π Credential Dumping: Windows Autologon Password
Attackers often target stored AutoLogon credentials to escalate access. Learn how this technique works and how to defend against it:
β Method: Extracts plaintext passwords from the Registry (HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon).β Tools Used: Mimikatz, PowerShell, or manual registry queries.
β Impact: Compromises domain/logon persistence.
β Mitigation: Disable AutoLogon or use LSA protection.
π Read the guide: hackingarticles.in
β€5
MSSQL for Pentester Command Execution with xp_cmdshell.pdf
4 MB
π MSSQL Pentesting: Command Execution via xp_cmdshell
This guide covers practical exploitation of MSSQL Server using xp_cmdshell:Enabling xp_cmdshell (GUI, sqsh, impactet-mssqlclient)Reverse shell methods: .hta, netcat, Python, nxc, crackmapexec, Metasploit
PowerUPSQL for command execution
π Turn on notifications for more hacking writeups!
π₯4β€1
abusing trustworthy.pdf
2.1 MB
New Article Alert!
Title: Abusing Trustworthy Property in MSSQL
Description: Introduction to Trustworthy Property:
Understand the importance of trustworthy property in MSSQL for database security.
Lab Setup: Learn to set up a lab to demonstrate trustworthy property abuse.
Abusing Trustworthy Property: Discover exploitation methods, including manual tactics and remote exploitation with PowerUpSQL and Metasploit. Practical Examples: View examples of trustworthy property abuse, including code snippets and screenshots.
Title: Abusing Trustworthy Property in MSSQL
Description: Introduction to Trustworthy Property:
Understand the importance of trustworthy property in MSSQL for database security.
Lab Setup: Learn to set up a lab to demonstrate trustworthy property abuse.
Abusing Trustworthy Property: Discover exploitation methods, including manual tactics and remote exploitation with PowerUpSQL and Metasploit. Practical Examples: View examples of trustworthy property abuse, including code snippets and screenshots.
β€2
Bug Bounty Training Program (Online)
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Hurry up, get enrolled yourself with IGNITE TECHNOLOGIESβ fully exclusive Training Program βBug Bounty.β
βοΈ Table of Content
π Introduction to WAPT & OWASP Top 10
π οΈ Pentest Lab Setup
π Information Gathering & Reconnaissance
π» Netcat for Pentester
βοΈ Configuration Management Testing
π Cryptography
π Authentication
π Session Management
π Local File Inclusion
π Remote File Inclusion
π Path Traversal
π£ OS Command Injection
π Open Redirect
π€ Unrestricted File Upload
π PHP Web Shells
π HTML Injection
π Cross-Site Scripting (XSS)
π Client-Side Request Forgery
π SQL Injection
π XXE Injection
π Bonus Section
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Hurry up, get enrolled yourself with IGNITE TECHNOLOGIESβ fully exclusive Training Program βBug Bounty.β
βοΈ Table of Content
π Introduction to WAPT & OWASP Top 10
π οΈ Pentest Lab Setup
π Information Gathering & Reconnaissance
π» Netcat for Pentester
βοΈ Configuration Management Testing
π Cryptography
π Authentication
π Session Management
π Local File Inclusion
π Remote File Inclusion
π Path Traversal
π£ OS Command Injection
π Open Redirect
π€ Unrestricted File Upload
π PHP Web Shells
π HTML Injection
π Cross-Site Scripting (XSS)
π Client-Side Request Forgery
π SQL Injection
π XXE Injection
π Bonus Section
β€3
π‘ Wireless Penetration Testing Using Aircrack-ng
Master wireless security assessments with this comprehensive guide to Aircrack-ng, the essential WiFi hacking toolkit:
β’ Captures WiFi handshakes (monitor mode)
β’ Cracks WPA/WPA2 passwords (dictionary attacks)
β’ Analyzes network traffic (packet injection)
β’ Supports all major wireless adapters
π Key Attacks Covered:
WEP cracking
WPA/WPA2-PSK brute force
Deauthentication attacks
π Full Tutorial: Read Here
Master wireless security assessments with this comprehensive guide to Aircrack-ng, the essential WiFi hacking toolkit:
β’ Captures WiFi handshakes (monitor mode)
β’ Cracks WPA/WPA2 passwords (dictionary attacks)
β’ Analyzes network traffic (packet injection)
β’ Supports all major wireless adapters
π Key Attacks Covered:
WEP cracking
WPA/WPA2-PSK brute force
Deauthentication attacks
π Full Tutorial: Read Here
β€2π2
docker.png
1.3 MB
π³ Docker Privilege Escalation Techniques
Escalate privileges in containerized environments using critical misconfigurations:
β’ Breakout Methods:
Abusing --privileged flag
Exploiting writable cgroups
Docker socket exposure (/var/run/docker.sock)
Capability abuse (e.g., CAP_SYS_ADMIN)
β’ Post-Exploitation:
Host filesystem access
Container-to-host process injection
Stealing secrets from mounted volumes
π Mitigation:
Principle of Least Privilege
Read-only containers
Regular vulnerability scanning
π Full Guide: Docker Privilege Escalation
Escalate privileges in containerized environments using critical misconfigurations:
β’ Breakout Methods:
Abusing --privileged flag
Exploiting writable cgroups
Docker socket exposure (/var/run/docker.sock)
Capability abuse (e.g., CAP_SYS_ADMIN)
β’ Post-Exploitation:
Host filesystem access
Container-to-host process injection
Stealing secrets from mounted volumes
π Mitigation:
Principle of Least Privilege
Read-only containers
Regular vulnerability scanning
π Full Guide: Docker Privilege Escalation
β€3
π Learn SIEM with He-Man β The Defender of Eterniaβs Cybersecurity!
This fun yet powerful guide explains Security Information & Event Management (SIEM) using He-Manβs world:
β Log Collection: Like Castle Grayskullβs magic, SIEM gathers logs from servers, firewalls, and even Skeletorβs lair!
β Threat Detection: Correlates events (e.g., five login failures in 2 minutes = attack!).
β Dashboards & Alerts: Real-time threat visualizationβno magic, just data!
β False Positives: "Royal teapot accessed at midnight?" Not every alert is evil.
β Compliance: Generates reports for audits (ISO, SOC 2).
This fun yet powerful guide explains Security Information & Event Management (SIEM) using He-Manβs world:
β Log Collection: Like Castle Grayskullβs magic, SIEM gathers logs from servers, firewalls, and even Skeletorβs lair!
β Threat Detection: Correlates events (e.g., five login failures in 2 minutes = attack!).
β Dashboards & Alerts: Real-time threat visualizationβno magic, just data!
β False Positives: "Royal teapot accessed at midnight?" Not every alert is evil.
β Compliance: Generates reports for audits (ISO, SOC 2).
β€3