Famous Cyber Security Hack Cheat Sheet
π΄β«οΈFull HD Image: https://github.com/Ignitetechnologies/Mindmap/blob/main/Cyber%20Hack/Famous%20Cyber%20Security%20Hack%20UHD.png
π΄β«οΈFull HD Image: https://github.com/Ignitetechnologies/Mindmap/blob/main/Cyber%20Hack/Famous%20Cyber%20Security%20Hack%20UHD.png
Enumeration Cheat Sheet
π΄β«οΈFull HD Image: https://github.com/Ignitetechnologies/Mindmap/blob/main/Enumeration/Enumeration%20HD.png
π΄β«οΈFull HD Image: https://github.com/Ignitetechnologies/Mindmap/blob/main/Enumeration/Enumeration%20HD.png
Bug Bounty Training Program (Online)
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Hurry up, get enrolled yourself with IGNITE TECHNOLOGIESβ fully exclusive Training Program βBug Bounty.β
βοΈ Table of Content
π Introduction to WAPT & OWASP Top 10
π οΈ Pentest Lab Setup
π Information Gathering & Reconnaissance
π» Netcat for Pentester
βοΈ Configuration Management Testing
π Cryptography
π Authentication
π Session Management
π Local File Inclusion
π Remote File Inclusion
π Path Traversal
π£ OS Command Injection
π Open Redirect
π€ Unrestricted File Upload
π PHP Web Shells
π HTML Injection
π Cross-Site Scripting (XSS)
π Client-Side Request Forgery
π SQL Injection
π XXE Injection
π Bonus Section
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Hurry up, get enrolled yourself with IGNITE TECHNOLOGIESβ fully exclusive Training Program βBug Bounty.β
βοΈ Table of Content
π Introduction to WAPT & OWASP Top 10
π οΈ Pentest Lab Setup
π Information Gathering & Reconnaissance
π» Netcat for Pentester
βοΈ Configuration Management Testing
π Cryptography
π Authentication
π Session Management
π Local File Inclusion
π Remote File Inclusion
π Path Traversal
π£ OS Command Injection
π Open Redirect
π€ Unrestricted File Upload
π PHP Web Shells
π HTML Injection
π Cross-Site Scripting (XSS)
π Client-Side Request Forgery
π SQL Injection
π XXE Injection
π Bonus Section
β€2
Multiple Ways to Crack WordPress login
π₯ Telegram: https://t.me/hackinarticles
In this article, you will be learning how to compromise a WordPress websiteβs credentials using different brute-force techniques.
π Pre-requisites
π°οΈ WPScan
π₯ Metasploit
π§ͺ Burp Suite
π‘οΈ How to avoid a Brute Force Attack?
π₯ Telegram: https://t.me/hackinarticles
In this article, you will be learning how to compromise a WordPress websiteβs credentials using different brute-force techniques.
π Pre-requisites
π°οΈ WPScan
π₯ Metasploit
π§ͺ Burp Suite
π‘οΈ How to avoid a Brute Force Attack?
β€1
Burp Suite for Pentester: Web Scanner & Crawler
β΄ Twitter: https://lnkd.in/e7yRpDpY
π₯Telegram: https://t.me/hackinarticles
In this article, weβll discuss how you can identify hidden web pages or determine the existing vulnerabilities in a web application. To do this, we will use one of the best intercepting tools β βBurp Suiteβ.
π·οΈ The Burpβs Crawler
ββ What is Crawler?
ββοΈ Crawl with Default Configurations
βπ οΈ Customizing the Crawler
π‘οΈ Vulnerability Scanning over Burp Suite
βπ Auditing with Default Configurations
βποΈ Defining Audit Options
π Crawling & Scanning with an Advanced Scenario
ποΈ Deleting the Defined Tasks
β΄ Twitter: https://lnkd.in/e7yRpDpY
π₯Telegram: https://t.me/hackinarticles
In this article, weβll discuss how you can identify hidden web pages or determine the existing vulnerabilities in a web application. To do this, we will use one of the best intercepting tools β βBurp Suiteβ.
π·οΈ The Burpβs Crawler
ββ What is Crawler?
ββοΈ Crawl with Default Configurations
βπ οΈ Customizing the Crawler
π‘οΈ Vulnerability Scanning over Burp Suite
βπ Auditing with Default Configurations
βποΈ Defining Audit Options
π Crawling & Scanning with an Advanced Scenario
ποΈ Deleting the Defined Tasks
Censys Cheat Sheet
π΄β«οΈFull HD Image: https://github.com/Ignitetechnologies/Mindmap/blob/main/Censys/Censys%20UHD.png
π΄β«οΈFull HD Image: https://github.com/Ignitetechnologies/Mindmap/blob/main/Censys/Censys%20UHD.png
Shodan Cheat Sheet
π΄β«οΈFull HD Image: https://github.com/Ignitetechnologies/Mindmap/blob/main/Shodan/Shodan%20UHD.png
π΄β«οΈFull HD Image: https://github.com/Ignitetechnologies/Mindmap/blob/main/Shodan/Shodan%20UHD.png
π Active Directory Exploitation Training (Online) β Register Now! π
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Limited slots available! Hurry up to secure your spot in this exclusive training program offered by Ignite Technologies.
