Skip to content

Instantly share code, notes, and snippets.

@Pamplemousse

Pamplemousse/pentest_cheatsheet.md

Created July 14, 2021 04:28
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save Pamplemousse/b250220c3c5631dddf0bd098d7c90548 to your computer and use it in GitHub Desktop.
Save Pamplemousse/b250220c3c5631dddf0bd098d7c90548 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
pentest_cheatsheet.md

network

scan a box with default scripts and version detection

nmap -sC -sV <ip address>

system

find all binaries with setuid

find / -perm /4000 2>/dev/null

reverse / exploitation

execute a shell command inside gdb

!<command>

get a shell without ASLR

setarch $(uname -m) -R /bin/bash

get coredump info

ulimit -c unlimited
./<executable> <params causing a crash>
gdb <executable> -c <core-file>

web

use cookies from a text file with curl

curl --cookie-jar cookie.txt <url>:<port>
curl --cookie cookie.txt -X POST --data "param=value&other_param=other_value" <url>:<port>

use a wordlist with gobuster to discover http resources

cat wordlist.txt | gobuster dir -u <url> -t 50 -x htm,php,txt,html -w -
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment