Remote File Inclusion[RFI] Prepare: Download the DVWA from the following website and deploy it on your server. http://www.dvwa.co.uk/ Install XAMPP and DVWA: 1. Install XAMPP on Windows server. And change the Apache http port to 82 and ssl port to 44…
Local File Inclusion[LFI] Target Pentester Lab: Download from the following website: https://www.vulnhub.com/entry/pentester-lab-php-include-and-post-exploitation,79/ 1. Use netdiscover to find the IP of the target server.  The IP address of the targ…
SQL Injection[SQLi] Refrence: SQL Injection Authentication Bypass Cheat Sheet https://pentestlab.blog/2012/12/24/sql-injection-authentication-bypass-cheat-sheet/ 1. Browse the PentesterLab vulnerable blog website through Firefox. 2.Edit the Cookie va…
Cross-Site Scripting(XSS) 1. Using the tool - netdiscover to find the IP of target server. netdiscover 2.Browser the website http://10.0.0.21 through Firefox. 3. Click 'Test' . Then write the following script in the text box. <script>alter('XSS')<…
Installing XSS&MySQL FILE Download the Pentester Lab: XSS and MySQL FILE from the following website: https://www.vulnhub.com/entry/pentester-lab-xss-and-mysql-file,66/ Load the iso file and open the vm through vmware. Enter the world of XSS and MYSQL…
Windows Post Exploitation Target Server: IE8-Win 7 VM 1. Download and upload the fgdump, PwDump7, wce and netcat into the IEUser folder on Windows 7. 2.Create the new user hackme with the password "password". 3.Locate fgdump and wce on Kali Linu…
Linux Post Exploitation Target Sever: Kioptrix Level 1 1. Search the payloads types. msfvenom -l payloads All the payload type in Metasploit are showing as below: Framework Payloads ( total) [--payload <value>] ======================================…
Pivoting 1. Edit the virtual network settings of the Vmware. 2. Set the Network Adapter(s) of Kali Linux, IE8-Win7 and Kioptrix Level 1 as showed in the following screenshoots. The Kali Linux should only talk to IE8-Win7 machine, and can not talk to…
Post-Exploit Password Attacks 1. Crack using the tool - john (Too slow in real world) Locate the rockyou file. john --wordlist=/usr/share/wordlists/rockyou.txt windows john --show windows Conbine the files and save as unshadow. john --rules --wordlis…
Prerequisites: Knowledge of scripting languages(Bash/Pyhon) Understanding of basic networking concepts Understanding of basic Linux syntax A "Try Harder" attitude Modules: Introduction to Kali Linux Infromation Gatheing Scanning Enumeration Netc…