A netcat reverse shell is pretty useless and can be easily broken by simple mistakes. These shells are very unstable by default. Pressing Ctrl + C kills the whole thing. They are non-interactive, and often have strange formatting errors. This is due to netcat “shells” really being processes running inside a terminal, rather than being bonafide terminals … Read more
Web application scanning using WMAP WMAP is a feature-rich web application vulnerability scanner that was originally created from a tool named SQLMap. This tool is integrated with Metasploit in the form of a plugin. It allows us to conduct web application scanning from within the Metasploit Framework. Share IT!
SMB(Server Message Block) Versions Before diving into the various methods using to collect information from SMB, it is important to understand the iterations SMB went through over the years and why some of them are known to be highly insecure: SMB1 was the first implementation of SMB. It used 16-bit packet and small data buffers, … Read more
Nmap Which systems are up? What services are running on these systems? Scan Types: ARP scan: This scan uses ARP requests to discover live hosts ICMP scan: This scan uses ICMP requests to identify live hosts TCP/UDP ping scan: This scan sends packets to TCP ports and UDP ports to determine live hosts. ARP from … Read more
The goal is to get root and capture the secret GoldenEye codes – flag.txt. This Vulnerable VM can be downloaded using the below link. GoldenEye: 1 ~ VulnHub Enumeration Nmap scan sudo nmap -p- -sV -A 172.16.1.105 Target URL: http://172.16.1.105 http://172.16.1.105/sev-home View Source of http://172.16.1.105 Explore further the terminal.js script Info Gathered: Decode HTML Login … Read more
