Skip to main content
Link
Menu
Expand
(external link)
Document
Search
Copy
Copied
Ky4meru
Home
Active Directory
AppLocker Bypass
AS-REP Roasting
Certificate Services
Constrained Delegation
Diamond Tickets
Email Password Spraying
Forged Certificates
GPO Abuse
LAPS Abuse
Overpass the Hash
Pass the Hash
MachineAccountQuota Abuse
Resource-based Constrained Delegation
S4U2Self Abuse
SCCM Abuse
Service Name Abuse
Shadow Credentials
Trust Relationship Abuse
Unconstrained Delegation
User Spraying
Brute-force
Pre Windows 2000 Compatibility Abuse
DCSync Attack
Active Directory Enumeration
Active Directory First Lookup
Golden Tickets
Kerberoasting
Net-NTLMv2 Relay
NoPac [CVE-2021-42278] & [CVE-2021-42287]
NTLM Relay
Pass the Ticket
Password Spraying
PetitPotam [CVE-2022-26925]
Printer Abuse
PrintNightmare [CVE-2021-34527]
Silver Tickets
SYSVOL Enumeration
ZeroLogon [CVE-2020-1472]
Antivirus
Obfuscation
Windows Defender
AV & EDR Enumeration
Azure
Applications Rights Abuse
Password Spraying
Subdomains Enumeration
Synchronization Credentials Extraction
User Spraying
Cracking
KDBX
SSH Private Key
Databases
Microsoft SQL
Leverage xp_cmdshell Procedure
Data Exfiltration
Microsoft SQL Enumeration
Links Abuse
Oracle
Linux
Setuid Capabilities
Wildcards Abuse
Cron Jobs Abuse
Linux Enumeration
Kernel Module Abuse
Passwd Abuse
Sudo Abuse
Network
Chisel
SMB Enumeration
SMTP Enumeration
SSH User Enumeration [CVE-2018-15473]
Network Enumeration
Ports Scanning
Port Forwarding
Subdomains Enumeration
SNMP Enumeration
Open Source Intelligence
DMARC Record
Domain Exposure
Google Dorks
Git Repositories
Credentials Leak
People
Web Applications
Brute Force
Default Credentials
Remote File Inclusion
Directory Transversal
Fuzzing
Local File Inclusion
WordPress
SQL Injection
Text4Shell [CVE-2022-42889]
Apache Tomcat
Windows
Binary Abuse
Service Hijacking
SpoolFool [CVE-2022-21999]
BlueKeep [CVE-2019-0708]
Cached Credentials Extraction
DCOM Abuse
Data Protection API Abuse
Windows Enumeration
EternalBlue [MS17-010]
Binary Hijacking
Kiosk Mode Evasion
Microsoft Office Exploit
PSExec Abuse
SeImpersonatePrivilege Abuse
SNMP Enumeration
Unquoted Service Paths
WinRM Abuse
Databases
Table of contents
Contents
Contents
Microsoft SQL
Oracle