Mirrors/hacktricks
2
0
Fork 0
mirror of https://github.com/carlospolop/hacktricks synced 2024-11-21 20:23:18 +00:00
Code Issues Projects Releases Packages Wiki Activity
4886 commits 18 branches 0 tags 470 MiB
Commit graph

452 commits

Author SHA1 Message Date
Colinatorr
dad6e78399
Fix typo in powerview.md 2023-12-31 12:11:56 +01:00
CPol
08536c564d
GITBOOK-4222: change request with no subject merged in GitBook 2023-12-27 23:58:16 +00:00
CPol
76315e4cc2
GITBOOK-4219: change request with no subject merged in GitBook 2023-12-26 20:51:20 +00:00
CPol
0d5acdada5
GITBOOK-4218: change request with no subject merged in GitBook 2023-12-26 17:26:15 +00:00
CPol
da42a67a80
GITBOOK-4216: change request with no subject merged in GitBook 2023-12-26 00:45:07 +00:00
Carlos Polop
2cf03a3f4b
Merge pull request #764 from evilmog/master 
update NTLMv1 cracking methodology
 2023-12-24 20:11:47 +01:00
Carlos Polop
03fb0ebb99
Merge pull request #758 from manesec/master 
Update SNMP and Basic PowerShell for Pentesters
 2023-12-24 19:53:33 +01:00
evilmog
dde7fbec2a update NTLMv1 cracking methodology 2023-12-19 15:59:00 -07:00
evilmog
3818e73d6f update NTLMv1 cracking methodology 2023-12-19 11:02:28 -07:00
CPol
20b5224810
GITBOOK-4192: change request with no subject merged in GitBook 2023-12-16 13:28:14 +00:00
Mane
9878e7b8ac
Update README.md 
Add `AMSI Bypass - More Resources` 
Add `Powershell - Port scan`

## Reference - `AMSI Bypass - More Resources`

[S3cur3Th1sSh1t/Amsi-Bypass-Powershell](https://github.com/S3cur3Th1sSh1t/Amsi-Bypass-Powershell)

[Amsi Bypass on Windows 11 In 2023](https://gustavshen.medium.com/bypass-amsi-on-windows-11-75d231b2cac6)  [Github](https://github.com/senzee1984/Amsi_Bypass_In_2023)

## Reference - `Powershell - Port scan`

https://techcommunity.microsoft.com/t5/itops-talk-blog/powershell-basics-how-to-scan-open-ports-within-a-network/ba-p/924149

