Mirrors/hacktricks

Fork 0

mirror of https://github.com/carlospolop/hacktricks synced 2024-11-24 13:43:24 +00:00

Translator workflow c928d8e52e Translated to Portuguese

2023-06-06 18:56:34 +00:00

11 KiB

Raw Blame History

☁️ HackTricks Cloud ☁️ -🐦 Twitter 🐦 - 🎙️ Twitch 🎙️ - 🎥 Youtube 🎥

Você trabalha em uma empresa de segurança cibernética? Você quer ver sua empresa anunciada no HackTricks? ou você quer ter acesso à última versão do PEASS ou baixar o HackTricks em PDF? Confira os PLANOS DE ASSINATURA!
Descubra A Família PEASS, nossa coleção exclusiva de NFTs
Adquira o swag oficial do PEASS & HackTricks
Junte-se ao 💬 grupo do Discord ou ao grupo do telegram ou siga-me no Twitter 🐦@carlospolopm.
Compartilhe suas técnicas de hacking enviando PRs para o repositório hacktricks e hacktricks-cloud repo.

BlueTeam

OSINT

https://github.com/3vangel1st/kamerka
https://github.com/BullsEye0/google_dork_list
https://github.com/highmeh/lure
https://www.shodan.io/
https://censys.io/
https://viz.greynoise.io/table
https://www.zoomeye.org
https://fofa.so
https://www.onyphe.io
https://app.binaryedge.io
https://hunter.io
https://wigle.net
https://ghostproject.fr
https://www.oshadan.com/
https://builtwith.com/
https://www.spiderfoot.net/
https://github.com/zricethezav/gitleaks
https://www.nmmapper.com/sys/tools/subdomainfinder/ : 8 ferramentas de descoberta de subdomínios, sublist3r, amass e mais

WEB

https://github.com/AlisamTechnology/ATSCAN
https://github.com/momenbasel/KeyFinder
https://github.com/hahwul/XSpear
https://github.com/BitTheByte/Monitorizer/
https://github.com/spinkham/skipfish
https://github.com/blark/aiodnsbrute : Força bruta de nomes de domínio de forma assíncrona
https://crt.sh/?q=%.yahoo.com : Força bruta de subdomínios
https://github.com/tomnomnom/httprobe: Verifique se os servidores web em um domínio são acessíveis
https://github.com/aboul3la/Sublist3r : Descoberta de subdomínios
https://github.com/gwen001/github-search/blob/master/github-subdomains.py : Descoberta de subdomínios no github
https://github.com/robertdavidgraham/masscan : Escaneamento rápido de portas
https://github.com/Threezh1/JSFinder : Subdomínios e URLs de arquivos JS em um site
https://github.com/C1h2e1/MyFuzzingDict : Dicionário de arquivos web
https://github.com/TypeError/Bookmarks/blob/master/README.md : Extensão do Burp para evitar dezenas de abas repetidas
https://github.com/hakluke/hakrawler : Obtenha ativos
https://github.com/izo30/google-dorker : Google dorks
https://github.com/sehno/Bug-bounty/blob/master/bugbounty_checklist.md : Lista de verificação de BugBounty web
https://github.com/Naategh/dom-red : Verifique uma lista de domínios contra Redirecionamento Aberto
https://github.com/prodigysml/Dr.-Watson : Plugin do Burp, análise offline para descobrir domínios, subdomínios e IPs
https://github.com/hahwul/WebHackersWeapons: Lista de diferentes ferramentas
https://github.com/gauravnarwani97/Trishul : Pluging do BurpSuite para encontrar vulnerabilidades (SQLi, XSS, SSTI)
https://github.com/fransr/postMessage-tracker : Extensão do Chrome para rastrear funções de post-messages
[https://github.com
https://github.com/Mr-Un1k0d3r/PoisonHandler : Movimentos laterais
https://freddiebarrsmith.com/trix/trix.html : LOL bins
https://gist.github.com/netbiosX/ee35fcd3722e401a38136cff7b751d79 (https://pentestlab.blog/2020/01/13/persistence-image-file-execution-options-injection/): Persistência
https://github.com/odzhan/injection : Técnicas de injeção de processo do Windows
https://github.com/BankSecurity/Red_Team : Scripts da equipe Red
https://github.com/l0ss/Grouper2 : encontre configurações incorretas relacionadas à segurança na Política de Grupo do Active Directory.
https://www.wietzebeukema.nl/blog/powershell-obfuscation-using-securestring : Obfuscação de Securestring
https://pentestlab.blog/2020/02/24/parent-pid-spoofing/ : Falsificação de PID pai
https://github.com/the-xentropy/xencrypt : Criptografe payloads do Powershell
https://shells.systems/introducing-ninja-c2-the-c2-built-for-stealth-red-team-operations/ : C2 furtivo
https://windows-internals.com/faxing-your-way-to-system/ : Série de logs sobre Windows Internals
https://bestestredteam.com/2018/10/02/tracking-pixel-in-microsoft-office-document/ : Rastreie quem abriu um documento
https://github.com/Integration-IT/Active-Directory-Exploitation-Cheat-Sheet : Cheat Sheet do Active Directory

Firmware

Ferramentas que podem ser úteis para analisar firmwares (automáticas):

Pós-creme:

Como extrair firmware se não encontrá-lo online: https://www.youtube.com/watch?v=Kxvpbu9STU4

Aqui está um firmware com vulnerabilidades para analisar: https://github.com/scriptingxss/IoTGoat

e aqui está a metodologia owasp para analisar firmware: https://github.com/scriptingxss/owasp-fstm

Emulação de firmware: FIRMADYNE (https://github.com/firmadyne/firmadyne/) é uma plataforma para automatizar a emulação e análise dinâmica de firmware baseado em Linux.

OUTROS

https://twitter.com/HackAndDo/status/1202695084543791117
https://github.com/weev3/LKWA
https://h0mbre.github.io/Learn-C-By-Creating-A-Rootkit/
https://github.com/skelsec/jackdaw
https://github.com/CoatiSoftware/Sourcetrail : Análise estática de código
https://www.hackerdecabecera.com/2019/12/blectf-capture-flag-en-formato-hardware.html : Bluetooth LE CTF
https://github.com/skeeto/endlessh : SSH tarpit que envia lentamente um banner interminável.
Ferramentas AWS e Cloud: https://github.com/toniblyx/my-arsenal-of-aws-security-tools
IFS (Sistema de Arquivos Interplanetário) para phising: https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/using-the-interplanetary-file-system-for-offensive-operations/
Serviços de rotação de IP: https://medium.com/@lokeshdlk77/how-to-rotate-ip-address-in-brute-force-attack-e66407259212
Rootkit do Linux: https://github.com/aesophor/satanic-rootkit
https://theia-ide.org/ : IDE online
[https://github.com/nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters/](https://github.com/nahamsec/Resources-for-Begin

11 KiB Raw Blame History

BlueTeam

OSINT

WEB

Firmware

OUTROS

11 KiB

Raw Blame History