Once we have found that there is a DNS ports (TCP 53/UDP 53) running on the target then we can use quick command below to test DNS zone transfer vulnerability. Zone Transfer technics dig axfr abc.com @nameserver nslookup> set type=any>… Continue Reading
nmap -sU -p 161 –script=snmp-info.nse x.x.x.x -oN $target-nsmp-enum.nmap snmpenum -t x.x.x.x snmpcheck -t x.x.x.x -c public SMB Public Bruteforce echo public > community.txt; echo private >> community.txt for ip in $(seq 1 254);do echo 192.168.1.$ip;done > ip.txt onesixtyone -c community.txt… Continue Reading
Filter by destination IP and ports$ tcpdump -n “dst host 192.168.1.1 and dst port 23”$ tcpdump -n “dst host 192.168.1.1 and (dst port 23 or dst port 443)”$ tcpdump -n “dst net 192.168.10/24 and dst port 23”$ tcpdump -n “dst… Continue Reading
My notes on how to use tmux! (Prefix) + ? – Tmux Help(Prefix) + z – Zoom terminal(Prefix) + c – Create new windows(Prefix) + 0 – Goto windows #0(Prefix) + 1 – Goto windows #1(Prefix) + s – send… Continue Reading
Quick technics and tools for basic attacking WP websites: WPScan $ wpscan -u http://pentest.local/weblog/ –enumerate t –enumerate u $ wpscan -random-agent -u http://pentest.local –proxy 127.0.0.1:8080 Note : Don’t trust WPScan result, always check against Searchsploit for all plugins vulnerability!! Brute-forcing… Continue Reading