https://medium.com/@nallamuthu/powershell-port-scan-bf27fc754585

https://www.sans.org/blog/pen-test-poster-white-board-powershell-built-in-port-scanner/
 2023-12-12 01:57:52 -08:00
carlospolop
81005f76c9 hp 2023-12-04 16:57:41 +01:00
carlospolop
21ed9007c4 hackenproof 2023-12-04 16:45:05 +01:00
Taleb Qasem
58cabb472f
Update dpapi-extracting-passwords.md 
minor typos
 2023-11-27 18:26:17 +06:00
Carlos Polop
4f348a96e0
Merge pull request #738 from manesec/master 
Update privileged-groups-and-token-privileges.md
 2023-11-06 00:20:23 +01:00
CPol
6b1e75d284
GITBOOK-4151: change request with no subject merged in GitBook 2023-11-05 22:38:46 +00:00
Carlos Polop
8335321618
Merge pull request #736 from OmriBaso/master 
Added WTSImpersonator to HackTricks - New Technique for lateral movement and credentails stealing.
 2023-11-05 23:19:17 +01:00
Carlos Polop
390404cb36
Merge pull request #731 from ir0nstone/patch-1 
Fix command flag in domain-escalation.md
 2023-11-05 17:10:40 +01:00
CPol
a3ad24c9ea
GITBOOK-4148: change request with no subject merged in GitBook 2023-11-03 11:03:53 +00:00
CPol
233703a1b1
GITBOOK-4146: change request with no subject merged in GitBook 2023-11-02 16:52:21 +00:00
Mane
47971d2aff
Update privileged-groups-and-token-privileges.md 
Add `Using wbadmin.exe to dumo NTDS.dit`
 2023-11-02 03:03:31 -07:00
Omri Baso
f6d3e27ee4
Add files via upload 2023-10-29 22:14:25 +02:00
Andrej L
3ddbdaa4e9
Update domain-escalation.md 
Flag for Certipy [has changed](https://github.com/ly4k/Certipy#esc1) from `-alt` to `-upn` for abusing ESC1.
 2023-10-23 16:10:03 +01:00
CPol
63857c0541
GITBOOK-4126: change request with no subject merged in GitBook 2023-10-15 16:45:54 +00:00
CPol
6a5f71e401
GITBOOK-4121: change request with no subject merged in GitBook 2023-10-14 20:45:59 +00:00
Carlos Polop
6b6da2aa1d
Merge pull request #719 from nuts7/certutil-ntlmcoerce-newtech 
Add NTLM auth coerce technique (certutil.exe)
 2023-10-12 00:46:14 +02:00
nuts7
6a6ccd91d1 Add NTLM auth coerce technique (certutil.exe) 
This commit add a new NTLM authentication coerce technique with the certutil.exe lolbin (Microsoft-signed binary)
 2023-10-11 17:47:02 +00:00
nuts7
c10d59667f Add Kerberoasting w/o domain account 
This commit add a Kerberoasting technique without domain account/credentials just a user without pre-authentication (AS_REP Roastable)
 2023-10-06 12:11:57 +00:00
CPol
aafdb7f10e
GITBOOK-4111: change request with no subject merged in GitBook 2023-10-05 14:47:43 +00:00
CPol
261348bb2c
GITBOOK-4100: change request with no subject merged in GitBook 2023-09-28 15:09:34 +00:00
CPol
afd72865a1
GITBOOK-4092: change request with no subject merged in GitBook 2023-09-24 09:51:34 +00:00
CPol
f2d97a41ce
GITBOOK-4078: change request with no subject merged in GitBook 2023-09-11 15:21:29 +00:00
carlospolop
93b6df668e trickest 2023-09-05 00:10:11 +02:00
carlospolop
987e1109d8 trickest 2023-09-03 17:41:02 +02:00
carlospolop
d308298b26 intruder 2023-09-03 01:51:32 +02:00
carlospolop
2463753c56 intruder 2023-09-03 01:48:41 +02:00
CPol
0de31f2383
GITBOOK-4061: change request with no subject merged in GitBook 2023-08-31 15:11:42 +00:00
CPol
749e1c091d
GITBOOK-4059: change request with no subject merged in GitBook 2023-08-30 09:07:26 +00:00
Carlos Polop
02139b4168
Merge pull request #694 from NaxnN/master-2 
Update information about "Credential Guard"
 2023-08-29 20:32:36 +02:00
Carlos Polop
24eed6e768
Merge pull request #692 from limon768/limon768-patch-1 
