# Table of contents ## 👾 Welcome! * [HackTricks](README.md) * [HackTricks Values & faq](welcome/hacktricks-values-and-faq.md) * [About the author](welcome/about-the-author.md) * [Getting Started in Hacking](welcome/getting-started-in-hacking.md) ## 🤩 Generic Methodologies & Resources * [Pentesting Methodology](generic-methodologies-and-resources/pentesting-methodology.md) * [External Recon Methodology](generic-methodologies-and-resources/external-recon-methodology/README.md) * [Wide Source Code Search](generic-methodologies-and-resources/external-recon-methodology/wide-source-code-search.md) * [Github Dorks & Leaks](generic-methodologies-and-resources/external-recon-methodology/github-leaked-secrets.md) * [Pentesting Network](generic-methodologies-and-resources/pentesting-network/README.md) * [DHCPv6](generic-methodologies-and-resources/pentesting-network/dhcpv6.md) * [EIGRP Attacks](generic-methodologies-and-resources/pentesting-network/eigrp-attacks.md) * [GLBP & HSRP Attacks](generic-methodologies-and-resources/pentesting-network/glbp-and-hsrp-attacks.md) * [IDS and IPS Evasion](generic-methodologies-and-resources/pentesting-network/ids-evasion.md) * [Lateral VLAN Segmentation Bypass](generic-methodologies-and-resources/pentesting-network/lateral-vlan-segmentation-bypass.md) * [Network Protocols Explained (ESP)](generic-methodologies-and-resources/pentesting-network/network-protocols-explained-esp.md) * [Nmap Summary (ESP)](generic-methodologies-and-resources/pentesting-network/nmap-summary-esp.md) * [Pentesting IPv6](generic-methodologies-and-resources/pentesting-network/pentesting-ipv6.md) * [Spoofing LLMNR, NBT-NS, mDNS/DNS and WPAD and Relay Attacks](generic-methodologies-and-resources/pentesting-network/spoofing-llmnr-nbt-ns-mdns-dns-and-wpad-and-relay-attacks.md) * [Spoofing SSDP and UPnP Devices with EvilSSDP](generic-methodologies-and-resources/pentesting-network/spoofing-ssdp-and-upnp-devices.md) * [Pentesting Wifi](generic-methodologies-and-resources/pentesting-wifi/README.md) * [Evil Twin EAP-TLS](generic-methodologies-and-resources/pentesting-wifi/evil-twin-eap-tls.md) * [Phishing Methodology](generic-methodologies-and-resources/phishing-methodology/README.md) * [Clone a Website](generic-methodologies-and-resources/phishing-methodology/clone-a-website.md) * [Detecting Phishing](generic-methodologies-and-resources/phishing-methodology/detecting-phising.md) * [Phishing Files & Documents](generic-methodologies-and-resources/phishing-methodology/phishing-documents.md) * [Basic Forensic Methodology](forensics/basic-forensic-methodology/README.md) * [Baseline Monitoring](forensics/basic-forensic-methodology/file-integrity-monitoring.md) * [Anti-Forensic Techniques](forensics/basic-forensic-methodology/anti-forensic-techniques.md) * [Docker Forensics](forensics/basic-forensic-methodology/docker-forensics.md) * [Image Acquisition & Mount](generic-methodologies-and-resources/basic-forensic-methodology/image-acquisition-and-mount.md) * [Linux Forensics](forensics/basic-forensic-methodology/linux-forensics.md) * [Malware Analysis](forensics/basic-forensic-methodology/malware-analysis.md) * [Memory dump analysis](forensics/basic-forensic-methodology/memory-dump-analysis/README.md) * [Volatility - CheatSheet](generic-methodologies-and-resources/basic-forensic-methodology/memory-dump-analysis/volatility-cheatsheet.md) * [Partitions/File Systems/Carving](forensics/basic-forensic-methodology/partitions-file-systems-carving/README.md) * [EXT](forensics/basic-forensic-methodology/partitions-file-systems-carving/ext.md) * [File/Data Carving & Recovery Tools](forensics/basic-forensic-methodology/partitions-file-systems-carving/file-data-carving-recovery-tools.md) * [NTFS](forensics/basic-forensic-methodology/partitions-file-systems-carving/ntfs.md) * [Pcap Inspection](forensics/basic-forensic-methodology/pcap-inspection/README.md) * [DNSCat pcap analysis](forensics/basic-forensic-methodology/pcap-inspection/dnscat-exfiltration.md) * [Suricata & Iptables cheatsheet](generic-methodologies-and-resources/basic-forensic-methodology/pcap-inspection/suricata-and-iptables-cheatsheet.md) * [USB Keystrokes](forensics/basic-forensic-methodology/pcap-inspection/usb-keystrokes.md) * [Wifi Pcap Analysis](forensics/basic-forensic-methodology/pcap-inspection/wifi-pcap-analysis.md) * [Wireshark