The Hacker Recipes
GitHub
Twitter
Exegol
Tools
Search…
⌃K
Links
Introduction
Active Directory
Reconnaissance
Movement
Persistence
Web services
Reconnaissance
Configuration
Accounts and sessions
User inputs
File inclusion
Unrestricted file upload
SQL injection
XSS (Cross-Site Scripting)
CSRF (Cross-Site Request Forgery)
SSRF (Server-Side Request Forgery)
IDOR (Insecure Direct Object Reference)
ORED Open redirect
Content-Type juggling
XXE injection
Insecure JSON Web Tokens
Insecure Cookies
HTTP response splitting
🛠️ HTTP parameter pollution
🛠️ SSTI (Server-Side Template Injection)
🛠️ Insecure deserialization
🛠️ CRLF injection
🛠️ Arbitrary file download
🛠️ Directory traversal
🛠️ Null-byte injection
Systems & services
Reconnaissance
Initial access (protocols)
Initial access (phishing)
Privilege escalation
Pivoting
Evasion
(AV) Anti-Virus
🛠️ (EDR) Endpoint Detection and Response
🛠️ Physical
Locks
Networking
Machines
Super secret zones
🛠️ Intelligence gathering
CYBINT
OSINT
GEOINT
🛠️ RADIO
RFID
Bluetooth
Wi-Fi
Wireless keyboard/mouse
🛠️ mobile apps
Android
iOS
Powered By
GitBook
🛠️ Arbitrary file download
talk about functions like download.php?id=123.php
talk about null byte, directory traversal
IDOR and SQLis can lead to this
Previous
🛠️ CRLF injection
Next
🛠️ Directory traversal
Last modified
2yr ago