Update README.md
 2023-08-29 20:20:22 +02:00
KeoOp
d6b6d61fe7
Update information about "Credential Guard" 2023-08-24 16:00:17 +08:00
CPol
7b95b4b0e9
GITBOOK-4044: change request with no subject merged in GitBook 2023-08-22 09:57:13 +00:00
SquareZer0
84c85d450b
Update README.md 
Fixed a typo
 2023-08-20 22:04:03 -04:00
CPol
554b95eac8
GITBOOK-4035: change request with no subject merged in GitBook 2023-08-16 04:32:29 +00:00
Carlos Polop
d762d11ebc
Merge pull request #681 from clem9669/patch-11 
Update shadow-credentials.md
 2023-08-07 07:27:48 +02:00
CPol
d66ecb4cdd
GITBOOK-4021: change request with no subject merged in GitBook 2023-07-31 15:59:11 +00:00
CPol
84d05a4c74
GITBOOK-4018: change request with no subject merged in GitBook 2023-07-30 21:28:42 +00:00
CPol
0b9f09f1ce
GITBOOK-4016: change request with no subject merged in GitBook 2023-07-28 11:44:45 +00:00
clem9669
26d9aa42f8
Update shadow-credentials.md 
Adding pywhisker.py from Shutdown
 2023-07-27 15:39:17 +00:00
Carlos Polop
e93ed39f00
Merge pull request #666 from noraj/patch-1 
kerberoast: add some linux tools
 2023-07-18 15:03:29 +02:00
Carlos Polop
555ba02e37
Merge pull request #664 from Safarchand/patch-2 
Update laps.md
 2023-07-17 16:54:03 +02:00
carlospolop
d84af2b1f5 hp 2023-07-14 17:03:41 +02:00
Alexandre ZANNI
edc2fbae0f
kerberoast: add some linux tools 2023-07-04 11:40:16 +02:00
Safarchand
7958cd1984
Update laps.md 
Fixed typing error in ms-msc-AdmPwd to ms-mcs-AdmPwd
 2023-06-29 08:16:34 +05:30
CPol
1b10ed65e2
GITBOOK-3992: change request with no subject merged in GitBook 2023-06-25 23:05:20 +00:00
Carlos Polop
0a0dcec95c
Merge pull request #658 from ryanq47/patch-2 
Update kerberoast.md
 2023-06-25 15:40:02 +02:00
Carlos Polop
c8de9ff9ab
Merge pull request #655 from Exzh34/patch-2 
Update laps.md
 2023-06-24 18:59:28 +02:00
Carlos Polop
0ecdf1cf94
Merge pull request #647 from JonasBK/patch-1 
Add links to blog posts on priv esc from DA to EA using ADCS
 2023-06-17 17:21:56 +02:00
CPol
fe817f76e6
GITBOOK-3986: change request with no subject merged in GitBook 2023-06-14 17:31:12 +00:00
CPol
9a68c91e4e
GITBOOK-3984: change request with no subject merged in GitBook 2023-06-14 10:51:55 +00:00
CPol
fa3b6dffc2
GITBOOK-3983: change request with no subject merged in GitBook 2023-06-14 00:31:26 +00:00
Ryan Kleffman
e51f4b2682
Update kerberoast.md 
Added rdate as an additional option for the NTP Clock Skew sync with a DC. ntpdate is deprecated/not included as of ubuntu 16.04.
 2023-06-13 11:03:54 -05:00
Nuno Abreu
cd0c920c80
Update laps.md 
fixed typo
 2023-06-11 17:48:40 +01:00
CPol
cd4025c14f
GITBOOK-3968: change request with no subject merged in GitBook 2023-06-06 22:57:49 +00:00
CPol
e53c11a86a
GITBOOK-3966: change request with no subject merged in GitBook 2023-06-06 21:42:32 +00:00
Jonas Bülow Knudsen
6d2e3ef79a
Add info for DA to EA attacks 2023-06-03 13:23:19 +02:00
Jonas Bülow Knudsen
dbcc1f7aac
Merge branch 'carlospolop:master' into patch-1 2023-06-03 12:28:06 +02:00
CPol
ff4a3d95b7
GITBOOK-3962: change request with no subject merged in GitBook 2023-06-01 20:34:49 +00:00
Virgile Jarry
9368d214b6
Update README.md 
Adds reference to ntdsdotsqlite.
 2023-06-01 07:14:16 +02:00
CPol
2d9f506e60
GITBOOK-3958: change request with no subject merged in GitBook 2023-05-29 20:18:06 +00:00
CPol
fbc68e5920
GITBOOK-3956: change request with no subject merged in GitBook 2023-05-29 10:35:28 +00:00
CPol
28e205b34c
