Learning material for penetration testing
In this room we will learn some basic Windows privilege escalation techniques, as with the Linux PrivEsc room, these can come in handy if you have gained a shell but need a higher privilege to get SYSTEM (the Linux-equivalent to root)… [ READ MORE ]
This room explains some common methods of escalating privileges on Linux systems. This serves as a good place to start if you are stuck as a certain user and need to either upgrade or step laterally to another user.… [ READ MORE ]
A fundamental step and tool when it comes to PrivEsc, shells are not only the ultimate goal, but moreso an essential tool to help get the top of the "food chain"!
This room is all about the different ways we can gain a shell when we get some form of command execution on the target, how to stabalise them, and some common "oneliners" to help spawn shells if you cannot simply upload and run a shell of your own.… [ READ MORE ]
This room offers some more PowerShell commands to add to a pentesters aresenal – a lot of which are great for enumeration or just for simply "living off the land".… [ READ MORE ]
This room is all about Windows PowerShell. In this room we will explore the following concepts:
This is where the fun begins!
This room is not intended to turn you into a Python master… as a penetration tester you do not need to become a full-fleged programmer, but having basic understanding and the ability to whip out a new tool or script to automate something is defintely a bonus!… [ READ MORE ]
This room will teach the basics of Python. Although it’s not necessary to know programming to succeed in security, it is a definitely a bonus to have. Python is one of the best to learn as it is so common, and also easy to pick up. … [ READ MORE ]
This room will cover the basics of attacking Kerberos – the Windows Ticket-Granting Service!… [ READ MORE ]
This room explains the basics of Active Directory, a directory service for Windows Domain Networks. … [ READ MORE ]
