NetwerkLABS

Enumerating WordPress with WPScan

WPScan capabilities The version of WordPress installed and any associated vulnerabilities What plugins are installed and any associated vulnerabilities What themes are installed and any associated vulnerabilities Username enumeration Users with weak passwords via password brute…

Bharath Narayanasamy WPScan

Enumeration

Nmap

Nmap scan - port states Port StateDescriptionOpenIndicates that an application on the target system is actively accepting connections (TCP/UDP/SCTP) on that port.ClosedIndicates there isn’t any application listening on that port.FilteredNmap cannot to determine the port status…

Bharath Narayanasamy nmap, recon

RED TEAM

MSFVenom Cheatsheet for Reverse_Shell Payloads

Non-Meterpreter We can execute the msfvenom --list-payloads command to see a brief description about all of the payloads msfvenom can offer, if we want to know specific information about the payload, executing a msfvenom -p payload…

Bharath Narayanasamy Exploitation, payloads, msfvenom