drd_'s Popular Posts
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
How To:
Crack Password-Protected ZIP Files, PDFs & More with Zydra
How To:
Crack SSH Private Key Passwords with John the Ripper
How To:
Advanced Techniques to Bypass & Defeat XSS Filters, Part 1
How To:
Perform Local Privilege Escalation Using a Linux Kernel Exploit
How To:
Find & Exploit SUID Binaries with SUID3NUM
How To:
Exploit Shellshock on a Web Server Using Metasploit
How To:
Exploit EternalBlue on Windows Server with Metasploit
How To:
Manually Exploit EternalBlue on Windows Server Using MS17-010 Python Exploit
How To:
Scan Websites for Interesting Directories & Files with Gobuster
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
How To:
Write Your Own Bash Script to Automate Recon
How To:
Hack Apache Tomcat via Malicious WAR File Upload
How To:
Brute-Force FTP Credentials & Get Server Access
How To:
Find Hidden Web Directories with Dirsearch
How To:
Use Metasploit's Web Delivery Script & Command Injection to Pop a Shell
How To:
Find Exploits & Get Root with Linux Exploit Suggester
How To:
Detect Vulnerabilities in a Web Application with Uniscan
How To:
Fuzz Parameters, Directories & More with Ffuf
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
How To:
Use SQL Injection to Run OS Commands & Get a Shell
How To:
Bypass UAC & Escalate Privileges on Windows Using Metasploit
How To:
Use John the Ripper in Metasploit to Quickly Crack Windows Hashes
How To:
Upgrade a Dumb Shell to a Fully Interactive Shell for More Flexibility
How To:
Elevate a Netcat Shell to a Meterpreter Session for More Power & Control
How To:
Exploit Java Remote Method Invocation to Get Root
How To:
Use LinEnum to Identify Potential Privilege Escalation Vectors
How To:
Exploit Remote File Inclusion to Get a Shell
How To:
Get Root with Metasploit's Local Exploit Suggester
How To:
Perform Directory Traversal & Extract Sensitive Information
How To:
Advanced Techniques to Bypass & Defeat XSS Filters, Part 2
How To:
Use SUDO_KILLER to Identify & Abuse Sudo Misconfigurations
How To:
Attack Web Applications with Burp Suite & SQL Injection
How To:
Discover Open Ports Using Metasploit's Built-in Port Scanner
How To:
Abuse Vulnerable Sudo Versions to Get Root
How To:
Enumerate SMB with Enum4linux & Smbclient
How To:
Exploit WebDAV on a Server & Get a Shell
How To:
Use Command Injection to Pop a Reverse Shell on a Web Server
How To:
Discover XSS Security Flaws by Fuzzing with Burp Suite, Wfuzz & XSStrike
Next Page
Prev Page
Sites
- Hot
- Latest
-
How To:
Use Linux Smart Enumeration to Discover Paths to Privesc
-
How To:
Fuzz Parameters, Directories & More with Ffuf
-
How To:
Bypass PowerShell Execution Policy to Pwn Windows
-
How To:
Beat File Upload Restrictions on Web Apps to Get a Shell
-
How To:
Crack Password-Protected ZIP Files, PDFs & More with Zydra
-
How To:
Crack SSH Private Key Passwords with John the Ripper
-
How To:
Conduct a Pentest Like a Pro in 6 Phases
-
How To:
Use Postenum to Gather Vital Data During Post-Exploitation
-
How To:
Write Your Own Bash Script to Automate Recon
-
How To:
Python 2 vs. Python 3 — Important Differences Every Hacker Should Know
-
How To:
Fingerprint Web Apps & Servers for Better Recon
-
How To:
Clear the Logs & History on Linux Systems to Cover Your Tracks & Remain Undetected
-
How To:
Audit Web Applications & Servers with Tishna
-
How To:
Get Started with Kali Linux in 2020
-
How To:
Gather Information on PostgreSQL Databases with Metasploit
-
How To:
Find & Exploit SUID Binaries with SUID3NUM
-
How To:
Bypass Antivirus Software by Obfuscating Your Payloads with Graffiti
-
How To:
Discover Hidden HTTP Parameters to Find Weaknesses in Web Apps
-
How To:
Abuse Vulnerable Sudo Versions to Get Root
-
How To:
Brute-Force FTP Credentials & Get Server Access
-
How To:
Crack Shadow Hashes After Getting Root on a Linux System
-
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To:
Crack Password-Protected ZIP Files, PDFs & More with Zydra
-
How To:
Crack SSH Private Key Passwords with John the Ripper
-
How To:
Advanced Techniques to Bypass & Defeat XSS Filters, Part 1
-
How To:
Perform Local Privilege Escalation Using a Linux Kernel Exploit
-
How To:
Find & Exploit SUID Binaries with SUID3NUM
-
How To:
Exploit Shellshock on a Web Server Using Metasploit
-
How To:
Exploit EternalBlue on Windows Server with Metasploit
-
How To:
Manually Exploit EternalBlue on Windows Server Using MS17-010 Python Exploit
-
How To:
Scan Websites for Interesting Directories & Files with Gobuster
-
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To:
Write Your Own Bash Script to Automate Recon
-
How To:
Hack Apache Tomcat via Malicious WAR File Upload
-
How To:
Brute-Force FTP Credentials & Get Server Access
-
How To:
Find Hidden Web Directories with Dirsearch
-
How To:
Use Metasploit's Web Delivery Script & Command Injection to Pop a Shell
-
How To:
Find Exploits & Get Root with Linux Exploit Suggester
-
How To:
Detect Vulnerabilities in a Web Application with Uniscan
-
How To:
Fuzz Parameters, Directories & More with Ffuf
-
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
-
How To:
Use SQL Injection to Run OS Commands & Get a Shell
-
How To:
Bypass UAC & Escalate Privileges on Windows Using Metasploit
-
How To:
Use John the Ripper in Metasploit to Quickly Crack Windows Hashes
-
How To:
Upgrade a Dumb Shell to a Fully Interactive Shell for More Flexibility
-
How To:
Elevate a Netcat Shell to a Meterpreter Session for More Power & Control
-
How To:
Exploit Java Remote Method Invocation to Get Root
-
How To:
Use LinEnum to Identify Potential Privilege Escalation Vectors
-
How To:
Exploit Remote File Inclusion to Get a Shell
-
How To:
Get Root with Metasploit's Local Exploit Suggester
-
How To:
Perform Directory Traversal & Extract Sensitive Information
-
How To:
Advanced Techniques to Bypass & Defeat XSS Filters, Part 2
-
How To:
Use SUDO_KILLER to Identify & Abuse Sudo Misconfigurations
-
How To:
Attack Web Applications with Burp Suite & SQL Injection
-
How To:
Discover Open Ports Using Metasploit's Built-in Port Scanner
-
How To:
Abuse Vulnerable Sudo Versions to Get Root
-
How To:
Enumerate SMB with Enum4linux & Smbclient
-
How To:
Exploit WebDAV on a Server & Get a Shell
-
How To:
Use Command Injection to Pop a Reverse Shell on a Web Server
-
How To:
Discover XSS Security Flaws by Fuzzing with Burp Suite, Wfuzz & XSStrike
