Hacking Articles
@hackinarticles
21K subscribers
1.13K photos
165 files
777 links
House of Pentester
Download Telegram
About
Blog
Apps
Platform
Join
Hacking Articles
21K subscribers
Hacking Articles
WPScan Cheat Sheet

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

WPScan is a powerful security scanner used to identify vulnerabilities in WordPress websites. It helps penetration testers enumerate users, plugins, themes, and detect security issues in WordPress installations.

⚑️ Useful WPScan Commands

πŸ”Ž wpscan --url
πŸ‘€ wpscan --url --enumerate u
🧩 wpscan --url --enumerate p
🎨 wpscan --url --enumerate t
πŸ” wpscan --url --passwords wordlist.txt --usernames admin
🧠 wpscan --url --api-token
πŸ“„ wpscan --url --plugins-detection aggressive
πŸ“‚ wpscan --url --enumerate vp
⚑️ wpscan --url --random-user-agent

This cheat sheet helps pentesters quickly perform WordPress enumeration, vulnerability scanning, and password attacks.

πŸ“š WPScan Mindmap:
https://github.com/Ignitetechnologies/Mindmap/tree/main/wpscan
πŸ”₯1
1.71K views
Hacking Articles
Pic of the Day

πŸ”₯ OSCP+ / CTF Exam Practice Training (Online) – Enroll Now! πŸš€

Looking to strengthen your practical penetration testing skills and boost your confidence before the OSCP+ exam?

Join Ignite Technologies’ Exclusive Capture The Flag (CTF) Practice Program β€” designed to simulate real exam scenarios and real-world attack environments.

πŸ”— Register Here:
https://forms.gle/bowpX9TGEs41GDG99

πŸ’¬ WhatsApp:
https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email:
info@ignitetechnologies.in

πŸ“š What You’ll Cover:

🧠 Introduction to Exam Strategy & Methodology
🌐 Information Gathering & Enumeration
🧱 Vulnerability Scanning & Analysis
πŸ”“ Windows Privilege Escalation
🐧 Linux Privilege Escalation
πŸ›‘ Client-Side Attacks
🌐 Web Application Attacks
🧬 Password Attacks & Credential Exploitation
🧠 Tunneling & Pivoting Techniques
🏰 Active Directory Attacks
πŸ’£ Exploiting Public Exploits Effectively
πŸ“‹ Professional Report Writing

🎯 This training is ideal for:
β€’ OSCP+ aspirants
β€’ CTF players aiming to go professional
β€’ Pentesters wanting structured exam practice
β€’ Security professionals strengthening real-world attack skills

Limited seats available. Prepare smart. Hack ethically. πŸš€
2.08K views
Hacking Articles
Diamond Ticket Attack: Abusing Kerberos Trust

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

Diamond Ticket Attack is an advanced Kerberos attack where attackers modify the Privilege Attribute Certificate (PAC) inside a valid Ticket Granting Ticket (TGT) to escalate privileges and impersonate high-privileged users in Active Directory.

πŸ“š Topic Covered

πŸ“– Introduction
🧠 Understanding Kerberos & PAC
🎟 Ticket Granting Ticket (TGT) Structure
πŸ” Privilege Attribute Certificate (PAC) Manipulation
βš™οΈ Diamond Ticket Attack Mechanism
πŸ”‘ KRBTGT Hash Requirement
πŸ’‰ Decrypting & Re-encrypting TGT
πŸ“¦ Forging Service Tickets (TGS)
πŸ–₯ Remote Attack using Impacket (Linux)
πŸ›  Local Attack using Mimikatz & Rubeus
πŸš€ Privilege Escalation & Domain Compromise
πŸ“Š Detection Techniques (Event IDs & Logs)
πŸ›‘ Mitigation Strategies (KRBTGT Rotation, Hardening)

πŸ“– Article:
https://hackingarticles.in/diamond-ticket-attack-abusing-kerberos-trust/
❀1
1.7K views
Hacking Articles
Sapphire Ticket Attack: Abusing Kerberos Trust

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

Sapphire Ticket is an advanced Kerberos attack that forges tickets by replacing the Privilege Attribute Certificate (PAC) of a legitimate ticket with that of a privileged user, enabling stealthy privilege escalation in Active Directory environments.

