PEN-200: Penetration Testing (OSCP)
This blog post provides an overview of the PEN-200: Penetration Testing (OSCP) course, which is geared toward individuals who are interested in becoming certified penetration […]
Read moreSNMP Penetration Testing
SNMP penetration testing is a process for scanning networks and testing for vulnerabilities in Simple Network Management Protocols.
Read more
Kerberos Penetration Testing Fundamentals
Today I will write about Kerberos Penetration Testing, which Active Directory uses to manage authentication inside the corporate environments. First a brief explanation about how […]
Read moreWeb Application Penetration Testing Study Guide
Web Penetration Testing Methodology Some of the Security Testing Methodologies and standards are: OWASP Top 10 2021 A1:2021 – Broken authentication A2:2021 – Cryptographic Failures […]
Read moreA Complete Guide to Installing Docker on Kali Linux
Docker is a popular containerization platform used for deploying and running applications in a portable and efficient manner. In this article, we will guide you […]
Read more
Red Team Tools
List of tools used by Red Teams Reconnaissance Tool Description Website AWSBucketDump S3 bucket enumeration GitHarvester GitHub credential searcher spoofcheck SPF/DMARC record checker dnsrecon Enumerate […]
Read more
Kerberoasting with CrackMapExec: A Comprehensive Guide
Kerberoasting is a type of attack that exploits the way Microsoft Active Directory handles service accounts. In this article, we will explore how to perform […]
Read more
SSH Penetration Testing Fundamentals (Free Guide)
Welcome, today I am writing about SSH Penetration Testing fundamentals describing port 22 vulnerabilities. SSH security is one of the topics we all need to […]
Read more
Infrastructure Penetration Testing: A Comprehensive Guide
Infrastructure Penetration Testing is a critical aspect of any organization’s security strategy. In this article, we will cover everything you need to know about Infrastructure […]
Read moreUnderstanding the Active Directory Pass the Hash Attack
The Active Directory Pass the Hash (PtH) attack is a type of credential theft attack that allows an attacker to bypass authentication measures and gain […]
Read moreCrackMapExec SMB: Hacking Samba service
Mapping/Enumeration Credential Gathering Dumping SAM database Dumping LSA Database Dumping NTDS – DRSUAPI Dumping NTDS – VSS Spidering Hacking Authentication brute force passwords Pass the […]
Read more