Mirrors/hacktricks
2
0
Fork 0
mirror of https://github.com/carlospolop/hacktricks synced 2024-11-22 20:53:37 +00:00
Code Issues Projects Releases Packages Wiki Activity
4610 commits 18 branches 0 tags 470 MiB
Commit graph

1232 commits

Author SHA1 Message Date
Translator
0345f41a42 Translated ['pentesting-web/formula-csv-doc-latex-ghostscript-injection. 2024-05-07 11:04:17 +00:00
Translator
dd7aad82ea Translated ['crypto-and-stego/certificates.md', 'generic-methodologies-a 2024-05-06 11:09:55 +00:00
Translator
9ed6ab9ba7 Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:09:41 +00:00
Translator
61fc3564e0 Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-05-02 15:07:01 +00:00
Translator
aedfbccbac Translated ['network-services-pentesting/pentesting-web/nginx.md', 'netw 2024-04-27 17:17:24 +00:00
Translator
378dddfecb Translated ['pentesting-web/browser-extension-pentesting-methodology/REA 2024-04-19 00:32:47 +00:00
Translator
d03487fb27 Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-04-18 13:51:02 +00:00
Translator
23e74b976a Translated ['README.md', 'crypto-and-stego/hash-length-extension-attack. 2024-04-18 04:00:32 +00:00
Translator
534d768096 Translated ['crypto-and-stego/hash-length-extension-attack.md', 'forensi 2024-04-18 03:34:48 +00:00
Translator
3528de067a Translated ['binary-exploitation/basic-binary-exploitation-methodology/t 2024-04-17 05:38:23 +00:00
Translator
355673d224 Translated ['linux-hardening/privilege-escalation/README.md', 'network-s 2024-04-16 04:03:19 +00:00
Translator
436cab7049 Translated ['README.md', 'binary-exploitation/format-strings/README.md', 2024-04-15 03:55:20 +00:00
Translator
53db0a13fa Translated ['generic-methodologies-and-resources/external-recon-methodol 2024-04-10 13:43:17 +00:00
Translator
cf3eb82808 Translated ['network-services-pentesting/pentesting-web/php-tricks-esp/R 2024-04-07 23:03:04 +00:00
Translator
fbbd4dcf4e Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 22:58:27 +00:00
CPol
31f6eed2b4
GitBook: No commit message 2024-04-06 18:35:30 +00:00
Translator
99ceaaaccf Translated ['pentesting-web/hacking-with-cookies/cookie-tossing.md'] to 2024-04-04 08:57:44 +00:00
Translator
0cfdf45a41 Translated ['pentesting-web/hacking-jwt-json-web-tokens.md', 'pentesting 2024-04-01 16:04:20 +00:00
Translator
e06fe0a1f7 Translated ['README.md', 'backdoors/salseo.md', 'cryptography/certificat 2024-03-29 21:03:31 +00:00
Translator
dc08429adb Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-26 15:46:05 +00:00
Translator
cddefa7100 Translated ['pentesting-web/content-security-policy-csp-bypass/README.md 2024-03-26 08:04:46 +00:00
Translator
156b74c955 Translated ['pentesting-web/ssti-server-side-template-injection/README.m 2024-03-26 07:58:58 +00:00
Translator
ee272550ac Translated ['pentesting-web/http-connection-request-smuggling.md', 'pent 2024-03-25 01:49:26 +00:00
Translator
48961e8a66 Translated ['pentesting-web/cors-bypass.md'] to it 2024-03-25 00:45:40 +00:00
Translator
26233e3b2f Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-24 13:19:55 +00:00
Translator
96344edec1 Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-24 12:26:19 +00:00
Translator
68db6172a4 Translated ['pentesting-web/deserialization/nodejs-proto-prototype-pollu 2024-03-17 20:40:31 +00:00
Translator
c1341958bb Translated ['README.md', 'backdoors/salseo.md', 'cryptography/certificat 2024-03-17 16:26:31 +00:00
Translator
