Brute Force SMB Share and get shell Introduce SMB: Short for Server Message Block, SMB is a common network communications method used on Microsoft operating systems allowing those computers to communicate with other SMB computers. Linux and Unix computers can find other computers that respond to SMB requests using Read more…
Security Cheat Sheets for Ethical Hacking Security cheat sheets for Ethical Hacking and Penetration Testing by sniferl4bs. This cheat sheet is especially for penetration testers/CTF participants/security enthusiasts. Download and Extract Command: wget https://github.com/Snifer/security-cheatsheets/archive/master.zip unzip master.zip Contents: aircrack-ng airport burp cewl cidr cookies dig fierce ftp golismero hping http https-ssl-tls hydra john Read more…
BruteSpray Brute-Forcing from Nmap output (Automatically attempts default creds on found services) BruteSpray takes nmap GNMAP output and automatically brute-forces services with default credentials using Medusa. BruteSpray can even find non-standard ports by using the -sV inside Nmap. Usage First do an nmap scan with ‘-oA nmap.gnmap’. Command: python brutespray.py Read more…
Finding open shares is useful to a penetration tester because there may be private files shared, or, if it’s writable, it could be a good place to drop a Trojan or to infect a file that’s already there. Knowing where the share is could make those kinds of tests more Read more…
What is Nmap? Nmap is an abbreviation for Network Mapper – Network in an IT sense of the word. You can consider Nmap as being one of the best-known, and in fact, one of the most useful hacking tools out there. Period. If you are serious about pentesting, ethical hacking Read more…