-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathhacktricks.lst
197 lines (197 loc) · 16.7 KB
/
hacktricks.lst
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
https://book.hacktricks.xyz/getting-started-in-hacking Getting Started in Hacking
https://book.hacktricks.xyz/pentesting-methodology Pentesting Methodology
https://book.hacktricks.xyz/external-recon-methodology External Recon Methodology
https://book.hacktricks.xyz/phishing-methodology Phishing Methodology
https://book.hacktricks.xyz/about-the-author About the author
https://book.hacktricks.xyz/exfiltration Exfiltration
https://book.hacktricks.xyz/tunneling-and-port-forwarding Tunneling and Port Forwarding
https://book.hacktricks.xyz/brute-force Brute Force - CheatSheet
https://book.hacktricks.xyz/search-exploits Search Exploits
https://book.hacktricks.xyz/shells/shells Shells (Linux, Windows, MSFVenom)
https://book.hacktricks.xyz/linux-unix/linux-privilege-escalation-checklist Checklist - Linux Privilege Escalation
https://book.hacktricks.xyz/linux-unix/privilege-escalation Linux Privilege Escalation
https://book.hacktricks.xyz/linux-unix/useful-linux-commands Useful Linux Commands
https://book.hacktricks.xyz/linux-unix/linux-environment-variables Linux Environment Variables
https://book.hacktricks.xyz/windows/checklist-windows-privilege-escalation Checklist - Local Windows Privilege Escalation
https://book.hacktricks.xyz/windows/windows-local-privilege-escalation Windows Local Privilege Escalation
https://book.hacktricks.xyz/windows/active-directory-methodology Active Directory Methodology
https://book.hacktricks.xyz/windows/ntlm NTLM
https://book.hacktricks.xyz/windows/stealing-credentials Stealing Credentials
https://book.hacktricks.xyz/windows/authentication-credentials-uac-and-efs Authentication, Credentials, UAC and EFS
https://book.hacktricks.xyz/windows/basic-cmd-for-pentesters Basic CMD for Pentesters
https://book.hacktricks.xyz/windows/basic-powershell-for-pentesters Basic PowerShell for Pentesters
https://book.hacktricks.xyz/windows/av-bypass AV Bypass
https://book.hacktricks.xyz/mobile-apps-pentesting/android-checklist Android APK Checklist
https://book.hacktricks.xyz/mobile-apps-pentesting/android-app-pentesting Android Applications Pentesting
https://book.hacktricks.xyz/pentesting/pentesting-network Pentesting Network
https://book.hacktricks.xyz/pentesting/pentesting-jdwp-java-debug-wire-protocol Pentesting JDWP - Java Debug Wire Protocol
https://book.hacktricks.xyz/pentesting/pentesting-printers Pentesting Printers
https://book.hacktricks.xyz/pentesting/pentesting-sap Pentesting SAP
https://book.hacktricks.xyz/pentesting/pentesting-kubernetes Pentesting Kubernetes
https://book.hacktricks.xyz/pentesting/7-tcp-udp-pentesting-echo 7/tcp/udp - Pentesting Echo
https://book.hacktricks.xyz/pentesting/pentesting-ftp 21 - Pentesting FTP
https://book.hacktricks.xyz/pentesting/pentesting-ssh 22 - Pentesting SSH/SFTP
https://book.hacktricks.xyz/pentesting/pentesting-telnet 23 - Pentesting Telnet
https://book.hacktricks.xyz/pentesting/pentesting-smtp 25,465,587 - Pentesting SMTP/s
https://book.hacktricks.xyz/pentesting/43-pentesting-whois 43 - Pentesting WHOIS
https://book.hacktricks.xyz/pentesting/pentesting-dns 53 - Pentesting DNS
https://book.hacktricks.xyz/pentesting/69-udp-tftp 69/UDP TFTP/Bittorrent-tracker
https://book.hacktricks.xyz/pentesting/pentesting-finger 79 - Pentesting Finger