βοΈ Comprehensive Table of Contents:
π Initial Active Directory Exploitation
π Active Directory Post-Enumeration
π Abusing Kerberos
π§° Advanced Credential Dumping Attacks
π Privilege Escalation Techniques
π Persistence Methods
π Lateral Movement Strategies
π‘οΈ DACL Abuse (New)
π΄ ADCS Attacks (New)
π Saphire and Diamond Ticket Attacks (New)
π Bonus Sessions
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Limited slots available! Hurry up to secure your spot in this exclusive training program offered by Ignite Technologies.
βοΈ Comprehensive Table of Contents:
π Initial Active Directory Exploitation
π Active Directory Post-Enumeration
π Abusing Kerberos
π§° Advanced Credential Dumping Attacks
π Privilege Escalation Techniques
π Persistence Methods
π Lateral Movement Strategies
π‘οΈ DACL Abuse (New)
π΄ ADCS Attacks (New)
π Saphire and Diamond Ticket Attacks (New)
π Bonus Sessions
Abusing AD-DACL: WriteDacl
β΄ Twitter: https://lnkd.in/e7yRpDpY
π₯Telegram: https://t.me/hackinarticles
In this post, we will explore the exploitation of Discretionary Access Control Lists (DACL) using the WriteDacl permission in Active Directory environments.
π§ͺ Lab Setup β User Owns WriteDacl Permission on Another User
βοΈ Exploitation Phase I β User Owns WriteDacl Permission on Another User
π΅οΈ BloodHound β Hunting for Weak Permission
π§ Method for Exploitation:
ββπ Granting Full Control
ββπ₯ Kerberoasting (T1558.003) or
ββπ Change Password (T1110.001)
π§ Linux-Based Tools
π§° Impacket Tool β Granting Full Control
π Python Script (TargetedKerberoast)
π Linux β Change Password
π‘ Net RPC (Samba)
π BloodyAD
πͺ Windows PowerShell (PowerView)
π§Ύ Granting Full Control
π¦ Kerberoasting
π Change Password
π§ͺ Lab Setup β User Owns WriteDacl Permission on the Domain Admin Group
βοΈ Exploitation Phase II β User Owns WriteDacl Permission on a Group
π΅οΈ BloodHound β Hunting for Weak Permission
π§ Method for Exploitation:
ββπ Granting Full Control
ββπ₯ Account Manipulation (T1098)
π§ Linux-Based Tools
π§° Impacket Tool β Granting Full Control
β Linux β Adding Member to the Group
π‘ Net RPC (Samba)
π BloodyAD
πͺ Windows-Based Tools
π§Ύ PowerView β Granting Full Control
β Net Command β Adding Member to Group
β΄ Twitter: https://lnkd.in/e7yRpDpY
π₯Telegram: https://t.me/hackinarticles
In this post, we will explore the exploitation of Discretionary Access Control Lists (DACL) using the WriteDacl permission in Active Directory environments.
π§ͺ Lab Setup β User Owns WriteDacl Permission on Another User
βοΈ Exploitation Phase I β User Owns WriteDacl Permission on Another User
π΅οΈ BloodHound β Hunting for Weak Permission
π§ Method for Exploitation:
ββπ Granting Full Control
ββπ₯ Kerberoasting (T1558.003) or
ββπ Change Password (T1110.001)
π§ Linux-Based Tools
π§° Impacket Tool β Granting Full Control
π Python Script (TargetedKerberoast)
π Linux β Change Password
π‘ Net RPC (Samba)
π BloodyAD
πͺ Windows PowerShell (PowerView)
π§Ύ Granting Full Control
π¦ Kerberoasting
π Change Password
π§ͺ Lab Setup β User Owns WriteDacl Permission on the Domain Admin Group
βοΈ Exploitation Phase II β User Owns WriteDacl Permission on a Group
π΅οΈ BloodHound β Hunting for Weak Permission
π§ Method for Exploitation:
ββπ Granting Full Control
ββπ₯ Account Manipulation (T1098)
π§ Linux-Based Tools
π§° Impacket Tool β Granting Full Control
β Linux β Adding Member to the Group
π‘ Net RPC (Samba)
π BloodyAD
πͺ Windows-Based Tools
π§Ύ PowerView β Granting Full Control
β Net Command β Adding Member to Group
β€2