Mirrors/hacktricks
2
0
Fork 0
mirror of https://github.com/carlospolop/hacktricks synced 2024-11-15 01:17:36 +00:00
Code Issues Projects Releases Packages Wiki Activity
4676 commits 18 branches 0 tags 464 MiB
Commit graph

662 commits

Author SHA1 Message Date
cp
998fbe1385
Merge pull request #793 from Legoclones/update-flask 
Create Django article
 2024-04-04 12:50:06 +02:00
HackTricks
1a1282cda2
Merge pull request #829 from V3ntus/patch-1 
docs: fix typo in "automation"
 2024-04-01 17:58:35 +02:00
CPol
31e7f071f5
GITBOOK-4288: change request with no subject merged in GitBook 2024-03-29 18:55:33 +00:00
Ventus
e414564154
docs: fix typo in "automation" 2024-03-27 14:31:43 -05:00
Carlos Polop
61e2eb2350 a 2024-03-26 15:56:40 +01:00
HackTricks
b7df4d9d30
Merge pull request #826 from Syzik/master 
Update 5000-pentesting-docker-registry.md
 2024-03-26 10:08:09 +01:00
HackTricks
af3dd73501
Merge pull request #820 from 3v1lC0d3/3v1lC0d3-patch-1 
Update 135-pentesting-msrpc.md
 2024-03-25 15:04:50 +01:00
HackTricks
70759f62de
Merge pull request #819 from dekadentno/patch-1 
Update 3128-pentesting-squid.md
 2024-03-25 15:04:09 +01:00
HackTricks
b3c1ec5527
Merge pull request #817 from kabinet01/patch-1 
Update 15672-pentesting-rabbitmq-management.md
 2024-03-25 02:09:48 +01:00
CPol
2bba39459f
GITBOOK-4276: change request with no subject merged in GitBook 2024-03-24 11:49:57 +00:00
Carlos Polop
72f1bc0eec a 2024-03-24 12:46:48 +01:00
Syzik
e786d810fa
Update 5000-pentesting-docker-registry.md 
update tool
 2024-03-21 19:21:58 +01:00
CPol
5b120932f3
GITBOOK-4274: change request with no subject merged in GitBook 2024-03-17 14:42:04 +00:00
CPol
43ccbd4ee9
GITBOOK-4270: change request with no subject merged in GitBook 2024-03-15 22:07:01 +00:00
CPol
f3dc05632c
GITBOOK-4269: change request with no subject merged in GitBook 2024-03-15 21:27:36 +00:00
Carlos Polop
1fcb0ae066 a 2024-03-15 00:01:13 +01:00
Juan Martinez a.k.a 3vilC0d3
1b762e358f
Update 135-pentesting-msrpc.md 
Topic added "Executing a RCE with valid credentials"
 2024-03-13 18:17:24 -05:00
Matej
d71084f47f
Update 3128-pentesting-squid.md 
Add credentials example for proxychains4.conf
 2024-03-13 16:01:53 +01:00
HackTricks
dc260326fc
Merge pull request #809 from scmanjarrez/patch-1 
Update 3632-pentesting-distcc.md
 2024-03-11 15:43:14 +01:00
kabinet
cf3d2189b2
Update 15672-pentesting-rabbitmq-management.md 2024-03-10 01:34:57 +08:00
Carlos Polop
944eaa12c9 up 2024-03-09 14:02:01 +01:00
CPol
8ff32d8f1d
GITBOOK-4266: change request with no subject merged in GitBook 2024-03-09 12:57:16 +00:00
Sergio C
c45f02d0a4
Update 3632-pentesting-distcc.md 
Correction of the script name
 2024-03-02 00:18:09 +01:00
CPol
384266bfd1
GITBOOK-4259: change request with no subject merged in GitBook 2024-02-25 22:26:40 +00:00
CPol
fc13d7264a
GITBOOK-4255: change request with no subject merged in GitBook 2024-02-23 15:34:31 +00:00
CPol
eff83f8dcf
GITBOOK-4251: change request with no subject merged in GitBook 2024-02-18 14:18:26 +00:00
CPol
54981cedc7
GITBOOK-4250: change request with no subject merged in GitBook 2024-02-14 23:23:50 +00:00
Carlos Polop
c41af08731
Merge pull request #796 from 0x4net/master 
Update Bacnet manual 47808-udp-bacnet.md
 2024-02-14 11:04:35 +01:00
Maksym Vatsyk
11c80bb962
Update pentesting-postgresql.md 2024-02-13 22:32:32 +01:00
