GitBook: [#3680] No subject

2022-12-15 10:37:10 +00:00 · 2022-12-15 10:37:10 +00:00 · d1d70d41a3
parent e4a87540ab
commit d1d70d41a3
6 changed files with 11 additions and 3 deletions
--- a/.gitbook/assets/image
+++ b/.gitbook/assets/image
--- a/.gitbook/assets/image
+++ b/.gitbook/assets/image
--- a/.gitbook/assets/image
+++ b/.gitbook/assets/image
--- a/pentesting-web/file-inclusion/README.md
+++ b/pentesting-web/file-inclusion/README.md
@ -591,7 +591,15 @@ If you found a **Local File Inclusion** and you **can exfiltrate the path** of t
 [lfi2rce-via-compress.zlib-+-php\_stream\_prefer\_studio-+-path-disclosure.md](lfi2rce-via-compress.zlib-+-php\_stream\_prefer\_studio-+-path-disclosure.md)
 {% endcontent-ref %}

-### References
+### To Fatal Error
+
+If you include any of the files `/usr/bin/phar`, `/usr/bin/phar7`, `/usr/bin/phar.phar7`, `/usr/bin/phar.phar`. (You need to include the same one 2 time to throw that error).
+
+**I don't know how is this useful but it might be.**
+
+<figure><img src="../../.gitbook/assets/image (1).png" alt=""><figcaption></figcaption></figure>
+
+## References

 [PayloadsAllTheThings](https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/File%20Inclusion%20-%20Path%20Traversal)\
 [PayloadsAllTheThings/tree/master/File%20Inclusion%20-%20Path%20Traversal/Intruders](https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/File%20Inclusion%20-%20Path%20Traversal/Intruders)
--- a/windows-hardening/av-bypass.md
+++ b/windows-hardening/av-bypass.md
@ -231,7 +231,7 @@ You may have seen this screen when downloading some executables from the interne

 Microsoft Defender SmartScreen is a security mechanism intended to protect the end user against running potentially malicious applications.

-<figure><img src="../.gitbook/assets/image (1).png" alt=""><figcaption></figcaption></figure>
+<figure><img src="../.gitbook/assets/image (1) (4).png" alt=""><figcaption></figcaption></figure>

 SmartScreen mainly works with a reputation-based approach, meaning that uncommonly download applications will trigger SmartScreen thus alerting and preventing the end user from executing the file (although the file can still be executed by clicking More Info -> Run anyway).

--- a/windows-hardening/lateral-movement/dcom-exec.md
+++ b/windows-hardening/lateral-movement/dcom-exec.md
@ -28,7 +28,7 @@ Fortunately, as an admin, you can remotely interact with DCOM with PowerShell by

 It is then possible to invoke the `ExecuteShellCommand` method to start a process on the remote host:

-![](<../../.gitbook/assets/image (1) (4).png>)
+![](<../../.gitbook/assets/image (1) (4) (1).png>)

 ## ShellWindows & ShellBrowserWindow