Powershell Scripts Execute without Powershell
In this blog, we will discover the best tool to run PowerShell scripts and commands without using powershell.exe PowerLine NPS — Not PowerShell PowerShdll PowerLessShell
Active Directory privilege escalation cheat sheet
Recon # Systeminfo systeminfo hostname # Especially good with hotfix info wmic qfe get Caption,Description,HotFixID,InstalledOn # What users/localgroups are on the machine? net users net
AWAE review
Summary Layout of AWAE is similar to the PWK training. You get a PDF textbook, a collection of videos, and access to the lab. In
Back To The Future: Unix Wildcards Injection
Table Of Content: ===[ 1. Introduction ===[ 2. Unix Wildcards For Dummies ===[ 3. Wildcard Wilderness ===[ 4. Something more useful… 4.1 Chown file reference
Linux Kernel Exploit list
Exploit Name Kernel Start Kernel End Exploit URL hudo 2.0.0 6.0.1 https://github.com/FuzzySecurity/Unix-PrivEsc/blob/master/hudo.c ip6t_so_set(loc) 2.0.0 4.6.2 https://www.exploit-db.com/exploits/40489/ libfutex(loc) 2.0.0 2.0.0 https://www.exploit-db.com/exploits/35370/ setreuic(0,0) 2.0.0 4.0.1 https://www.exploit-db.com/exploits/14219/ tack
SUDO-LD_PRELOAD Linux Privilege Escalation
What is LD_PRELOAD? LD_PRELOAD is an optional environmental variable holding one or more paths to shared libraries or shared objects, the loader will load it before
RCE with log poisoning Attack Methodologies
Some of the important log files are the following :- http://example.com/index.php?page=/var/log/apache/access.log http://example.com/index.php?page=/var/log/apache/error.log http://example.com/index.php?page=/var/log/nginx/access.log http://example.com/index.php?page=/var/log/nginx/error.log http://example.com/index.php?page=/var/log/vsftpd.log http://example.com/index.php?page=/var/log/sshd.log http://example.com/index.php?page=/var/log/auth http://example.com/index.php?page=/var/log/mail http://example.com/index.php?page=/var/log/httpd/error_log http://example.com/index.php?page=/usr/local/apache/log/error_log http://example.com/index.php?page=/usr/local/apache2/log/error_log It is important to
Msfvenom All in One cheatsheet
One of the most powerful utilities of Metasploit is its payload module. Its abilities are underutilized ( by the beginners ) mostly, due to lack
SUID Executables- Linux Privilege Escalation
Set User ID is a sort of permission which is assigned to a file and enables users to execute the file with the permissions of
Well-known Damn Vulnerable Applications
damn vuln …