SUMMARY.md

Summary

• Introduction
• The Basics
  • Linux
    • Basics of Linux
    • Bash-scripting
    • Vim
  • Windows
    • Basics of Windows
    • PowerShell
    • PowerShell Scripting
    • CMD
  • Scripting With Python
    • Python Fundamentals
    • Useful Scripts
  • Transferring Files
    • Transfering Files on Linux
    • Transfering files on Windows
  • Firewalls
  • General tips and tricks
  • Cryptography
• Recon and Information Gathering Phase
  • Passive Information Gatherig
    • Identify IP-addresses and Subdomains
      • Identify IP-addresses
      • Find Subdomains
        • DNS Basics
        • Finding subdomains
        • DNS Zone Transfer Attack
    • Identifying People
    • Search Engine Discovery
    • Identifying Technology Stack
  • Active Information Gathering
    • Port Scanning
• Vulnerability analysis
  • Non-HTTP Vulnerabilities
    • Common ports/services and how to use them
    • Port Knocking
  • HTTP - Web Vulnerabilities
    • Common Web-services
    • WAF - Web Application Firewall
    • Attacking the System
      • Local File Inclusion
      • Remote File Inclusion
      • Directory Traversal Attack
      • Hidden Files and Directories
      • SQL-Injections
      • Nosql-Injections
      • XML External Entity Attack
      • Bypass File Upload Filtering
      • Exposed Version Control
      • Directory Traversal Attack
      • Host Header Attack
    • Attacking the User
      • Clickjacking
      • Broken Authentication or Session Management
      • Text/content-injection
      • HTML-Injection
      • Insecure Direct Object Reference (IDOR)
      • Subdomain Takeover
      • Cross Site Request Forgery
      • Cross-Site Scripting
        • Examples
        • DOM-based XSS
      • Browser Vulnerabilities
      • HTML-Injection
      • Session Fixation
  • Automated Vulnerability Scanners
• Exploiting
  • Social Engineering - Phishing
  • Default Layout of Apache on Different Versions
  • Shells
  • Webshell
  • Generate Shellcode
  • Editing Exploits
  • Compiling windows exploits
• Post Exploitation
  • Spawning Shells
  • Meterpreter for Post-Exploitation
  • Privilege Escalation - Linux
  • Privilege Escalation - Windows
  • Privilege Escalation - Powershell
  • Escaping Restricted Shell
  • Bypassing antivirus
  • Loot and Enumerate
    • Loot Windows
    • Loot Linux
  • Persistence
  • Cover your tracks
• Password Cracking
  • Generate Custom Wordlist
  • Offline Password Cracking
  • Online Password Cracking
  • Pass the Hash - Reusing Hashes
• Pivoting - Port forwarding - Tunneling
• Network traffic analysis
  • Arp-spoofing
    • SSL-strip
  • DNS-spoofing
  • Wireshark
• Wifi
  • WEP
  • WPS
• Physical access to machine
• Literature