InfoSec - Note
InfoSec - Note
1
2
3
4
5
6
7
8
9
10
11
12
13
can't reiterate this enough: Do not go looking for vulnerable servers and exploits on systems you don't own without the proper approval.
__∧_∧__ ~~~~~
/(*´O`)/\
/| ̄∪∪ ̄|\/
|__ _|/
por favor, no lo usar para hacer algo malo
just learning note, please don't use it to do something wrong
kali用得好,监狱进得早,与君共勉
AWS Test
| Script | Use |
|---|---|
| 🐰 IAM | |
| enumerate-iam.py | quickly verify the role permissions. python enumerate-iam.py --access-key <ACCESS-ID> --secret-key <SECRET-KEY>  |
| aws_escalate.py | enumerates all the policies of an IAM identity for permissions that can potentially lead to privilege escalation. python aws_escalate.py  |
Test
- Common Vulnerabilities and Exposures (CVE®)
| GoodWeb | Note |
|---|---|
| testing | Note |
| CSIS Significant Cyber Incidents | summary of incidents from over the last year. |
| OWASP Cheat Sheet Series | . |
| OWASP Cheat Sheet Series2 | . |
| tutorialspoint-infosec | . |
| Youtube-University of Nottingham | . |
| securityintelligence 2020 data breach report | . |
| Web Application Vulnerabilities Index | . |
| [Vulnerabilities search] | with expolit, 2, IBM X-Force |
| web knowledge | Note |
| HTTP tutorial | . |
Pentest tools
| Attack | Tool |
|---|---|
| 🐰 Code Security tools | |
Kluwan Code Security/Analysis |  |
| spiderfoot | |
| 🐰 Pen test tools | |
| Kali Linux | Linux |
Metasploit Building anti-forensic and evasion tools | - knowing about security vulnerabilities. - Helps in penetration testing, IDS signature development. - You can create security testing tools.  |
| 🐰 Digital Forensic Tools | |
| Sleuth Kit (+Autopsy) | |
| 🐰 malware | Layer 7 |
PEiD malware packaging |  |
IDA Freeware malware |  |
Pe Explorer malware |  |
| 🐰 Application Link | Layer 7 |
sslstrip capturing HTTPS traffic |  |
Nmap network mapper  | - scan networks and IT systems to identify existing security vulnerabilities. - Nmap suite has: - Data transfer, redirection, and debugging tool(Ncat), - Scan results comparing utility(Ndiff), - Packet generation and response analysis tool (Nping), - GUI and Results viewer (Nping) - Using raw IP packets it can determine: - The available hosts, services offered, OS, Packet filters using…  |
Nikto Scan web server vulnerabilities | - It can check web servers for over 6700 potentially dangerous files. -It has full HTTP proxy support. -Using Headers, favicons, and files, it can identify the installed software. -It can scan the server for outdated server components. - contains a database with more than 6400 different types of threats.  |
Acunetix web application vulnerabilities |  |
Nexpose scanning and managing vulnerabilities | |
Paros Proxy web vulnerabilities | - Some of the tools contained in the Paros Proxy utility include vulnerability scanners, a web spider, and traffic recorder for retaining network activities in real-time. Paros Proxy is useful in identifying intrusion openings in a network, detects common cybersecurity threats such as XSS and SQLi. |
Burp Suite MITM/XSS web vulnerabilities/web vulnerability scanner |  |
Owasp ZAP XSS web vulnerabilities |  |
DOMinator Tool, DOM Snitch DOM Based XSS | |
Nessus vulnerability scanner | |
OpenVAS vulnerability scanning & management |  |
Intruder Finding vulnerabilities |  |
Netsparker identified vulnerabilities |  |
| tools | Encryption cybersecurity tools |
| TrueCrypt | |
| KeyPass | |
| Tor | |
| 🐰 Network Link | Layer 7 |
PackETH capturing network packet |  |
Netstumbler identify open ports | - designed for Win |
Aircrack-Ng Wireless sniffer & injector | - focus on Replay attacks, de-authentication, fake access points, and others. - It supports exporting data to text files. - It can check Wi-Fi cards and driver capabilities. - It can crack WEP keys and for that, it makes use of FMS attack, PTW attack, and dictionary attacks. - It can crack WPA2-PSK and for that, it makes use of dictionary attacks.  |
KisMAC wireless network security in the MAC | |
wireshark Sniffing |  |
Tcpdump sniffing data packets | - monitor log TCP and IP traffic communicated through a network |
| tools | monitoring network security |
| Splunk | |
| PaloAlto | |
| POf | |
Argus analyzing network traffics OpenS | |
| Nagios | |
OSSEC real-time analyz security events of a system OpenS | |
| tools | detecting network intrusions |
Snort analysis on network traffic | |
| Acunetix | |
| Forcepoint | |
GFI LanGuard monitor networks, scan for vulnerabilities | |
| 🐰 Data Link | Layer 2 |
arpspoof ARP poisoning |  |
Ettercap ARP poisoning  | - Sniffing of live connections. - Content filtering. - Active and passive dissection of many protocols. - Network and host analysis.  |
Etherflood Sniffing | |
AntiARP, ARPon, ArpStar detect ARP poisoning | |
XARP detect ARP poisoning |  |
dsniff Sniffing | |
| Countermeasure | detect: Antisniff, ArpWatch, Switch Network switch Port Security features |
| 🐰 | Reconnaissance step 1 information gethering |
visualping passive |  |
HTTrack website mirroring |  |
TheHarvester email foot-printing |  |
Maltego link analysis and data mining | - provide graphical picture about the weak points and abnormalities of the network.  |
Recon-ng foot-printing |  |
OSRFramework foot-printing |  |
Shodan hacker search engine | - collects all information about all devices that are directly connected to the internet with the specified keywords that you enter.  |
httprint web info gethering |  |
whatweb Fingerprint web Framework |  |
BlindElephant, Wappalyzer Fingerprint web Framework | |
HUNCHLY website record |  |
Gophish phishing | - opensource phishing platform |
Angry IP Scanner Scanning | - scanning the IP addresses and ports. It can scan both on local network and Internet.  |
Sublist3r enumerate subdomains |  |
| tools | Password auditing and packet sniffers cybersecurity tools |
John The Ripper PaswdCrack |  |
Cain and Abel PaswdCrack / ARP poisoning |  |
Gobuster brute-force tools | |
BruteX brute-force tools | |
Dirsearch web path scanner and can brute force directories and files in webservers | |
Callow login brute-force tool | |
Secure Shell Bruteforcer (SSB) brute-force SSH servers | |
Thc-Hydra login cracking | |
Patator brute-force tool with diverse modular | |
Pydictor dictionary hacking powerful tool | |
Ncrack test their networking devices for weak passwords | |
Hashcat password recovery tool |
| XiongHaizimen | Note |
|---|---|
| Tanishq | cool website and lab! |
| coolguy | great solution |
| infosecblog | cool |
| secblog | solution |
| Kali渗透测试 大学霸 | learn kali |
| Gaurav Sen | youtuber |
| youtube | not yet |
| youtube | Boston SDE girl |
| youtube | DS Pro, clear and step by step |
| CTFblog | Cloud CTF blog Professional Red Teamer / Pentester |
| CTFblog | Security Engineer |
| crf | cloud ctf |
.
This post is licensed under CC BY 4.0 by the author.
Comments powered by Disqus.