Offensive security concepts

Introduction
💿Virtualbox network setup
🕵️OSINT
Tools
😨Social Engineering
😈MitM attack
🔌UPnP exploitation
🪚Network hacking
- What is network hacking?
1️⃣Network live host discovery
2️⃣Network port scan/services enumeration
3️⃣Network services vulnerability scanning & exploitation
Vulnerability & exploitation
Misconfigurations
- .DS_Store
Web Hacking
OWASP Top 10
General web knowledge
- URI standard (RFC 3986)
- HTTP headers
Webshell
Web API pentesting
Web app pentesting methodology
🛣️Attacks on routing protocols
- What are attacks on routing protocols?
- BGP hijacking
🏕️To explore
👤Anonymity
Credentials brute-force/cracking
Post-exploitation
- Gaining shell
- Repository
Privilege escalation
- Linux
- Windows
  - Password harvesting
  - Vulnerabilities exploit
    Scheduled tasks
    AlwaysInstallElevated
    Service misconfigurations
    Insecure permissions on service executable
    Unquoted service path
    Insecure service permission
    Abusing privileges
Ⓜ️MITRE ATT&CK
- Introduction
🧰Tools/services
Professional report writing
- OSCP
  - Report layout
  - Note taking on-the-go
Practice
- Metasploitable 2
- ...
Write-ups
AI prompt
- ChatGPT

Powered by GitBook

On this page

3️⃣Network services vulnerability scanning & exploitation

143 ~ IMAP

Internet Message Access Protocol (IMAP).

Previous139/445 ~ SMB Next3389 ~ RDP