Sign in
Sign in
Recover your password.
A password will be e-mailed to you.
How to upload a shell in Magento
After getting Magento admin credentials, you will need to upload a shell. You can do that by uploading a Magento package containing the PHP shell.
You can download the package from here:
https://github.com/lavalamp-/LavaMagentoBD
or…
How to upload a shell in WordPress
After getting Wordpress admin credentials, you will need to upload a shell. You can do that by uploading a fake Wordpress plugin containing the PHP shell. Or you can go to the Appearance menu and then went to the Editor. On the top of the…
Spawning a TTY Shell
During penetration testing, for example, if you found a vulnerable web application and were able to get a reverse shell back to your machine. Usually, the shell that you receive is own by the user of the running service such as "www-data"…
Creating Metasploit Payloads using Msfvenom
Msfvenom is the combination of payload generation and encoding. It replaced msfpayload and msfencode on June 8th 2015. You can create multiple payloads with this module, it will help you to get a shell in almost any scenario.
Note:…
One-liners Reverse Shells
During the penetration testing process, after finding a code execution vulnerability, you’ll more usually need a reverse connection from the victim machine to your machine (attacker) to obtain an interactive shell. You will find here a…
Port 161/162 – SNMP
SNMP (Simple Network Management Protocol) is an application layer protocol that use the UDP protocol to support and manage routers, hubs and switches other network devices on an IP network. SNMP protocol has been found enabled on a variety…
Port 88 – Kerberos
Kerberos is a protocol that is used for network authentication. Various versions are used by *nix and Windows. But if you notice a machine with port 88 (Kerberos ) open you can be fairly sure that it is a Domain Controller.
So, if you…
Port 111/135 – RPC/MSRPC
Remote Procedure Call (RPC) is a protocol that one program can use to request a service from a program located in another machine on a network without having to understand the network's details. A procedure call is also sometimes known as a…
Port 3306 – MySQL
Always try to test the following credentials:
Username: root
Password: root
Connect to MySQL:
mysql --host=192.168.1.101 -u root -p
mysql -h 192.168.1.101 -u root
mysql -h 192.168.1.101 -u [email protected]
Nmap:
nmap -sV -Pn -vv…
Port 139 and 445- SMB/Samba
Samba is a service that allows the user to share files with other computers. It has interoperability, which means that it can share stuff between Linux and Windows systems. A windows user will simply see an icon for a folder that includes…
