Sign in
Sign in
Recover your password.
A password will be e-mailed to you.
Browsing Category
Shells
Pass the hash attack with Mimikatz
What is Mimikatz?
Mimikatz is an open-source application that allows users to view and save authentication credentials like Kerberos tickets. Benjamin Delpy continues to lead Mimikatz developments, so the toolset works with the current…
Scan for vulnerabilities with Nikto
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6700 potentially dangerous files/programs, checks for outdated versions of over 1250 servers, and…
Using crackmapexec to do a credential spraying attack
CrackMapExec (a.k.a CME) is a post-exploitation tool that helps automate assessing the security of large Active Directory networks. Using we can brute force credential for active directory protocols. All protocols support brute-forcing and…
How To Upload A Shell In OpenAdmin V18.1.1 (Authenticated)
OpenNetAdmin is an IPAM (IP Address Management) application that allows you to keep track of network attributes like DNS names, IP addresses, Subnets, and MAC addresses.
How To Upload A Shell In pfsense 2.1.3 (Authenticated)
pfSense is a free and open source firewall and router with centralized threat control, load balancing, multi-WAN, and other functions.
How to upload a shell in HelpdeskZ v1.0.2
HelpDeskZ is a free PHP-based program that lets you control your site's support via a web-based ticketing system.
How to upload a shell in Nibbleblog 4.0.3
First, Activate My image plugin by visiting
http://localhost/nibbleblog/admin.php?controller=plugins&action=install&plugin=my_image
Second, upload your PHP shell and ignore the warnings:
Go to the following link.…
How to upload a shell in Magento
After getting Magento admin credentials, you will need to upload a shell. You can do that by uploading a Magento package containing the PHP shell.
You can download the package from here:
https://github.com/lavalamp-/LavaMagentoBD
or…
How to upload a shell in WordPress
After getting Wordpress admin credentials, you will need to upload a shell. You can do that by uploading a fake Wordpress plugin containing the PHP shell. Or you can go to the Appearance menu and then went to the Editor. On the top of the…
Spawning a TTY Shell
During penetration testing, for example, if you found a vulnerable web application and were able to get a reverse shell back to your machine. Usually, the shell that you receive is own by the user of the running service such as "www-data"…