CheatLists | Ivan Glinkin

CheatLists

bash cat escalating privileges root suid user zsh

AutoSUID

Ivan Glinkin 01.12.2021

AutoSUID application is the Open-Source project, the main idea of which is to automate harvesting the SUID executable files and to find a way forView More

CheatLists

Active Directory AD attack cat dictionary email harvest kerberos_enumusers kerbrute login metasploit microsoft MIT parsing russian surname tail tr transliteration user username wc

The Russian Kerbrute

Ivan Glinkin 02.11.2021

The first thing every penetration tester performs getting into a controller domain subnet is to brute force discovery of users which is called a KerbruteView More

CheatLists

admin ban bash domain dork dorks filetype github google intitle inurl path robot scan

Fast Google Dorks Scan

Ivan Glinkin 15.10.2021

“Enumeration is the key” – that’s the main tagline of the Offensive Security Certified Professional certification. Indeed, as a statistic says, more than a halfView More

CheatLists

&&||$!admin android api audio analyzer base32 base64 bash Buffer overflow cmd congon4tor CTF Cyber Chef database export flag gimp hacker hackerone hackthebox IOT village John Hammond offensivesecurity osint python rbash Red Team Village sourcec-code SQL Lite SSRF team uharc wfuzz windows

h@cktivitycon2021 by HackerOne

Ivan Glinkin 22.09.2021

Capture the flag (aka CTF) is a cybersecurity game the main aim of which is to crack/solve/find the solution to the weirdest IT tasks andView More

Red Teaming - Through PostgreSQL to shell

CheatLists

nc netcat postgreSQL reverse shell sql

Red Teaming – Through PostgreSQL to shell

Ivan Glinkin 08.04.2021

The easiest way to get reverse shell through the PostgreSQL database. 1. Connect to the DB2. Create a new table CREATE TABLE demo(t text);3. RunView More

CheatLists

AWS bash Bash scripting cheat connection Debian EC2 exam grep hackthebox host htb Instance internet Kali lab laboratory linux nc NIC OffSec openvpn oscp ovpn parrot ss SSH systemctl tunnel udp VLAN VM while

How to cheat on a Cyber Security exam

Ivan Glinkin 29.03.2021

Cheating is unfair, wrong and, in particular cases, strictly prohibited by the law. It may cause you lose your friends, family, achievements, work and whatever.View More

CheatLists

bash bashrc Box-drawing cat curl cut echo grep internet intranet ip Kali linux ls parrot timestamp

Useful bashrc configuration file

Ivan Glinkin 16.12.2020

Hello Linux users! When I’m doing my job I’m trying to set my working place as efficient and useful as it’s possible. Bash terminal isView More

CVE-2006-3392 Webmin 1.290 Usermin 1.220 auxiliary(admin/webmin/file_disclosure)

CheatLists

bash cve directory exploit msfconsole oscp path traversal usermin vulnerability webmin wireshark

CVE-2006-3392

Ivan Glinkin 04.12.2020

Hello hackers! Today we will talk about the Webmin CMS, it’s vulnerability and we will write our own script to exploit it. First of all let’sView More

CheatLists

arping awk broadcast connection enumeration grep icmp ip linux loop mac nmap ping port route solaris sweep ttl windows

Simple host enumeration

Ivan Glinkin 28.09.2020

Hello hackers! As you may remember, one of the last articles (Simple port enumeration) was about scanning a specific host for the open ports. WeView More

CheatLists

admin ban bash domain dork dorks filetype github google intitle inurl path robot scan

Fast Google Dorks Scan

Ivan Glinkin 21.09.2020

Fast Google Dorks Scan is the first program to enumerate all possible dorks to the specific web-site. It allows you to find the common adminView More

CheatLists

awk database enumeration github grep host HTTP loop mail man metasploit nano netcan nmap port print scritp shell smb SSH zenmap

Simple port enumeration

Ivan Glinkin 15.09.2020

Hello hackers! What’s your favorite network scanner: NMap, ZenMAP, Metasploit or “your answer”? If you ask me, NMap is the best and other are justView More

CheatLists

attack bruteforce CredSSP facebook hydra ipconfig Kali linux login mstsc nano nla Oracle osint RDP regedit remmina rockyou server twitter VirtualBox windows

It’s all about RDP (hacking 3389 port)

Ivan Glinkin 07.09.2020

Hello hackers! Today we are talking about one of the famous and loved by Windows sysadmins remote managing stuff – Remote Desktop Protocol. We willView More

CheatLists

apache directory httpd inetpub kernel linux log mac nginx owasp passwd path php shadow solaris SSH windows xampp

Path (directory) traversal

Ivan Glinkin 28.08.2020

A path traversal attack (also known as directory traversal) aims to access files and directories that are stored outside the web root folder. By manipulatingView More