πŸ“š Topic Covered

πŸ“– Introduction
🧠 Understanding Sapphire Ticket Attack
🎟 Kerberos Ticket Structure (TGT & TGS)
πŸ” Privilege Attribute Certificate (PAC) Replacement
βš™οΈ S4U2Self & U2U Authentication Mechanism
πŸ”‘ Requirement of KRBTGT Hash
πŸ“¦ Extracting KRBTGT Hash (DCSync)
πŸ›  Ticket Forging using Impacket
πŸ’‰ Generating & Injecting Forged Tickets
πŸ–₯ Pass-the-Ticket Attack
πŸ’£ Metasploit (forge_ticket – Sapphire)
πŸš€ Privilege Escalation & Domain Compromise
πŸ›‘ Detection & Mitigation Techniques

πŸ“– Article:
https://hackingarticles.in/sapphire-ticket-attack-abusing-kerberos-trust/
❀2
1.59K views
Hacking Articles
A Detailed Guide on Rubeus πŸ”₯

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

Rubeus is a powerful C# based tool used for interacting with and abusing Kerberos authentication in Active Directory environments. It is widely used in post-exploitation for ticket extraction, manipulation, and privilege escalation. ()

πŸ“š Topics Covered

πŸ” Kerberos Authentication Basics
🎟 TGT & TGS Tickets
πŸ“‚ Ticket Extraction & Injection
⚑️ Pass-the-Ticket Attack
🧠 Kerberoasting & AS-REP Roasting
πŸ’Ž Golden & Silver Ticket Attacks
πŸ“‘ Lateral Movement using Kerberos
πŸ›  Rubeus Commands & Usage
🚨 Detection Techniques
πŸ›‘ Mitigation Strategies

🧠 Read More:
https://hackingarticles.in/a-detailed-guide-on-rubeus/
1.28K views
Hacking Articles
πŸ”₯ Ethical Hacking Proactive Training – Live & Practical πŸ”₯

Ready to build real-world cybersecurity skills with hands-on experience?

πŸš€ Ignite Technologies brings you a comprehensive Ethical Hacking Proactive Training Program designed with live sessions and core practical exposure β€” at an affordable price.

πŸ”— Register Now:
https://forms.gle/bowpX9TGEs41GDG99

πŸ’¬ WhatsApp:
https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email:
info@ignitetechnologies.in

🎯 Book Your Demo Session Today!

πŸ“˜ What You’ll Learn:

βœ… Introduction to Ethical Hacking
βœ… Old School Learning Methodology
βœ… Networking Fundamentals
βœ… Reconnaissance (Footprinting, Scanning & Enumeration)
βœ… System Hacking
βœ… Post Exploitation & Persistence
βœ… Web Server Penetration Testing
βœ… Website Hacking Techniques
βœ… Malware Threats & Analysis
βœ… Wireless Network Security
βœ… Cryptography & Steganography
βœ… Sniffing Attacks
βœ… Denial of Service (DoS)
βœ… Evading IDS, Firewalls & Honeypots
βœ… Social Engineering Techniques
βœ… Mobile Platform Security

πŸ’‘ Whether you're a beginner or looking to strengthen your penetration testing skills, this training is structured to provide practical knowledge aligned with real-world attack scenarios.

