Commit graph

4225 commits

Author SHA1 Message Date
Leandro
a3d33f13c3
Adding SQL Server Linked Servers Passwords Attack
Adding a section to the pentesting-mssql-microsoft-sql-server playbook where SQL Server Linked Servers Passwords Attack is detailed with information and scripts to handle the needed configurations. Also a script for the extraction and decryption of the passwords is added.
Furthermore, additional information is provided to better understand the attack.
2023-10-09 20:52:49 +01:00
CPol
4e747159b1
GITBOOK-4115: change request with no subject merged in GitBook 2023-10-09 19:38:55 +00:00
Christoph Stoettner
e188194f71
Update references.md - Link dead
https://www.lifeoverpentest.com/ forwards to a gaming or sport page, the linked document is no longer available.
2023-10-09 13:41:35 +02:00
CPol
06502cc441
GITBOOK-4114: change request with no subject merged in GitBook 2023-10-09 11:31:29 +00:00
Sami Yousef
77ddbb3738
Fix typo. Change detencion -> detection 2023-10-09 03:02:16 -04:00
nuts7
c10d59667f Add Kerberoasting w/o domain account
This commit add a Kerberoasting technique without domain account/credentials just a user without pre-authentication (AS_REP Roastable)
2023-10-06 12:11:57 +00:00
Badr El Mazaz
e7239a7410
Corrected a typo 'Sing' -> 'Sign' 2023-10-06 11:16:52 +02:00
CPol
3c814157ac
GITBOOK-4113: change request with no subject merged in GitBook 2023-10-05 22:21:18 +00:00
CPol
1b438ba055
GITBOOK-4112: change request with no subject merged in GitBook 2023-10-05 19:58:20 +00:00
CPol
aafdb7f10e
GITBOOK-4111: change request with no subject merged in GitBook 2023-10-05 14:47:43 +00:00
CPol
bce38a19cf
GITBOOK-4110: change request with no subject merged in GitBook 2023-10-05 10:00:26 +00:00
CPol
d6f717de16
GITBOOK-4109: change request with no subject merged in GitBook 2023-10-04 22:43:22 +00:00
CPol
7f25eb4d37
GITBOOK-4108: change request with no subject merged in GitBook 2023-10-04 15:51:37 +00:00
CPol
cda07dd813
GITBOOK-4107: change request with no subject merged in GitBook 2023-10-02 17:20:33 +00:00
CPol
af6d74b742
GITBOOK-4106: change request with no subject merged in GitBook 2023-10-01 18:04:16 +00:00
CPol
18588f98f4
GITBOOK-4105: change request with no subject merged in GitBook 2023-09-30 18:15:43 +00:00
CPol
0cd8734cc5
GITBOOK-4104: change request with no subject merged in GitBook 2023-09-29 15:36:01 +00:00
CPol
c1737e155b
GITBOOK-4103: change request with no subject merged in GitBook 2023-09-28 22:52:07 +00:00
CPol
7cba6680cd
GITBOOK-4102: change request with no subject merged in GitBook 2023-09-28 21:12:41 +00:00
CPol
fb5442de0f
GITBOOK-4101: change request with no subject merged in GitBook 2023-09-28 20:06:38 +00:00
CPol
1a337f9d53
GITBOOK-4101: change request with no subject merged in GitBook 2023-09-28 20:05:35 +00:00
CPol
261348bb2c
GITBOOK-4100: change request with no subject merged in GitBook 2023-09-28 15:09:34 +00:00
CPol
0f71366fa2
GITBOOK-4098: change request with no subject merged in GitBook 2023-09-27 09:24:02 +00:00
CPol
6822e550ab
GITBOOK-4097: change request with no subject merged in GitBook 2023-09-26 23:39:35 +00:00
CPol
7d1cde6b91
GITBOOK-4096: change request with no subject merged in GitBook 2023-09-26 11:09:53 +00:00
CPol
526d927d6a
GITBOOK-4095: change request with no subject merged in GitBook 2023-09-25 23:58:37 +00:00
sandr0
de91eedea8 Fixed minor formatting issues 2023-09-25 21:16:51 +02:00
CPol
cccca3aaf4
GITBOOK-4094: change request with no subject merged in GitBook 2023-09-25 17:41:06 +00:00
kibatche
86f9653abf
Update file-upload.md / Replace cStringIO by io
Originally, I wrote the script for the little trick "Decompress with a different name" with the module "cStringIo". I don't remember why exactly, but when tested again at home to write about this stuff, I found that cStringIo is not present anymore on python3. It works with python2.7, but `io` is better because it works with both modules.

