Commit graph

4478 commits

Author SHA1 Message Date
M Amin Nasiri
c8a6851ba2 add gRPC-Web Pentesting Methodology 2023-12-19 13:07:27 +04:00
CPol
5c84c90460
GITBOOK-4196: change request with no subject merged in GitBook 2023-12-19 00:24:47 +00:00
CPol
6649f59ddf
GITBOOK-4196: change request with no subject merged in GitBook 2023-12-19 00:24:07 +00:00
CPol
b4428b4c03
GITBOOK-4195: change request with no subject merged in GitBook 2023-12-18 23:58:55 +00:00
CPol
1fa12f9f37
GITBOOK-4193: change request with no subject merged in GitBook 2023-12-17 01:01:54 +00:00
CPol
20b5224810
GITBOOK-4192: change request with no subject merged in GitBook 2023-12-16 13:28:14 +00:00
CPol
d3fb573918
GITBOOK-4189: change request with no subject merged in GitBook 2023-12-13 23:28:49 +00:00
Mane
9878e7b8ac
Update README.md
Add `AMSI Bypass - More Resources` 
Add `Powershell - Port scan`

## Reference - `AMSI Bypass - More Resources`

[S3cur3Th1sSh1t/Amsi-Bypass-Powershell](https://github.com/S3cur3Th1sSh1t/Amsi-Bypass-Powershell)

[Amsi Bypass on Windows 11 In 2023](https://gustavshen.medium.com/bypass-amsi-on-windows-11-75d231b2cac6)  [Github](https://github.com/senzee1984/Amsi_Bypass_In_2023)

## Reference - `Powershell - Port scan`

https://techcommunity.microsoft.com/t5/itops-talk-blog/powershell-basics-how-to-scan-open-ports-within-a-network/ba-p/924149

https://medium.com/@nallamuthu/powershell-port-scan-bf27fc754585

https://www.sans.org/blog/pen-test-poster-white-board-powershell-built-in-port-scanner/
2023-12-12 01:57:52 -08:00
Mane
2c3f4bdd68
Update README.md
Add `Microsoft Windows SNMP parameters`, which very useful.

