/basic-python/bypass-python-sandboxes/output-searching-python-internals.md )
2020-07-15 17:43:14 +02:00
* [Magic Methods ](misc/basic-python/magic-methods.md )
* [Web Requests ](misc/basic-python/web-requests.md )
2021-10-18 13:21:18 +02:00
* [Bruteforce hash (few chars) ](misc/basic-python/bruteforce-hash-few-chars.md )
2020-07-15 17:43:14 +02:00
* [Other Big References ](misc/references.md )
## TODO
* [More Tools ](todo/more-tools.md )
* [MISC ](todo/misc.md )
* [Pentesting DNS ](todo/pentesting-dns.md )
2021-10-18 13:21:18 +02:00
***
2020-07-15 17:43:14 +02:00
* [Burp Suite ](burp-suite.md )
* [Other Web Tricks ](other-web-tricks.md )
* [Interesting HTTP ](interesting-http.md )
* [Emails Vulnerabilities ](emails-vulns.md )
* [Android Forensics ](android-forensics.md )
* [TR-069 ](tr-069.md )
* [6881/udp - Pentesting BitTorrent ](6881-udp-pentesting-bittorrent.md )
* [CTF Write-ups ](ctf-write-ups/README.md )
2021-06-08 00:32:49 +02:00
* [challenge-0521.intigriti.io ](ctf-write-ups/challenge-0521.intigriti.io.md )
2020-07-15 17:43:14 +02:00
* [Try Hack Me ](ctf-write-ups/try-hack-me/README.md )
* [hc0n Christmas CTF - 2019 ](ctf-write-ups/try-hack-me/hc0n-christmas-ctf-2019.md )
* [Pickle Rick ](ctf-write-ups/try-hack-me/pickle-rick.md )
* [1911 - Pentesting fox ](1911-pentesting-fox.md )
* [Online Platforms with API ](online-platforms-with-api.md )
2020-09-07 13:12:11 +02:00
* [Stealing Sensitive Information Disclosure from a Web ](stealing-sensitive-information-disclosure-from-a-web.md )
2021-08-10 16:04:23 +02:00
* [Post Exploitation ](post-exploitation.md )