And, I wrote " we can reuse the previous script". That's not true haha !

I think this is better to keep consistency with your previous work, and have more compatibility with different python version.

Let me know if it's ok for you. Thanks !
2023-09-25 18:02:57 +02:00
CPol
28f1175b58
GITBOOK-4093: change request with no subject merged in GitBook 2023-09-25 00:55:55 +00:00
CPol
afd72865a1
GITBOOK-4092: change request with no subject merged in GitBook 2023-09-24 09:51:34 +00:00
nuts7
f22d76762b Add some references
Added some big references in cybersecurity: TheHackerRecipes, PayloadsAllTheThings, GTFOBins, Awesome-RedTeam-Cheatsheet,Active-Directory-Exploitation-Cheat-Sheet, hideandsec.sh blog, cheatsheet by haax,infosecwriteups, Exploit-DB, WADComs, LOLBAS, Pentest Book, hackingarticles, pentesterlab blog, ippsec search engine
2023-09-22 01:32:19 +02:00
Jinil Kim
4e887c2998
Fix typo in http-request-smuggling
Fix typo from lentgh to length in pentesting-web/http-request-smuggling
2023-09-21 08:56:51 +09:00
Jinil Kim
2d9e6fd60c
Fix typo in http-request-smuggling
Fix typo from lenght to length
2023-09-21 08:45:08 +09:00
CPol
b57b0d67b9
GITBOOK-4090: change request with no subject merged in GitBook 2023-09-20 23:11:26 +00:00
CPol
22552ec317
GITBOOK-4088: change request with no subject merged in GitBook 2023-09-19 22:52:16 +00:00
Carlos Polop
ac48f0e83f
Merge pull request #706 from peter17/patch-1
Fix sentence in werkzeug.md
2023-09-18 18:47:25 +02:00
Carlos Polop
ad92e966d0
Merge pull request #705 from jiniljeil/patch-1
Fix typo in content-security-policy-csp-bypass
2023-09-18 18:47:06 +02:00
Peter Potrowl
22c8a0639e
Fix sentence in werkzeug.md
Sentence made no sense
2023-09-17 21:52:17 +02:00
Jinil Kim
4154ac12e0
Fix typo in content-security-policy-csp-bypass
Fix typo from executa to execute
2023-09-17 22:40:55 +09:00
CPol
875709e883
GITBOOK-4082: change request with no subject merged in GitBook 2023-09-13 23:27:12 +00:00
Carlos Polop
a8a58a9f78
Merge pull request #704 from chovanecadam/patch-1
minor fix of automatic commands
2023-09-12 10:47:02 +02:00
CPol
f2d97a41ce
GITBOOK-4078: change request with no subject merged in GitBook 2023-09-11 15:21:29 +00:00
Adam Chovanec
3d67f023f8
minor fix of automatic commands
The -u flag was used twice.
2023-09-11 13:41:59 +02:00
Carlos Polop
85f15789e5
Merge pull request #703 from ScribblerCoder/docker-nginx-proxy
add dockerized version of nginx proxy with ajp
2023-09-11 02:00:52 +02:00
Carlos Polop
be59e80e5b
Merge pull request #702 from Ziemni/master
Update linux-capabilities.md
2023-09-11 02:00:15 +02:00
CPol
c7997fc427
GITBOOK-4075: change request with no subject merged in GitBook 2023-09-10 23:59:38 +00:00
Carlos Polop
51bcb61305
Merge pull request #701 from afaq1337/patch-2
Update code-review-tools.md
2023-09-11 00:53:37 +02:00
Carlos Polop
8a91ee0d81
Merge pull request #700 from afaq1337/patch-1
Update code-review-tools.md
2023-09-11 00:27:19 +02:00
Carlos Polop
31c968b055
Update SUMMARY.md 2023-09-11 00:08:47 +02:00