{"version":1,"pages":[{"id":"7XQvBW7nYlmuBCCe2f8U","title":"HackTricks","pathname":"/hacktricks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Welcome!","emoji":"1f47e"}]},{"id":"oZ7Flox0EnlChZfetJAI","title":"HackTricks Values & FAQ","pathname":"/hacktricks/welcome/hacktricks-values-and-faq","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Welcome!","emoji":"1f47e"}]},{"id":"R6Fe3hruN0msCSC5Rm4Z","title":"About the author","pathname":"/hacktricks/welcome/about-the-author","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Welcome!","emoji":"1f47e"}]},{"id":"aAglVgIzRn03ZwGsen9Z","title":"Pentesting Methodology","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-methodology","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"96VMzXuYy3lU66glWn0H","title":"External Recon Methodology","pathname":"/hacktricks/generic-methodologies-and-resources/external-recon-methodology","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"pUpYl2zlA4OzGiD5LnAg","title":"Wide Source Code Search","pathname":"/hacktricks/generic-methodologies-and-resources/external-recon-methodology/wide-source-code-search","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"External Recon Methodology"}]},{"id":"CA6Oew1kADRu51Iv1qyg","title":"Github Dorks & Leaks","pathname":"/hacktricks/generic-methodologies-and-resources/external-recon-methodology/github-leaked-secrets","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"External Recon Methodology"}]},{"id":"auA5lzfHHzTGusCZqavu","title":"Pentesting Network","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"OIBT7yUd71Hadkam4BzU","title":"DHCPv6","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/dhcpv6","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"8tq522RCS0ltuq1Ts2Uo","title":"EIGRP Attacks","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/eigrp-attacks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"56Mz3fBJ4rQ2Pq9siBlL","title":"GLBP & HSRP Attacks","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/glbp-and-hsrp-attacks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"fCROCh4yyIxKfzthbRwg","title":"IDS and IPS Evasion","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/ids-evasion","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"FAqwDTttP3NZlbloKf2l","title":"Lateral VLAN Segmentation Bypass","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/lateral-vlan-segmentation-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"ffOhvdekYK5lKfNEtiOM","title":"Network Protocols Explained (ESP)","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/network-protocols-explained-esp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"MDsxLy3iauBjuMMk80VE","title":"Nmap Summary (ESP)","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/nmap-summary-esp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"bUu7sk0PJY9lyLdyYF21","title":"Pentesting IPv6","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/pentesting-ipv6","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"w6R0ZHgFZyugEMjwRhPx","title":"WebRTC DoS","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/webrtc-dos","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"n2ZzKzRMPQXJnSf4gUWt","title":"Spoofing LLMNR, NBT-NS, mDNS/DNS and WPAD and Relay Attacks","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/spoofing-llmnr-nbt-ns-mdns-dns-and-wpad-and-relay-attacks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"K7vRdqp5a8fvvfpx3VvK","title":"Spoofing SSDP and UPnP Devices with EvilSSDP","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/spoofing-ssdp-and-upnp-devices","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"5ezsTENVtG06hRZPRtUV","title":"Pentesting Wifi","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-wifi","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"YHmlqJgpwgmpw6QrmXs6","title":"Evil Twin EAP-TLS","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-wifi/evil-twin-eap-tls","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Wifi"}]},{"id":"DynwbNArO1jqtDCkcrR3","title":"Phishing Methodology","pathname":"/hacktricks/generic-methodologies-and-resources/phishing-methodology","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"Hk3hBViQmolQTmEr4GmL","title":"Clone a Website","pathname":"/hacktricks/generic-methodologies-and-resources/phishing-methodology/clone-a-website","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Phishing Methodology"}]},{"id":"hVm8vHOTkrZVN7DskhVg","title":"Detecting Phishing","pathname":"/hacktricks/generic-methodologies-and-resources/phishing-methodology/detecting-phising","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Phishing Methodology"}]},{"id":"GztLGWaJRBGlEEnzHosY","title":"Phishing Files & Documents","pathname":"/hacktricks/generic-methodologies-and-resources/phishing-methodology/phishing-documents","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Phishing Methodology"}]},{"id":"r7WPB2pflfhnTLZMbJqv","title":"Basic Forensic Methodology","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"zp5Sx1qZUc546pcit5Is","title":"Baseline Monitoring","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/file-integrity-monitoring","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"iaBaScg9XJkvU216B2Os","title":"Anti-Forensic Techniques","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/anti-forensic-techniques","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"F3s4LH9ylqSS6vXlnQy9","title":"Docker Forensics","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/docker-forensics","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"uoo2W3d8c2d8pH5Qv1ik","title":"Image Acquisition & Mount","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/image-acquisition-and-mount","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"63OoY6D2v0hKTcH8NRHI","title":"Linux Forensics","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/linux-forensics","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"9IuxBp8wdNxsDZFzG8B7","title":"Malware Analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/malware-analysis","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"rqrNliof5Yu3Cs4nefaM","title":"Memory dump analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/memory-dump-analysis","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"m9bK0DcnUDSwxgAJJWEi","title":"Volatility - CheatSheet","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/memory-dump-analysis/volatility-cheatsheet","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Memory dump analysis"}]},{"id":"ObiinK31JLc8nOrLsVFN","title":"Partitions/File Systems/Carving","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/partitions-file-systems-carving","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"FQ82YRuz46FLlEJEvfJN","title":"File/Data Carving & Recovery