Hacking Articles
@hackinarticles
21.1K subscribers
1.13K photos
165 files
777 links
House of Pentester
Download Telegram
About
Blog
Apps
Platform
Join
Hacking Articles
21.1K subscribers
Hacking Articles
WPScan: WordPress Pentesting Framework

✴ Twitter: https://lnkd.in/e7yRpDpY
πŸ”₯ Telegram: https://t.me/hackinarticles

In this article, we’ll try to deface such WordPress websites, with one of the most powerful WordPress vulnerability Scanner i.e WPScan.

πŸ“˜ Introduction
πŸ”Ž Enumerating the WordPress Web Application
β€ƒπŸ“¦ Version Scanning
β€ƒπŸŽ¨ WordPress Themes
β€ƒπŸ”Œ WordPress Plugins
β€ƒπŸ‘€ WordPress Usernames
β€ƒπŸ§Ύ All in a Single Command

πŸ’₯ WordPress Exploitation
β€ƒπŸŽ― Brute Force Attack Using WPScan
β€ƒπŸš Shell Upload Using Metasploit
β€ƒπŸ§¨ Vulnerable Plugin Exploitation

πŸ•΅οΈ Scanning Over a Proxy Server
πŸ” Scanning With an HTTP Authentication Enabled
❀2
1.28K views
Hacking Articles
https://www.hackingarticles.in/wpscanwordpress-pentesting-framework/
❀1
1.37K views
Hacking Articles
WPscan.pdf
2.7 MB
❀1
1.36K views
Hacking Articles
Bug Bounty Training Program (Online)

πŸ”— Register here: https://forms.gle/bowpX9TGEs41GDG99
πŸ’¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email: info@ignitetechnologies.in

Hurry up, get enrolled yourself with IGNITE TECHNOLOGIES’ fully exclusive Training Program β€œBug Bounty.”

βœ”οΈ Table of Content
πŸš€ Introduction to WAPT & OWASP Top 10
πŸ› οΈ Pentest Lab Setup
πŸ” Information Gathering & Reconnaissance
πŸ’» Netcat for Pentester
βš™οΈ Configuration Management Testing
πŸ” Cryptography
πŸ”‘ Authentication
πŸ•’ Session Management
πŸ“‚ Local File Inclusion
🌐 Remote File Inclusion
πŸ“ Path Traversal
πŸ’£ OS Command Injection
πŸ”€ Open Redirect
πŸ“€ Unrestricted File Upload
🐚 PHP Web Shells
πŸ“ HTML Injection
🌟 Cross-Site Scripting (XSS)
πŸ”„ Client-Side Request Forgery
πŸ›‘ SQL Injection
πŸ“œ XXE Injection
🎁 Bonus Section
❀1
1.52K views
Hacking Articles
Unix Cheatsheet
❀4
1.31K views
Hacking Articles
When and Why SSL
πŸ”₯2
1.35K views
Hacking Articles
URL structure
❀2
1.25K views
Hacking Articles
IDAPro Cheatsheet

πŸ”΄βš«Full HD: https://github.com/Ignitetechnologies/Mindmap/blob/main/IDAPro/IDAPro%20Cheatsheet%20HD.png
1.3K views
Hacking Articles
πŸ”’ Infosec Characters - Desi Cybersecurity Edition

πŸ›‘οΈ Firewall
The Protective Father – "No entry without approval!"

πŸ‘ƒ IDS/IPS
The Suspicious Buaji – "Sniffing out shady vibes since forever!"

πŸ” Vulnerability Scanner
The Perfectionist Planner – "Finds every crack before the baraat arrives!"

🍯 Honeypot
The Decoy Bride – "Come at me, hackers!"

πŸš• VPN
The Shortcut Rickshaw Wala – "Changes your route, hides your tracks!"

πŸ“’ SIEM
The Chuchi Aunty – "Watches silently, alerts loudly!"

πŸ€– SOAR
The Wedding Coordinator – "Automates chaos into action!"

πŸ” Data Encryption
The Cunning Bhabhi – "Knows all secrets but keeps them locked!"

πŸ‘Š EDR
The Overprotective Bhaiyya – "Punches malware before it blinks!"

πŸ‘€ DLP
The Gold-Watching Mami – "Stops data thieves like a hawk!"

πŸ“± MFA
The Extra-Cautious Nani – "Needs OTP, Aadhaar, and your blood group!"