e1a11744ed Translated ['pentesting-web/deserialization/jndi-java-naming-and-directo 2024-03-16 12:09:22 +00:00
Translator
002f71bf97 Translated ['mobile-pentesting/android-app-pentesting/webview-attacks.md 2024-03-16 10:05:41 +00:00
Translator
8e97535def Translated ['pentesting-web/content-security-policy-csp-bypass/README.md 2024-03-15 22:24:38 +00:00
Translator
1af595a78a Translated ['network-services-pentesting/700-pentesting-epp.md', 'networ 2024-03-15 22:16:19 +00:00
Translator
1af4dd785f Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-14 23:33:40 +00:00
Translator
ed4c82806a Translated ['pentesting-web/formula-csv-doc-latex-ghostscript-injection. 2024-03-14 22:41:18 +00:00
Translator
08ec7f35bf Translated ['pentesting-web/h2c-smuggling.md'] to it 2024-03-11 12:59:44 +00:00
Translator
0ffd0f9327 Translated ['pentesting-web/captcha-bypass.md', 'pentesting-web/client-s 2024-03-10 13:31:59 +00:00
Translator
764abf04b8 Translated ['generic-methodologies-and-resources/exfiltration.md', 'gene 2024-03-09 13:30:41 +00:00
Translator
1f5437d400 Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-09 13:16:23 +00:00
Translator
6b9d235547 Translated ['pentesting-web/ssrf-server-side-request-forgery/cloud-ssrf. 2024-03-03 13:57:37 +00:00
Translator
ea2f0549c3 Translated ['pentesting-web/nosql-injection.md'] to it 2024-03-03 09:50:15 +00:00
Translator
92d0f03c89 Translated ['network-services-pentesting/pentesting-web/special-http-hea 2024-02-25 22:29:56 +00:00
Translator
3fd85a774d Translated ['generic-methodologies-and-resources/external-recon-methodol 2024-02-23 16:37:30 +00:00
Translator
ec0b8f847d Translated ['forensics/basic-forensic-methodology/specific-software-file 2024-02-18 14:45:01 +00:00
Translator
68bd91f015 Translated ['pentesting-web/domain-subdomain-takeover.md'] to it 2024-02-15 12:01:56 +00:00
Translator workflow
99e7865a3e Translated to Italian 2024-02-10 13:03:23 +00:00
Carlos Polop
116e3864db a 2024-02-09 18:55:27 +01:00
Carlos Polop
e65a322118 a 2024-02-09 08:15:24 +01:00
Carlos Polop
a268747dc2 A 2024-02-09 08:14:36 +01:00
Carlos Polop
7aaa08ff92 a 2024-02-09 01:38:08 +01:00
Carlos Polop
245b50b5a0 a 2024-02-08 22:36:35 +01:00
Carlos Polop
da6aaca1c2 a 2024-02-08 22:36:15 +01:00
Carlos Polop
10a3b640d6 a 2024-02-08 04:08:28 +01:00
Carlos Polop
06a639f4af a 2024-02-07 05:05:50 +01:00
Carlos Polop
47cd62fb61 a 2024-02-06 15:12:47 +01:00
Carlos Polop
5c23ce2893 a 2024-02-06 04:10:38 +01:00
Carlos Polop
aaa94e960b a 2024-02-06 04:10:27 +01:00
Carlos Polop
77e7b548a3 a 2024-02-05 21:00:40 +01:00
Carlos Polop
797ab87ac5 a 2024-02-05 03:29:11 +01:00
Carlos Polop
a01ea62620 a 2024-02-05 03:28:59 +01:00
Carlos Polop
7cc077db55 a 2024-02-04 17:10:29 +01:00
Carlos Polop
213f0fc6f6 a 2024-02-03 17:02:14 +01:00
Carlos Polop
968100037a a 2024-02-03 15:45:32 +01:00
Carlos Polop
04ccc172f4 fix 2024-02-03 13:22:53 +01:00
Carlos Polop
d92d12b939
Merge pull request #789 from Solracs/master 
Closes #788 fixing a minor typo
 2024-02-01 23:19:07 +01:00
CPol
f00afc243f
GITBOOK-4241: change request with no subject merged in GitBook 2024-01-22 12:24:45 +00:00
SolracS
cb82298159
Closes #788 fixing a minor typo 2024-01-18 07:55:32 +01:00
Carlos Polop
a086c07146
Merge pull request #754 from ChrisPritchard/patch-1 
Update nosql-injection.md with fixed brute force script
 2024-01-14 23:47:35 +01:00
CPol
25a3848ed2
GITBOOK-4235: change request with no subject merged in GitBook 2024-01-14 00:09:21 +00:00
