CEHv8 Module 05 System Hacking .pdf
14 MB
E-Books Hacking PDF
👍9🔥4❤3
10000RS Bug Bounty | Product Buy Free | Live Bug Bounty | Learn Bug Bounty
https://www.youtube.com/watch?v=HlzxbRUgefQ
https://www.youtube.com/watch?v=HlzxbRUgefQ
❤2👍1
What is SSRF?
Server-side request forgery (also known as SSRF) is a web security vulnerability that allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of the attacker's choosing.
In a typical SSRF attack, the attacker might cause the server to make a connection to internal-only services within the organization's infrastructure. In other cases, they may be able to force the server to connect to arbitrary external systems, potentially leaking sensitive data such as authorization credentials.
Server-side request forgery (also known as SSRF) is a web security vulnerability that allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of the attacker's choosing.
In a typical SSRF attack, the attacker might cause the server to make a connection to internal-only services within the organization's infrastructure. In other cases, they may be able to force the server to connect to arbitrary external systems, potentially leaking sensitive data such as authorization credentials.
🎉6
Subfinder – A Subdomain Discovery Tool
git clone https://github.com/projectdiscovery/subfinder.git cd subfinder/v2/cmd/subfinder go build . mv subfinder /usr/local/bin/ subfinder -h
Attribution link: https://latesthackingnews.com/2021/01/23/subfinder-a-subdomain-discovery-tool/
git clone https://github.com/projectdiscovery/subfinder.git cd subfinder/v2/cmd/subfinder go build . mv subfinder /usr/local/bin/ subfinder -h
Attribution link: https://latesthackingnews.com/2021/01/23/subfinder-a-subdomain-discovery-tool/
👍5
HTTPX – A Tool to Fingerprint a Web Server
git clone https://github.com/projectdiscovery/httpx.git cd httpx/cmd/httpx go build mv httpx /usr/local/bin/ httpx -version
Attribution link: https://latesthackingnews.com/2021/04/05/httpx-a-tool-for-finding-http-server/
git clone https://github.com/projectdiscovery/httpx.git cd httpx/cmd/httpx go build mv httpx /usr/local/bin/ httpx -version
Attribution link: https://latesthackingnews.com/2021/04/05/httpx-a-tool-for-finding-http-server/
🕵️♀️
Top 44 Ports (Basics)
1️⃣ FTP - Port 21
2️⃣ SSH - Port 22
3️⃣ Telnet - Port 23
4️⃣ SMTP | Port 25 and Submission Port 587
5️⃣ DNS - Port 53
6️⃣ Finger - Port 79
7️⃣ HTTP - Port 80
8️⃣ Kerberos - Port 88
9️⃣ POP3 - Port 110
1️⃣0️⃣ RPCInfo - Port 111
1️⃣1️⃣ Ident - Port 113
1️⃣2️⃣ NetBios
1️⃣3️⃣ SNMP - Port 161
1️⃣4️⃣ Check Point FireWall-1 Topology - Port 264
1️⃣5️⃣ LDAP - Port 389
1️⃣6️⃣ SMB - Port 445
1️⃣7️⃣ Rexec - Port 512
1️⃣8️⃣ Rlogin - Port 513
1️⃣9️⃣ RSH - port 514
2️⃣0️⃣ AFP - Apple Filing Protocol - Port 548
