Red Teaming and Malware Analysis

About
Red Teaming
Cheat Sheet
Active Directory 101
Fuzzing and Web
Initial Foothold
- Browser In The Browser (BITB) Attack
- Phishing with Office
  Weaponizing XLM 4.0 macros
Privilege Escalation (Privesc)
Lateral Movement (Pivoting)
- From Windows VPN + Kali VPN + DC
  By using Proxifier
Persistence
Command and Control (C&C)
- CobaltStrike 101
  Pivoting DMZ: weevely + ngrok + CS Pivot COMBO via Linux
  Extras + Plugins
  Resources
Data Exfiltration
- Extracting certs/private keys from Windows using mimikatz and intercepting calls with burpsuite
CVE & Exploits / CTF
Tools
Resources
Pwnage
Malware Analysis
Unpacking
Basic tips
Malware instrumentation with frida
Tools
Resources
Mobile
IoT / Reverse / Firmware

Powered by GitBook

On this page

Was this helpful?

Cheat Sheet

Web

Misc File Upload bypass Authentication bypass SQL Injection XSS XXE Reverse-shell Webshell (De)Serialization

PreviousCheat Sheet NextMisc

Last updated 3 years ago