https://book.hacktricks.xyz/pentesting/pentesting-web 80,443 - Pentesting Web Methodology
https://book.hacktricks.xyz/pentesting/pentesting-kerberos-88 88tcp/udp - Pentesting Kerberos
https://book.hacktricks.xyz/pentesting/pentesting-pop 110,995 - Pentesting POP
https://book.hacktricks.xyz/pentesting/pentesting-rpcbind 111/TCP/UDP - Pentesting Portmapper
https://book.hacktricks.xyz/pentesting/113-pentesting-ident 113 - Pentesting Ident
https://book.hacktricks.xyz/pentesting/pentesting-ntp 123/udp - Pentesting NTP
https://book.hacktricks.xyz/pentesting/135-pentesting-msrpc 135, 593 - Pentesting MSRPC
https://book.hacktricks.xyz/pentesting/137-138-139-pentesting-netbios 137,138,139 - Pentesting NetBios
https://book.hacktricks.xyz/pentesting/pentesting-smb 139,445 - Pentesting SMB
https://book.hacktricks.xyz/pentesting/pentesting-imap 143,993 - Pentesting IMAP
https://book.hacktricks.xyz/pentesting/pentesting-snmp 161,162,10161,10162/udp - Pentesting SNMP
https://book.hacktricks.xyz/pentesting/pentesting-irc 194,6667,6660-7000 - Pentesting IRC
https://book.hacktricks.xyz/pentesting/pentesting-264-check-point-firewall-1 264 - Pentesting Check Point FireWall-1
https://book.hacktricks.xyz/pentesting/pentesting-ldap 389, 636, 3268, 3269 - Pentesting LDAP
https://book.hacktricks.xyz/pentesting/ipsec-ike-vpn-pentesting 500/udp - Pentesting IPsec/IKE VPN
https://book.hacktricks.xyz/pentesting/pentesting-modbus 502 - Pentesting Modbus
https://book.hacktricks.xyz/pentesting/512-pentesting-rexec 512 - Pentesting Rexec
https://book.hacktricks.xyz/pentesting/pentesting-rlogin 513 - Pentesting Rlogin
https://book.hacktricks.xyz/pentesting/pentesting-rsh 514 - Pentesting Rsh
https://book.hacktricks.xyz/pentesting/515-pentesting-line-printer-daemon-lpd 515 - Pentesting Line Printer Daemon (LPD)
https://book.hacktricks.xyz/pentesting/584-pentesting-afp 548 - Pentesting Apple Filing Protocol (AFP)
https://book.hacktricks.xyz/pentesting/554-8554-pentesting-rtsp 554,8554 - Pentesting RTSP
https://book.hacktricks.xyz/pentesting/623-udp-ipmi 623/UDP/TCP - IPMI
https://book.hacktricks.xyz/pentesting/nfs-service-pentesting - 2049 - Pentesting NFS Service
https://book.hacktricks.xyz/pentesting/pentesting-631-internet-printing-protocol-ipp 631 - Internet Printing Protocol(IPP)
https://book.hacktricks.xyz/pentesting/873-pentesting-rsync 873 - Pentesting Rsync
https://book.hacktricks.xyz/pentesting/1026-pentesting-rusersd 1026 - Pentesting Rusersd
https://book.hacktricks.xyz/pentesting/1099-pentesting-java-rmi 1098/1099 - Pentesting Java RMI
https://book.hacktricks.xyz/pentesting/pentesting-mssql-microsoft-sql-server 1433 - Pentesting MSSQL - Microsoft SQL Server
https://book.hacktricks.xyz/pentesting/1521-1522-1529-pentesting-oracle-listener 1521,1522-1529 - Pentesting Oracle TNS Listener
https://book.hacktricks.xyz/pentesting/1723-pentesting-pptp 1723 - Pentesting PPTP
https://book.hacktricks.xyz/pentesting/1883-pentesting-mqtt-mosquitto 1883 - Pentesting MQTT (Mosquitto)
https://book.hacktricks.xyz/pentesting/pentesting-compaq-hp-insight-manager 2301,2381 - Pentesting Compaq/HP Insight Manager
https://book.hacktricks.xyz/pentesting/2375-pentesting-docker 2375, 2376 Pentesting Docker
https://book.hacktricks.xyz/pentesting/3128-pentesting-squid 3128 - Pentesting Squid
https://book.hacktricks.xyz/pentesting/3260-pentesting-iscsi 3260 - Pentesting ISCSI
https://book.hacktricks.xyz/pentesting/3299-pentesting-saprouter 3299 - Pentesting SAPRouter