Limited seats available. Secure yours now.
❀1
1.42K views
Hacking Articles
HIPAA Mindmap πŸ₯πŸ”πŸ”₯

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

HIPAA (Health Insurance Portability and Accountability Act) focuses on protecting sensitive healthcare data and ensuring the confidentiality, integrity, and availability of patient information (ePHI). It provides a structured approach for securing medical data and maintaining compliance in healthcare environments. ()

πŸ“š Topics Covered in the Mindmap

🧠 HIPAA Overview
πŸ” Privacy Rule
πŸ›‘ Security Rule
🚨 Breach Notification Rule
πŸ“‚ Protected Health Information (PHI)
πŸ“‘ Administrative Safeguards
πŸ’» Technical Safeguards
🏒 Physical Safeguards
πŸ“Š Risk Assessment & Compliance

🧠 Mindmap:
https://github.com/Ignitetechnologies/Mindmap/tree/main/HIPPA
❀1
1.58K views
Hacking Articles
FISMA Mindmap πŸ“ŠπŸ”₯

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

FISMA (Federal Information Security Management Act) focuses on securing information systems, managing risk, and ensuring compliance through structured security controls and continuous monitoring. It provides a standardized approach for protecting sensitive data in organizations. ()

πŸ“š Topics Covered in the Mindmap

🧠 Inventory & Asset Management
πŸ“Š System Categorization (Low / Moderate / High)
πŸ“‚ System Security Plan (SSP)
πŸ›  NIST 800-53 Security Controls
πŸ”Ž Risk Assessment
βš™οΈ Security Control Implementation
πŸ“‘ Continuous Monitoring
🚨 Assessment & Authorization (ATO)

🧠 Mindmap:
https://github.com/Ignitetechnologies/Mindmap/tree/main/FISMA
1.72K views
Hacking Articles
GDPR Mindmap πŸŒπŸ”πŸ”₯

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

GDPR (General Data Protection Regulation) is a global data privacy regulation that focuses on protecting personal data, ensuring transparency, and enforcing strict security controls for organizations handling user information. It emphasizes accountability, risk management, and data protection practices. ()

πŸ“š Topics Covered in the Mindmap

🧠 Data Protection Principles
πŸ“‚ Personal Data & Processing
πŸ” Privacy by Design & Default
πŸ“Š Data Minimization & Accuracy
πŸ“‘ Security Controls & Encryption
πŸ‘€ Data Subject Rights
🚨 Breach Notification
βš–οΈ Compliance & Accountability
πŸ“‘ Risk Assessment & DPIA

🧠 Mindmap:
https://github.com/Ignitetechnologies/Mindmap/tree/main/GDPR
❀3
1.86K views
Hacking Articles
πŸ”₯ OSCP+ / CTF Exam Practice Training (Online) – Enroll Now! πŸš€

Looking to strengthen your practical penetration testing skills and boost your confidence before the OSCP+ exam?

Join Ignite Technologies’ Exclusive Capture The Flag (CTF) Practice Program β€” designed to simulate real exam scenarios and real-world attack environments.

πŸ”— Register Here:
https://forms.gle/bowpX9TGEs41GDG99

πŸ’¬ WhatsApp:
https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email:
info@ignitetechnologies.in

πŸ“š What You’ll Cover:

🧠 Introduction to Exam Strategy & Methodology
🌐 Information Gathering & Enumeration
🧱 Vulnerability Scanning & Analysis
πŸ”“ Windows Privilege Escalation
🐧 Linux Privilege Escalation
πŸ›‘ Client-Side Attacks
🌐 Web Application Attacks
🧬 Password Attacks & Credential Exploitation
🧠 Tunneling & Pivoting Techniques
🏰 Active Directory Attacks
πŸ’£ Exploiting Public Exploits Effectively
πŸ“‹ Professional Report Writing

🎯 This training is ideal for:
β€’ OSCP+ aspirants
β€’ CTF players aiming to go professional
β€’ Pentesters wanting structured exam practice
β€’ Security professionals strengthening real-world attack skills

Limited seats available. Prepare smart. Hack ethically. πŸš€
❀5
2.25K views
Hacking Articles
Penetration Testing on PostgreSQL (5432)

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

PostgreSQL is a powerful open-source relational database system widely used in enterprise applications. When exposed or misconfigured, attackers may exploit weak authentication or database privileges to gain unauthorized access. ()

