0xSs0rZ
  • Hello World
  • Whoami
  • Pentest
    • Recon
      • Tools
      • Information Gathering
      • OSINT
        • Tools
        • Emails
        • Database Leak - Credential stuffing
        • Credentials in git repos
        • Social Media
        • Credentials in YouTube Videos
        • Metadata and Hidden infos
        • GitHub - finding vulnerabilities
      • Whois
      • Google Dorks
      • Git Dorks
      • Cloud
      • IDS IPS AV Evasion
      • DNS Subdomain Enumeration
      • Virtual Host
      • Fingerprinting / Crawling
      • Host Discovery
    • Protocols
      • Port Scan
      • Common Ports
      • MindMap
      • DNS (53)
      • FTP (21)
      • IMAP POP3 (110, 143, 993, 995)
      • IPMI (623 UDP)
      • Kerberos (88)
      • LDAP (389)
      • MSSQL (1433)
      • MySQL (3306)
      • NFS (2049, 111)
      • Oracle TNS (1521, 1522-1529, 1748)
      • RDP (3389)
      • R-Services (512,513,514)
      • RSYNC (873)
      • SMB (445, 139) / RPC
      • SMTP (25, 465)
      • SNMP (10161, UDP 161)
      • SQLite
      • SSH (22)
      • WinRM (5985, 5986)
      • WMI (135)
    • Brute force
      • Default Credentials
      • Password lists
      • Username lists
      • Kraken - All-in-One Tool
      • IP Rotate - Bypass IP Blocking
      • Hydra - Basics
      • Web login
      • FTP Bruteforce
      • O365 Bruteforce
      • POP3 Bruteforce
      • RDP Bruteforce
      • SMB Bruteforce
      • SMTP Bruteforce
      • SSH Bruteforce
      • WinRM Bruteforce
    • Shells
      • Web Shell
      • Bind and Reverse Shell
      • TTY Upgrade
    • File Transfer
      • Upload
      • Download - Exfiltration
      • Encryption
    • Web attacks
      • Methodology & Academy
      • OWASP Top 10
      • Avoid Aggressive Scanning
      • Web Enumeration
      • Fuzzing
      • Bypass 403
      • Registration Form
      • Email Verification Bypass
      • Login Forms Attacks
        • Bypass Authentication
        • Login Brute Force
        • PHP Type Juggling
      • Bypass Captcha
      • 2FA / OTP
      • Password Reset
      • SQL Injection
      • NoSQL injection
      • LDAP Injection
      • XSS
      • CSP Bypass
      • File Inclusion LFI / RFI
      • File Upload Attacks
      • Command Injection
      • Email injections
      • HTTP Verb Tampering
      • HTTP Header Exploitation
      • HTTP Request Smuggling
      • Price Manipulation Methods
      • Cookies
      • JWT Token
      • IDOR
      • XXE
      • SSTI
      • CSTI
      • SSRF
      • CSRF
      • CORS
      • Open Redirection
      • CSPT
      • Relative Path Overwrite, RPO
      • CRLF Injection
      • Prototype Pollution
      • Web Mass Assignment
      • Web Cache
      • WAF Bypass
      • CMS
      • Django
      • Flask
      • Tomcat (8080)
      • Tomcat CGI
      • Nginx
      • IIS
      • Exchange / OWA
      • GitLab
      • Jenkins
      • Splunk
      • Elasticsearch
      • PRTG Network Monitor
      • osTicket
      • ColdFusion
      • Nagios
      • Webmin
      • Slack
      • Moodle
    • API
      • OWASP API Top 10
      • Checklist
      • API Discovery
      • Sensitive Data (API Key, JWT token, etc.) Exposed
      • Swagger UI
      • REST API
      • JWT Token
      • Email Enumeration
      • Insecure UUID
      • IDOR
      • JSON Injection
      • GraphQL
      • Tools & Scanners
    • Public Exploit
      • Search for CVE PoC
      • Convert line breaks from DOS to Linux
      • Citrix
      • Fortinet
      • Palo Alto
      • Check Point
      • Ivanti
      • Chamilo elearning
      • OpenNetAdmin
      • Nostromo
      • PHP
      • TP Link
      • F5 Big-IP
      • ZoneAlarm AV/Firewall
      • VMWare
      • TeamViewer
      • NVMS 1000
      • SQLPad
      • Axis IP Camera
      • Zimbra
      • MobileIron
      • Froxlor
      • GLPI
      • Cisco
      • SolarWinds
      • pfSense
      • Apache OFBiz
      • Keycloak
      • Grafana
      • Roundcube
      • CyberPanel
      • Symfony
      • ZoneMinder
      • D-Link
      • Gogs
      • Navidrome
    • External Pentest
    • Internal Pentest
      • Tools
      • Methodology & Cheatsheet
      • Basic Windows Commands
      • Users Identification
      • Password Policy
      • Password Spray
      • Reconaissance
        • Bloodhound
        • Enumeration from Windows Host
      • Network Attacks
      • LLMNR NBT-NS Poisoning
      • ADIDNS Spoofing
      • Microsoft Office & Outlook
      • Microsoft SharePoint
      • Windows Exploit
      • Print Spooler
      • LOL Bins
      • Security Controls
      • Network Shares
      • Open outbound ports
      • Kerberoast
      • Misconfiguration
      • Privileged Access
      • ACL
      • Privilege escalation
      • SAM & LSA secrets
      • LSASS secrets
