No description
Find a file
2024-09-06 12:52:03 +00:00
.gitbook/assets Translated ['network-services-pentesting/pentesting-web/php-tricks-esp/R 2024-09-05 18:59:40 +00:00
.github Translated to Swahili 2024-02-11 02:13:58 +00:00
backdoors Translated ['1911-pentesting-fox.md', '6881-udp-pentesting-bittorrent.md 2024-07-18 18:37:42 +00:00
binary-exploitation Translated ['binary-exploitation/libc-heap/double-free.md'] to sw 2024-08-13 18:55:50 +00:00
blockchain/blockchain-and-crypto-currencies Translated ['1911-pentesting-fox.md', '6881-udp-pentesting-bittorrent.md 2024-07-18 18:37:42 +00:00
c2 Translated ['binary-exploitation/basic-stack-binary-exploitation-methodo 2024-07-18 22:14:33 +00:00
crypto-and-stego Translated ['README.md', 'crypto-and-stego/hash-length-extension-attack. 2024-09-04 13:35:19 +00:00
cryptography Translated ['binary-exploitation/basic-stack-binary-exploitation-methodo 2024-07-18 22:14:33 +00:00
exploiting Translated ['binary-exploitation/basic-stack-binary-exploitation-methodo 2024-07-18 22:14:33 +00:00
forensics/basic-forensic-methodology Translated ['README.md', 'crypto-and-stego/hash-length-extension-attack. 2024-09-04 13:35:19 +00:00
generic-methodologies-and-resources Translated ['README.md', 'crypto-and-stego/hash-length-extension-attack. 2024-09-04 13:35:19 +00:00
hardware-physical-access Translated ['README.md', 'crypto-and-stego/hash-length-extension-attack. 2024-09-04 13:35:19 +00:00
linux-hardening Translated ['README.md', 'crypto-and-stego/hash-length-extension-attack. 2024-09-04 13:35:19 +00:00
linux-unix/privilege-escalation Translated ['crypto-and-stego/cryptographic-algorithms/unpacking-binarie 2024-07-19 04:50:00 +00:00
macos-hardening Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-09-06 12:52:03 +00:00
misc Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:19:21 +00:00
mobile-pentesting Translated ['README.md', 'crypto-and-stego/hash-length-extension-attack. 2024-09-04 13:35:19 +00:00
network-services-pentesting Translated ['network-services-pentesting/pentesting-web/php-tricks-esp/R 2024-09-05 18:59:40 +00:00
pentesting-web Translated ['network-services-pentesting/pentesting-web/php-tricks-esp/R 2024-09-05 18:59:40 +00:00
physical-attacks Translated ['README.md', 'crypto-and-stego/hash-length-extension-attack. 2024-09-04 13:35:19 +00:00
radio-hacking Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 16:24:30 +00:00
reversing Translated ['README.md', 'crypto-and-stego/hash-length-extension-attack. 2024-09-04 13:35:19 +00:00
reversing-and-exploiting Translated ['binary-exploitation/basic-stack-binary-exploitation-methodo 2024-07-18 22:14:33 +00:00
stego Translated ['README.md', 'crypto-and-stego/hash-length-extension-attack. 2024-09-04 13:35:19 +00:00
todo Translated ['README.md', 'crypto-and-stego/hash-length-extension-attack. 2024-09-04 13:35:19 +00:00
welcome Translated ['pentesting-web/browser-extension-pentesting-methodology/REA 2024-07-19 16:10:31 +00:00
windows-hardening Translated ['README.md', 'crypto-and-stego/hash-length-extension-attack. 2024-09-04 13:35:19 +00:00
.gitignore Update .gitignore 2023-06-25 15:55:55 +02:00
1911-pentesting-fox.md Translated ['1911-pentesting-fox.md', '6881-udp-pentesting-bittorrent.md 2024-07-18 18:37:42 +00:00
6881-udp-pentesting-bittorrent.md Translated ['1911-pentesting-fox.md', '6881-udp-pentesting-bittorrent.md 2024-07-18 18:37:42 +00:00
android-forensics.md Translated ['1911-pentesting-fox.md', '6881-udp-pentesting-bittorrent.md 2024-07-18 18:37:42 +00:00
burp-suite.md Translated ['1911-pentesting-fox.md', '6881-udp-pentesting-bittorrent.md 2024-07-18 18:37:42 +00:00
emails-vulns.md Translated ['1911-pentesting-fox.md', '6881-udp-pentesting-bittorrent.md 2024-07-18 18:37:42 +00:00
interesting-http.md Translated ['1911-pentesting-fox.md', '6881-udp-pentesting-bittorrent.md 2024-07-18 18:37:42 +00:00
LICENSE.md Translated ['1911-pentesting-fox.md', '6881-udp-pentesting-bittorrent.md 2024-07-18 18:37:42 +00:00
online-platforms-with-api.md Translated ['1911-pentesting-fox.md', '6881-udp-pentesting-bittorrent.md 2024-07-18 18:37:42 +00:00
other-web-tricks.md Translated ['network-services-pentesting/512-pentesting-rexec.md', 'netw 2024-08-04 15:19:02 +00:00
pentesting-dns.md Translated ['1911-pentesting-fox.md', '6881-udp-pentesting-bittorrent.md 2024-07-18 18:37:42 +00:00
post-exploitation.md Translated ['1911-pentesting-fox.md', '6881-udp-pentesting-bittorrent.md 2024-07-18 18:37:42 +00:00
README.md Translated ['README.md', 'crypto-and-stego/hash-length-extension-attack. 2024-09-04 13:35:19 +00:00
stealing-sensitive-information-disclosure-from-a-web.md Translated ['1911-pentesting-fox.md', '6881-udp-pentesting-bittorrent.md 2024-07-18 18:37:42 +00:00
SUMMARY.md Translated ['generic-methodologies-and-resources/pentesting-methodology. 2024-08-31 16:27:47 +00:00

HackTricks

Hacktricks logos & motion design by @ppiernacho.

