H3dg3h0g's Blog
    H3dg3h0g's Blog

    Search

    Pentesting Guide and Notes

    Certification Reviews

    Writeups

    The Pentester’s Guide

    Table of Content

    • Table of Content
    • Exploitation
    • Services Guide
    • Man in the Middle Attacks
    • Post-Exploitation
    • Privilege Escalation
    • Meterpreter Cheat Sheet
    • Pivoting

    Exploitation

    Services Guide

    Services Guide

    Port
    Service
    Protocol
    22
    ssh (Secure Shell)
    TCP
    25
    smtp (Simple Mail Transfer Protocol)
    TCP
    67
    dhcp (Dynamic Host Resolution Protocol)
    UDP
    111
    rpcbind (Portmapper)
    TCP/UDP
    135
    msrpc (Microsoft Remote Procedure Call)
    TCP
    137
    netbios-ns (NetBIOS Name Service)
    UDP
    139
    netbios-ssn (NetBIOS Session Service)
    TCP
    161
    snmp (Simple Network Management Protocol)
    UDP
    445
    microsoft-ds (Microsoft Directory Services)
    TCP
    2049
    nfs (Network File System)
    TCP/UDP
    5355
    llmnr (Link-Local Multicast Name Resolution)
    TCP/UDP
    32771
    rpcbind (Portmapper)
    TCP/UDP

    Man in the Middle Attacks

    ARP PoisoningDHCP SpoofingMAC FloodingSSL Striping

    Post-Exploitation

    Privilege Escalation

    Privilege Escalation

    Meterpreter Cheat Sheet

    Meterpreter Cheat Sheet

    Pivoting

    Pivoting From a Meterpreter Shell