Once you have a reverse connection using a Netcat listener you can use the following technique to copy files onto the target machine e.g.: cp /usr/share/exploitdb/platforms/linux/local/9545.c /var/www/html This will copy an exploit into Kali’s web root directory Run the following to ensure your Apache webservice is running: service apache2 start service apache2 status Move back […]
So you suspect a page might be vulnerable to SQL Injection but before you run it through SQLmap, you can try the following statements to manually test the input: The intention is for this post to grow over time and become a repository of all the sucessful manual injection points I use. ‘ admin’ or […]
So you have found an installation of wordpress on your vulnerable virtual machine. What next? WPScan In your browser copy the address of the wordpress installation. At the terminal in Kali type the following: wpscan –url http://172.16.195.202/wordpress/ –enumerate Replace the URL with the URL of the vulnerable wordpress installation. Once the scan has been completed […]
So you have booted up your vulnerable VM, found the IP address and run NMap to find the open services and ports. You have found a web server running on port 80 (http) or 443 (https). You load the IP address or domain in your browser but all you find are some default webserver pages […]
Pen Testing 