Nikto Cheat Sheet

Views: 23Nikto Cheat Sheet COMMAND DESCRIPTION nikto -h http://nlabs.local Scans the specified host nikto -h http://nlabs.local -Tuning 6 Uses a specific scan tuning level nikto -h http://nlabs.local -port 8080 Scans the specified port nikto -h http://nlabs.local -ssl Scans for SSL vulnerabilities nikto -h http://nlabs.local -Format html Formats output in HTML nikto -h http://nlabs.local -output out.txt … Read more

Enum4Linux Cheat sheet

Views: 45enum4linux Cheat Sheet COMMAND DESCRIPTION enum4linux -v target-ip Verbose mode, shows the underlying commands being executed by enum4linux enum4linux -a target-ip Do Everything, runs all options apart from dictionary based share name guessing enum4linux -U target-ip Lists usernames, if the server allows it – (RestrictAnonymous = 0) enum4linux -u administrator-p password -U target-ip If … Read more

Linux Commands – Cheat Sheet

Views: 11Bash Commands uname -a Show system and kernel head -n1 /etc/issue Show distri­bution mount Show mounted filesy­stems date Show system date uptime Show uptime whoami Show your username man command Show manual for command ls Options -a Show all (including hidden) -R Recursive list -r Reverse order -t Sort by last modified -S Sort by file … Read more

Cheat sheet – SMB Attacks

Views: 32SMB Enumeration Nmap Enumeration Command Description smbclient -N -L //10.10.10.1 Null-session testing against the SMB service. smbmap -H 10.10.10.1 Network share enumeration using smbmap. smbmap -H 10.10.10.1 -r notes Recursive network share enumeration using smbmap. smbmap -H 10.10.10.1 –download “notes\note.txt” Download a specific file from the shared folder. smbmap -H 10.10.10.1 –upload test.txt “notes\test.txt” Upload a … Read more

ATTACKING COMMONLY USED SERVICES: PART_03 Exploiting SMB

Views: 32Server Message Block (SMB) is a communication protocol created for providing shared access to files and printers across nodes on a network. Initially, it was designed to run on top of NetBIOS over TCP/IP (NBT) using TCP port 139 and UDP ports 137 and 138. However, with Windows 2000, Microsoft added the option to run SMB directly over TCP/IP … Read more

Helpful Websites

Views: 5Wordlists General Linux Kernel CVEs | All CVEs https://github.com/lucyoa/kernel-exploits Basic Linux Privilege Escalation – https://blog.g0tmi1k.com/2011/08/basic-linux-privilege-escalation/ Linux Privilege Escalation – https://github.com/swisskyrepo/PayloadsAllTheThings/blob/master/Methodology%20and%20Resources/Linux%20-%20Privilege%20Escalation.md Checklist – Linux Privilege Escalation – https://book.hacktricks.xyz/linux-unix/linux-privilege-escalation-checklist Sushant 747’s Guide (Country dependant – may need VPN) – https://sushant747.gitbooks.io/total-oscp-guide/content/privilege_escalation_-_linux.html Linux Privilege Escalation LinPeas – https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite/tree/master/linPEAS LinEnum – https://github.com/rebootuser/LinEnum Linux Exploit Suggester – https://github.com/mzet-/linux-exploit-suggester Linux Priv Checker – https://github.com/sleventyeleven/linuxprivchecker PayLoadAlltheThings https://github.com/swisskyrepo/PayloadsAllTheThings

Hydra Cheat Sheet

Views: 132Hydra is a parallelized login cracker which supports numerous protocols to attack. It is very fast and flexible, and new modules are easy to add. This tool makes it possible for researchers and security consultants to show how easy it would be to gain unauthorized access to a system remotely. It supports: Cisco AAA, … Read more

ATTACKING COMMONLY USED SERVICES: PART_03 Exploiting FTP

This entry is part 3 of 3 in the series Offensive Testing Enterprise Networks

Views: 52By default, FTP service uses TCP port 21. However, it’s possible to modify the default port and run the ftp service using another TCP port. Basic FTP Commands Command Description ?/help print local help information append Append to a file ascii set ascii transfer type binary Set Binary transfer type bye/exit/quit Terminate ftp session … Read more

ATTACKING COMMONLY USED SERVICES: PART_01 Useful Commands

Views: 23Server Message Block (SMB) Windows – CMD line net use Connect to a File share \\192.168.45.29\ITSupport\ The command net use connects a computer to or disconnects a computer from a shared resource or displays information about computer connections.  Windows CMD – DIR Displays a list of a directory’s files and subdirectories dir \\192.168.45.29\ITSupport\ Enumerate file shares … Read more