GITBOOK-3949: change request with no subject merged in GitBook 2023-05-26 15:11:27 +00:00
CPol
c6842d3ff8
GITBOOK-3947: change request with no subject merged in GitBook 2023-05-26 11:10:05 +00:00
carlospolop
fdf9afee4e hacking career 2023-05-26 11:43:15 +02:00
Carlos Polop
3af643b138
Merge pull request #630 from BuFuuu/com-hijacking-lang-update 
find os language independent users group by using the SID
 2023-05-26 11:40:44 +02:00
Jonas Bülow Knudsen
ac5a096d05
Add links to blog posts on priv esc from DA to EA using ADCS 2023-05-26 09:25:09 +02:00
CPol
8460bde312
GITBOOK-3905: change request with no subject merged in GitBook 2023-05-10 11:58:37 +00:00
CPol
2fafcfd659
GITBOOK-3903: change request with no subject merged in GitBook 2023-05-09 16:45:28 +00:00
CPol
a20214cf10
GITBOOK-3900: change request with no subject merged in GitBook 2023-05-09 09:37:25 +00:00
CPol
c469ce05ac
GITBOOK-3892: change request with no subject merged in GitBook 2023-05-04 23:22:39 +00:00
CPol
2b388335f4
GITBOOK-3888: change request with no subject merged in GitBook 2023-05-02 09:40:52 +00:00
CPol
68dbaa159b
GITBOOK-3887: change request with no subject merged in GitBook 2023-05-02 09:10:31 +00:00
CPol
98facb9725
GITBOOK-3883: change request with no subject merged in GitBook 2023-04-30 21:23:47 +00:00
Lion Hellstern
03c8710605 find os language independent users group by using the SID 2023-04-26 18:49:29 +02:00
carlospolop
5ec5b67e79 update twitter 2023-04-25 20:35:28 +02:00
CPol
34c27bc4e1
GITBOOK-3879: change request with no subject merged in GitBook 2023-04-18 23:46:39 +00:00
CPol
28ce005c4a
GITBOOK-3874: change request with no subject merged in GitBook 2023-04-13 22:25:26 +00:00
CPol
dd44a81b21
GITBOOK-3873: change request with no subject merged in GitBook 2023-04-13 21:47:15 +00:00
carlospolop
286ea6a24c hacktricks cloud 2023-04-07 10:52:01 +02:00
carlospolop
2197a2102f f 2023-04-05 17:19:27 +02:00
CPol
c3d99d5e4f
GITBOOK-3863: change request with no subject merged in GitBook 2023-04-05 15:16:57 +00:00
carlospolop
1fa9f77ec3 change 2023-04-05 14:02:54 +02:00
Justin Applegate
8dc4dccc99
Forgot to add link to original source 2023-03-29 14:51:07 -06:00
Justin Applegate
8b1a7c640d
Adding in bypass when SeDebugPrivilege is revoked 2023-03-29 14:47:22 -06:00
CPol
bfb02053d9
GITBOOK-3838: change request with no subject merged in GitBook 2023-03-28 11:38:04 +00:00
CPol
dee4c5fa4e
GITBOOK-3836: change request with no subject merged in GitBook 2023-03-28 10:15:00 +00:00
Carlos Polop
c1ab58a6b7
Merge pull request #605 from 0sunday/patch-1 
Correct typo
 2023-03-27 11:33:58 +02:00
0sunday
d76f6c5d2f
Correct typo 2023-03-20 15:41:00 +00:00
G. Danken-Sicherheit
2d1109765a
Update bloodhound.md 
Update link to custom queries file in CompassSecurity repo
 2023-03-15 08:20:47 +01:00
CPol
6b22eab3d2
GITBOOK-3820: No subject 2023-03-12 18:00:45 +00:00
Carlos Polop
070cf07c1b
Merge pull request #600 from JoelGMSec/patch-1 
Added CVE-2019-1388
 2023-03-12 18:47:20 +01:00
Joel GM
6fc2b44df4
Added CVE-2019-1388 2023-03-12 14:59:04 +01:00
Cunaz
7d8750957f
Typo 
nltest /domain_trust #Mapping of the trust relationships
->
nltest /domain_trusts #Mapping of the trust relationships
 2023-03-06 19:20:33 +01:00
carlospolop
f0e09e3f54 social 2023-03-06 00:16:20 +01:00
carlospolop
9e5102b4c0 social 2023-03-06 00:15:43 +01:00
carlospolop
89016342d8 f 2023-03-05 22:38:33 +01:00
carlospolop
bee65ef8c6 twit 2023-03-05 20:58:55 +01:00
CPol
675802d483