πŸ“š Techniques Covered in This Guide

πŸ”Ž Nmap Port Scanning
πŸ” Password Brute Force using Hydra
πŸ’» Access PostgreSQL Shell (psql)
πŸ“„ Metasploit: Postgres Readfile
πŸ“‘ Metasploit: Postgres SQL Query Module
πŸ”‘ Dumping Password Hashes
πŸ’₯ Command Execution using Postgres Copy From Program

πŸ“– Article:
https://hackingarticles.in/penetration-testing-on-postgresql-5432/
❀4
1.62K views
Hacking Articles
Active Directory Enumeration with Ldeep

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

Post-exploitation in Active Directory starts with powerful enumerationβ€”and Ldeep makes it fast, stealthy, and effective.

⚑️ Attack Highlights
πŸ” Enumerate Users, Groups & Computers
🎯 Identify Domain Admins & Privileged Accounts
πŸ” Extract SPNs for Kerberoasting
🧩 Discover Delegation & Misconfigurations

⚑️ Tools
πŸ›  Ldeep
⚑️ LDAP Queries
πŸ’£ Python-based Enumeration

πŸ’‘ Ldeep leverages LDAP to gather deep insights into AD environments without relying on PowerShell, making it ideal for stealthy operations and red team engagements.

πŸš€ Perfect for uncovering privilege escalation paths and domain weaknesses

πŸ“– Article: https://www.hackingarticles.in/active-directory-enumeration-ldeep/
❀2
1.8K views
Hacking Articles
A Detailed Guide on Certipy

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

Certipy is a powerful tool for exploiting Active Directory Certificate Services (AD CS) misconfigurations, enabling attackers to escalate privileges, impersonate users, and achieve domain persistence using certificate-based attacks.

πŸ“š Topic Covered

πŸ“– Overview of Certipy
🧠 Understanding AD CS Concepts
βš™οΈ Prerequisites & Lab Setup
πŸ” Finding Vulnerable Certificate Templates
πŸ‘€ Examining Account Privileges
πŸ›  Manipulating User Accounts
πŸ“œ Requesting Certificates (ESC1 Abuse)
πŸ” Authenticating via Certificate (PKINIT)
🧬 Shadow Credentials Attack
πŸ“‚ Template Enumeration & Modification
🏒 Certificate Authority (CA) Management
πŸ’‰ Certificate Forging (Golden Certificate)
πŸ”„ NTLM Relay to AD CS (ESC8/ESC11)
🎟 SubCA Abuse & Privilege Escalation
πŸš€ Domain Compromise using Certificates
πŸ›‘ Detection & Mitigation Techniques

πŸ“– Article:
https://hackingarticles.in/a-detailed-guide-on-certipy/
❀1
1.55K views
Hacking Articles
SOC 2 Mindmap πŸ“ŠπŸ”πŸ”₯

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

SOC 2 (System and Organization Controls 2) is a cybersecurity compliance framework designed to ensure organizations securely manage customer data based on trust service principles like security, availability, and privacy. ()

πŸ“š Topics Covered in the Mindmap

πŸ›‘ Security (Access Control & Protection)
πŸ“‘ Availability (System Uptime & Reliability)
πŸ“Š Processing Integrity
πŸ” Confidentiality
πŸ‘€ Privacy
🧠 Risk Management
πŸ“‚ Internal Controls & Policies
πŸ›  Audit & Compliance Process
🚨 Incident Response
πŸ“‘ SOC 2 Type I & Type II

🧠 Mindmap:
https://github.com/Ignitetechnologies/Mindmap/tree/main/SOC%202
❀2
1.56K views
Hacking Articles
OSEP Exam Practice Training (Online) – Registration Open! πŸš€

Ready to level up your offensive security skills and prepare for advanced red team operations?