πŸ”— Follow for more: @hackinarticles
❀2
1.42K views
Hacking Articles
Infosec Characters.pdf
53.6 MB
1.34K views
Hacking Articles
πŸš€ Active Directory Penetration Training (Online) – Register Now! πŸš€

πŸ”— Register here: https://forms.gle/bowpX9TGEs41GDG99
πŸ’¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email: info@ignitetechnologies.in

Limited slots available! Hurry up to secure your spot in this exclusive training program offered by Ignite Technologies.

βœ”οΈ Comprehensive Table of Contents:
πŸ” Initial Active Directory Exploitation
πŸ”Ž Active Directory Post-Enumeration
πŸ” Abusing Kerberos
🧰 Advanced Credential Dumping Attacks
πŸ“ˆ Privilege Escalation Techniques
πŸ”„ Persistence Methods
πŸ”€ Lateral Movement Strategies
πŸ›‘οΈ DACL Abuse (New)
🏴 ADCS Attacks (New)
πŸ’Ž Saphire and Diamond Ticket Attacks (New)
🎁 Bonus Sessions

#infosec #cybersecurity #cybersecuritytips #pentesting #redteam #informationsecurity #CyberSec #networking #offensivesecurity #infosecurity #cyberattacks #security #oscp #cybersecurityawareness #bugbounty #bugbountytips
1.58K views
Hacking Articles
Linux-vs-Ubuntu
1.37K views
Hacking Articles
Linux vs FreeBSD info
1.44K views
Hacking Articles
IPS vs IDS info
1.26K views
Hacking Articles
DevOps Tools Mindmap

πŸ”΄βš«Full HD: https://github.com/Ignitetechnologies/Mindmap/blob/main/Devops/DevOps%20Tools%20HD.png
1.25K views
Hacking Articles
ADCS ESC14 – Write access on altSecurityIdentities

πŸ”₯ Telegram: https://t.me/hackinarticles
✴ Twitter: https://x.com/hackinarticles

ESC14 targets weak certificate mapping in Active Directory, exploiting the altSecurityIdentities attribute to allow attackers to spoof Subject CN or Issuer DN fields.

πŸ“˜ Overview of the ESC14 Attack
βš™οΈ Working of ESC14
πŸ“‹ Prerequisites
πŸ§ͺ Lab Setup

🎯 Enumeration & Exploitation
β€ƒπŸ”“ Abusing Weak Explicit Certificate Mappings via altSecurityIdentities

🧠 Post Exploitation
 πŸ–₯️ Full SYSTEM Shell via Evil-WinRM

πŸ›‘οΈ Mitigation
1.42K views
Hacking Articles
https://www.hackingarticles.in/adcs-esc14-write-access-on-altsecurityidentities/
Hacking Articles
ADCS ESC14 – Write access on altSecurityIdentities
ADCS ESC14 guide: Abuse write access on altSecurityIdentities to impersonate users and escalate privileges via certificate requests.
1.63K views
Hacking Articles
ESC14.pdf
2 MB
1.56K views
Hacking Articles
πŸ”₯ OSCP+/CTF Exam Practice Training (Online) πŸ”₯ – Register Now! πŸš€

πŸ”— Register here: https://forms.gle/bowpX9TGEs41GDG99
πŸ’¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1

πŸ“§ Email: info@ignitetechnologies.in

Join IGNITE TECHNOLOGIES’ exclusive "Capture the Flag" Training Program and enhance your skills with the following modules:

🧠 Introduction
🌐 Information Gathering
🧱 Vulnerability Scanning
πŸ”“ Windows Privilege Escalation
🐧 Linux Privilege Escalation
πŸ›‘οΈ Client-Side Attacks
🌐 Web Application Attacks
🧬 Password Attacks
🧠 Tunneling & Pivoting
🏰 Active Directory Attacks
πŸ’£ Exploiting Public Exploits
πŸ“‹ Report Writing

#cybersecurity #cyber #security #hacking #hacker #infosec #cybercrime #tech #technology #cyberattack #datasecurity #malware #ethicalhacking #phishing #cloudsecurity #oscp
❀3
1.84K views
Hacking Articles
DNS Record Types
1.45K views
Hacking Articles
Git Cheatsheet for Developers and DevOps Engineer
❀3
1.53K views