# Reference:

https://www.websecgeeks.com/2017/04/hacking-snmp-service-part-2-post.html

https://refabr1k.gitbook.io/oscp/info-gathering/snmp#juicy-mib-values
2023-12-12 01:40:07 -08:00
CPol
a4f29b80da
GITBOOK-4186: change request with no subject merged in GitBook 2023-12-11 15:49:52 +00:00
N7WEra
98c15ec776
Update the permisson list 2023-12-11 15:46:57 +00:00
N7WEra
5aa2e16fd9
Update jira.md
changed the date
2023-12-11 14:38:01 +00:00
N7WEra
08a6342a99
Update page
to reflect changes in the API
2023-12-11 14:25:00 +00:00
CPol
ef14d419ab
GITBOOK-4185: change request with no subject merged in GitBook 2023-12-11 10:10:20 +00:00
CPol
2188a0927d
GITBOOK-4184: change request with no subject merged in GitBook 2023-12-11 09:39:35 +00:00
CamoCatX
efc37ef409
Update physical-attacks.md 2023-12-10 13:03:08 -06:00
Christopher Pritchard
4b445305da
Update nosql-injection.md with fixed brute force script
Fixed login brute force script so it doesn't just find one username per starting letter - this royally boned me and I don't want anyone else to feel the pain.
2023-12-08 20:56:03 +13:00
KeoOp
1291831b76
fix typo in deserialization/readme.md 2023-12-07 13:41:51 +09:00
CPol
5fc9f17db4
GITBOOK-4180: change request with no subject merged in GitBook 2023-12-05 11:51:09 +00:00
Miłosz Gaczkowski
2a30e960b5 Replace references to F-Secure LABS with WithSecure Labs
F-Secure split into 2 companies in early 2022. For a while, all links to labs.f-secure.com redirected to labs.withsecure.com, but this is no longer the case - leaving some links on HackTricks broken. This commit replaces all outdated links with their current locations.
2023-12-04 13:43:41 -05:00
carlospolop
81005f76c9 hp 2023-12-04 16:57:41 +01:00
carlospolop
21ed9007c4 hackenproof 2023-12-04 16:45:05 +01:00
CPol
0a792c2576
GITBOOK-4178: change request with no subject merged in GitBook 2023-12-04 15:17:30 +00:00
CPol
d7952703e4
GITBOOK-4175: change request with no subject merged in GitBook 2023-12-04 09:59:48 +00:00
CPol
f6cedd55e4
GITBOOK-4174: change request with no subject merged in GitBook 2023-12-04 09:33:43 +00:00
CPol
ae3c6e44b7
GITBOOK-4173: change request with no subject merged in GitBook 2023-12-04 09:24:40 +00:00
Carlos Polop
9275537ffe
Merge pull request #751 from m10x/patch-2
Added TInjA and the Template Injection Table
2023-12-04 09:23:37 +01:00
Carlos Polop
25ae569db1
Merge pull request #750 from noraj/patch-2
WPA passphrase
2023-12-04 09:21:05 +01:00
Carlos Polop
4704e7d368
Merge pull request #749 from noraj/patch-1
pentesting-smb: add From Windows / no third-party tools
2023-12-04 09:20:43 +01:00
Carlos Polop
5ae3f2da66
Merge pull request #748 from MuskyPirate/patch-70
Update dpapi-extracting-passwords.md
2023-12-04 09:15:10 +01:00
Carlos Polop
8e7ac16704
Merge pull request #747 from mtisec/android-spelling-patch-1
Correct spelling in Android README.md.
2023-12-04 09:14:41 +01:00
CPol
81e10f47d7
GITBOOK-4172: change request with no subject merged in GitBook 2023-12-03 18:08:20 +00:00
Maximilian Hildebrand
d3d3f4f47a
Added TInjA and the Template Injection Table 2023-12-03 13:14:19 +01:00
Alexandre ZANNI
a41836ec5b
fix typo 2023-12-03 12:36:45 +01:00
Alexandre ZANNI
250c950806
WPA passphrase
add some explanation
2023-12-03 12:35:16 +01:00
CPol
6c2b902411
GITBOOK-4169: change request with no subject merged in GitBook 2023-12-01 14:16:48 +00:00
Alexandre ZANNI
b7996be56b
pentesting-smb: change title 2023-11-27 18:01:07 +01:00
Alexandre ZANNI
50f37523f5
pentesting-smb: add From Windows / no third-party tools 2023-11-27 17:58:23 +01:00
Taleb Qasem
58cabb472f
Update dpapi-extracting-passwords.md
minor typos
2023-11-27 18:26:17 +06:00
mtisec
a19f3c0057
Correct spelling in Android README.md. 2023-11-27 12:55:46 +01:00
CPol
30c03b64ed
GITBOOK-4168: change request with no subject merged in GitBook 2023-11-27 07:19:18 +00:00
Carlos Polop
da044c173c
Merge pull request #746 from manesec/master
Update php-useful-functions-disable_functions-open_basedir-bypass
2023-11-27 07:57:04 +01:00
Carlos Polop
d8fb2ca9d5
Merge pull request #745 from SidneyJob/pull
Fix mini spell mistake
2023-11-27 07:53:10 +01:00
Carlos Polop
00d4c18639
Merge pull request #744 from Bigyls/master
Remove `X-ProxyUser-Ip: 127.0.0.1` duplicate in `network-services-pentesting/pentesting-web/special-http-headers`
2023-11-27 07:51:36 +01:00
Carlos Polop
e45b15eac7
Merge pull request #742 from salvatore-abello/patch-2
Added __base__ and __mro__ bypass
2023-11-27 07:50:31 +01:00
Mane
d1d885dcc6
Update README.md
Make more readable and add a tools p0wny-shell to automatic check and bypass .

## Reference: 

https://github.com/flozz/p0wny-shell   (source code in shell.php, In function `executeCommand` )
2023-11-21 12:02:42 -08:00
SidneyJob
76f93375d2 Fix mini spell mistake 2023-11-21 18:40:35 +03:00
Bigyls
69a5c16e62
Remove "X-ProxyUser-Ip: 127.0.0.1" duplicate 2023-11-16 15:27:36 +01:00
salvatore-abello
5822abc5ff
Update README.md 2023-11-13 00:00:08 +01:00
CPol
36f9df02eb
GITBOOK-4167: change request with no subject merged in GitBook 2023-11-11 11:59:08 +00:00