Carlos Polop
37bb97ea8e pentest-tools 2024-01-11 14:23:18 +01:00
Carlos Polop
d258cb8b62
Merge pull request #780 from sys0wn/patch-1 
Improve confusing explanation in race-condition page
 2024-01-11 01:10:54 +01:00
Carlos Polop
defc06c1da
Merge pull request #778 from vladko312/patch-1 
Added SSTImap tool and Twig payloads
 2024-01-10 23:11:04 +01:00
sys0wn
b368673a7b
Update race-condition.md 2024-01-10 15:44:39 +01:00
Carlos Polop
734fec77eb arte 2024-01-10 11:22:19 +01:00
Carlos Polop
b045c000b2 Merge branch 'master' of github.com:carlospolop/hacktricks 2024-01-10 11:21:56 +01:00
Carlos Polop
f0b5bcb9d2 arte 2024-01-10 11:21:44 +01:00
CPol
bdb5a4b010
GITBOOK-4230: change request with no subject merged in GitBook 2024-01-10 00:59:55 +00:00
Carlos Polop
4d6eff6732 arte 2024-01-08 12:25:42 +01:00
Vladislav Korchagin
843e7a2d22
Merge pull request #1 from vladko312/master 
a
 2024-01-07 22:41:05 +03:00
Vladislav Korchagin
ab550dc115
Update README.md 2024-01-07 22:40:00 +03:00
Vladislav Korchagin
e06db461f7
Update README.md 2024-01-07 22:34:43 +03:00
Vladislav Korchagin
e4f58422e0
Update README.md 2024-01-07 09:40:59 +03:00
Carlos Polop
8bfb4b4cf5
Update nosql-injection.md 2024-01-04 10:08:44 +01:00
Carlos Polop
4734c06b2b
Merge pull request #774 from manesec/master 
Update nosql-injection.md
 2024-01-04 10:06:52 +01:00
Carlos Polop
c2d34d11b4 arte 2024-01-02 19:28:27 +01:00
Carlos Polop
eb2c94454c arte 2024-01-01 18:15:42 +01:00
Carlos Polop
036c0be886 arte 2024-01-01 18:15:10 +01:00
Mane
c6692d99a8
Update nosql-injection.md 
add nodeJS App with Mongo

## Reference

https://nullsweep.com/a-nosql-injection-primer-with-mongo/
https://0xdf.gitlab.io/2023/01/14/htb-shoppy.html
https://youtu.be/AJc53DUdt1M?t=574
 2023-12-31 07:29:39 -08:00
Carlos Polop
99ef9c4873 arte 2023-12-31 02:25:17 +01:00
Carlos Polop
f61bdeceae arte 2023-12-31 02:24:39 +01:00
Sissel
0ebe0a09e1
Update README.md with fuff CTF case 
Fuff addon of 1337UP LIVE CTF real application, with the nano ".save" trick.
https://askubuntu.com/questions/601985/what-are-save-files
 2023-12-28 20:37:41 +01:00
CPol
08536c564d
GITBOOK-4222: change request with no subject merged in GitBook 2023-12-27 23:58:16 +00:00
CPol
da42a67a80
GITBOOK-4216: change request with no subject merged in GitBook 2023-12-26 00:45:07 +00:00
CPol
1d40265874
GITBOOK-4213: change request with no subject merged in GitBook 2023-12-25 17:29:41 +00:00
Carlos Polop
35857b706b
Merge pull request #766 from HackCommander/fix-broken-link-bypass-httponly-php-info 
Fixed broken link in the section on to bypass HttpOnly flag during XSS exploitation.
 2023-12-25 01:31:57 +01:00
CPol
f625f2b554
GITBOOK-4209: change request with no subject merged in GitBook 2023-12-24 19:15:37 +00:00
Carlos Polop
fe632e89bf
Merge pull request #762 from arall/patch-1 
Update lfi2rce-via-phpinfo.md
 2023-12-24 20:10:19 +01:00
Carlos Polop
0791ffe016
Merge pull request #761 from nxenon/master 
add gRPC-Web Pentesting Methodology
 2023-12-24 19:56:24 +01:00
Carlos Polop
2b9a7d1f69
Merge pull request #753 from NaxnN/patch-8 
fix typo in deserialization/readme.md
 2023-12-21 13:36:36 +01:00
HackCommander
e1246c8206 Fixed broken link in the section on to bypass HttpOnly flag during XSS exploitation. 2023-12-20 23:26:45 +01:00
Arall
ac10681235
Update lfi2rce-via-phpinfo.md 
Fix a 404 on the phpInfoLFI.py exploit link
 2023-12-19 18:18:56 +01:00