tricks](forensics/basic-forensic-methodology/pcap-inspection/wireshark-tricks.md) * [Specific Software/File-Type Tricks](forensics/basic-forensic-methodology/specific-software-file-type-tricks/README.md) * [Decompile compiled python binaries (exe, elf) - Retreive from .pyc](forensics/basic-forensic-methodology/specific-software-file-type-tricks/.pyc.md) * [Browser Artifacts](forensics/basic-forensic-methodology/specific-software-file-type-tricks/browser-artifacts.md) * [Desofuscation vbs (cscript.exe)](forensics/basic-forensic-methodology/specific-software-file-type-tricks/desofuscation-vbs-cscript.exe.md) * [Local Cloud Storage](forensics/basic-forensic-methodology/specific-software-file-type-tricks/local-cloud-storage.md) * [Office file analysis](forensics/basic-forensic-methodology/specific-software-file-type-tricks/office-file-analysis.md) * [PDF File analysis](forensics/basic-forensic-methodology/specific-software-file-type-tricks/pdf-file-analysis.md) * [PNG tricks](forensics/basic-forensic-methodology/specific-software-file-type-tricks/png-tricks.md) * [Video and Audio file analysis](forensics/basic-forensic-methodology/specific-software-file-type-tricks/video-and-audio-file-analysis.md) * [ZIPs tricks](forensics/basic-forensic-methodology/specific-software-file-type-tricks/zips-tricks.md) * [Windows Artifacts](forensics/basic-forensic-methodology/windows-forensics/README.md) * [Windows Processes](forensics/basic-forensic-methodology/windows-forensics/windows-processes.md) * [Interesting Windows Registry Keys](forensics/basic-forensic-methodology/windows-forensics/interesting-windows-registry-keys.md) * [Brute Force - CheatSheet](generic-methodologies-and-resources/brute-force.md) * [Python Sandbox Escape & Pyscript](generic-methodologies-and-resources/python/README.md) * [Pyscript](generic-methodologies-and-resources/python/pyscript.md) * [Basic Python](generic-methodologies-and-resources/python/basic-python.md) * [Class Pollution (Python's Prototype Pollution)](generic-methodologies-and-resources/python/class-pollution-pythons-prototype-pollution.md) * [venv](generic-methodologies-and-resources/python/venv.md) * [Bypass Python sandboxes](generic-methodologies-and-resources/python/bypass-python-sandboxes/README.md) * [LOAD\_NAME / LOAD\_CONST opcode OOB Read](generic-methodologies-and-resources/python/bypass-python-sandboxes/load\_name-load\_const-opcode-oob-read.md) * [Output Searching Python internals](generic-methodologies-and-resources/python/bypass-python-sandboxes/output-searching-python-internals.md) * [Web Requests](generic-methodologies-and-resources/python/web-requests.md) * [Bruteforce hash (few chars)](generic-methodologies-and-resources/python/bruteforce-hash-few-chars.md) * [Exfiltration](generic-methodologies-and-resources/exfiltration.md) * [Tunneling and Port Forwarding](generic-methodologies-and-resources/tunneling-and-port-forwarding.md) * [Search Exploits](generic-methodologies-and-resources/search-exploits.md) * [Shells (Linux, Windows, MSFVenom)](generic-methodologies-and-resources/shells/README.md) * [MSFVenom - CheatSheet](generic-methodologies-and-resources/shells/msfvenom.md) * [Shells - Windows](generic-methodologies-and-resources/shells/windows.md) * [Shells - Linux](generic-methodologies-and-resources/shells/linux.md) * [Full TTYs](generic-methodologies-and-resources/shells/full-ttys.md) ## 🐧 Linux Hardening * [Checklist - Linux Privilege Escalation](linux-hardening/linux-privilege-escalation-checklist.md) * [Linux Privilege Escalation](linux-hardening/privilege-escalation/README.md) * [Cisco - vmanage](linux-hardening/privilege-escalation/cisco-vmanage.md) * [Containerd (ctr) Privilege Escalation](linux-hardening/privilege-escalation/containerd-ctr-privilege-escalation.md) * [Docker Security](linux-hardening/privilege-escalation/docker-security/README.md) * [Abusing Docker Socket for Privilege Escalation](linux-hardening/privilege-escalation/docker-security/abusing-docker-socket-for-privilege-escalation.md) * [AppArmor](linux-hardening/privilege-escalation/docker-security/apparmor.md) * [AuthZ& AuthN - Docker Access Authorization Plugin](linux-hardening/privilege-escalation/docker-security/authz-and-authn-docker-access-authorization-plugin.md) * [CGroups](linux-hardening/privilege-escalation/docker-security/cgroups.md) * [Docker --privileged](linux-hardening/privilege-escalation/docker-security/docker-privileged.md) * [Docker Breakout / Privilege Escalation](linux-hardening/privilege-escalation/docker-security/docker-breakout-privilege-escalation/README.md) * [release\_agent exploit - Relative Paths to PIDs](linux-hardening/privilege-escalation/docker-security/docker-breakout-privilege-escalation/release\_agent-exploit-relative-paths-to-pids.md) * [Docker release\_agent cgroups escape](linux-hardening/privilege-escalation/docker-security/docker-breakout-privilege-escalation/docker-release\_agent-cgroups-escape.md) * [Sensitive Mounts](linux-hardening/privilege-escalation/docker-security/docker-breakout-privilege-escalation/sensitive-mounts.md) * [Namespaces](linux-hardening/privilege-escalation/docker-security/namespaces/README.md) * [CGroup Namespace](linux-hardening/privilege-escalation/docker-security/namespaces/cgroup-namespace.md) * [IPC Namespace](linux-hardening/privilege-escalation/docker-security/namespaces/ipc-namespace.md) * [PID Namespace](linux-hardening/privilege-escalation/docker-security/namespaces/pid-namespace.md) * [Mount Namespace](linux-hardening/privilege-escalation/docker-security/namespaces/mount-namespace.md) * [Network Namespace](linux-hardening/privilege-escalation/docker-security/namespaces/network-namespace.md) * [Time Namespace](linux-hardening/privilege-escalation/docker-security/namespaces/time-namespace.md) * [User Namespace](linux-hardening/privilege-escalation/docker-security/namespaces/user-namespace.md) * [UTS Namespace](linux-hardening/privilege-escalation/docker-security/namespaces/uts-namespace.md) * [Seccomp](linux-hardening/privilege-escalation/docker-security/seccomp.md) * [Weaponizing Distroless](linux-hardening/privilege-escalation/docker-security/weaponizing-distroless.md) * [Escaping from Jails](linux-hardening/privilege-escalation/escaping-from-limited-bash.md) * [euid, ruid, suid](linux-hardening/privilege-escalation/euid-ruid-suid.md) * [Logstash](linux-hardening/privilege-escalation/logstash.md) * [Node inspector/CEF debug abuse](linux-hardening/privilege-escalation/electron-cef-chromium-debugger-abuse.md) * [D-Bus Enumeration & Command Injection Privilege Escalation](linux-hardening/privilege-escalation/d-bus-enumeration-and-command-injection-privilege-escalation.md) * [Interesting Groups - Linux Privesc](linux-hardening/privilege-escalation/interesting-groups-linux-pe/README.md) * [lxd/lxc Group - Privilege escalation](linux-hardening/privilege-escalation/interesting-groups-linux-pe/lxd-privilege-escalation.md) * [ld.so privesc exploit example](linux-hardening/privilege-escalation/ld.so.conf-example.md) * [Linux Active Directory](linux-hardening/privilege-escalation/linux-active-directory.md) * [Linux Capabilities](linux-hardening/privilege-escalation/linux-capabilities.md) * [NFS no\_root\_squash/no\_all\_squash misconfiguration PE](linux-hardening/privilege-escalation/nfs-no\_root\_squash-misconfiguration-pe.md) * [Payloads to execute](linux-hardening/privilege-escalation/payloads-to-execute.md) * [RunC Privilege Escalation](linux-hardening/privilege-escalation/runc-privilege-escalation.md) * [SELinux](linux-hardening/privilege-escalation/selinux.md) * [Socket Command Injection](linux-hardening/privilege-escalation/socket-command-injection.md) * [Splunk LPE and Persistence](linux-hardening/privilege-escalation/splunk-lpe-and-persistence.md) * [SSH Forward Agent exploitation](linux-hardening/privilege-escalation/ssh-forward-agent-exploitation.md) * [Wildcards Spare tricks](linux-hardening/privilege-escalation/wildcards-spare-tricks.md) * [Arbitrary File Write to Root](linux-hardening/privilege-escalation/write-to-root.md) * [Useful Linux Commands](linux-hardening/useful-linux-commands/README.md) * [Bypass Linux Shell Restrictions](linux-hardening/useful-linux-commands/bypass-bash-restrictions.md) * [DDexec](linux-hardening/bypass-linux-shell-restrictions/ddexec.md) * [Linux Environment Variables](linux-hardening/linux-environment-variables.md) * [Linux Post-Exploitation](linux-hardening/linux-post-exploitation/README.md) * [PAM - Pluggable Authentication Modules](linux-hardening/linux-post-exploitation/pam-pluggable-authentication-modules.md) * [FreeIPA Pentesting](linux-hardening/freeipa-pentesting.md)