The Hacker Recipes
GitHub
Twitter
Donate
Searchโฆ
Introduction
Active Directory
Reconnaissance
Movement
Credentials
MITM and coerced auths
ARP poisoning
DNS spoofing
DHCP poisoning
DHCPv6 spoofing
WSUS spoofing
LLMNR, NBT-NS, mDNS spoofing
ADIDNS poisoning
WPAD spoofing
MS-EFSR abuse (PetitPotam)
MS-RPRN abuse (PrinterBug)
MS-FSRVP abuse (ShadowCoerce)
PushSubscription abuse
WebClient abuse (WebDAV)
๐ ๏ธ NBT Name Overwrite
๐ ๏ธ ICMP Redirect
๐ ๏ธ Living off the land
NTLM
Kerberos
Access controls
Group policies
Built-in groups
Domain settings
๐ ๏ธ Trusts
Netlogon
Certificate Services (AD-CS)
Exchange services
Print Spooler Service
Persistence
Web services
Reconnaissance
Configuration
Accounts and sessions
User inputs
Systems & services
Reconnaissance
Movement
Privilege escalation
Pivoting
๐ ๏ธ Physical
Locks
Networking
Machines
Super secret zones
๐ ๏ธ Intelligence gathering
CYBINT
OSINT
GEOINT
๐ ๏ธ RADIO
RFID
Bluetooth
Wi-Fi
Wireless keyboard/mouse
๐ ๏ธ binary exploitation
Use-after-free
Buffer overflow
๐ ๏ธ mobile apps
Android
iOS
Powered By
GitBook
๐ ๏ธ NBT Name Overwrite
โ
https://twitter.com/PythonResponder/status/1379251124985851904
โ
Previous
WebClient abuse (WebDAV)
Next
๐ ๏ธ ICMP Redirect
Last modified
9mo ago
Copy link
Edit on GitHub
