Posted inEnumeration
Shodan 101
Shodan is a search engine for Internet-connected devices.It lets users search for various types of servers (webcams, routers, servers, etc.) connected to the internet using a variety of filters.Some have…
Posted inEnumeration Attacking Active Directory
PowerView Cheat Sheet
up-to-date version of PowerView: https://github.com/PowerShellMafia/PowerSploit/blob/dev/Recon/PowerView.ps1 New function naming schema: Verbs: Get : retrieve full raw data sets Find : ‘find’ specific data entries in a data set Add : add…
Posted inEnumeration Cheat Sheets
LINUX 101
Linux File System PathDescription/The top-level directory is the root filesystem and contains all of the files required to boot the operating system before other filesystems are mounted as well as…
Posted inEnumeration WebPentest
CURL
Wordpress curl -s http://blog.inlanefreight.local | grep WordPress curl -s http://blog.inlanefreight.local/ | grep themes curl -s http://blog.inlanefreight.local/ | grep plugins curl -s http://blog.inlanefreight.local/?p=1 | grep plugins
Posted inEnumeration WebPentest
Gobuster Cheat Sheet
Common Gobuster Commands dir Mode gobuster dir -u https://nlabs.local -w ~/wordlists/shortlist.txt With content length gobuster dir -u https://nlabs.local -w ~/wordlists/shortlist.txt -l dns Mode gobuster dns -d nlabs.local -t 50 -w…
Posted inEnumeration WebPentest
Fuff – Cheat Sheet
Ffuf commands CommandDescriptionffuf -hffuf helpffuf -w wordlist.txt:FUZZ -u http://SERVER_IP:PORT/FUZZDirectory Fuzzingffuf -w wordlist.txt:FUZZ -u http://SERVER_IP:PORT/indexFUZZExtension Fuzzingffuf -w wordlist.txt:FUZZ -u http://SERVER_IP:PORT/blog/FUZZ.phpPage Fuzzingffuf -w wordlist.txt:FUZZ -u http://SERVER_IP:PORT/FUZZ -recursion -recursion-depth 1 -e .php -vRecursive…
Posted inEnumeration WebPentest
Enumerating WordPress with WPScan
WPScan capabilities The version of WordPress installed and any associated vulnerabilities What plugins are installed and any associated vulnerabilities What themes are installed and any associated vulnerabilities Username enumeration Users…
Posted inEnumeration
Nmap
Nmap scan - port states Port StateDescriptionOpenIndicates that an application on the target system is actively accepting connections (TCP/UDP/SCTP) on that port.ClosedIndicates there isn’t any application listening on that port.FilteredNmap…