Tools","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/partitions-file-systems-carving/file-data-carving-recovery-tools","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Partitions/File Systems/Carving"}]},{"id":"kw7kpAbC8TP6c584K8QS","title":"Pcap Inspection","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/pcap-inspection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"KiwZUz3J5oxA8BGAn0XS","title":"DNSCat pcap analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/pcap-inspection/dnscat-exfiltration","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Pcap Inspection"}]},{"id":"pSFJ7Ydqm4DTaaOFYUfy","title":"Suricata & Iptables cheatsheet","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/pcap-inspection/suricata-and-iptables-cheatsheet","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Pcap Inspection"}]},{"id":"MOH0Xyz7sSSmhl4Dow5i","title":"USB Keystrokes","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/pcap-inspection/usb-keystrokes","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Pcap Inspection"}]},{"id":"6epKvDWl8FZz3TwsixGh","title":"Wifi Pcap Analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/pcap-inspection/wifi-pcap-analysis","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Pcap Inspection"}]},{"id":"zrzoHQ0N23BGYCofWXzM","title":"Wireshark tricks","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/pcap-inspection/wireshark-tricks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Pcap Inspection"}]},{"id":"BKM9E5JobU4oIajpbrQf","title":"Specific Software/File-Type Tricks","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"GWrkw8U0b3xP0q7C7Il1","title":"Decompile compiled python binaries (exe, elf) - Retreive from .pyc","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/.pyc","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"d3V9Y82SJDSVdqBaxaEP","title":"Browser Artifacts","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/browser-artifacts","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"ckxvkDz32uew642TYNJL","title":"Deofuscation vbs (cscript.exe)","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/desofuscation-vbs-cscript.exe","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"0ldueHwIQc1WNqhDwJIN","title":"Local Cloud Storage","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/local-cloud-storage","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"gJquZwYya4Ee73LZJ3IJ","title":"Office file analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/office-file-analysis","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"4vccyFRUmAXvQa69TUDJ","title":"PDF File analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/pdf-file-analysis","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"P8C5xmQDQviDx124JleZ","title":"PNG tricks","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/png-tricks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"HkZVTQeMTqhtJsnUPut6","title":"Video and Audio file analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/video-and-audio-file-analysis","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"fR12tMTrCm9gYSUvpGJF","title":"ZIPs tricks","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/zips-tricks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"Os7RTFRMCcrHaYlthJKT","title":"Windows Artifacts","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/windows-forensics","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"mlHvRyZ9kDpLzBVrtrFd","title":"Interesting Windows Registry Keys","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/windows-forensics/interesting-windows-registry-keys","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Windows Artifacts"}]},{"id":"zWhr9ZWqJD7MvI7nM2qy","title":"Brute Force - CheatSheet","pathname":"/hacktricks/generic-methodologies-and-resources/brute-force","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"TD61sU0yHPRdrtmuu2TQ","title":"Python Sandbox Escape & Pyscript","pathname":"/hacktricks/generic-methodologies-and-resources/python","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"BW2mNe8lJO7YHGL5n31e","title":"Bypass Python sandboxes","pathname":"/hacktricks/generic-methodologies-and-resources/python/bypass-python-sandboxes","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"GSNZD1uLI3GtahNtQpGC","title":"LOAD_NAME / LOAD_CONST opcode OOB Read","pathname":"/hacktricks/generic-methodologies-and-resources/python/bypass-python-sandboxes/load_name-load_const-opcode-oob-read","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"},{"label":"Bypass Python sandboxes"}]},{"id":"rg4HYPAu68ViOJbE5Uk3","title":"Class Pollution (Python's Prototype Pollution)","pathname":"/hacktricks/generic-methodologies-and-resources/python/class-pollution-pythons-prototype-pollution","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"8f3ANAbG8t1X15ST7RJM","title":"Python Internal Read Gadgets","pathname":"/hacktricks/generic-methodologies-and-resources/python/python-internal-read-gadgets","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"aCsxBO6s8RU9MefkJecE","title":"Pyscript","pathname":"/hacktricks/generic-methodologies-and-resources/python/pyscript","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"gmLyuFHlaKsSwWw8zbp0","title":"venv","pathname":"/hacktricks/generic-methodologies-and-resources/python/venv","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"JOMzC87eFOPj7lUOQGc3","title":"Web Requests","pathname":"/hacktricks/generic-methodologies-and-resources/python/web-requests","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"tHsWhNIwRfbHflH0t1QR","title":"Bruteforce hash (few chars)","pathname":"/hacktricks/generic-methodologies-and-resources/python/bruteforce-hash-few-chars","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"12XEGt2Mn5f4YiWS4Rjj","title":"Basic Python","pathname":"/hacktricks/generic-methodologies-and-resources/python/basic-python","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"OGLB1uaKxZMTSxh4jcce","title":"Exfiltration","pathname":"/hacktricks/generic-methodologies-and-resources/exfiltration","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"tenw9ZIoZx5ODMygu6vK","title":"Tunneling and Port Forwarding","pathname":"/hacktricks/generic-methodologies-and-resources/tunneling-and-port-forwarding","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"XFGibAZTvQDGnDp4WAAU","title":"Threat Modeling","pathname":"/hacktricks/generic-methodologies-and-resources/threat-modeling","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"u2OgJTAne4AsakecmQYD","title":"Search Exploits","pathname":"/hacktricks/generic-methodologies-and-resources/search-exploits","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"EYhgTZs41Rx4ueSlmTiR","title":"Reverse Shells (Linux, Windows, MSFVenom)","pathname":"/hacktricks/generic-methodologies-and-resources/reverse-shells","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"9cwTyLTK9hWCflUSC2Cb","title":"MSFVenom - CheatSheet","pathname":"/hacktricks/generic-methodologies-and-resources/reverse-shells/msfvenom","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Reverse Shells (Linux, Windows, MSFVenom)"}]},{"id":"PhYe5ID9wa4Xgl5tdhh9","title":"Reverse Shells - Windows","pathname":"/hacktricks/generic-methodologies-and-resources/reverse-shells/windows","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Reverse Shells (Linux, Windows, MSFVenom)"}]},{"id":"9pnJKsywlvHsU86AARYD","title":"Reverse Shells - Linux","pathname":"/hacktricks/generic-methodologies-and-resources/reverse-shells/linux","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Reverse Shells (Linux, Windows, MSFVenom)"}]},{"id":"Plxgv9DhmVSVoTIzXs8Y","title":"Full TTYs","pathname":"/hacktricks/generic-methodologies-and-resources/reverse-shells/full-ttys","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Reverse Shells (Linux, Windows, MSFVenom)"}]},{"id":"o3EzYgmzuzs5hzOVsZYc","title":"Checklist - Linux Privilege Escalation","pathname":"/hacktricks/linux-hardening/linux-privilege-escalation-checklist","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"hUS3EzP0k7iGct98FKzA","title":"Linux Privilege Escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"ulWlRuSBiiJEdWkZBC0g","title":"Arbitrary File Write to Root","pathname":"/hacktricks/linux-hardening/privilege-escalation/write-to-root","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"4s0I0fgQvjo6PeesUfBD","title":"Cisco - vmanage","pathname":"/hacktricks/linux-hardening/privilege-escalation/cisco-vmanage","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"kjHLPoLlCogBVTZfyXOr","title":"Containerd (ctr) Privilege Escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation/containerd-ctr-privilege-escalation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"gtZn7V973tWf6o9pu9Tx","title":"D-Bus Enumeration & Command Injection Privilege Escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation/d-bus-enumeration-and-command-injection-privilege-escalation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"qUNb02L49BpS9VvZZ0Nb","title":"Docker Security","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"KK0slpcUJmzfVRfcLSNy","title":"Abusing Docker Socket for Privilege Escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/abusing-docker-socket-for-privilege-escalation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"P2dBv5TJqbw5tqfQQ6aX","title":"AppArmor","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/apparmor","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"sMRRnQCVokWU8Fnj1fxN","title":"AuthZ& AuthN - Docker Access Authorization Plugin","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/authz-and-authn-docker-access-authorization-plugin","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"avJ0O4v4692MFfiFBriZ","title":"CGroups","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/cgroups","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"jF2IgjY7YN7iqrc89oyp","title":"Docker --privileged","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/docker-privileged","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"jgEHzhVAYHzSHbQat33V","title":"Docker Breakout / Privilege Escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/docker-breakout-privilege-escalation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"5SF4kZshbfcnsaRej6WT","title":"release_agent exploit - Relative Paths to PIDs","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/docker-breakout-privilege-escalation/release_agent-exploit-relative-paths-to-pids","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Docker Breakout / Privilege Escalation"}]},{"id":"eAEPoOktc9ADyBJ7xshH","title":"Docker release_agent cgroups escape","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/docker-breakout-privilege-escalation/docker-release_agent-cgroups-escape","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Docker Breakout / Privilege Escalation"}]},{"id":"ej6lkqW2re9Z8r1MrzAv","title":"Sensitive Mounts","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/docker-breakout-privilege-escalation/sensitive-mounts","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Docker Breakout / Privilege Escalation"}]},{"id":"M3hnXJMTvWX9J0YIzB4f","title":"Namespaces","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"OAXfyTLsSUP5HjyTP7YK","title":"CGroup Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/cgroup-namespace","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"s83vs1wLJipeT75Klm7s","title":"IPC Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/ipc-namespace","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"FkhUddJrAFG2CJvAZRPo","title":"PID Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/pid-namespace","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"sMF3ieYETYDY462XHSkb","title":"Mount Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/mount-namespace","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"5OP0OOZXZpa2oQytdSyb","title":"Network Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/network-namespace","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"Ls94qDclk5cjEaDrj1nk","title":"Time Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/time-namespace","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"u1D28fompvvQwn7GYslN","title":"User Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/user-namespace","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"UB7D9oGxE4syDxZghQX2","title":"UTS Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/uts-namespace","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"SJkHIvZYv71ju0gqT4a2","title":"Seccomp","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/seccomp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"ze559ZkCMLNC1zCSGSil","title":"Weaponizing Distroless","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/weaponizing-distroless","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"xPjfFReFt0USs7EieCha","title":"Escaping from Jails","pathname":"/hacktricks/linux-hardening/privilege-escalation/escaping-from-limited-bash","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"3QpuqCoHBQbHBCnbT9EA","title":"euid, ruid, suid","pathname":"/hacktricks/linux-hardening/privilege-escalation/euid-ruid-suid","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"tzh4j1FXZwHcoW1VhzXU","title":"Interesting Groups - Linux Privesc","pathname":"/hacktricks/linux-hardening/privilege-escalation/interesting-groups-linux-pe","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"5gU17Ou8Gwrw7wtSZoM8","title":"lxd/lxc Group - Privilege escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation/interesting-groups-linux-pe/lxd-privilege-escalation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Interesting