No description
Find a file
2024-03-14 22:41:27 +00:00
.gitbook/assets Translated ['pentesting-web/formula-csv-doc-latex-ghostscript-injection. 2024-03-14 22:41:27 +00:00
.github Translated to Swahili 2024-02-11 02:13:58 +00:00
backdoors Translated to Swahili 2024-02-11 02:13:58 +00:00
blockchain/blockchain-and-crypto-currencies Translated to Swahili 2024-02-11 02:13:58 +00:00
c2 Translated to Swahili 2024-02-11 02:13:58 +00:00
cryptography Translated to Swahili 2024-02-11 02:13:58 +00:00
exploiting Translated to Swahili 2024-02-11 02:13:58 +00:00
forensics/basic-forensic-methodology Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-09 13:19:32 +00:00
generic-methodologies-and-resources Translated ['generic-methodologies-and-resources/shells/linux.md'] to sw 2024-03-10 13:33:57 +00:00
linux-hardening Translated ['generic-methodologies-and-resources/external-recon-methodol 2024-02-23 16:48:14 +00:00
linux-unix/privilege-escalation Translated to Swahili 2024-02-11 02:13:58 +00:00
macos-hardening Translated ['macos-hardening/macos-useful-commands.md'] to sw 2024-03-11 14:47:44 +00:00
misc Translated to Swahili 2024-02-11 02:13:58 +00:00
mobile-pentesting Translated ['generic-methodologies-and-resources/exfiltration.md', 'gene 2024-03-09 13:36:24 +00:00
network-services-pentesting Translated ['network-services-pentesting/3632-pentesting-distcc.md'] to 2024-03-11 14:44:40 +00:00
pentesting-web Translated ['pentesting-web/formula-csv-doc-latex-ghostscript-injection. 2024-03-14 22:41:27 +00:00
physical-attacks Translated to Swahili 2024-02-11 02:13:58 +00:00
radio-hacking Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-09 13:19:32 +00:00
reversing Translated ['pentesting-web/captcha-bypass.md', 'pentesting-web/client-s 2024-03-10 13:32:05 +00:00
reversing-and-exploiting/linux-exploiting-basic-esp Translated to Swahili 2024-02-11 02:13:58 +00:00
stego Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-09 13:19:32 +00:00
todo Translated ['todo/hardware-hacking/spi.md'] to sw 2024-03-11 14:46:11 +00:00
welcome Translated to Swahili 2024-02-11 02:13:58 +00:00
windows-hardening Translated ['generic-methodologies-and-resources/exfiltration.md', 'gene 2024-03-09 13:36:24 +00:00
.gitignore Update .gitignore 2023-06-25 15:55:55 +02:00
1911-pentesting-fox.md Translated to Swahili 2024-02-11 02:13:58 +00:00
6881-udp-pentesting-bittorrent.md Translated to Swahili 2024-02-11 02:13:58 +00:00
android-forensics.md Translated to Swahili 2024-02-11 02:13:58 +00:00
burp-suite.md Translated to Swahili 2024-02-11 02:13:58 +00:00
emails-vulns.md Translated to Swahili 2024-02-11 02:13:58 +00:00
interesting-http.md Translated to Swahili 2024-02-11 02:13:58 +00:00
LICENSE.md Translated to Swahili 2024-02-11 02:13:58 +00:00
online-platforms-with-api.md Translated to Swahili 2024-02-11 02:13:58 +00:00
other-web-tricks.md Translated to Swahili 2024-02-11 02:13:58 +00:00
pentesting-dns.md Translated to Swahili 2024-02-11 02:13:58 +00:00
post-exploitation.md Translated to Swahili 2024-02-11 02:13:58 +00:00
README.md Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-09 13:19:32 +00:00
stealing-sensitive-information-disclosure-from-a-web.md Translated to Swahili 2024-02-11 02:13:58 +00:00
SUMMARY.md Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-02-23 16:49:53 +00:00

Mbinu za Kudukua

Majina na muundo wa Hacktricks umetengenezwa na @ppiernacho.

{% hint style="success" %} Karibu kwenye wiki ambapo utapata kila mbinu ya kudukua/kiufundi/chochote nilichojifunza kutoka kwenye CTFs, programu za maisha halisi, kusoma utafiti, na habari. {% endhint %}

Ili kuanza fuata ukurasa huu ambapo utapata mtiririko wa kawaida ambao unapaswa kufuata wakati wa kupima usalama wa moja au zaidi mashine:

{% content-ref url="generic-methodologies-and-resources/pentesting-methodology.md" %} pentesting-methodology.md {% endcontent-ref %}

Wadhamini wa Platinum

Kampuni yako inaweza kuwa hapa.

