Commit graph

4223 commits

Author SHA1 Message Date
jjfeldcher
fac24cd8b4
Update wordpress.md
Added some new knowledge to the Wordpress tricks page.
2023-10-25 16:42:52 -07:00
CPol
322d48cc43
GITBOOK-4139: change request with no subject merged in GitBook 2023-10-23 19:55:30 +00:00
Andrej L
3ddbdaa4e9
Update domain-escalation.md
Flag for Certipy [has changed](https://github.com/ly4k/Certipy#esc1) from `-alt` to `-upn` for abusing ESC1.
2023-10-23 16:10:03 +01:00
Felipe Molina
121d793ce0 Update CSP methods for third parties 2023-10-23 15:43:34 +01:00
CPol
e0975f3af6
GITBOOK-4138: change request with no subject merged in GitBook 2023-10-23 00:13:07 +00:00
CPol
0212902b09
GITBOOK-4137: change request with no subject merged in GitBook 2023-10-22 01:38:20 +00:00
Snir Aviv
e720a71d6a
Update 403-and-401-bypasses.md 2023-10-21 15:30:38 +03:00
Alvin Smith
55cd0adf16
Update tomcat.md
Fixed the MSFVenom WAR Stageless reverse TCP payload command for Tomcat page.
2023-10-20 14:15:50 +13:00
CPol
389e07a643
GITBOOK-4136: change request with no subject merged in GitBook 2023-10-18 17:42:31 +00:00
cowsaysfoo
ceb9d5f4ef
Update stego-tricks.md - append to section "Some other image tools worth mentioning"
Added links for OpenStego, OutGuess (a legacy/classic), and DIIT (also legacy, favorite of some CTFs) --plan to flesh out proper descriptions later, but felt important to include (as files produced by one set of stego tools are often not compatible with another--an incomplete list of resources can be...torment.)
2023-10-17 16:33:53 -04:00
CPol
e92cc2aef0
GITBOOK-4135: change request with no subject merged in GitBook 2023-10-17 17:40:24 +00:00
CPol
9f5e99c77f
GITBOOK-4134: change request with no subject merged in GitBook 2023-10-17 00:39:47 +00:00
CPol
8c3eb627eb
GITBOOK-4133: change request with no subject merged in GitBook 2023-10-16 23:12:20 +00:00
CPol
0742844ba3
GITBOOK-4132: change request with no subject merged in GitBook 2023-10-16 21:06:07 +00:00
CPol
943d735974
GITBOOK-4131: change request with no subject merged in GitBook 2023-10-16 18:10:45 +00:00
Adam Chovanec
ae610a5acd
fix: autocommand syntax 2023-10-16 19:42:43 +02:00
CPol
c824f07d91
GITBOOK-4130: change request with no subject merged in GitBook 2023-10-16 12:46:58 +00:00
CPol
5f8cf30583
GITBOOK-4129: change request with no subject merged in GitBook 2023-10-16 00:58:28 +00:00
CPol
49b9c6da96
GITBOOK-4128: change request with no subject merged in GitBook 2023-10-15 22:38:41 +00:00
CPol
f0be7beb28
GITBOOK-4127: change request with no subject merged in GitBook 2023-10-15 20:52:21 +00:00
CPol
63857c0541
GITBOOK-4126: change request with no subject merged in GitBook 2023-10-15 16:45:54 +00:00
CPol
c383ffed62
GITBOOK-4125: change request with no subject merged in GitBook 2023-10-15 15:23:24 +00:00
CPol
feebc0c63d
GITBOOK-4124: change request with no subject merged in GitBook 2023-10-15 14:02:44 +00:00
CPol
327e4e05f1
GITBOOK-4123: change request with no subject merged in GitBook 2023-10-15 09:54:49 +00:00
Paul Arzelier
bc9f96fcb3 Fix nmap example in pentesting-network's README 2023-10-15 03:41:31 +02:00
CPol
45b3e7d6e6
GITBOOK-4122: change request with no subject merged in GitBook 2023-10-14 23:17:26 +00:00
CPol
6a5f71e401
GITBOOK-4121: change request with no subject merged in GitBook 2023-10-14 20:45:59 +00:00
CPol
19c1541c4d
GITBOOK-4120: change request with no subject merged in GitBook 2023-10-14 10:04:46 +00:00
tandera
c0a157ed69
Added special characters command to FTP file dump 2023-10-13 19:19:28 -03:00
CPol
176ca82ff3
GITBOOK-4119: change request with no subject merged in GitBook 2023-10-13 16:01:44 +00:00
CPol
2c18b8e1e0
GITBOOK-4118: change request with no subject merged in GitBook 2023-10-12 16:09:18 +00:00
Sébastien Copin
fe88ec40e7
Update 1414-pentesting-ibmmq.md (typos) 2023-10-12 13:52:24 +02:00
Sébastien Copin
30cbf6ebc7 Add Pentesting IBM MQ (1414) 2023-10-12 01:08:45 +02:00
Carlos Polop
8187d65dfa
Merge pull request #720 from abdelrahman-essawy/master
fix: typo in physical-attacks
2023-10-12 00:55:02 +02:00
Carlos Polop
6b6da2aa1d
Merge pull request #719 from nuts7/certutil-ntlmcoerce-newtech
Add NTLM auth coerce technique (certutil.exe)
2023-10-12 00:46:14 +02:00
Carlos Polop
a0e0e09d85
Merge pull request #717 from IamLeandrooooo/patch-1
Adding SQL Server Linked Servers Passwords Attack
2023-10-12 00:45:28 +02:00
Carlos Polop
adac2ecf68
Merge pull request #716 from stoeps13/patch-1
Update references.md - Link dead
2023-10-12 00:43:17 +02:00
Carlos Polop
63cb4f1b0d
Merge pull request #715 from samiy803/patch-1
Fix typo. Change detencion -> detection
2023-10-12 00:01:32 +02:00
Carlos Polop
5e9364bcf4
Merge pull request #714 from nuts7/kerberoast-without-preauth
Add Kerberoasting w/o domain account
2023-10-12 00:01:12 +02:00
Carlos Polop
724f7df3f4
Merge pull request #713 from badr-elmazaz/patch-2
Corrected a typo 'Sing' -> 'Sign'
2023-10-11 23:29:14 +02:00
Carlos Polop
0c070eadc0
Merge pull request #711 from Sandr0x00/master
Fixed minor formatting issues in Linux Environment Variables
2023-10-11 23:27:57 +02:00
Carlos Polop
d7f82e9005
Merge pull request #710 from kibatche/master
Update file-upload.md / Replace cStringIO by io
2023-10-11 23:27:32 +02:00
Carlos Polop
86ee61220f
Merge pull request #709 from nuts7/add-big-references
Add some references
2023-10-11 23:00:23 +02:00
Carlos Polop
e5a76ef436
Merge pull request #708 from jiniljeil/patch-1
Fix typo in http-request-smuggling
2023-10-11 23:00:14 +02:00
nuts7
6a6ccd91d1 Add NTLM auth coerce technique (certutil.exe)
This commit add a new NTLM authentication coerce technique with the certutil.exe lolbin (Microsoft-signed binary)
2023-10-11 17:47:02 +00:00
Abdelrahman Essawy
8633e31de0 fix: typo in physical-attacks 2023-10-11 19:39:50 +03:00
CPol
72ea940de7
GITBOOK-4117: change request with no subject merged in GitBook 2023-10-10 17:58:22 +00:00
CPol
c28eda5a9e
GITBOOK-4116: change request with no subject merged in GitBook 2023-10-10 17:45:58 +00:00
Leandro
a3d33f13c3
Adding SQL Server Linked Servers Passwords Attack
Adding a section to the pentesting-mssql-microsoft-sql-server playbook where SQL Server Linked Servers Passwords Attack is detailed with information and scripts to handle the needed configurations. Also a script for the extraction and decryption of the passwords is added.
Furthermore, additional information is provided to better understand the attack.
2023-10-09 20:52:49 +01:00
CPol
4e747159b1
GITBOOK-4115: change request with no subject merged in GitBook 2023-10-09 19:38:55 +00:00