      • AD CS
      • DPAPI
      • gMSA
      • Bypass Powershell Execution Policy
      • Disable / Remove AV Defender and Firewall
      • Kerberos Double Hop Problem
      • SCCM
      • AD FS
      • Trustee and Resource Delegation
      • LAPS
      • DCSync
      • NTDS secrets
      • Domain Password Audit Tools
      • Trusts
      • Persistence
      • Tiering
    • Privilege Escalation
      • Find specific file
      • Linux
        • Tools
        • Linux PrivEsc MindMap
        • Basics Commands
        • Basics - EoP Checklist
        • Environment Enum
        • Services & Internals Enum
        • Writable files
        • /etc/passwd & /etc/shadow
        • Credentials Hunting
        • Path Abuse
        • Wildcard Abuse
        • Escaping Restricted Shells
        • SUID/SGID
        • Sudo Rights Abuse
        • Privileged Groups
        • Capabilities
        • Vulnerable Services
        • Cron Job Abuse
        • Kubernetes
        • Logrotate
        • Miscellaneous Techniques
        • Kernel Exploits
        • Shared Libraries
        • Shared Object Hijacking
        • Python Library Hijacking
        • su bruteforce
        • Hardening Linux
      • Windows
        • Tools
        • Cheatsheet
        • Enumeration
        • Credentials Hunting
        • User Privileges
        • Group Privileges
        • User Account control (UAC)
        • Weak Permissions
        • Kernel / Drivers Exploits
        • Vulnerable Services
        • DLL Hijacking
        • Citrix Breakout
        • Interacting with Users
        • Pillaging
        • Miscellaneous Techniques
        • Windows Server
        • Windows Desktop Versions
        • Windows Processes
        • MSI Files
        • NTLM elevation of privilege
        • From Local Admin to NT AUTHORITY\SYSTEM
        • Exploit CVE
      • Docker Escape / Breakout
    • Post Exploitation
      • Pivot, Tunneling and Port Forwarding
      • Lateral Movement
        • Pass the Hash (PtH)
        • Pass the Ticket (PtT) - Windows
        • Pass the Ticket (PtT) - Linux
      • Gather credentials and more
        • Password managers, Teamviewer, Outlook
        • Microsoft Teams Cookies
        • Browser cookies
        • UNIX computers joined to AD
        • Screenshots, clipboard
        • Azure AD / Entra ID
        • MSOL (Microsoft Online Services) account
      • Resources
    • Cracking
      • Hashes
      • Files - Encrypted
      • Blurred image, pdf, etc
    • Thick Client Pentest
    • Wifi Pentest
    • Mobile Pentest
    • Code Analysis
    • Tools
      • Arsenal - Cheatsheet
      • Burp
      • Evil-WinRM
      • Internal Pentest Tools Pre Compiled
      • Metasploit
      • Mimikatz
      • NetExec - CME
      • PowerView
      • Rubeus
      • SQLMAP
      • Vulnerability Scanners
      • Browser Extensions
    • Search Engines
    • Cheatsheets
    • Note Keeping / Reporting
  • Cloud
    • Cloud VM
    • Enumeration
    • SSRF / RCE
    • Azure
    • AWS
    • GCP
    • Kubernetes
    • Tools
  • Antivirus Evasion - Defender
    • Defender Module for PowerShell
    • Static Analysis
    • Dynamic Analysis
    • Process Injection
    • AMSI Bypass
    • Open-Source Software
    • User Access Control (UAC)
    • AppLocker
    • LOLBAS / LOLDrivers / LOLESXi
    • PowerShell ConstrainedLanguage Mode, CLM
    • VBScript
    • Bypass all Powershell security features (AMSI,CLM)
    • Bypass AV Payload / Shells
    • Find Folder Exclusions
    • Resources
  • EDR BYPASS
    • Approches for Evasion
    • C2
    • EDR Killer
    • BYOVD
    • Spoof Command Line Arguments
    • Blind Spots
    • Living Off Security Tools / LOTTunels
    • Process Hollowing
    • Process Injection - Reverse Shell
    • Payload Creation
    • Shellcode Loader
    • MalDev
    • Malware Testing Lab
    • Resources
  • Red Team
    • Infrastructure
    • EDR / AV Bypass
    • Physical Penetration Testing
  • CTF
    • Forensic
      • PCAP Analysis - Wireshark
      • DNS
      • Active Directory - GPO
      • Rubber Ducky
      • Volatility
      • Metadata
      • BinWalk
      • Audio
    • Cryptography
      • Tools
      • GPG
      • RSA
      • ECB / CBC
      • Esoteric Programming Language
      • One Time Pad
      • Baconian Cipher
      • ROT-13 / Caesar
      • Morse Code
      • XOR
      • Substitution
      • Vigenere
    • Steganography
      • Methods
      • Tools
Powered by GitBook
On this page

Was this helpful?

Gather credentials and more

PreviousPass the Ticket (PtT) - LinuxNextPassword managers, Teamviewer, Outlook

Last updated 1 month ago

Password managers, Teamviewer, Outlook
Microsoft Teams Cookies
Browser cookies
UNIX computers joined to AD
Screenshots, clipboard
Azure AD / Entra ID
MSOL (Microsoft Online Services) account