Wadhamini wa Kampuni

STM Cyber

STM Cyber ni kampuni kubwa ya usalama wa mtandao ambayo kauli yao mbiu ni KUDUKUA LISILOWEZEKANA. Wanafanya utafiti wao wenyewe na kutengeneza zana zao za kudukua ili kutoa huduma muhimu za usalama wa mtandao kama kupima usalama, Timu Nyekundu na mafunzo.

Unaweza kuangalia blogi yao kwenye https://blog.stmcyber.com

STM Cyber pia inasaidia miradi ya chanzo wazi ya usalama wa mtandao kama HackTricks :)

RootedCON

RootedCON ni tukio muhimu zaidi la usalama wa mtandao nchini Hispania na moja ya muhimu zaidi barani Ulaya. Kwa ** lengo la kukuza maarifa ya kiufundi**, kongamano hili ni mahali pa kukutana kwa wataalamu wa teknolojia na usalama wa mtandao katika kila nidhamu.

{% embed url="https://www.rootedcon.com/" %}

Intigriti

Intigriti ni jukwaa la kwanza la kudukua kimaadili barani Ulaya na bug bounty.

Mbinu ya bug bounty: jiandikishe kwa Intigriti, jukwaa la bug bounty la malipo ya juu lililoundwa na wadukuzi, kwa wadukuzi! Jiunge nasi kwenye https://go.intigriti.com/hacktricks leo, na anza kupata zawadi hadi $100,000!

{% embed url="https://go.intigriti.com/hacktricks" %}

Trickest


Tumia Trickest kujenga na kutumia mifumo ya kazi kwa kutumia zana za jamii za juu zaidi duniani.

Pata Ufikiaji Leo:

{% embed url="https://trickest.com/?utm_campaign=hacktrics&utm_medium=banner&utm_source=hacktricks" %}

HACKENPROOF

Jiunge na seva ya HackenProof Discord kuwasiliana na wadukuzi wenye uzoefu na wawindaji wa bug bounty!

Machapisho ya Kudukua
Shiriki na yaliyomo yanayochimba kina katika msisimko na changamoto za kudukua

Habari za Kudukua za Wakati Halisi
Kaa sasa na ulimwengu wa kudukua unaobadilika haraka kupitia habari na ufahamu wa wakati halisi

Matangazo Mapya
Baki mwelekezwa na bug bounty mpya zinazoanzishwa na sasisho muhimu za jukwaa

Jiunge nasi kwenye Discord na anza kushirikiana na wadukuzi bora leo!


Pentest-Tools.com - Jumuishi ya zana za upimaji wa kuingilia

Usanidi wa papo hapo wa upimaji wa udhaifu & upimaji wa kuingilia. Tekeleza upimaji kamili kutoka mahali popote na zana na vipengele zaidi ya 20 vinavyoenda kutoka uchunguzi hadi ripoti. Hatuchukui nafasi ya wapimaji wa kuingilia - tunatengeneza zana za desturi, ugunduzi & moduli za kutumia ili kuwarudishia muda wa kuchimba kina, kuvunja ganda, na kufurahi.

{% embed url="https://pentest-tools.com/" %}

WebSec

WebSec ni kampuni ya usalama wa mtandao ya kitaalamu iliyoanzishwa huko Amsterdam ambayo husaidia kulinda biashara kote ulimwenguni dhidi ya vitisho vipya vya usalama wa mtandao kwa kutoa huduma za usalama wa kushambulia kwa njia ya kisasa.

WebSec ni kampuni ya usalama ya kila kitu mmoja ambayo inamaanisha wanafanya yote; Kudukua, Ukaguzi wa Usalama, Mafunzo ya Uelewa, Kampeni za Udukuzi, Ukaguzi wa Kanuni, Maendeleo ya Udukuzi, Kutoa Wataalam wa Usalama na mengi zaidi.

Jambo lingine zuri kuhusu WebSec ni kwamba tofauti na wastani wa tasnia WebSec ni imara sana katika ujuzi wao, kwa kiwango ambacho wanahakikisha matokeo bora zaidi, inasemwa kwenye tovuti yao "Ikiwa hatuwezi kudukua, Hulipi!". Kwa habari zaidi angalia tovuti yao na blogi!

Mbali na hayo WebSec pia ni msaidizi aliyejitolea wa HackTricks.

{% embed url="https://www.youtube.com/watch?v=Zq2JycGDCPM" %}

Leseni & Taarifa ya Kisheria

Ziangalie:

{% content-ref url="welcome/hacktricks-values-and-faq.md" %} hacktricks-values-and-faq.md {% endcontent-ref %}

Jifunze kudukua AWS kutoka sifuri hadi shujaa na htARTE (HackTricks AWS Red Team Expert)!

Njia nyingine za kusaidia HackTricks: