Offensive security concepts

Introduction
💿Virtualbox network setup
🕵️OSINT
Tools
😨Social Engineering
😈MitM attack
🔌UPnP exploitation
Network Reconnaissance & Attacks
- What is network recon & attacks?
1️⃣Network live host discovery
2️⃣Network port scan/services enumeration
3️⃣Network services vulnerability scanning & exploitation
Vulnerability & exploitation
Misconfigurations
- .DS_Store
Web Application Penetration Testing
Authentication/session management
- OWASP WSTG-SESS-10 ~ JSON Web Token (JWT)
- OWASP WSTG-ATHZ-05 ~ OAuth weaknesses
Webshell
Web API pentesting
Web app pentesting methodology
OWASP
General web knowledge
- URI standard (RFC 3986)
- HTTP headers
🛣️Attacks on routing protocols
- What are attacks on routing protocols?
- BGP hijacking
🏕️To explore
👤Anonymity
Credentials brute-force/cracking
Post-exploitation
- Gaining shell
- Repository
Privilege escalation
- Linux
- Windows
  - Password harvesting
  - Vulnerabilities exploit
    Scheduled tasks
    AlwaysInstallElevated
    Service misconfigurations
    Insecure permissions on service executable
    Unquoted service path
    Insecure service permission
    Abusing privileges
Ⓜ️MITRE ATT&CK
- Introduction
🧰Tools/services
Professional report writing
- Report template
  - Web applicaton pentesting
    OWASP report layout
Tasks on-the-go
- Note taking on-the-go
- Other tips
Practice
- Web Application Pentesting
- Metasploitable 2
Operational Security (OpSec)
- Hardening
Safe document viewer
- PDF
- .docx
Write-ups
AI prompt
- ChatGPT

Powered by GitBook

On this page

Daniel Miessler's SecLists
Fuzzdb
wfuzz
dirb
Metasploit
/usr/share/wordlists in Kali Linux

Tools/services

Wordlists

Previousimpacket Nextcewl

Last updated 6 months ago

Daniel Miessler's SecLists

Fuzzdb

wfuzz

In Kali Linux: /usr/share/wfuzz/wordlist directory

dirb

Kali Linux: /usr/share/dirb/wordlists directory

Metasploit

/usr/share/wordlists in Kali Linux

rockyou.txt
...

🧰

GitHub - danielmiessler/SecLists: SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.GitHub

GitHub - fuzzdb-project/fuzzdb: Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.GitHub

wfuzz/wordlist at master · xmendez/wfuzzGitHub

dirb/wordlists at master · v0re/dirbGitHub

metasploit-framework/data/wordlists at master · rapid7/metasploit-frameworkGitHub