Hacking Articles – Telegram
Hacking Articles
@hackinarticles
12.8K subscribers
680 photos
133 files
437 links
House of Pentester
Download Telegram
About
Blog
Apps
Platform
Join
Hacking Articles
12.8K subscribers
Hacking Articles
Linux-vs-Ubuntu
1.29K views
Hacking Articles
Linux vs FreeBSD info
1.36K views
Hacking Articles
IPS vs IDS info
1.18K views
Hacking Articles
DevOps Tools Mindmap

🔴Full HD: https://github.com/Ignitetechnologies/Mindmap/blob/main/Devops/DevOps%20Tools%20HD.png
1.17K views
Hacking Articles
ADCS ESC14 – Write access on altSecurityIdentities

🔥 Telegram: https://news.1rj.ru/str/hackinarticles
Twitter: https://x.com/hackinarticles

ESC14 targets weak certificate mapping in Active Directory, exploiting the altSecurityIdentities attribute to allow attackers to spoof Subject CN or Issuer DN fields.

📘 Overview of the ESC14 Attack
⚙️ Working of ESC14
📋 Prerequisites
🧪 Lab Setup

🎯 Enumeration & Exploitation
🔓 Abusing Weak Explicit Certificate Mappings via altSecurityIdentities

🧠 Post Exploitation
🖥️ Full SYSTEM Shell via Evil-WinRM

🛡️ Mitigation
1.35K views
Hacking Articles
https://www.hackingarticles.in/adcs-esc14-write-access-on-altsecurityidentities/
Hacking Articles
ADCS ESC14 – Write access on altSecurityIdentities
ADCS ESC14 guide: Abuse write access on altSecurityIdentities to impersonate users and escalate privileges via certificate requests.
1.55K views
Hacking Articles
ESC14.pdf
2 MB
1.49K views
Hacking Articles
🔥 OSCP+/CTF Exam Practice Training (Online) 🔥 – Register Now! 🚀

🔗 Register here: https://forms.gle/bowpX9TGEs41GDG99
💬 WhatsApp: https://wa.me/message/HIOPPNENLOX6F1

📧 Email: info@ignitetechnologies.in

Join IGNITE TECHNOLOGIES’ exclusive "Capture the Flag" Training Program and enhance your skills with the following modules:

🧠 Introduction
🌐 Information Gathering
🧱 Vulnerability Scanning
🔓 Windows Privilege Escalation
🐧 Linux Privilege Escalation
🛡️ Client-Side Attacks
🌐 Web Application Attacks
🧬 Password Attacks
🧠 Tunneling & Pivoting
🏰 Active Directory Attacks
💣 Exploiting Public Exploits
📋 Report Writing

#cybersecurity #cyber #security #hacking #hacker #infosec #cybercrime #tech #technology #cyberattack #datasecurity #malware #ethicalhacking #phishing #cloudsecurity #oscp
3
1.75K views
Hacking Articles
DNS Record Types
1.36K views
Hacking Articles
Git Cheatsheet for Developers and DevOps Engineer
3
1.42K views
Hacking Articles
Linux Architecture
4
1.34K views
Hacking Articles
Linux Boot Process
2
1.49K views
Hacking Articles
Secure By Design- Software Architecture.pdf
10.6 MB
1
1.43K views
Hacking Articles
Burp Suite for Pentester: Burp Collaborator

Twitter: https://lnkd.in/e7yRpDpY
🔥Telegram: https://news.1rj.ru/str/hackinarticles

In this article of the series of Burp Suite for Pentester, you’ll learn how to detect out-of-band or blind vulnerabilities using one of the most amazing features of Burp Suite, i.e., Burp Collaborator.

📘 Introduction to Burp Collaborator
🕵️ Detecting Vulnerabilities with Collaborator Client
💣 Blind Remote Command Execution
🧪 Cross-Site Scripting Detection
👁️‍🗨️ Blind XXE (XML External Entity)
🌐 Server-Side Request Forgery (SSRF)
🎯 Fuzzing for SSRF Detection
1.61K views
Hacking Articles
https://www.hackingarticles.in/burp-suite-for-pentester-burp-collaborator/
1.45K views
Hacking Articles
burp collaborator.pdf
4.1 MB
1
1.34K views
Hacking Articles
🚀 Active Directory Penetration Training (Online) – Register Now! 🚀

🔗 Register here: https://forms.gle/bowpX9TGEs41GDG99
💬 WhatsApp: https://wa.me/message/HIOPPNENLOX6F1

📧 Email: info@ignitetechnologies.in

Limited slots available! Hurry up to secure your spot in this exclusive training program offered by Ignite Technologies.

✔️ Comprehensive Table of Contents:
🔍 Initial Active Directory Exploitation
🔎 Active Directory Post-Enumeration
🔐 Abusing Kerberos
🧰 Advanced Credential Dumping Attacks
📈 Privilege Escalation Techniques
🔄 Persistence Methods
🔀 Lateral Movement Strategies
🛡️ DACL Abuse (New)
🏴 ADCS Attacks (New)
💎 Saphire and Diamond Ticket Attacks (New)
🎁 Bonus Sessions

#infosec #cybersecurity #cybersecuritytips #pentesting #redteam #informationsecurity #CyberSec #networking #offensivesecurity #infosecurity #cyberattacks #security #oscp #cybersecurityawareness #bugbounty #bugbountytips
1.57K views
Hacking Articles
DNS Query
1
1.51K viewsedited  
Hacking Articles
DNS Records
1
1.56K views
Hacking Articles
This media is not supported in your browser
VIEW IN TELEGRAM
How to Use Bloodhound
1.43K views
Hacking Articles
🔓 The Art of Post-Exploitation (Cheat Sheet)

🚀 Key Phases
1️⃣ Initial Access → 2️⃣ Lateral Movement → 3️⃣ Privilege Escalation → 4️⃣ Persistence → 5️⃣ Exfiltration

Top Tools

Mimikatz (Cred Dumping)

Cobalt Strike (C2)

Metasploit (Exploitation)

Impacket (Lateral Movement)

🔥 Hot Techniques

LSASS Dumping: procdump -ma lsass.exe

Pass-the-Hash: sekurlsa::pth /user:admin /ntlm:<hash>

Kerberoasting: GetUserSPNs.py -request

RDP Hijacking: xfreerdp /u:admin /v:target_ip

🛡️ Defensive Tips
Disable WDigest (Prevent cred dumping)
Monitor LSASS access
Restrict RDP/SMB access
Enable Windows Defender Cred Guard

📌 Case Studies

PrintNightmare (CVE-2021-34527) → SYSTEM access

DNS Tunneling → Stealthy data exfiltration
2
1.78K views