Groups - Linux Privesc"}]},{"id":"gkOdhKsXVjbH0PDzCXCh","title":"Logstash","pathname":"/hacktricks/linux-hardening/privilege-escalation/logstash","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"c5dvJnWhVg6hs9E7hpyD","title":"ld.so privesc exploit example","pathname":"/hacktricks/linux-hardening/privilege-escalation/ld.so.conf-example","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"LuxW0YgKKjLPegr7as3d","title":"Linux Active Directory","pathname":"/hacktricks/linux-hardening/privilege-escalation/linux-active-directory","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"oM4jR5TpZ9xF8Rh933KA","title":"Linux Capabilities","pathname":"/hacktricks/linux-hardening/privilege-escalation/linux-capabilities","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"35LTLOcHdA9DFZxsKxKP","title":"NFS no_root_squash/no_all_squash misconfiguration PE","pathname":"/hacktricks/linux-hardening/privilege-escalation/nfs-no_root_squash-misconfiguration-pe","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"eEoK0ggHln29sLKblP7I","title":"Node inspector/CEF debug abuse","pathname":"/hacktricks/linux-hardening/privilege-escalation/electron-cef-chromium-debugger-abuse","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"rR85dI3RzA2SJBcgQ5qa","title":"Payloads to execute","pathname":"/hacktricks/linux-hardening/privilege-escalation/payloads-to-execute","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"CRg5gCm3BIiQGfHHvvGy","title":"RunC Privilege Escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation/runc-privilege-escalation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"KaYf9RpYH8CbWoja1L6I","title":"SELinux","pathname":"/hacktricks/linux-hardening/privilege-escalation/selinux","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"67m7yQbpFfwOoEtNWoGb","title":"Socket Command Injection","pathname":"/hacktricks/linux-hardening/privilege-escalation/socket-command-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"fy3kcx4MQTC8FBEe8Yqv","title":"Splunk LPE and Persistence","pathname":"/hacktricks/linux-hardening/privilege-escalation/splunk-lpe-and-persistence","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"7qLGvSY5epFrKLWimXbZ","title":"SSH Forward Agent exploitation","pathname":"/hacktricks/linux-hardening/privilege-escalation/ssh-forward-agent-exploitation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"XbWsJrLEpxbEPUxoV3jc","title":"Wildcards Spare tricks","pathname":"/hacktricks/linux-hardening/privilege-escalation/wildcards-spare-tricks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"mefPSGCWGBVVdvQDL4nd","title":"Useful Linux Commands","pathname":"/hacktricks/linux-hardening/useful-linux-commands","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"3eYyQzYlbwYm5OweSWm2","title":"Bypass Linux Restrictions","pathname":"/hacktricks/linux-hardening/bypass-bash-restrictions","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"ifFuDgEX038dRcyEIdIV","title":"Bypass FS protections: read-only / no-exec / Distroless","pathname":"/hacktricks/linux-hardening/bypass-bash-restrictions/bypass-fs-protections-read-only-no-exec-distroless","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Bypass Linux Restrictions"}]},{"id":"oiCAVIOedDpu4Hf5sPgq","title":"DDexec / EverythingExec","pathname":"/hacktricks/linux-hardening/bypass-bash-restrictions/bypass-fs-protections-read-only-no-exec-distroless/ddexec","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Bypass Linux Restrictions"},{"label":"Bypass FS protections: read-only / no-exec / Distroless"}]},{"id":"qMpvYobls0VZJlEGCBqA","title":"Linux Environment Variables","pathname":"/hacktricks/linux-hardening/linux-environment-variables","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"tfXjcjYQWwhwQDOe8aiO","title":"Linux Post-Exploitation","pathname":"/hacktricks/linux-hardening/linux-post-exploitation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"PlwLW96qHw0BZP8sDbMt","title":"PAM - Pluggable Authentication Modules","pathname":"/hacktricks/linux-hardening/linux-post-exploitation/pam-pluggable-authentication-modules","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Post-Exploitation"}]},{"id":"yzN5nzcS0JGlP0s9Dvr1","title":"FreeIPA Pentesting","pathname":"/hacktricks/linux-hardening/freeipa-pentesting","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"yX8MxZJ63POVsYVtWMvG","title":"macOS Security & Privilege Escalation","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"}]},{"id":"YbEd1svnF1swSwF1EYeO","title":"macOS Apps - Inspecting, debugging and Fuzzing","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-apps-inspecting-debugging-and-fuzzing","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"ZidlZ5K8LP23nSVy7j8N","title":"Objects in memory","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-apps-inspecting-debugging-and-fuzzing/objects-in-memory","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Apps - Inspecting, debugging and Fuzzing"}]},{"id":"VZxhWvLhzgeFlEjhIap0","title":"Introduction to x64","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-apps-inspecting-debugging-and-fuzzing/introduction-to-x64","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Apps - Inspecting, debugging and Fuzzing"}]},{"id":"I7XltUpC2btjagZ2Lf0g","title":"Introduction to ARM64v8","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-apps-inspecting-debugging-and-fuzzing/arm64-basic-assembly","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Apps - Inspecting, debugging and Fuzzing"}]},{"id":"kb9RhbjaGNNZmVZEEvr1","title":"macOS AppleFS","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-applefs","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"MrCPKTc47z7udm5BjCqO","title":"macOS Bypassing Firewalls","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-bypassing-firewalls","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"TaWaNJRV2y9w1hIOlPAr","title":"macOS Defensive Apps","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-defensive-apps","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"II1QIomD8icBiZtlABAd","title":"macOS GCD - Grand Central Dispatch","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-gcd-grand-central-dispatch","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"JRLbrPkJ5ttDlNgC7ycH","title":"macOS Kernel & System Extensions","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/mac-os-architecture","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"Sw0TLKwKwFQ7u0Y4fSLx","title":"macOS IOKit","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/mac-os-architecture/macos-iokit","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Kernel & System Extensions"}]},{"id":"SOB0atrdEtSUDK1jk3eL","title":"macOS Kernel Extensions & Debugging","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/mac-os-architecture/macos-kernel-extensions","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Kernel & System Extensions"}]},{"id":"ydJq3kw4RZXDU7MbuHxm","title":"macOS Kernel Vulnerabilities","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/mac-os-architecture/macos-kernel-vulnerabilities","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Kernel & System Extensions"}]},{"id":"ChK8qnzQKBP0O7UQf6KD","title":"macOS System Extensions","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/mac-os-architecture/macos-system-extensions","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Kernel & System Extensions"}]},{"id":"rDbv5llT0l1sbg9KcOd5","title":"macOS Network Services & Protocols","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-protocols","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"bJz5sfkgczerriY3kIrU","title":"macOS File Extension & URL scheme app handlers","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-file-extension-apps","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"EzkDl4KZdNWg24x0Viu0","title":"macOS Files, Folders, Binaries & Memory","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-files-folders-and-binaries","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"JSx5fMrNt13i1JCrg7ks","title":"macOS Bundles","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-files-folders-and-binaries/macos-bundles","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Files, Folders, Binaries & Memory"}]},{"id":"PgsAMulp2UwaWZrYczc9","title":"macOS Installers Abuse","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-files-folders-and-binaries/macos-installers-abuse","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Files, Folders, Binaries & Memory"}]},{"id":"g9pbIeIj0bFDlDFStKo8","title":"macOS Memory Dumping","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-files-folders-and-binaries/macos-memory-dumping","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Files, Folders, Binaries & Memory"}]},{"id":"Wi6Ssw57AmwNyDemxz3f","title":"macOS Sensitive Locations & Interesting Daemons","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-files-folders-and-binaries/macos-sensitive-locations","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Files, Folders, Binaries & Memory"}]},{"id":"tw75WAMwiyUHcx55KXdE","title":"macOS Universal binaries & Mach-O Format","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-files-folders-and-binaries/universal-binaries-and-mach-o-format","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Files, Folders, Binaries & Memory"}]},{"id":"Gjyo5XUH4Q9uPFCRRsBW","title":"macOS Objective-C","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-basic-objective-c","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"lZrU40KP8RmCEK33JSUX","title":"macOS Privilege Escalation","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-privilege-escalation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"MM4zy6hvQiRKo9dbRoh7","title":"macOS Process Abuse","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"cRqtr3sIx4PtJXtLtPX9","title":"macOS Dirty NIB","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-dirty-nib","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"EVKSDfiVSrWo0iQVytQZ","title":"macOS Chromium Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-chromium-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"Eq9gKT1inK1Vt9zYo4yH","title":"macOS Electron Applications Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-electron-applications-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"6tH0WZ6aL1Fqpa4VKFtL","title":"macOS Function Hooking","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-function-hooking","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"X9EXmGkIWHkINK61kOSA","title":"macOS IPC - Inter Process Communication","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"YvJj6TUIcjCKgrTEoMle","title":"macOS MIG - Mach Interface Generator","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-mig-mach-interface-generator","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"}]},{"id":"00yuhcfrURCsQhaM7eLj","title":"macOS XPC","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-xpc","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"}]},{"id":"VEMPZzHjLjw3KEni5lHu","title":"macOS XPC Authorization","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-xpc/macos-xpc-authorization","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"},{"label":"macOS XPC"}]},{"id":"FfmK8Y6kR7lbRtlRKGR0","title":"macOS XPC Connecting Process Check","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-xpc/macos-xpc-connecting-process-check","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"},{"label":"macOS XPC"}]},{"id":"EwMLylruMypeQNyTwYf0","title":"macOS PID Reuse","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-xpc/macos-xpc-connecting-process-check/macos-pid-reuse","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"},{"label":"macOS XPC"},{"label":"macOS XPC Connecting Process Check"}]},{"id":"qAAbukTKcZOAk66QNITq","title":"macOS xpc_connection_get_audit_token Attack","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-xpc/macos-xpc-connecting-process-check/macos-xpc_connection_get_audit_token-attack","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"},{"label":"macOS XPC"},{"label":"macOS XPC Connecting Process Check"}]},{"id":"JVrAQd4TFwdNqkLqhk0a","title":"macOS Thread Injection via Task port","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-thread-injection-via-task-port","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"}]},{"id":"WiNHgIjCWZai2YKAwqby","title":"macOS Java Applications Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-java-apps-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"rO5HyuDi8rhDDHmr2WRX","title":"macOS Library Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-library-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"uHOfLq6bEtkumjyjO7IH","title":"macOS Dyld Hijacking & DYLD_INSERT_LIBRARIES","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-library-injection/macos-dyld-hijacking-and-dyld_insert_libraries","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS Library Injection"}]},{"id":"G9hJx7sDKbiBKj828nHu","title":"macOS Dyld Process","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-library-injection/macos-dyld-process","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS Library Injection"}]},{"id":"SYPQEFNIhi9mSd9Zkv0n","title":"macOS Perl Applications Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-perl-applications-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"VPeroEueXy4b4gre9oeQ","title":"macOS Python Applications Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-python-applications-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"FVNYbWPzfPWtmYdj5omY","title":"macOS Ruby