Mynk0x00
Owner-
Mynk0x00 posted a new product. 4 months ago
Network Pentesting | Pentester AcademyA non-exhaustive set of topics covered include:
- Pentesting Routers
- Attacking SSH with Metasploit, Nmap, Medusa, Hydra, Ncrack
- SNMP attacks
- Bypassing Firewalls
- Payloads and Shells
…
-
Mynk0x00 posted a new product. 4 months ago
PW Skills DATAScience CourseLearn Data Science with PW — Learn ML Python, AI, Power BI, Tableau, Basic & Advanced Excel From Industry Experts @ PW. PW Certification & Internship. Learn from FAANG Experts. Doubt Support & Community…
-
Mynk0x00 posted a new product. 4 months ago
-
Mynk0x00 started the discussion Tips Of JavaScript Recon In Web Applications in the forum Tips And Tricks 4 months ago
Tips Of JavaScript Recon In Web Applications
we’ll talk a bit about JavaScript recon in web applications. I’ve based my methodology on My Javascript Recon Process – BugBounty.
Collecting links to JS files can be done using gau:
gau example.com | grep -iE '.js' | grep -ivE '.json' | sort -u >> exampleJS.txt
Alternatively, you can use waymore (https://github.com/xnl-h4ck3r/waymore),…
-
Mynk0x00 posted a new product. 4 months ago
eCPPT Penetration Testing Professional 2024 CourseThe eCPPT evaluates an individual’s skills across various domains and objectives, certifying their mastery and understanding.
-
Mynk0x00 started the discussion Password Attack Tools in the forum Tips And Tricks 4 months ago
Crack passwords and create wordlists.
John the Ripper (https://github.com/magnumripper/JohnTheRipper)
C
Linux/Windows/macOS
John the Ripper is a fast password cracker.
hashcat (https://github.com/hashcat/hashcat)
C
Linux/Windows/macOS
World’s fastest and most advanced password recovery…
-
Mynk0x00 started the discussion Bug Hunting methodology in the forum Tips And Tricks 4 months ago
By Lostsec {Coffine}
subfinder -d viator.com -all -recursive > subdomain.txt
cat subdomain.txt | httpx-toolkit -ports 80,443,8080,8000,8888 -threads 200 > subdomains_alive.txt
katana -u subdomains_alive.txt -d 5 -ps -pss waybackarchive,commoncrawl,alienvault -kf -jc -fx -ef woff,css,png,svg,jpg,woff2,jpeg,gif,svg -o allurls.txt
cat allurls.txt |…
-
Mynk0x00 posted a new product. 4 months ago
Full Stack Web Attack [srcincite.io]Full Stack Web Attack is not an entry-level course. It’s designed to push you beyond what you thought was possible and set you on the path to develop your own workflow for offensive zero-day web research.
-
Mynk0x00 started the discussion Hunting on IPs : One Liners you can Try in the forum Tips And Tricks 4 months ago
Hunting on IPs : One Liners you can Try
1. Find Ips
shodan search Ssl.cert.subject.CN:"target.com" --fields ip_str | anew ips.txt >> Find Ips
2. Censys Search
censys search "target.com" --index-type hosts | jq -c '.[] | {ip: .ip}' | grep -oE '[0-9]+.[0-9]+.[0-9]+.[0-9]+'
3. Naabu PortScan
naabu -l targets.txt -rate 3000 -retries 3 -warm-up-time 0 -rate 150 -c 50 -ports 1-65535…
-
Mynk0x00 posted a new product. 4 months ago
Junior Penetration Tester [eJPT v2 ] CourseAssessment Methodologies (25%)
Locate endpoints on a network
Identify open ports and services on a target
Identify operating system of a target
Extract company information from public sources
Gather… - Load More