{"version":1,"pages":[{"id":"ysRLyol96kYvpN8hjvBz","title":"Welcome","pathname":"/","siteSpaceId":"sitesp_R2TK3","description":"Senior Security Engineer, Hacker, Penetration Tester, and Software Engineer. Content Creator on YouTube. Active Player of CTFs on Hack The Box and TryHackMe."},{"id":"mXms4h1VKijyDgIJyz8u","title":"Pentesting Port 80,443","pathname":"/web-pentesting-stuff/pentesting-port-80-443","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Web Pentesting Stuff"}]},{"id":"giQ1CDDBrPJBKmlk1vmA","title":"Pentesting GIT","pathname":"/web-pentesting-stuff/pentesting-port-80-443/pentesting-git","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Web Pentesting Stuff"},{"label":"Pentesting Port 80,443"}]},{"id":"mOdSIa8V36nN8HrW7KLe","title":"FFUF Commands","pathname":"/web-pentesting-stuff/pentesting-port-80-443/ffuf-commands","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Web Pentesting Stuff"},{"label":"Pentesting Port 80,443"}]},{"id":"TDsiz6uISp6Ep0NvRESB","title":"Javascript DeObfuscation","pathname":"/web-pentesting-stuff/pentesting-port-80-443/javascript-deobfuscation","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Web Pentesting Stuff"},{"label":"Pentesting Port 80,443"}]},{"id":"dFljnmwe8JluQC7zzw9d","title":"Pentesting JWT (JSON Web Tokens)","pathname":"/web-pentesting-stuff/pentesting-port-80-443/pentesting-jwt-json-web-tokens","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Web Pentesting Stuff"},{"label":"Pentesting Port 80,443"}]},{"id":"dtA0pYKIVLww62Plthq4","title":"Pentesting Graphql","pathname":"/web-pentesting-stuff/pentesting-port-80-443/pentesting-graphql","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Web Pentesting Stuff"},{"label":"Pentesting Port 80,443"}]},{"id":"E4TFT35ZnoJjzRHMeLij","title":"Pentesting Redis 6379","pathname":"/web-pentesting-stuff/pentesting-port-80-443/pentesting-redis-6379","siteSpaceId":"sitesp_R2TK3","description":"Redis is an open-source in-memory storage, used as a distributed, in-memory key–value database, cache and message broker, with optional durability.","breadcrumbs":[{"label":"Web Pentesting Stuff"},{"label":"Pentesting Port 80,443"}]},{"id":"LfiPYK3rpYPDgFZJ6EqG","title":"Wordpress Pentesting","pathname":"/cms-pentesting/wordpress-pentesting","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"CMS Pentesting"}]},{"id":"llLKjMjtfwgipc7l2x9t","title":"Jenkins","pathname":"/cms-pentesting/jenkins","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"CMS Pentesting"}]},{"id":"dpW5YMSANPhFBtVXPyW0","title":"Grafana","pathname":"/cms-pentesting/grafana","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"CMS Pentesting"}]},{"id":"Vv1gjyspiMyZ2hXq8hzL","title":"Nmap Commands","pathname":"/network-penetration-testing/nmap-commands","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Network Penetration Testing"}]},{"id":"PBOuoSgD7nxCO2FRs0CW","title":"53 - Pentesting DNS","pathname":"/network-penetration-testing/53-pentesting-dns","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Network Penetration Testing"}]},{"id":"yS0OgdErX70Pl9tD285T","title":"88 - Pentesting Kerberos","pathname":"/network-penetration-testing/88-pentesting-kerberos","siteSpaceId":"sitesp_R2TK3","description":"","breadcrumbs":[{"label":"Network Penetration Testing"}]},{"id":"0ACDLdim6sKMKVwHFLd0","title":"111 - Pentesting RPC","pathname":"/network-penetration-testing/111-pentesting-rpc","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Network Penetration Testing"}]},{"id":"j1EUlEdsJ2DqkRyNSCP4","title":"389 - Pentesting LDAP","pathname":"/network-penetration-testing/389-pentesting-ldap","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Network Penetration Testing"}]},{"id":"HQrzLuWQHqecbgze7EnG","title":"445 - Pentesting SMB","pathname":"/network-penetration-testing/445-pentesting-smb","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Network Penetration Testing"}]},{"id":"MntpBAITKejgwG1YXZqc","title":"873 - Pentesting Rsync","pathname":"/network-penetration-testing/873-pentesting-rsync","siteSpaceId":"sitesp_R2TK3","description":"rsync is a protocol which is used to sync and transfer files.","breadcrumbs":[{"label":"Network Penetration Testing"}]},{"id":"u22q6Sr5Dv5qktPTULkz","title":"1433 - Pentesting MSSQL","pathname":"/network-penetration-testing/1433-pentesting-mssql","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Network Penetration