Copy files onto the target machine using wget and a webserver

Once you have a reverse connection using a Netcat listener you can use the following technique to copy files onto the target machine e.g.: cp /usr/share/exploitdb/platforms/linux/local/9545.c /var/www/html This will copy an exploit into Kali’s web root directory Run the following to ensure your Apache webservice is running: service apache2 start service apache2 status Move back […]

Manual SQL Injection

So you suspect a page might be vulnerable to SQL Injection but before you run it through SQLmap, you can try the following statements to manually test the input: The intention is for this post to grow over time and become a repository of all the sucessful manual injection points  I use. ‘ admin’ or […]

Finding hidden web pages

So you have booted up your vulnerable VM, found the IP address and run NMap to find the open services and ports. You have found a web server running on port 80 (http) or 443 (https). You load the IP address or domain in your browser but all you find are some default webserver pages […]