Join Ignite Technologies’ Exclusive β€œCapture The Flag” (CTF) Based OSEP Practice Program and train in a real-world, attack-driven environment designed for serious cybersecurity professionals.

πŸ”— Register Now:
https://forms.gle/bowpX9TGEs41GDG99

πŸ’¬ WhatsApp:
https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email:
info@ignitetechnologies.in

πŸ“š Training Modules Include:

πŸš€ Introduction
πŸ” Advanced Information Gathering
🎯 Initial Access & Client-Side Attacks
πŸ›‘ Bypassing Security Controls
πŸͺŸ Windows Privilege Escalation
🐧 Linux Privilege Escalation
🧭 Active Directory Enumeration
πŸ” Lateral Movement
🏰 Active Directory Attacks
🌐 Web Application Attacks
πŸ•³ Tunneling & Pivoting
🧬 Post-Exploitation & Persistence
πŸ₯· Defense Evasion & OPSEC
πŸ§ͺ Custom Malware & Tool Development
πŸ’₯ Advanced Exploitation
πŸ“ Reporting & Documentation

This program is ideal for professionals preparing for advanced offensive security certifications and those aiming to strengthen their red teaming capabilities.

Seats are limited. Secure yours today. πŸš€
❀5πŸ‘1
2.04K views
Hacking Articles
Covenant for Pentester: Basics

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

Covenant is a .NET-based Command and Control (C2) framework designed for Red Team operations. It provides a collaborative platform with a web-based interface that allows multiple operators to manage compromised systems during penetration testing engagements. ()

πŸ“š What You’ll Learn in This Guide

🧠 Introduction to Covenant
βš™οΈ Installation of Covenant Framework
πŸ“‘ Creating a Listener
πŸš€ Generating a Launcher Payload
πŸ’₯ Exploiting Target Machine
πŸ–₯ Post-Exploitation Techniques
πŸ“Έ Screenshot Capture
πŸ“Š Process Enumeration
πŸ” Mimikatz SAM Credential Dump
⌨️ Keylogger Monitoring
πŸ’» Executing Shell Commands
πŸ”Ž Port Scanning on Target
πŸ“‚ Directory Listing
πŸ“₯ Downloading Files from Target
πŸ“Š Tasking & Activity Tracking
πŸ”‘ Extracting Credentials
πŸ‘₯ Creating Multiple Users

πŸ“– Article:
https://www.hackingarticles.in/covenant-for-pentester-basics/
❀2πŸ‘1
1.65K views
Hacking Articles
Lateral Movement: Pass-the-Hash (PtH) Attack

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

Pass-the-Hash (PtH) is a powerful lateral movement technique where attackers authenticate using NTLM hashes instead of plaintext passwords, allowing access to remote systems without cracking credentials.

πŸ“š Techniques Covered in This Guide

βš™οΈ Lab Setup
πŸ” Understanding NTLM Authentication
🧠 Working of Pass-the-Hash
πŸ’‰ Credential Dumping (SAM, LSASS, NTDS.dit)
🐚 PtH using Mimikatz
πŸ“‘ PtH over SMB (CrackMapExec, Impacket)
⚑️ PtH via PsExec Execution
πŸ–₯ PtH using WMI & RPC
πŸ›  Impacket Tools (atexec, smbclient, reg, samrdump)
πŸ” Detection Techniques
πŸ›‘ Mitigation Strategies

πŸ“– Article:
https://www.hackingarticles.in/lateral-movement-pass-the-hash-attack/
❀2
1.36K views
Hacking Articles
Domain Escalation: Resource-Based Constrained Delegation (RBCD)

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

Resource-Based Constrained Delegation (RBCD) is a powerful Active Directory attack technique that allows attackers to impersonate users and escalate privileges by abusing delegation settings. Misconfigurations can lead to full domain compromise.

