Browsing Category

Shells

Pass the hash attack with Mimikatz

What is Mimikatz? Mimikatz is an open-source application that allows users to view and save authentication credentials like Kerberos tickets. Benjamin Delpy continues to lead Mimikatz developments, so the toolset works with the current…

Scan for vulnerabilities with Nikto

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6700 potentially dangerous files/programs, checks for outdated versions of over 1250 servers, and…

How to upload a shell in Magento

After getting Magento admin credentials, you will need to upload a shell. You can do that by uploading a Magento package containing the PHP shell. You can download the package from here: https://github.com/lavalamp-/LavaMagentoBD or…

How to upload a shell in WordPress

After getting Wordpress admin credentials, you will need to upload a shell. You can do that by uploading a fake Wordpress plugin containing the PHP shell. Or you can go to the Appearance menu and then went to the Editor. On the top of the…

Spawning a TTY Shell

During penetration testing, for example, if you found a vulnerable web application and were able to get a reverse shell back to your machine. Usually, the shell that you receive is own by the user of the running service such as "www-data"…
SignupSubscribe to our newsletter to get the latest ethical hacking & penetration testing tutorials & resources.

Subscribe to our newsletter to get the latest ethical hacking & penetration testing tutorials & resources.