Recently Updated Pages

Active Directory Integrated DNS Dump (adidnsdump) GitHub Repository Installation pipx install ...

What's the Flaw? Usually involves an unsecure device -- like a printer or multifunction device -...

Anatomy of a Kerberos Ticket [0;97d82]-2-0-40e10000-t2_felicia.dean@krbtgt-ZA.TRYHACKME.COM.kirb...

IP Addressing Common Computer Numbering Systems Binary (base 2) -- 0 to 1 Octal (base 8) -- ...

Example 1: Nmap script scan with categories Categories https://nmap.org/book/nse-usage.html#n...

General Information portmapper and rpcbind run on TCP 111 rpcbind maps RPC services to their ...

openssl pkcs12 -export -out file.pfx -inkey file.key -in file.crt Enter password details when pr...

Listener on Attack Box File from Target to Attack Box nc -lnvp 53 -q 3 > /tmp/got-the-file Sta...

When You Should Do This If you have an internal/demo/test server where you'd like to encrypt tra...

nano ~/.config/kwalletrc [Wallet] Enabled=false

Running this on a fresh Kali installation. Login as kali user and run these commands to add a new...

JVM Options Search for the application and right click "Edit Application" (KDE Plasma pictured...

Nmap LDAP Enumeration Acquire DC DNS Name sudo nmap -Pn -T4 -p 389,636 --script ldap-rootdse <d...

OpenSSL openssl s_client -connect 127.0.0.1:443 -servername domain.tld Unix-like operating syst...

Note: Network Environment This attack works best in a flat network. However, as long as the atta...

NTLM Basic Authentication Could obtain a list of usernames via OSINT, or via something like RI...

NULL Session LDAP, SMB, and RPC may allow a user to authenticate to the service without providin...

AS-REP Roasting If Kerberos pre-authentication is disabled on a user account in Active Directory...

Note: Network Environment Given that LLMNR is a name resolution protocol that works on the Local...

Install Prerequisite Packages # When prompted... # Modify smb.conf to use WINS settings from DH...