Main Page

SecWiki is currently part of my personal notebook. If your a user, your free to consume the information and add to it too! Sharing is caring at the end of the day.

Consult the User's Guide for information on using the wiki software.

PenTest Runbooks

• OS-INT on Users
• OS-INT on Infrastructure
• Unauthenticated Network Enumeration
• Unauthenticated Target Host Enumeration
• Post Exploitation - Enumeration Windows
• Post Exploitation - Enumeration Linux
• Post Exploitation - Enumeration Active Directory
• External - Password Spray via Burp Suite
• Windows Network - Unauthenticated to Domain User via responder/LLMNR
• Windows Network - Unauthenticated to Domain User via local admin pass the hash
• Windows Network - Unauthenticated to Domain User via password spray
• Windows Network - Domain User to Domain Admin via SPNs
• Wireless Network Attacks
• Generating Username and Password Lists
• Cracking Hashes

Windows Commands

PowerShell Code Blocks

Linux Commands

smbclient - Access SMB / Samba shares from Linux
wget - Command line file download

PenTesting Tools A-Z

• hashcat
• Nessus
• nmap
• responder

Windows Remediation and Security Hardening

• Disable NetBIOS on the DHCP server

Software Releases, Version Numbers and Builds

Windows

• Windows Build Numbers

Linux

• SLES (SUSE Linux Enterprise Server) Kernel Versions
  

Networking

• None

Applications

• MS SQL Server [1]
• SharePoint 2013 [2]
• SharePoint 2016 [3]

CVEs

• CVE-2019-0708 - BlueKeep
  
• [[]] - Tmp
  
• [[]] - Tmp
  
• [[]] - Tmp
  
• [[]] - Tmp
  
• [[]] - Tmp
  
• [[]] - Tmp
  
• [[]] - Tmp
  
• [[]] - Tmp
  
• [[]] - Tmp
  

Other

MS17-010

Activate https://www.mediawiki.org/wiki/Extension:SyntaxHighlight#Installation

SUSE Enterprise Linux PAM - lockout https://unix.stackexchange.com/questions/78182/how-to-lock-users-after-5-unsuccessful-login-tries

Getting started

• Configuration settings list
• MediaWiki FAQ
• MediaWiki release mailing list
• Localise MediaWiki for your language
• Learn how to combat spam on your wiki