Applications Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ruby-applications-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"gKYp6VBmvj3VsgzSZZ8v","title":"macOS .Net Applications Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-.net-applications-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"ePoia8evjSJJ1coaZE6l","title":"macOS Security Protections","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"kaPPqLzPpRfwcT5A678O","title":"macOS Gatekeeper / Quarantine / XProtect","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-gatekeeper","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"bmY1EB0pwiC2XoXuw01q","title":"macOS Launch/Environment Constraints & Trust Cache","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-launch-environment-constraints","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"1BAHeK30ZbbYrcMUJeCU","title":"macOS Sandbox","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-sandbox","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"ZuN5jE2h8DyKerXWgRxU","title":"macOS Default Sandbox Debug","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-sandbox/macos-default-sandbox-debug","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS Sandbox"}]},{"id":"hp3Jf4oDWFJDOjSUWhJ7","title":"macOS Sandbox Debug & Bypass","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-sandbox/macos-sandbox-debug-and-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS Sandbox"}]},{"id":"fOkoY5kh01ryfH0T2MZB","title":"macOS Office Sandbox Bypasses","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-sandbox/macos-sandbox-debug-and-bypass/macos-office-sandbox-bypasses","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS Sandbox"},{"label":"macOS Sandbox Debug & Bypass"}]},{"id":"eGhYfJh4UBYMBgLgl1IK","title":"macOS Authorizations DB & Authd","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-authorizations-db-and-authd","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"rdpMHG2AePOqHWyJSbFb","title":"macOS SIP","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-sip","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"4bt8rlRObu7eBKl6bRDC","title":"macOS TCC","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-tcc","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"mtFHGFe1q1hz6WWXAuEq","title":"macOS Apple Events","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-tcc/macos-apple-events","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS TCC"}]},{"id":"bM7IJyrPMd4TViCQdGLc","title":"macOS TCC Bypasses","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-tcc/macos-tcc-bypasses","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS TCC"}]},{"id":"Is6ge88dxmAvcuGR2UHg","title":"macOS Apple Scripts","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-tcc/macos-tcc-bypasses/macos-apple-scripts","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS TCC"},{"label":"macOS TCC Bypasses"}]},{"id":"m2g2sijG28F8AuMi6Zu6","title":"macOS TCC Payloads","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-tcc/macos-tcc-payloads","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS TCC"}]},{"id":"1ufHg1LWwwgJEf7rlq55","title":"macOS Dangerous Entitlements & TCC perms","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-dangerous-entitlements","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"88bwWKc6mhdNSzosZWpt","title":"macOS - AMFI - AppleMobileFileIntegrity","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-amfi-applemobilefileintegrity","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"gjgWbyofBuc84kFQHLCt","title":"macOS MACF - Mandatory Access Control Framework","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-macf-mandatory-access-control-framework","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"i9TqlxtX7jPFxgO4PitP","title":"macOS Code Signing","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-code-signing","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"mpNb03cW3oXd6XWHfzWh","title":"macOS FS Tricks","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-fs-tricks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"PWbI6czMl7QyV0R6d1tP","title":"macOS xattr-acls extra stuff","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-fs-tricks/macos-xattr-acls-extra-stuff","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS FS Tricks"}]},{"id":"651PwNIhEU8dgjshRsVJ","title":"macOS Users & External Accounts","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-users","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"4FEut8i9rTf1Yxpn8BmL","title":"macOS Red Teaming","pathname":"/hacktricks/macos-hardening/macos-red-teaming","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"}]},{"id":"0EjNAZmr9gQCuv9drsmi","title":"macOS MDM","pathname":"/hacktricks/macos-hardening/macos-red-teaming/macos-mdm","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Red Teaming"}]},{"id":"4EuR2WP9DV5c7MBCLRzr","title":"Enrolling Devices in Other Organisations","pathname":"/hacktricks/macos-hardening/macos-red-teaming/macos-mdm/enrolling-devices-in-other-organisations","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Red Teaming"},{"label":"macOS MDM"}]},{"id":"i46Dc2oKliSIRMWjonz2","title":"macOS Serial Number","pathname":"/hacktricks/macos-hardening/macos-red-teaming/macos-mdm/macos-serial-number","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Red Teaming"},{"label":"macOS MDM"}]},{"id":"Y5jc446idWxGd9KpNId7","title":"macOS Keychain","pathname":"/hacktricks/macos-hardening/macos-red-teaming/macos-keychain","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Red Teaming"}]},{"id":"yE6tdFjbSm0XuZYn3Lrw","title":"macOS Useful Commands","pathname":"/hacktricks/macos-hardening/macos-useful-commands","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"}]},{"id":"DuEfSjF0P1qmDZ2HDuKr","title":"macOS Auto Start","pathname":"/hacktricks/macos-hardening/macos-auto-start-locations","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"}]},{"id":"ZASMylMSOmsUe6Pqtjet","title":"Checklist - Local Windows Privilege Escalation","pathname":"/hacktricks/windows-hardening/checklist-windows-privilege-escalation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"D15J0RO85P6PF96Fv6fb","title":"Windows Local Privilege Escalation","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"0qfGcqHWsiDBsDcMsfsP","title":"Abusing Tokens","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/privilege-escalation-abusing-tokens","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"UYfYzeZDRudN1lngvwRM","title":"Access Tokens","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/access-tokens","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"t8kl9YoCwR1kuG2QgMhc","title":"ACLs - DACLs/SACLs/ACEs","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/acls-dacls-sacls-aces","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"d8scDUsUgSor7fIWH3LX","title":"AppendData/AddSubdirectory