TamaGorengs Notes
  • πŸ‘¨β€πŸ’»Whoami
  • πŸ—ΊοΈActive Directory
    • Active Directory Enumeration
    • AD Reconnaissance
      • LDAP
    • Movement
      • Kerberos
        • ASREProast
        • Pass The Hash
        • Pass The Ticket
        • Overpass The Hash
      • Credential
        • Dumping
          • DCSync
      • WMI and WinRM
  • πŸͺŸWindows
    • Windows Privilege Escalation
      • WinPrivEsc Enumeration
      • Leveraging Windows Services
      • Abusing Other Windows Components
    • RDP
  • 🐧Linux
    • Linux Privilege Escalation
      • LinuxPrivEsc Enumeration
      • Exposed Confidential Information
      • Insecure File Permissions
      • Insecure System Components
  • πŸ•ΈοΈWeb Application
    • SQL Injection
  • Group 1
    • Client-Side Attacks
      • Windows Library Files
      • Exploiting Microsoft Office
Powered by GitBook
On this page

Was this helpful?

  1. Group 1

Client-Side Attacks

PreviousSQL InjectionNextWindows Library Files

Last updated 2 months ago

Was this helpful?

Reconnaissance

  • If found file or documents, check the metadata.

    • Could find what version of software they

    • [[exiftool]]

Fingerprinting

  • using to check target OS and system

[[Windows Library Files]] [[Exploiting Microsoft Office]]

CanaryToken