Carlos Polop
8073f5697c a 2024-02-09 13:24:06 +01:00
Carlos Polop
e65a322118 a 2024-02-09 08:15:24 +01:00
Carlos Polop
a268747dc2 A 2024-02-09 08:14:36 +01:00
CPol
e29eb7bcb4
GITBOOK-4247: change request with no subject merged in GitBook 2024-02-09 00:32:07 +00:00
Carlos Polop
f24b096563 a 2024-02-08 22:36:50 +01:00
Carlos Polop
245b50b5a0 a 2024-02-08 22:36:35 +01:00
Carlos Polop
da6aaca1c2 a 2024-02-08 22:36:15 +01:00
Carlos Polop
10a3b640d6 a 2024-02-08 04:08:28 +01:00
Carlos Polop
79b80044a8 a 2024-02-08 04:06:37 +01:00
0x4net
2a5db77396
Update 47808-udp-bacnet.md 2024-02-07 10:01:20 -06:00
Carlos Polop
43da32d5b8 a 2024-02-07 05:06:18 +01:00
Carlos Polop
06a639f4af a 2024-02-07 05:05:50 +01:00
Carlos Polop
5c23ce2893 a 2024-02-06 04:10:38 +01:00
Carlos Polop
77e7b548a3 a 2024-02-05 21:00:40 +01:00
Carlos Polop
797ab87ac5 a 2024-02-05 03:29:11 +01:00
Carlos Polop
a01ea62620 a 2024-02-05 03:28:59 +01:00
Carlos Polop
7cc077db55 a 2024-02-04 17:10:29 +01:00
Carlos Polop
c8d0bff233 t 2024-02-04 11:58:49 +01:00
Carlos Polop
213f0fc6f6 a 2024-02-03 17:02:14 +01:00
Carlos Polop
04ccc172f4 fix 2024-02-03 13:22:53 +01:00
Carlos Polop
78e3793a1e arte 2024-02-03 02:15:34 +01:00
Justin Applegate
09b618c00e
Flask extension isn't vulnerable anymore actually 2024-01-30 22:15:31 -05:00
Justin Applegate
8ebee8912b
Mixing up Django and Flask 2024-01-30 22:05:13 -05:00
Justin Applegate
d8a6d00b9d
Adding CVE number for Django cache manipulation 2024-01-30 22:00:55 -05:00
Justin Applegate
094bfcace9
Create django.md 
Added cache manipulation
 2024-01-30 21:52:51 -05:00
gitlab.com/beune
e0fd0a99d7
Update README.md 
Fix typo
 2024-01-26 10:39:53 +01:00
Valtteri Lehtinen
6a0ea1a28e Add 4840-pentesting-opc-ua 2024-01-14 21:54:55 +02:00
Carlos Polop
cc62aeca66 arte 2024-01-12 08:54:15 +01:00
Carlos Polop
c61eef67c4 arte 2024-01-12 08:53:44 +01:00
Carlos Polop
37bb97ea8e pentest-tools 2024-01-11 14:23:18 +01:00
Carlos Polop
ad1f5a6cf5 dns 2024-01-11 14:18:30 +01:00
Carlos Polop
4e607e95d5
Merge pull request #779 from MegaManSec/patch-1 
Update pentesting-ssh.md
 2024-01-11 01:08:42 +01:00
Carlos Polop
b045c000b2 Merge branch 'master' of github.com:carlospolop/hacktricks 2024-01-10 11:21:56 +01:00
Carlos Polop
f0b5bcb9d2 arte 2024-01-10 11:21:44 +01:00
Joshua Rogers
8018901584
Update pentesting-ssh.md 
Add SSH-Snake info.
 2024-01-10 04:55:52 +01:00
CPol
bdb5a4b010
GITBOOK-4230: change request with no subject merged in GitBook 2024-01-10 00:59:55 +00:00
Carlos Polop
4d6eff6732 arte 2024-01-08 12:25:42 +01:00
Carlos Polop
d15c2e37d1 arte 2024-01-08 12:25:09 +01:00
Carlos Polop
977350907c arte 2024-01-05 23:37:11 +01:00
Carlos Polop
48d9033854 arte 2024-01-05 23:36:48 +01:00
Carlos Polop
8f1aed6958
Merge pull request #775 from NaxnN/patch-9 
add missing space in 6379-pentesting-redis.md
 2024-01-04 10:02:30 +01:00
Carlos Polop
5d26a0c40a arte 2024-01-03 11:43:38 +01:00
Carlos Polop
5da23fa278 arte 2024-01-03 11:42:55 +01:00
Carlos Polop
c2d34d11b4 arte 2024-01-02 19:28:27 +01:00
KeoOp
2da93f568b
update 6379-pentesting-redis.md 2024-01-01 17:46:15 +09:00
Carlos Polop
f61bdeceae arte 2023-12-31 02:24:39 +01:00
Carlos Polop
3bc68642e2
Merge pull request #771 from manesec/master 
Update 6000-pentesting-x11.md
 2023-12-29 17:46:19 +01:00
Mane
1562d6185c
Update 6000-pentesting-x11.md 
Add example for `xxd` and `w`. 

