-
Keypoints: ldap
- `ldapsearch -H ldap://192.168.241.122 -x -s base namingcontexts`
- `ldapsearch -x -H ldap://192.168.241.122 -D '' -w '' -b "DC=hutch,DC=offsec"` --> find info about password set…
-
Keypoints:
- [ntlm_theft](https://github.com/Greenwolf/ntlm_theft/tree/master):
A tool for generating multiple types of NTLMv2 hash theft files.
- [PE]SeRestorePrivilege
-
Keypoinst:
- SSRF ( Use `sudo responder -I tun0 -wv`)
- Use bloodhound to analyze
- GMSAPasswordReader.exe : https://github.com/expl0itabl3/Toolies
- [PE]SeRestorePrivilege (https://book.hacktric…
-
![Screenshot_2023-12-26-12-39-50-665_com offsec nhterm](https://github.com/jaygreig86/dmitry/assets/108648096/868ad433-8d81-479d-9ebf-e69a80cd6136)
My mobile internet is fine but I don't understa…
-
I am seeing this when scans complete. It appears when reports are being generated. Has anyone seen this?
![markdown_plugin](https://github.com/Tib3rius/AutoRecon/assets/27533789/b9c1b96f-6346-49ec-…
-
Key points:
- searchsploit Subrion 4.2
- [PE] ExifTool 12.23 - Arbitrary Code Execution (https://www.exploit-db.com/exploits/50911) --> made a reverse shell image file `python3 50911.py -s 192.168.…
-
## Summary
[ChromeKatz](https://github.com/Meckazin/ChromeKatz) is ~Mimikatz for Chrome engine browsers.
### Motivation
Cookies are delicious and in the case of offsec work incredibly nut…
-
The community has rated it ‘Very Hard’.
Keypoints:
- For apache server, we can upload .htaccess file to define our file extention ` echo "AddType application/x-httpd-php .xxx" > .htaccess`
- Ge…
-
Keypoints:
- Some windows OS doesn't support wget, powershell
- Some windows OS in the target host is 32bit --> so nc64.exe doesn't work
- upload revere shell file to FTP
- [PE] windows server 200…
-
1. Censys
2. NS lookup
3. Port scan
4. Detect CMS
5. Whois lookup
6. Detect honeypot
7. Find subdomains
8. Reverse IP lookup
9. Detect technologies
0. All
>> 7
domain>> facebook
```
Tr…