GITBOOK-3816: No subject 2023-03-05 19:54:13 +00:00
carlospolop
d0476b922d d 2023-03-05 19:35:39 +01:00
CPol
a6c260e567
GITBOOK-3814: No subject 2023-03-05 18:28:55 +00:00
carlospolop
77801de4cf fix 2023-03-05 19:27:55 +01:00
CPol
642df7f42d
GITBOOK-3810: No subject 2023-03-05 14:36:26 +00:00
CPol
7bfac801c5
GITBOOK-3809: No subject 2023-03-05 10:15:19 +00:00
Carlos Polop
e517b2771f
Merge pull request #591 from Sijisu/master 
Fix SharpHound CollectionMethod param
 2023-03-05 10:56:23 +01:00
Carlos Polop
432a74c5d1
Merge pull request #590 from b4cktr4ck2/master 
Added a method to obtain PFX on ESC1 scenario using certreq & certutil.
 2023-03-05 10:56:09 +01:00
CPol
e8e1b99bdf
GITBOOK-3808: No subject 2023-03-04 19:57:04 +00:00
CPol
67eed9483b
GITBOOK-3807: No subject 2023-03-04 19:52:31 +00:00
CPol
3a122edb7d
GITBOOK-3806: No subject 2023-03-04 19:33:37 +00:00
CPol
fb8562b7c0
GITBOOK-3805: No subject 2023-03-04 19:17:01 +00:00
CPol
b399cad65f
GITBOOK-3794: No subject 2023-02-27 18:21:24 +00:00
carlospolop
efa1552937 link 2023-02-27 11:02:29 +01:00
carlospolop
3edf173026 hp 2023-02-27 10:54:26 +01:00
carlospolop
4f3092e61d hp 2023-02-27 10:28:45 +01:00
CPol
7ee6c92964
GITBOOK-3793: No subject 2023-02-27 09:14:27 +00:00
Sijisu
3f7b886684 Fix SharpHound CollectionMethod param 2023-02-26 22:44:57 +01:00
Alex Kozlov
ddb74a25f7
Added a method to obtain PFX on ESC1 scenario using certreq & certutil. 2023-02-26 11:04:02 -05:00
CPol
d97b2eac72
GITBOOK-3781: No subject 2023-02-15 11:31:27 +00:00
Carlos Polop
405cb24819
Merge pull request #581 from cosad3s/master 
Fix broken links (Windows Hardening)
 2023-02-15 09:58:39 +01:00
CPol
39f0ec914e
GITBOOK-3777: No subject 2023-02-14 11:55:05 +00:00
carlospolop
11c30b864a hackenproof link 2023-02-14 12:23:00 +01:00
CPol
a589831b67
GitBook: [#3768] No subject 2023-02-04 19:05:29 +00:00
Sebastien Copin
e1039ec036 Fix broken links (Windows Hardening) 2023-01-24 17:20:05 +01:00
CPol
f457b3c263
GitBook: [#3765] No subject 2023-01-24 14:43:15 +00:00
CPol
007ec71831
GitBook: [#3764] No subject 2023-01-24 00:08:38 +00:00
CPol
f49587bb3a
GitBook: [#3755] No subject 2023-01-20 10:47:38 +00:00
CPol
9bb2fff4c6
GitBook: [#3754] No subject 2023-01-18 23:45:57 +00:00
CPol
e516ca5c95
GitBook: [#3751] No subject 2023-01-16 14:53:23 +00:00
CPol
1d1f2554c9
GitBook: [#3749] No subject 2023-01-13 17:40:30 +00:00
Carlos Polop
49e38d9b47
Merge pull request #571 from coRpTitan/patch-1 
Update authentication-credentials-uac-and-efs.md
 2023-01-13 14:01:59 +01:00
Carlos Polop
1b30b8fdec
Merge pull request #570 from XHNan/master 
fix a path error and some typos
 2023-01-13 14:01:33 +01:00
CPol
b7ed3e1489
GitBook: [#3733] No subject 2023-01-04 14:57:03 +00:00
coRpTitan
b136772f32
Update authentication-credentials-uac-and-efs.md 
Missing "t" in: wmic /namespace:\\root\securitycenter2 path antivirusproduct
 2023-01-04 15:37:32 +01:00
KeoOp
0fac4f981a
fix typo 2023-01-04 14:46:30 +08:00
CPol
10b981e3df
GitBook: [#3723] No subject 2023-01-02 12:00:18 +00:00
carlospolop
ff67a60687 update 2023-01-01 17:19:07 +01:00
CPol
00b1424c0f
GitBook: [#3722] No subject 2022-12-31 17:21:45 +00:00
CPol
b0d36efe32
GitBook: [#3721] No subject 2022-12-31 16:42:52 +00:00
Carlos Polop
38ea99b09c
Merge pull request #562 from RBPi/master 
Update the spelling error of a word
 2022-12-30 11:21:26 +01:00
CPol
b2d9eee4a0
GitBook: [#3720] No subject 2022-12-29 12:57:18 +00:00
CPol
9d37117335
GitBook: [#3719] No subject 2022-12-29 12:18:46 +00:00