{% hint style="success" %} Karibu kwenye wiki ambapo utaweza kupata kila hila/mbinu ya udukuzi ambayo nimejifunza kutoka CTFs, programu za maisha halisi, kusoma tafiti, na habari. {% endhint %}

Ili kuanza fuata ukurasa huu ambapo utaweza kupata mchakato wa kawaida ambao unapaswa kufuata unapofanya pentesting kwenye mashine moja au zaidi:

{% content-ref url="generic-methodologies-and-resources/pentesting-methodology.md" %} pentesting-methodology.md {% endcontent-ref %}

Corporate Sponsors

STM Cyber

STM Cyber ni kampuni kubwa ya usalama wa mtandao ambayo kauli mbiu yake ni HACK THE UNHACKABLE. Wanatekeleza tafiti zao wenyewe na kuunda zana zao za udukuzi ili kutoa huduma kadhaa za thamani za usalama wa mtandao kama pentesting, Red teams na mafunzo.

Unaweza kuangalia blogu yao katika https://blog.stmcyber.com

STM Cyber pia inasaidia miradi ya usalama wa mtandao ya chanzo wazi kama HackTricks :)


RootedCON

RootedCON ni tukio muhimu zaidi la usalama wa mtandao nchini Hispania na moja ya muhimu zaidi barani Ulaya. Kwa lengo la kukuza maarifa ya kiufundi, kongamano hili ni mahali pa kukutana kwa wataalamu wa teknolojia na usalama wa mtandao katika kila taaluma.

{% embed url="https://www.rootedcon.com/" %}


Intigriti

Intigriti ni jukwaa la udukuzi wa kimaadili na bug bounty nambari moja barani Ulaya.

Nasaha ya bug bounty: jiandikishe kwa Intigriti, jukwaa la bug bounty la premium lililoundwa na hackers, kwa hackers! Jiunge nasi katika https://go.intigriti.com/hacktricks leo, na anza kupata zawadi hadi $100,000!

{% embed url="https://go.intigriti.com/hacktricks" %}


Trickest


Tumia Trickest kujenga na kujiendesha kwa urahisi kwa kutumia zana za jamii zenye maendeleo zaidi duniani.

Pata Ufikiaji Leo:

{% embed url="https://trickest.com/?utm_campaign=hacktrics&utm_medium=banner&utm_source=hacktricks" %}


HACKENPROOF

Jiunge na HackenProof Discord server ili kuwasiliana na hackers wenye uzoefu na wawindaji wa bug bounty!

  • Maoni ya Udukuzi: Jihusishe na maudhui yanayoangazia msisimko na changamoto za udukuzi
  • Habari za Udukuzi kwa Wakati Halisi: Fuata habari za haraka za ulimwengu wa udukuzi kupitia habari na maoni ya wakati halisi
  • Matangazo ya Karibuni: Kuwa na habari kuhusu bug bounties mpya zinazozinduliwa na masasisho muhimu ya jukwaa

Jiunge nasi kwenye Discord na anza kushirikiana na hackers bora leo!


Mipangilio inayopatikana mara moja kwa ajili ya tathmini ya udhaifu & kupima udukuzi. Fanya pentest kamili kutoka mahali popote na zana na vipengele zaidi ya 20 vinavyotoka kwenye recon hadi ripoti. Hatubadilishi pentesters - tunaunda zana maalum, moduli za kugundua na kutumia ili kuwapa muda wa kuchimba zaidi, kufungua shells, na kufurahia.

{% embed url="https://pentest-tools.com/?utm_term=jul2024&utm_medium=link&utm_source=hacktricks&utm_campaign=spons" %}


WebSec

WebSec ni kampuni ya kitaalamu ya usalama wa mtandao iliyo na makao yake nchini Amsterdam ambayo inasaidia kulinda biashara duniani kote dhidi ya vitisho vya hivi karibuni vya usalama wa mtandao kwa kutoa huduma za usalama wa mashambulizi kwa njia ya kisasa.

WebSec ni kampuni ya usalama ya kila kitu ambayo inamaanisha wanafanya kila kitu; Pentesting, Ukaguzi wa Usalama, Mafunzo ya Uelewa, Kampeni za Phishing, Mapitio ya Kanuni, Maendeleo ya Utekelezaji, Utaalamu wa Usalama wa Kuajiri na mengi zaidi.

Jambo lingine zuri kuhusu WebSec ni kwamba tofauti na wastani wa sekta WebSec ni na uhakika sana katika ujuzi wao, hadi kiwango kwamba wanahakikishia matokeo bora, inasema kwenye tovuti yao "Ikiwa hatuwezi kuikabili, Hupaswi kulipa!". Kwa maelezo zaidi angalia tovuti yao na blogu!

Mbali na hayo WebSec pia ni mshabiki aliyejitolea wa HackTricks.

{% embed url="https://www.youtube.com/watch?v=Zq2JycGDCPM" %}

License & Disclaimer

Angalia katika:

{% content-ref url="welcome/hacktricks-values-and-faq.md" %} hacktricks-values-and-faq.md {% endcontent-ref %}

Github Stats

HackTricks Github Stats

{% hint style="success" %} Jifunze na fanya mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na fanya mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks
{% endhint %}