https://book.hacktricks.xyz/pentesting/pentesting-mysql 3306 - Pentesting Mysql
https://book.hacktricks.xyz/pentesting/pentesting-rdp 3389 - Pentesting RDP
https://book.hacktricks.xyz/pentesting/3632-pentesting-distcc 3632 - Pentesting distcc
https://book.hacktricks.xyz/pentesting/3690-pentesting-subversion-svn-server 3690 - Pentesting Subversion (svn server)
https://book.hacktricks.xyz/pentesting/4369-pentesting-erlang-port-mapper-daemon-epmd 4369 - Pentesting Erlang Port Mapper Daemon (epmd)
https://book.hacktricks.xyz/pentesting/5000-pentesting-docker-registry 5000 - Pentesting Docker Registry
https://book.hacktricks.xyz/pentesting/5353-udp-multicast-dns-mdns 5353/UDP Multicast DNS (mDNS)
https://book.hacktricks.xyz/pentesting/pentesting-postgresql 5432,5433 - Pentesting Postgresql
https://book.hacktricks.xyz/pentesting/5601-pentesting-kibana 5601 - Pentesting Kibana
https://book.hacktricks.xyz/pentesting/5671-5672-pentesting-amqp 5671,5672 - Pentesting AMQP
https://book.hacktricks.xyz/pentesting/pentesting-vnc 5800,5801,5900,5901 - Pentesting VNC
https://book.hacktricks.xyz/pentesting/5984-pentesting-couchdb 5984,6984 - Pentesting CouchDB
https://book.hacktricks.xyz/pentesting/5985-5986-pentesting-winrm 5985,5986 - Pentesting WinRM
https://book.hacktricks.xyz/pentesting/6000-pentesting-x11 6000 - Pentesting X11
https://book.hacktricks.xyz/pentesting/6379-pentesting-redis 6379 - Pentesting Redis
https://book.hacktricks.xyz/pentesting/8009-pentesting-apache-jserv-protocol-ajp 8009 - Pentesting Apache JServ Protocol (AJP)
https://book.hacktricks.xyz/pentesting/8089-splunkd 8089 - Splunkd
https://book.hacktricks.xyz/pentesting/9000-pentesting-fastcgi 9000 - Pentesting FastCGI
https://book.hacktricks.xyz/pentesting/9001-pentesting-hsqldb 9001 - Pentesting HSQLDB
https://book.hacktricks.xyz/pentesting/cassandra 9042/9160 - Pentesting Cassandra
https://book.hacktricks.xyz/pentesting/9100-pjl 9100 - Pentesting Raw Printing (JetDirect, AppSocket, PDL-datastream)
https://book.hacktricks.xyz/pentesting/9200-pentesting-elasticsearch 9200 - Pentesting Elasticsearch
https://book.hacktricks.xyz/pentesting/10000-network-data-management-protocol-ndmp 10000 - Pentesting Network Data Management Protocol (ndmp)
https://book.hacktricks.xyz/pentesting/11211-memcache 11211 - Pentesting Memcache
https://book.hacktricks.xyz/pentesting/15672-pentesting-rabbitmq-management 15672 - Pentesting RabbitMQ Management
https://book.hacktricks.xyz/pentesting/27017-27018-mongodb 27017,27018 - Pentesting MongoDB
https://book.hacktricks.xyz/pentesting/44818-ethernetip 44818/UDP/TCP - Pentesting EthernetIP
https://book.hacktricks.xyz/pentesting/47808-udp-bacnet 47808/udp - Pentesting BACNet
https://book.hacktricks.xyz/pentesting/50030-50060-50070-50075-50090-pentesting-hadoop 50030,50060,50070,50075,50090 - Pentesting Hadoop
https://book.hacktricks.xyz/pentesting-web/2fa-bypass 2FA/OTP Bypass
https://book.hacktricks.xyz/pentesting-web/abusing-hop-by-hop-headers Abusing hop-by-hop headers
https://book.hacktricks.xyz/pentesting-web/bypass-payment-process Bypass Payment Process
https://book.hacktricks.xyz/pentesting-web/captcha-bypass Captcha Bypass
https://book.hacktricks.xyz/pentesting-web/cache-deception Cache Poisoning and Cache Deception
https://book.hacktricks.xyz/pentesting-web/clickjacking Clickjacking
https://book.hacktricks.xyz/pentesting-web/client-side-template-injection-csti Client Side Template Injection (CSTI)