πŸ“š Techniques Covered in This Guide

βš™οΈ Lab Setup
πŸ”Ž Understanding RBCD & Delegation Types
🧠 Working of msDS-AllowedToActOnBehalfOfOtherIdentity
πŸ” Enumeration using BloodHound
πŸ’» Creating Fake Computer Accounts
⚑️ Exploiting RBCD with Impacket
🧰 Abuse using BloodyAD & Ldap_shell
🐚 Ticket Generation (S4U2Self & S4U2Proxy)
🎯 Privilege Escalation to Domain Admin
πŸ›  Exploitation via Metasploit & PowerShell
πŸ“‘ Post-Exploitation using Pass-the-Ticket

πŸ“– Article:
https://hackingarticles.in/domain-escalation-resource-based-constrained-delegation/
❀4
1.76K views
Hacking Articles
πŸ”₯ Ethical Hacking Proactive Training – Live & Practical πŸ”₯

Ready to build real-world cybersecurity skills with hands-on experience?

πŸš€ Ignite Technologies brings you a comprehensive Ethical Hacking Proactive Training Program designed with live sessions and core practical exposure β€” at an affordable price.

πŸ”— Register Now:
https://forms.gle/bowpX9TGEs41GDG99

πŸ’¬ WhatsApp:
https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email:
info@ignitetechnologies.in

🎯 Book Your Demo Session Today!

πŸ“˜ What You’ll Learn:

βœ… Introduction to Ethical Hacking
βœ… Old School Learning Methodology
βœ… Networking Fundamentals
βœ… Reconnaissance (Footprinting, Scanning & Enumeration)
βœ… System Hacking
βœ… Post Exploitation & Persistence
βœ… Web Server Penetration Testing
βœ… Website Hacking Techniques
βœ… Malware Threats & Analysis
βœ… Wireless Network Security
βœ… Cryptography & Steganography
βœ… Sniffing Attacks
βœ… Denial of Service (DoS)
βœ… Evading IDS, Firewalls & Honeypots
βœ… Social Engineering Techniques
βœ… Mobile Platform Security

πŸ’‘ Whether you're a beginner or looking to strengthen your penetration testing skills, this training is structured to provide practical knowledge aligned with real-world attack scenarios.

Limited seats available. Secure yours now.
❀5
1.75K views
Hacking Articles
🚨 Credential Dumping: NTDS.dit

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

NTDS.dit is the Active Directory database file that stores domain objects, user accounts, and password hashes for all domain users. If attackers gain access to this file, they can extract NTLM password hashes and compromise the entire domain.

πŸ“š Techniques Covered in This Guide

🧠 Understanding NTDS.dit
πŸ”Ž Extracting NTDS using DRSUAPI Method
πŸ“¦ Extracting NTDS using VSS Method
🧰 Dumping NTDS with Netexec
⚑️ Credential Extraction with Impacket
πŸ” Extracting NTLM Password Hashes
πŸ’» Post-Exploitation using Dumped Credentials

πŸ“– Article:
https://www.hackingarticles.in/credential-dumping-ntds-dit/
c
2.11K views
Hacking Articles
VNC Penetration Testing

πŸ”₯ Telegram: https://t.me/hackinarticles
✴️ Twitter: https://x.com/hackinarticles

VNC (Virtual Network Computing) is a remote desktop technology that allows users to control another system through a graphical interface using the Remote Frame Buffer (RFB) protocol. If misconfigured or protected with weak credentials, VNC services can be exploited to gain unauthorized remote access. ()

πŸ“š Techniques Covered in This Guide

πŸ”Ž Port Scanning with Nmap
πŸ” Password Brute Force using Hydra
πŸ” VNC Port Redirection
πŸ’₯ Exploitation using Metasploit
πŸ–₯ Meterpreter to VNC Session
🎭 Fake VNC Service for Credential Capture
πŸ”“ Cracking Captured Authentication Hashes
πŸ“‘ Packet Capture using Wireshark
🧠 Credential Dumping from VNC Config Files

πŸ“– Article:
https://www.hackingarticles.in/vnc-penetration-testing/
❀1πŸ‘1
1.98K views