Thanks to the teachers on the road of growth
  Post Categories
Tips 19 Actual combat record 4 Learning record 50 Simple repetition 1
A few command exec bypass tips A few command exec bypass tips
Some of the wordsWhen executing commands against Linux targets, I found that some commands were somewhat limited, so I r
2021-08-29 Tips
Redteam Command execution Bypass
Sqlserver focus command Sqlserver focus command
Record a tips, maybe somebody&RT can use The other day ON the T00ls forum, I saw a tool released by a black product
2021-08-16 Tips
Redteam Command execution Information collection Sqlserver Database
Use IPC BypassUAC Use IPC BypassUAC
After the actual test, some environments can be successfulIn many scenarios, you do not have write permission to the sys
2021-08-08 Tips
Redteam Bypass UAC IPC
A solution to the failure of the trust relationship between this workstation and the primary domain A solution to the failure of the trust relationship between this workstation and the primary domain
The causeThe domain controller is faulty and is redeployed. The domain machine is found to have the following problems,
2021-08-01 Tips
Domain environment Operations
Exchange Export email methods Exchange Export email methods
IntroductionAssuming that you have obtained the administrative rights of the Exchange server, what you need to do now is
2021-07-30 Tips
Redteam Exchange Information collection Export Email Search Email
Sqlserver common attack methods Sqlserver common attack methods
IntroductionDefault port 1433, NMAP fingerprint is as follows: PORT STATE SERVICE VERSION 1433/tcp open ms-sq
2021-07-24 Tips
Redteam Command execution Information collection Sqlserver Database
Some ways to download files remotely from Github Some ways to download files remotely from Github
IntroductionThe goal is to improve the traceability cost, avoid being detected by the traceability, and improve the conc
2021-07-23 Tips
Redteam Bypass File download
Supplementary information about obtaining LDAP information Supplementary information about obtaining LDAP information
IntroductionThe project encountered a pit point, some complement, the method of obtaining information to complement, in
2021-07-23 Tips
Redteam Bypass Intranet Information Collection
Sensitive path information concerns Sensitive path information concerns
If there is insufficient, the follow-up to continuelinuxapache&apache2/etc/apache/httpd.conf /et
2021-07-21 Tips
Redteam Information collection
2 / 2