https://book.hacktricks.xyz/pentesting-web/command-injection Command Injection
https://book.hacktricks.xyz/pentesting-web/content-security-policy-csp-bypass Content Security Policy (CSP) Bypass
https://book.hacktricks.xyz/pentesting-web/hacking-with-cookies Cookies Hacking
https://book.hacktricks.xyz/pentesting-web/cors-bypass CORS - Misconfigurations & Bypass
https://book.hacktricks.xyz/pentesting-web/crlf-0d-0a CRLF (%0D%0A) Injection
https://book.hacktricks.xyz/pentesting-web/cross-site-websocket-hijacking-cswsh Cross-site WebSocket hijacking (CSWSH)
https://book.hacktricks.xyz/pentesting-web/csrf-cross-site-request-forgery CSRF (Cross Site Request Forgery)
https://book.hacktricks.xyz/pentesting-web/dangling-markup-html-scriptless-injection Dangling Markup - HTML scriptless injection
https://book.hacktricks.xyz/pentesting-web/deserialization Deserialization
https://book.hacktricks.xyz/pentesting-web/domain-subdomain-takeover Domain/Subdomain takeover
https://book.hacktricks.xyz/pentesting-web/email-header-injection Email Header Injection
https://book.hacktricks.xyz/pentesting-web/file-inclusion File Inclusion/Path traversal
https://book.hacktricks.xyz/pentesting-web/file-upload File Upload
https://book.hacktricks.xyz/pentesting-web/formula-injection Formula Injection
https://book.hacktricks.xyz/pentesting-web/http-request-smuggling HTTP Request Smuggling / HTTP Desync Attack
https://book.hacktricks.xyz/pentesting-web/h2c-smuggling H2C Smuggling
https://book.hacktricks.xyz/pentesting-web/idor IDOR
https://book.hacktricks.xyz/pentesting-web/hacking-jwt-json-web-tokens JWT Vulnerabilities (Json Web Tokens)
https://book.hacktricks.xyz/pentesting-web/nosql-injection NoSQL injection
https://book.hacktricks.xyz/pentesting-web/ldap-injection LDAP Injection
https://book.hacktricks.xyz/pentesting-web/oauth-to-account-takeover OAuth to Account takeover
https://book.hacktricks.xyz/pentesting-web/open-redirect Open Redirect
https://book.hacktricks.xyz/pentesting-web/parameter-pollution Parameter Pollution
https://book.hacktricks.xyz/pentesting-web/postmessage-vulnerabilities PostMessage Vulnerabilities
https://book.hacktricks.xyz/pentesting-web/race-condition Race Condition
https://book.hacktricks.xyz/pentesting-web/rate-limit-bypass Rate Limit Bypass
https://book.hacktricks.xyz/pentesting-web/regular-expression-denial-of-service-redos Regular expression Denial of Service - ReDoS
https://book.hacktricks.xyz/pentesting-web/reset-password Reset/Forgotten Password Bypass
https://book.hacktricks.xyz/pentesting-web/sql-injection SQL Injection
https://book.hacktricks.xyz/pentesting-web/ssrf-server-side-request-forgery SSRF (Server Side Request Forgery)
https://book.hacktricks.xyz/pentesting-web/ssti-server-side-template-injection SSTI (Server Side Template Injection)
https://book.hacktricks.xyz/pentesting-web/reverse-tab-nabbing Reverse Tab Nabbing
https://book.hacktricks.xyz/pentesting-web/unicode-normalization-vulnerability Unicode Normalization vulnerability
https://book.hacktricks.xyz/pentesting-web/web-tool-wfuzz Web Tool - WFuzz
https://book.hacktricks.xyz/pentesting-web/xpath-injection XPATH injection
https://book.hacktricks.xyz/pentesting-web/xslt-server-side-injection-extensible-stylesheet-languaje-transformations XSLT Server Side Injection (Extensible Stylesheet Languaje Transformations)
https://book.hacktricks.xyz/pentesting-web/xxe-xee-xml-external-entity XXE - XEE - XML External Entity
https://book.hacktricks.xyz/pentesting-web/xss-cross-site-scripting XSS (Cross Site Scripting)