Testing"}]},{"id":"HpGCY9JuMbhviixc85LD","title":"2049 - Pentesting NFS","pathname":"/network-penetration-testing/2049-pentesting-nfs","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Network Penetration Testing"}]},{"id":"DNFixxLKjr5XjdEWxVi7","title":"3389 Pentesting RDP","pathname":"/network-penetration-testing/3389-pentesting-rdp","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Network Penetration Testing"}]},{"id":"Eui0xsQNPpeJ5jee6llq","title":"3306 - Pentesting Mysql","pathname":"/network-penetration-testing/3306-pentesting-mysql","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Network Penetration Testing"}]},{"id":"IJkHXOyzLt9NOXPwzgw5","title":"5000 - Pentesting Docker Registry","pathname":"/network-penetration-testing/5000-pentesting-docker-registry","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Network Penetration Testing"}]},{"id":"rcTFDJ3S3DkJnzdpZCf3","title":"Methodology","pathname":"/active-directory-pentesting/methodology","siteSpaceId":"sitesp_R2TK3","description":"This Page shows the Complete methodology for Active Directory Pentesting","breadcrumbs":[{"label":"Active Directory Pentesting"}]},{"id":"9msZ6copLte2gHLHPXHT","title":"Phishing using Modlishka","pathname":"/red-teaming-and-phishing/phishing-using-modlishka","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Red Teaming and Phishing"}]},{"id":"i177fzqWfB390wi3cQjs","title":"Hydra","pathname":"/password-and-bruteforce-attacks/hydra","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Password and Bruteforce Attacks"}]},{"id":"RzTA798FZaPuabrCxzqy","title":"Cewl","pathname":"/password-and-bruteforce-attacks/cewl","siteSpaceId":"sitesp_R2TK3","description":"We can use CEWL to create keywords from the website, sometimes these keywords can be found out to be the password","breadcrumbs":[{"label":"Password and Bruteforce Attacks"}]},{"id":"jKv4RYwJxzLEeCCRDTDk","title":"Making Custom Wordlists (Usernames)","pathname":"/password-and-bruteforce-attacks/making-custom-wordlists-usernames","siteSpaceId":"sitesp_R2TK3","description":"","breadcrumbs":[{"label":"Password and Bruteforce Attacks"}]},{"id":"3AYiVxheMG9p3sXecwik","title":"JSON to txt Wordlist","pathname":"/password-and-bruteforce-attacks/json-to-txt-wordlist","siteSpaceId":"sitesp_R2TK3","description":"We can Convert JSON wordlist to text File which can be passed to Gobuster or FFUF using the below command","breadcrumbs":[{"label":"Password and Bruteforce Attacks"}]},{"id":"cdEgkF16FqO4imtbXi1k","title":"Getting a Fully Interactive TTY Shell","pathname":"/linux-privilege-escalation/getting-a-fully-interactive-tty-shell","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Linux Privilege Escalation"}]},{"id":"b1EGy0aEpGZx9dGzz6vO","title":"Docker Container Escape","pathname":"/linux-privilege-escalation/docker-container-escape","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Linux Privilege Escalation"}]},{"id":"BR8Ie8DBBzzxex6UjlqP","title":"Tunneling and Pivoting","pathname":"/windows-privilege-escalation/tunneling-and-pivoting","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Windows Privilege Escalation"}]},{"id":"WYNokLcYS6h6u5aUMZJS","title":"Methodology","pathname":"/windows-privilege-escalation/methodology","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Windows Privilege Escalation"}]},{"id":"5ubGfBo7fzulbZHSEb3s","title":"Bug Bounty Methodology","pathname":"/bug-bounty/bug-bounty-methodology","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Bug Bounty"}]},{"id":"AfKuCPQjvhMSGdazSBHl","title":"XSS","pathname":"/bug-bounty/xss","siteSpaceId":"sitesp_R2TK3","description":"Below are the commands and some automation stuff which normally use, some of these i have got from different places like twitter or linkedin","breadcrumbs":[{"label":"Bug Bounty"}]},{"id":"O494h0Np23jGK62u4jSa","title":"SQL Injection","pathname":"/bug-bounty/sql-injection","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Bug Bounty"}]},{"id":"AzJOxhQIvYcBrNx4Oikr","title":"Command Injection","pathname":"/bug-bounty/command-injection","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Bug Bounty"}]},{"id":"1NyNHXQlvYIDTqBusfwu","title":"File Upload Pentesting","pathname":"/bug-bounty/file-upload-pentesting","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Bug Bounty"}]},{"id":"h81kw7ZyIJqtOir54ylf","title":"Local and Remote File