permission over service registry","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/appenddata-addsubdirectory-permission-over-service-registry","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"JUlvlKHleiWljVl5Qvik","title":"Create MSI with WIX","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/create-msi-with-wix","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"3OtPQbcMd1UC4kdFcTdn","title":"COM Hijacking","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/com-hijacking","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"1MNAsxHmZVhQAG8aC0Od","title":"Dll Hijacking","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/dll-hijacking","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"PrvrqQtA6LPA9ZljiwCY","title":"Writable Sys Path +Dll Hijacking Privesc","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/dll-hijacking/writable-sys-path-+dll-hijacking-privesc","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"},{"label":"Dll Hijacking"}]},{"id":"ZuRmJvcPTH61m46IStDr","title":"DPAPI - Extracting Passwords","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/dpapi-extracting-passwords","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"c20Ymr6yV0m2OOwSqxBS","title":"From High Integrity to SYSTEM with Name Pipes","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/from-high-integrity-to-system-with-name-pipes","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"E4d0Fi22LGeL43Zjw2WF","title":"Integrity Levels","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/integrity-levels","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"JFK25F9oy1i5ZCFlFeeM","title":"JuicyPotato","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/juicypotato","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"ktPl79ZaA2Un3SibNHMr","title":"Leaked Handle Exploitation","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/leaked-handle-exploitation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"HXblJDhxQ1jaUKDRbnBd","title":"MSI Wrapper","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/msi-wrapper","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"46fOYYmDBmgZKsUmD4l5","title":"Named Pipe Client Impersonation","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/named-pipe-client-impersonation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"3VjdmzXpqPbE0SFkjT9g","title":"Privilege Escalation with Autoruns","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/privilege-escalation-with-autorun-binaries","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"Nick3fcaXTK6lm9S2ZrE","title":"RoguePotato, PrintSpoofer, SharpEfsPotato, GodPotato","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/roguepotato-and-printspoofer","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"CQv2qibt0EefwFcVdhqo","title":"SeDebug + SeImpersonate copy token","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/sedebug-+-seimpersonate-copy-token","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"Xfb2dxYlyYXjVFDcBE2r","title":"SeImpersonate from High To System","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/seimpersonate-from-high-to-system","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"1IpsNiXzDgO7KLiR6PUY","title":"Windows C Payloads","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/windows-c-payloads","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"gemx0vPrS74tolHXIj3m","title":"Active Directory Methodology","pathname":"/hacktricks/windows-hardening/active-directory-methodology","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"ik3kAXCJCGrWHAvC5YFq","title":"Abusing Active Directory ACLs/ACEs","pathname":"/hacktricks/windows-hardening/active-directory-methodology/acl-persistence-abuse","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"4b6LRzpT0o1jKDGYs9ab","title":"Shadow Credentials","pathname":"/hacktricks/windows-hardening/active-directory-methodology/acl-persistence-abuse/shadow-credentials","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"},{"label":"Abusing Active Directory ACLs/ACEs"}]},{"id":"fP7FHNXW1Qf2OdvJ9piH","title":"AD Certificates","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-certificates","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"tA4ZgHqOiXM9Y5nOIdXj","title":"AD CS Account Persistence","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-certificates/account-persistence","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"},{"label":"AD Certificates"}]},{"id":"DqmyzApbNKZDkJ0rgsRH","title":"AD CS Domain Escalation","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-certificates/domain-escalation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"},{"label":"AD Certificates"}]},{"id":"yVA8qlldJPMQoQMbHkmP","title":"AD CS Domain Persistence","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-certificates/domain-persistence","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"},{"label":"AD Certificates"}]},{"id":"ZsG7Okv4pK8mxvPHb26y","title":"AD CS Certificate Theft","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-certificates/certificate-theft","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"},{"label":"AD Certificates"}]},{"id":"ou5C6Kx68aFZk1G0kTCB","title":"AD information in printers","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-information-in-printers","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"CG4VDg6isQaZ2YnqqY9n","title":"AD DNS Records","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-dns-records","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"ksb9DOznyCGAWT8oz32P","title":"ASREPRoast","pathname":"/hacktricks/windows-hardening/active-directory-methodology/asreproast","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"RIxBQ2Q7nyCv2SmvMT3X","title":"BloodHound & Other AD Enum Tools","pathname":"/hacktricks/windows-hardening/active-directory-methodology/bloodhound","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"3gB840sDUJ7t1wMhbN9k","title":"Constrained Delegation","pathname":"/hacktricks/windows-hardening/active-directory-methodology/constrained-delegation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"KPQT9rY0wpG03OfWxs5R","title":"Custom SSP","pathname":"/hacktricks/windows-hardening/active-directory-methodology/custom-ssp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"sD2DBFrxvTrT5w5hzMia","title":"DCShadow","pathname":"/hacktricks/windows-hardening/active-directory-methodology/dcshadow","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"5e9omZvKK5ZRiB70US50","title":"DCSync","pathname":"/hacktricks/windows-hardening/active-directory-methodology/dcsync","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"UXy6ATnl9vhVzcByabL0","title":"Diamond