# Reference
https://0xdf.gitlab.io/2022/11/21/htb-squashed.html
 2023-12-29 00:56:54 -08:00
n3rada
df39ded79a
update: jdwp repository and explaination 2023-12-28 18:48:26 +00:00
CPol
08536c564d
GITBOOK-4222: change request with no subject merged in GitBook 2023-12-27 23:58:16 +00:00
CPol
76315e4cc2
GITBOOK-4219: change request with no subject merged in GitBook 2023-12-26 20:51:20 +00:00
CPol
da42a67a80
GITBOOK-4216: change request with no subject merged in GitBook 2023-12-26 00:45:07 +00:00
Carlos Polop
8ed6ac013b
Merge pull request #768 from emizzz/master 
fix URL error in Joomla RCE
 2023-12-25 01:33:12 +01:00
Carlos Polop
03fb0ebb99
Merge pull request #758 from manesec/master 
Update SNMP and Basic PowerShell for Pentesters
 2023-12-24 19:53:33 +01:00
CPol
a6d32b1828
GITBOOK-4208: change request with no subject merged in GitBook 2023-12-24 18:15:27 +00:00
Carlos Polop
1699aa01ac
Merge pull request #757 from N7WEra/patch-1 
Update JIRA page
 2023-12-24 19:03:57 +01:00
emizzz
e1802676f6
fix URL error 
I think once the code is injected, the correct URL is: 
"/templates/protostar/error.php"
and not:
"/templates/protostar/error.php/error.php"
 2023-12-22 14:19:47 +01:00
Carlos Polop
f97bf8980c
Merge pull request #752 from cyberMilosz/master 
Replace references to F-Secure LABS with WithSecure Labs
 2023-12-19 22:44:29 +01:00
CPol
20b5224810
GITBOOK-4192: change request with no subject merged in GitBook 2023-12-16 13:28:14 +00:00
Mane
2c3f4bdd68
Update README.md 
Add `Microsoft Windows SNMP parameters`, which very useful.

# Reference:

https://www.websecgeeks.com/2017/04/hacking-snmp-service-part-2-post.html

https://refabr1k.gitbook.io/oscp/info-gathering/snmp#juicy-mib-values
 2023-12-12 01:40:07 -08:00
N7WEra
98c15ec776
Update the permisson list 2023-12-11 15:46:57 +00:00
N7WEra
5aa2e16fd9
Update jira.md 
changed the date
 2023-12-11 14:38:01 +00:00
N7WEra
08a6342a99
Update page 
to reflect changes in the API
 2023-12-11 14:25:00 +00:00
Miłosz Gaczkowski
2a30e960b5 Replace references to F-Secure LABS with WithSecure Labs 
F-Secure split into 2 companies in early 2022. For a while, all links to labs.f-secure.com redirected to labs.withsecure.com, but this is no longer the case - leaving some links on HackTricks broken. This commit replaces all outdated links with their current locations.
 2023-12-04 13:43:41 -05:00
carlospolop
81005f76c9 hp 2023-12-04 16:57:41 +01:00
carlospolop
21ed9007c4 hackenproof 2023-12-04 16:45:05 +01:00
CPol
f6cedd55e4
GITBOOK-4174: change request with no subject merged in GitBook 2023-12-04 09:33:43 +00:00
Alexandre ZANNI
b7996be56b
pentesting-smb: change title 2023-11-27 18:01:07 +01:00
Alexandre ZANNI
50f37523f5
pentesting-smb: add From Windows / no third-party tools 2023-11-27 17:58:23 +01:00
Carlos Polop
da044c173c
Merge pull request #746 from manesec/master 
Update php-useful-functions-disable_functions-open_basedir-bypass
 2023-11-27 07:57:04 +01:00
Mane
d1d885dcc6
Update README.md 
Make more readable and add a tools p0wny-shell to automatic check and bypass .

## Reference: 

https://github.com/flozz/p0wny-shell   (source code in shell.php, In function `executeCommand` )
 2023-11-21 12:02:42 -08:00