Hi everyone!
Here is a compilation of all the useful links. This post will continue to be updated so stay tuned!
Access SQL server
- Sqsh access MS SQL server (Linux)
Active Directory
- Attackive Directory Walkthrough (TryHackMe)
- HackTheBox – Forest Write-up
- HackTheBox – Resolute Write-up
Binary files (Static)
Encoding
File transfer (Command-line tools)
- BITSAdmin (Windows)
- cURL (Unix/Unix-liked) (Prints out content of the file)
- FTP
- SCP
- TFTP (All OS. Exist on Windows XP too!)
- wget (Unix/Unix-liked)
Heap Feng Shui
LDAP
Password dump in OS
- Fgdump (Windows XP and above)
Partitioning
Privilege Escalation
- Compilation of Windows Privilege Escalation cheatsheet
- Docker privilege escalation (Linux)
- Enivornmental variables abused (Linux)
- JuicyPotato (Windows)
- PrintSpoofer (Windows)
- Privilege Escalation Abusing Tokens by Hacktricks
- Shared library misconfiguration
- Win XP SP0/SP1 PE via upnphost and SSDPSRV
Programming
Public exploits
Return-oriented programming (ROP)
- ROPgadget tool
- ROP tutorial by Hacktricks (GNU/Linux)
- ROP tutorial by Shakuganz (GNU/Linux)
Reverse shell
- Antivirus evasion
- Msfvenom reverse shell
- Reverse shell cheatsheet by Pentestmonkey (Bash/Perl/Python/PHP/Ruby/Netcat/Java/xterm)
- Simple Unix/Unix-liked reverse shell and troubleshoot
SQL injection
- General SQL injection by HackTricks
- MS SQL create new admin users
- MS SQL injection by PentestMonkey
- SQL Injection for Orcale database
SSH
Telenet alternative
- PSexec (Windows. Useful to switch accounts via CMD too)
Time To Live (TTL) values
Tunneling
- Ngrok (Tunnel public server to private network)
WAF bypass
- AWS WAF bypass (SQL injection example)
Web shell
Windows Sysinternal Suite
XML External Entities (XXE)
Lamecarrot 