|| Stop Thinking - Start Learning || Make War Not War ||
OSCP – Msfvenom All in One
One of the most powerful utilities of Metasploit is its payload module. Its abilities are underutilized ( by the beginners ) mostly, due to lack of awareness. So...
SUID Executables- Linux Privilege Escalation
Set User ID is a sort of permission which is assigned to a file and enables users to execute the file with the permissions of its owner account....
OSCP – Enumeration Cheatsheet & Guide
Credits to the authors of all the blogs and everyone who can find their commands below. This blog will concentrate on services you commonly come across and their...
Linux privilege Escalation methods
What is Privilege escalation? Most computer systems are designed for use with multiple users. Privileges mean what a user is permitted to do. Common privileges include viewing and...
Beginner Friendly Step-by-Step Methodology for Windows Privilege Escalation
Here is a beginner-friendly windows privilege escalation methodology. This guide assumes you are starting with a very limited shell like a web shell, Netcat reverse shell or a...
Windows Attack Anatomy
Incorrect permissions in services Find unquoted paths ClearText passwords Pass the hash AlwaysInstallElevated Port Forwarding Vulnerable drivers Kernal Exploits Automated tools Powersploit Metasploit Incognito Rottenpotato Tater Mimikatz Empire...
Cloud Insecurities & defenses
With the advent of new and new technologies, organizations are finding new and creative ways of saving money, value and increasing the profit. In this world of new...
Windows Kernel Exploitation – part 4 | Vulnerabilities
Common Vulnerabilities and Exposure MS08-067 (NetAPI) Check the vulnerability with the following nmap script. nmap -Pn -p445 –open –max-hostgroup 3 –script smb-vuln-ms08-067 <ip_netblock> Metasploit modules to exploit MS08-067 NetAPI. exploit/windows/smb/ms08_067_netapi If you...
Windows privilege escalation – part 3 | Kernal-Exploits
EoP – Kernel Exploitation List of exploits kernel : https://github.com/SecWiki/windows-kernel-exploits #Security Bulletin #KB #Description #Operating System MS17-017 [KB4013081] [GDI Palette Objects Local Privilege Escalation] (windows 7/8) CVE-2017-8464 [LNK Remote Code Execution Vulnerability] (windows 10/8.1/7/2016/2010/2008) CVE-2017-0213 [Windows COM...
Recent Comments