Knowledge Base for Penetration Testing
Prereq – Have a local Kali instance running and Metasploitable2 for a target. https://hack.technoherder.com/vm-setup-kali-metasploitable2/ Part 1 – Setup Launch both Kali Linux and the Metasploitable2 VM and ensure that they are on the same isolated network. Chech which version of nmap you have installed. The nmap commands have evolved slightly over time. It’s important to […]
Part 1 – Autonomous Systems (AS) Many organizations, such as University of the Pacific, have configured their networks as Autonomous Systems (AS), providing them the ability to use multiple internet service providers and route traffic between them as desired. References: There are many online tools that allow you to look up Autonomous System information for […]
Part 1 – Infrastructure Setup Follow the Virtual Machine setup instructions to download and install Kali and Metasploitable2 as virtual machines. Deliverables: Part 2 – Network Scanning First, from the terminal of your running Metasploitable2 VM, find its IP address. Reference: Linux IP command examples Second, from the terminal of your Kali VM, use […]
Hydra is a fast password cracker used to brute-force and gain access to network services like SSH & FTP. Hydra is a brute-forcing tool that helps us to crack passwords of network services. Hydra can perform rapid dictionary attacks against more than 50 protocols. This includes telnet, FTP, HTTP, HTTPS, SMB, databases, and several other […]
John the Ripper is a password-cracking tool that can crack hundreds of hashes, ciphers, and even password-protected files. If you are a pen-tester, cracking passwords is something you will be doing on a daily basis. This can include login passwords, file passwords, and almost anything that is protected using a password. John the Ripper (JtR) […]
The docker-compose.yml has ‘command’ property that shows how to start the app ( could be function called in package.json ). The default port for debugging is 9229 and will be in the docker-compose.yml file or append -p 9229:9229 to the docker-run command, example: Docker Commands Shut down the API gateway and all containers Start the […]
Notes https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS Same Origin Policy prevents one origin from accessing resources on a different origin, this includes JavaScript & HTTP Requests. Requests made by http://a.com/latest URL Result Reason https://a.com/myInfo Allowed Same Origin **http:**//a.com/users.json Blocked Different Schema and Port https://**api**.a.com/info Blocked Different Domain https://a.com**:8443**/file Blocked Different port https://**b**.com/analytics Blocked Different Domain Please note images and iframes […]
XFreeRDP Samba Server 1 – Create the folder that will be shared 2 – Use the Impacket tool DONE – from target they can now hit the attacker’s shared directory, for example in Windows Explorer SMTPD Start a SMPTD server to listen for incoming SMTP connections and use the DebuggingServer flag to discard the messages […]
Visual Studio Code is a free IDE that is great for debugging, compiling, and building .NET Framework applications. https://code.visualstudio.com/ Let’s use a simple C# program to demonstrate a very basic workflow for decompiling .NET executables. First, let’s use Notepad++ to create a text file on the Windows virtual machine Desktop with the following code: We […]
by 