2️⃣1️⃣ Microsoft Windows RPC Services | Port 135 and Microsoft RPC Services over HTTP | Port 593
2️⃣2️⃣ HTTPS - Port 443 and 8443
2️⃣3️⃣ RTSP - Port 554 and 8554
2️⃣4️⃣ Rsync - Port 873
2️⃣5️⃣ Java RMI - Port 1099
2️⃣6️⃣ MS-SQL | Port 1433
2️⃣7️⃣ Oracle - Port 1521
2️⃣8️⃣ NFS - Port 2049
2️⃣9️⃣ ISCSI - Port 3260
3️⃣0️⃣ SAP Router | Port 3299
3️⃣1️⃣ MySQL | Port 3306
3️⃣2️⃣ Postgresql - Port 5432
3️⃣3️⃣ HPDataProtector RCE - Port 5555
3️⃣4️⃣ VNC - Port 5900
3️⃣5️⃣ CouchDB - Port 5984
3️⃣6️⃣ Redis - Port 6379
3️⃣7️⃣ AJP Apache JServ Protocol - Port 8009
3️⃣8️⃣ PJL - Port 9100
3️⃣9️⃣ Apache Cassandra - Port 9160
4️⃣0️⃣ Network Data Management Protocol (ndmp) - Port 10000
4️⃣1️⃣ Memcache - Port 11211
4️⃣2️⃣ MongoDB - Port 27017 and Port 27018
4️⃣3️⃣ EthernetIP-TCP-UDP - Port 44818
4️⃣4️⃣ UDP BACNet - Port 47808
Top 44 Ports (Basics)
1️⃣ FTP - Port 21
2️⃣ SSH - Port 22
3️⃣ Telnet - Port 23
4️⃣ SMTP | Port 25 and Submission Port 587
5️⃣ DNS - Port 53
6️⃣ Finger - Port 79
7️⃣ HTTP - Port 80
8️⃣ Kerberos - Port 88
9️⃣ POP3 - Port 110
1️⃣0️⃣ RPCInfo - Port 111
1️⃣1️⃣ Ident - Port 113
1️⃣2️⃣ NetBios
1️⃣3️⃣ SNMP - Port 161
1️⃣4️⃣ Check Point FireWall-1 Topology - Port 264
1️⃣5️⃣ LDAP - Port 389
1️⃣6️⃣ SMB - Port 445
1️⃣7️⃣ Rexec - Port 512
1️⃣8️⃣ Rlogin - Port 513
1️⃣9️⃣ RSH - port 514
2️⃣0️⃣ AFP - Apple Filing Protocol - Port 548
2️⃣1️⃣ Microsoft Windows RPC Services | Port 135 and Microsoft RPC Services over HTTP | Port 593
2️⃣2️⃣ HTTPS - Port 443 and 8443
2️⃣3️⃣ RTSP - Port 554 and 8554
2️⃣4️⃣ Rsync - Port 873
2️⃣5️⃣ Java RMI - Port 1099
2️⃣6️⃣ MS-SQL | Port 1433
2️⃣7️⃣ Oracle - Port 1521
2️⃣8️⃣ NFS - Port 2049
2️⃣9️⃣ ISCSI - Port 3260
3️⃣0️⃣ SAP Router | Port 3299
3️⃣1️⃣ MySQL | Port 3306
3️⃣2️⃣ Postgresql - Port 5432
3️⃣3️⃣ HPDataProtector RCE - Port 5555
3️⃣4️⃣ VNC - Port 5900
3️⃣5️⃣ CouchDB - Port 5984
3️⃣6️⃣ Redis - Port 6379
3️⃣7️⃣ AJP Apache JServ Protocol - Port 8009
3️⃣8️⃣ PJL - Port 9100
3️⃣9️⃣ Apache Cassandra - Port 9160
4️⃣0️⃣ Network Data Management Protocol (ndmp) - Port 10000
4️⃣1️⃣ Memcache - Port 11211
4️⃣2️⃣ MongoDB - Port 27017 and Port 27018
4️⃣3️⃣ EthernetIP-TCP-UDP - Port 44818
4️⃣4️⃣ UDP BACNet - Port 47808
👍11❤2
ANONYMOUS MAIL SERVICE ON DARK WEB [.ONION LINKS]
O3mail:-
O3mail also offers anonymous email service. But to use O3mail service, you need to enable Java Script in your Tor Browser setting which is not good for a hidden web user.
Url:- http://ozon3kdtlr6gtzjn.onion/
ScriptMail:-
If privacy is your major concern and looking for premium anonymous email service provider, then you can check this dark web link. They also offer 7 day trial so I will recommend you before buying first go with 7 day trial and then decide is it best or need to look for other alternative deep web links.
Url:- http://scryptmaildniwm6.onion/
BitmessageMailGateway:-
This dark web link provides you a facility to connect Bitmessage with Email without any software. Bitmessage Network is easy to use like Email today. Using given onion link, you can create personal Bitmessage address, easily send and receive emails from/to another email addresses. Some amazing features of this dark web link are Auto responder, Auto forwarder, broadcasting, two auto signatures and many more. Best thing about this anonymous email service provider is that it is completely free.
Url:- http://bitmailendavkbec.onion
OnionMail:-
Onion Mail is another working anonymous email service provider at hidden web. To create a new Onion Mail account, you need to click at Download option and then you will notice another window with a message “To create a new OnionMail account click HERE”. For more info about Onion Mail features and ser
O3mail:-
O3mail also offers anonymous email service. But to use O3mail service, you need to enable Java Script in your Tor Browser setting which is not good for a hidden web user.
Url:- http://ozon3kdtlr6gtzjn.onion/
ScriptMail:-
If privacy is your major concern and looking for premium anonymous email service provider, then you can check this dark web link. They also offer 7 day trial so I will recommend you before buying first go with 7 day trial and then decide is it best or need to look for other alternative deep web links.
Url:- http://scryptmaildniwm6.onion/
BitmessageMailGateway:-
This dark web link provides you a facility to connect Bitmessage with Email without any software. Bitmessage Network is easy to use like Email today. Using given onion link, you can create personal Bitmessage address, easily send and receive emails from/to another email addresses. Some amazing features of this dark web link are Auto responder, Auto forwarder, broadcasting, two auto signatures and many more. Best thing about this anonymous email service provider is that it is completely free.
Url:- http://bitmailendavkbec.onion
OnionMail:-
Onion Mail is another working anonymous email service provider at hidden web. To create a new Onion Mail account, you need to click at Download option and then you will notice another window with a message “To create a new OnionMail account click HERE”. For more info about Onion Mail features and ser
👍7❤1🎉1
Free Ethical Hacking 👿
https://mega.nz/folder/V5wgzAqL#PUNkll_QIN9Ixl3nb7GYfg
https://mega.nz/folder/V5wgzAqL#PUNkll_QIN9Ixl3nb7GYfg
mega.nz
File folder on MEGA
❤1👍1
Zarp – A Free Network Attack
Zarp is a powerful tool used for scanning and attacking networks. The tool is capable of launching the denial of service attacks, poisoning the network, sniffing different systems, scanning for running services, managing sessions, and dumping information.
git clone https://github.com/hatRiot/zarp.git pip install -r requirements.txt
sudo ./zarp.py
Zarp is a powerful tool used for scanning and attacking networks. The tool is capable of launching the denial of service attacks, poisoning the network, sniffing different systems, scanning for running services, managing sessions, and dumping information.
git clone https://github.com/hatRiot/zarp.git pip install -r requirements.txt
sudo ./zarp.py
👍3❤2
*Find anonfiles using dorks* 🌶️🌶️
I hope u like this easy trick
1 ] https://cdn-10.anonfile.com filetype:txt
2 ] https://anonfile.com filetype:txt
3 ] play with ur keyboard
I hope u like this easy trick
1 ] https://cdn-10.anonfile.com filetype:txt
2 ] https://anonfile.com filetype:txt
3 ] play with ur keyboard
❤3🤩1
https://www.youtube.com/watch?v=TPYYrZOL2rI
Bug Bounty 🔥🔥 | Cyber Security |
Ethical Hacking | Live Class | DROP.ORG.IN 🌎
1 Hour *Tutorial All* In One ⏱️⏱️⏱️⏱️
Bug Bounty 🔥🔥 | Cyber Security |
Ethical Hacking | Live Class | DROP.ORG.IN 🌎
1 Hour *Tutorial All* In One ⏱️⏱️⏱️⏱️