Inclusion","pathname":"/bug-bounty/local-and-remote-file-inclusion","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Bug Bounty"}]},{"id":"xEabsyJQZZYoPcm0CRCB","title":"Broken Authentication","pathname":"/bug-bounty/broken-authentication","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Bug Bounty"}]},{"id":"wIv6gZMdSSzgNmUDxQ3d","title":"Server Side Request Forgery (SSRF)","pathname":"/bug-bounty/server-side-request-forgery-ssrf","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Bug Bounty"}]},{"id":"rw3JfEM3SkOUOG1NGUsz","title":"XML External Entity (XXE)","pathname":"/bug-bounty/xml-external-entity-xxe","siteSpaceId":"sitesp_R2TK3","description":"XXE happens where we can inject our XML inputs and those inputs are not being sanitized by XML Parser","breadcrumbs":[{"label":"Bug Bounty"}]},{"id":"zrJPcdySh23br78os7Bs","title":"Server Side Template Injection (SSTI)","pathname":"/bug-bounty/server-side-template-injection-ssti","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Bug Bounty"}]},{"id":"bFRtv8tPMCATOATU61GK","title":"ReconFTW (six2dez)","pathname":"/bug-bounty/reconftw-six2dez","siteSpaceId":"sitesp_R2TK3","description":"ReconFTW is the complete automation process for the bug bounty.It can find you subdomains,fuzzing,nuclei scanning and using more than 20 tools to find vulnerabilites.","breadcrumbs":[{"label":"Bug Bounty"}]},{"id":"ptpwufc1L0zz12xvVAIg","title":"JS Files","pathname":"/bug-bounty/js-files","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Bug Bounty"}]},{"id":"cK8692htuMa8X6X06c6g","title":"SignUp Page","pathname":"/bug-bounty/signup-page","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Bug Bounty"}]},{"id":"jbFmkqow35CyWb7WYSgR","title":"WEB","pathname":"/ctfs/web","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"CTFs"}]},{"id":"bpD4mYeC1kzWvuWkUZ71","title":"Regex Bypass","pathname":"/ctfs/regex-bypass","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"CTFs"}]},{"id":"oiQOLj3fwiMs0a9Xx32H","title":"Grep & Regex & Find strings","pathname":"/ctfs/grep-and-regex-and-find-strings","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"CTFs"}]},{"id":"uOjb9k6awExknU7qkmV2","title":"Wireless Methodology and Commands","pathname":"/wireless-pentesting/wireless-methodology-and-commands","siteSpaceId":"sitesp_R2TK3","description":"This Page will provide you all the commands and tools for the wireless pentesting.","breadcrumbs":[{"label":"Wireless Pentesting"}]},{"id":"3GMnEnDDZkrMYS67Y41g","title":"Python Code Snippets","pathname":"/python-programs-for-pentesting/python-code-snippets","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Python Programs for Pentesting"}]},{"id":"0xV72oFszVffofLLUjmJ","title":"CRTO & Cobalt Strike","pathname":"/certifications-notes/crto-and-cobalt-strike","siteSpaceId":"sitesp_R2TK3","description":"This Page contains all the notes which are required to pass the CRTO  Exam and it also contains the lab instructions as well","breadcrumbs":[{"label":"Certifications-Notes"}]},{"id":"AnpgUJY9Jf0s9uc4NV0S","title":"Email Spoofing","pathname":"/phishing-and-real-world-stuff/email-spoofing","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Phishing and Real World Stuff"}]},{"id":"ZV54HbLUR5TGcKGren9s","title":"Attacking Office 365 & Exchange","pathname":"/phishing-and-real-world-stuff/attacking-office-365-and-exchange","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Phishing and Real World Stuff"}]},{"id":"C8j7poSG5pINTZhIpkLZ","title":"Enumeration","pathname":"/cloud-pentesting/enumeration","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"Cloud Pentesting"}]},{"id":"PWJOODXeKg1gmoMX1orr","title":"Simplehelp CVE-2024-57727","pathname":"/cves/simplehelp-cve-2024-57727","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"CVEs"}]},{"id":"9FBPQcEAbDdMDzg7dXyw","title":"Next.js CVE-2025-29927","pathname":"/cves/next.js-cve-2025-29927","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"CVEs"}]},{"id":"7BGzwKO59prB0wDBlh6X","title":"Metasploit","pathname":"/c2-frameworks/metasploit","siteSpaceId":"sitesp_R2TK3","breadcrumbs":[{"label":"C2-Frameworks"}]},{"id":"3cxBWuLzv37CFl0Q1Hen","title":"Docker For Pentesting","pathname":"/docker-commands-pentesting/docker-for-pentesting","siteSpaceId":"sitesp_R2TK3","description":"We can use Docker for Pentesting, We can Launch our own Docker container and test for a specific Vulnerabiliy.","breadcrumbs":[{"label":"Docker-Commands-Pentesting"}]}]}