Cheatsheet/Notes
These are condensed notes from the INE course and other blogs and articles.
Subnet Guide
Protocol | Port | Service |
TCP | 21 | FTP |
TCP | 22 | SSH |
TCP | 25 | SMTP |
TCP | 53 | DNS |
TCP | 80, 443 | HTTP/HTTPS webserver |
TCP | 137-139 | Windows NetBIOS |
TCP | 445 | Windows - SMB Linux - Samba service |
TCP | 1433, 1434 | MSSQL Database |
TCP | 3306 | MySQL Database |
TCP | 8080, 8443 | HTTP(s) web server, HTTP proxy |
Routing
This part is pretty important😉
If you don't know what the VPN gateway is then try it with every host that is up in the network.
If you want external sources for routing/pivoting, you can look at this one I found somewhere in the depths of Reddit (Don't ask me why Shaq is on it).
Interactive Shells
Recommended Shells
Server | Web Shell |
Windows | ASP |
Apache TomCat | JSP |
Apache | PHP |
Reverse Shells
Hacktricks
If you're stuck at vulnerability assessment or don't know how to tackle something you can check here for some kind of push.
Last updated