Cyber Security Research Blogs - Page 21 Of 25 - Blog On Advance InfoSec Concepts

OSCP – Enumeration Cheatsheet & Guide

OSCP Study material, All Blog, Linux privilege escalation 23rd November 201913th July 2021 blog_h4ck

Credits to the authors of all the blogs and everyone who can find their commands below. This blog will concentrate on services you commonly comeContinue readingOSCP – Enumeration Cheatsheet & Guide

Well-known Damn Vulnerable Applications

All Blog 21st November 201913th July 2021 Mr.x

damn vuln … Continue readingWell-known Damn Vulnerable Applications

Linux privilege Escalation methods

All Blog, Linux privilege escalation, OSCP Study material 20th November 201913th July 2021 Mr.x

What is Privilege escalation? Privilege escalation is the act of exploiting a bug, design flaw or configuration oversight in an operating system or software applicationContinue readingLinux privilege Escalation methods

Beginner Friendly Step-by-Step Methodology for Windows Privilege Escalation

Windows-Pentesting 8th November 201910th October 2023 Mr.x

Here is a beginner-friendly Windows privilege escalation methodology. This guide assumes you are starting with a very limited shell like a web shell, Netcat reverseContinue readingBeginner Friendly Step-by-Step Methodology for Windows Privilege Escalation

Windows Attack Anatomy

Windows-Pentesting, All Blog 8th November 201913th July 2021 Mr.x

Incorrect permissions in services Find unquoted paths ClearText passwords Pass the hash AlwaysInstallElevated Port Forwarding Vulnerable drivers Kernal Exploits Automated tools Powersploit Metasploit Incognito RottenpotatoContinue readingWindows Attack Anatomy

Cloud Insecurities & defenses

cloud Security 26th October 201913th July 2021 blog_h4ck

With the advent of new and new technologies, organizations are finding new and creative ways of saving money, value and increasing the profit. In thisContinue readingCloud Insecurities & defenses

Windows Kernel Exploitation – part 4 | Vulnerabilities

Windows-Pentesting 21st October 201913th July 2021 blog_h4ck

Common Vulnerabilities and Exposure MS08-067 (NetAPI) Check the vulnerability with the following nmap script. nmap -Pn -p445 –open –max-hostgroup 3 –script smb-vuln-ms08-067 <ip_netblock> Metasploit modules to exploit MS08-067 NetAPI.Continue readingWindows Kernel Exploitation – part 4 | Vulnerabilities

Windows privilege escalation – part 3 | Kernal-Exploits

Windows-Pentesting 21st October 201913th July 2021 Mr.x

EoP – Kernel Exploitation List of exploits kernel : https://github.com/SecWiki/windows-kernel-exploits #Security Bulletin #KB #Description #Operating System MS17-017 　[KB4013081]　　[GDI Palette Objects Local Privilege Escalation]　　(windows 7/8) CVE-2017-8464 　[LNK Remote Code Execution Vulnerability]　　(windowsContinue readingWindows privilege escalation – part 3 | Kernal-Exploits

Windows Privilege escalation – Part 2 | Enumeration

Windows-Pentesting 21st October 201913th July 2021 blog_h4ck

Windows Version and Configuration systeminfo | findstr /B /C:”OS Name” /C:”OS Version” Extract patchs and updates wmic qfe Architecture wmic os get osarchitecture || echoContinue readingWindows Privilege escalation – Part 2 | Enumeration

Windows Privilege Escalation Guide – part 1 | Tools

Windows-Pentesting 21st October 201913th July 2021 blog_h4ck

Tools : – Here is a list of most comman tools that are used by various pentester to enumrate and exploit the windows vulnerabilites .Continue readingWindows Privilege Escalation Guide – part 1 | Tools