https://book.hacktricks.xyz/pentesting-web/xssi-cross-site-script-inclusion XSSI (Cross-Site Script Inclusion)
https://book.hacktricks.xyz/pentesting-web/xs-search XS-Search
https://book.hacktricks.xyz/cloud-security/cloud-security-review Cloud security review
https://book.hacktricks.xyz/cloud-security/aws-security AWS Security
https://book.hacktricks.xyz/forensics/malware-analysis Malware Analysis
https://book.hacktricks.xyz/forensics/memory-dump-analysis Memory dump analysis
https://book.hacktricks.xyz/forensics/pcaps-analysis Pcaps analysis
https://book.hacktricks.xyz/forensics/volatility-examples Volatility - CheatSheet
https://book.hacktricks.xyz/forensics/basic-forensics-esp Basic Forensics (ESP)
https://book.hacktricks.xyz/physical-attacks/physical-attacks Physical Attacks
https://book.hacktricks.xyz/physical-attacks/escaping-from-gui-applications Escaping from KIOSKs
https://book.hacktricks.xyz/reversing/common-api-used-in-malware Common API used in Malware
https://book.hacktricks.xyz/reversing/reversing-tools Reversing Tools
https://book.hacktricks.xyz/reversing/cryptographic-algorithms Cryptographic/Compression Algorithms
https://book.hacktricks.xyz/reversing/word-macros Word Macros
https://book.hacktricks.xyz/exploiting/linux-exploiting-basic-esp Linux Exploiting (Basic) (SPA)
https://book.hacktricks.xyz/exploiting/tools Exploiting Tools
https://book.hacktricks.xyz/exploiting/windows-exploiting-basic-guide-oscp-lvl Windows Exploiting (Basic Guide - OSCP lvl)
https://book.hacktricks.xyz/crypto/certificates Certificates
https://book.hacktricks.xyz/crypto/electronic-code-book-ecb Electronic Code Book (ECB)
https://book.hacktricks.xyz/crypto/cipher-block-chaining-cbc-mac-priv Cipher Block Chaining CBC-MAC
https://book.hacktricks.xyz/crypto/padding-oracle-priv Padding Oracle
https://book.hacktricks.xyz/crypto/rc4-encrypt-and-decrypt RC4 - Encrypt&Decrypt
https://book.hacktricks.xyz/crypto/crypto-ctfs-tricks Crypto CTFs Tricks
https://book.hacktricks.xyz/backdoors/merlin Merlin
https://book.hacktricks.xyz/backdoors/empire Empire
https://book.hacktricks.xyz/backdoors/salseo Salseo
https://book.hacktricks.xyz/backdoors/icmpsh ICMPsh
https://book.hacktricks.xyz/stego/stego-tricks Stego Tricks
https://book.hacktricks.xyz/stego/esoteric-languages Esoteric languages
https://book.hacktricks.xyz/misc/basic-python Basic Python
https://book.hacktricks.xyz/misc/references Other Big References
https://book.hacktricks.xyz/todo/more-tools More Tools
https://book.hacktricks.xyz/todo/misc MISC
https://book.hacktricks.xyz/todo/pentesting-dns Pentesting DNS
https://book.hacktricks.xyz/burp-suite Burp Suite
https://book.hacktricks.xyz/other-web-tricks Other Web Tricks
https://book.hacktricks.xyz/interesting-http Interesting HTTP
https://book.hacktricks.xyz/emails-vulns Emails Vulnerabilities
https://book.hacktricks.xyz/android-forensics Android Forensics
https://book.hacktricks.xyz/tr-069 TR-069
https://book.hacktricks.xyz/6881-udp-pentesting-bittorrent 6881/udp - Pentesting BitTorrent
https://book.hacktricks.xyz/ctf-write-ups CTF Write-ups
https://book.hacktricks.xyz/1911-pentesting-fox 1911 - Pentesting fox
https://book.hacktricks.xyz/online-platforms-with-api Online Platforms with API
https://book.hacktricks.xyz/stealing-sensitive-information-disclosure-from-a-web Stealing Sensitive Information Disclosure from a Web
https://book.hacktricks.xyz/ios-pentesting iOS Pentesting