Ticket","pathname":"/hacktricks/windows-hardening/active-directory-methodology/diamond-ticket","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"HEMFw8j8BurOThjX8OUM","title":"DSRM Credentials","pathname":"/hacktricks/windows-hardening/active-directory-methodology/dsrm-credentials","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"6fjwPBuq2EXGqpn6xjeV","title":"External Forest Domain - OneWay (Inbound) or bidirectional","pathname":"/hacktricks/windows-hardening/active-directory-methodology/external-forest-domain-oneway-inbound","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"MuSujU6GeDYzm28blbrN","title":"External Forest Domain - One-Way (Outbound)","pathname":"/hacktricks/windows-hardening/active-directory-methodology/external-forest-domain-one-way-outbound","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"50SMYywG3zEZh7Vy33H4","title":"Golden Ticket","pathname":"/hacktricks/windows-hardening/active-directory-methodology/golden-ticket","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"pen8oAsNcGjkZ76v7oqh","title":"Kerberoast","pathname":"/hacktricks/windows-hardening/active-directory-methodology/kerberoast","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"eOg37laNRPYxdpBrQix1","title":"Kerberos Authentication","pathname":"/hacktricks/windows-hardening/active-directory-methodology/kerberos-authentication","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"vZ3aA48M8nIwMkeuk18T","title":"Kerberos Double Hop Problem","pathname":"/hacktricks/windows-hardening/active-directory-methodology/kerberos-double-hop-problem","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"qPwNYJoQejxc9czc9kYv","title":"LAPS","pathname":"/hacktricks/windows-hardening/active-directory-methodology/laps","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"aNuXgzq6SshJjstWHfFb","title":"MSSQL AD Abuse","pathname":"/hacktricks/windows-hardening/active-directory-methodology/abusing-ad-mssql","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"V2jxZpCq5Uh8KqmysOoL","title":"Over Pass the Hash/Pass the Key","pathname":"/hacktricks/windows-hardening/active-directory-methodology/over-pass-the-hash-pass-the-key","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"qNfHtLp8KfggOaXKtu5O","title":"Pass the Ticket","pathname":"/hacktricks/windows-hardening/active-directory-methodology/pass-the-ticket","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"I5c6hA770BjCVRhuyxKj","title":"Password Spraying / Brute Force","pathname":"/hacktricks/windows-hardening/active-directory-methodology/password-spraying","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"7nQnzfErLjubu8R4dmzS","title":"PrintNightmare","pathname":"/hacktricks/windows-hardening/active-directory-methodology/printnightmare","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"Ppb6PCYswnO8iYSXM9li","title":"Force NTLM Privileged Authentication","pathname":"/hacktricks/windows-hardening/active-directory-methodology/printers-spooler-service-abuse","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"McwC6Rp7FRsM2JY5a6Pi","title":"Privileged Groups","pathname":"/hacktricks/windows-hardening/active-directory-methodology/privileged-groups-and-token-privileges","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"e9nYqxeGEEIblcOUuBwP","title":"RDP Sessions Abuse","pathname":"/hacktricks/windows-hardening/active-directory-methodology/rdp-sessions-abuse","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"tqLuyO6ZAkYfGwlwunFB","title":"Resource-based Constrained Delegation","pathname":"/hacktricks/windows-hardening/active-directory-methodology/resource-based-constrained-delegation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"sZxCktu32NVg0Ydq1Wog","title":"Security Descriptors","pathname":"/hacktricks/windows-hardening/active-directory-methodology/security-descriptors","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"0JpYUjy9cMmhhUbsBasF","title":"SID-History Injection","pathname":"/hacktricks/windows-hardening/active-directory-methodology/sid-history-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"bSO2CDSqHC04HpXtlvKy","title":"Silver Ticket","pathname":"/hacktricks/windows-hardening/active-directory-methodology/silver-ticket","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"EEuRspKha2BlCEVVVqsH","title":"Skeleton Key","pathname":"/hacktricks/windows-hardening/active-directory-methodology/skeleton-key","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"d0AFCSuawtiHzlXNKeq4","title":"Unconstrained Delegation","pathname":"/hacktricks/windows-hardening/active-directory-methodology/unconstrained-delegation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"hAvVY9mw9L90cRhIhwxm","title":"Windows Security Controls","pathname":"/hacktricks/windows-hardening/authentication-credentials-uac-and-efs","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"fV2DwFJ7sOkYVDM5iGFA","title":"UAC - User Account Control","pathname":"/hacktricks/windows-hardening/authentication-credentials-uac-and-efs/uac-user-account-control","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Security Controls"}]},{"id":"Kx5F9fsdpH6bg2TAeozx","title":"NTLM","pathname":"/hacktricks/windows-hardening/ntlm","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"8H3pkELRsk6cbsPwbzLQ","title":"Places to steal NTLM creds","pathname":"/hacktricks/windows-hardening/ntlm/places-to-steal-ntlm-creds","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"NTLM"}]},{"id":"wp6IIWkLtNEPV7RT0VjD","title":"Lateral Movement","pathname":"/hacktricks/windows-hardening/lateral-movement","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"jLIGZRJz8yUxViQBo9uO","title":"AtExec / SchtasksExec","pathname":"/hacktricks/windows-hardening/lateral-movement/atexec","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Lateral Movement"}]},{"id":"Db8zE3JpkS9cgNyu7xDC","title":"DCOM Exec","pathname":"/hacktricks/windows-hardening/lateral-movement/dcom-exec","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Lateral Movement"}]},{"id":"Cj9UYSyAOR5udPVjUMcZ","title":"PsExec/Winexec/ScExec","pathname":"/hacktricks/windows-hardening/lateral-movement/psexec-and-winexec","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Lateral Movement"}]},{"id":"gEwaMvedx6nOnAoVmsVm","title":"SmbExec/ScExec","pathname":"/hacktricks/windows-hardening/lateral-movement/smbexec","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Lateral Movement"}]},{"id":"Ptwlxx9ev1wme6WUG5iB","title":"WinRM","pathname":"/hacktricks/windows-hardening/lateral-movement/winrm","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Lateral Movement"}]},{"id":"A0vF8EzalTW7pTZPAp8X","title":"WmiExec","pathname":"/hacktricks/windows-hardening/lateral-movement/wmiexec","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Lateral Movement"}]},{"id":"HNJ6T7hq5fAMM886ReON","title":"Stealing Windows Credentials","pathname":"/hacktricks/windows-hardening/stealing-credentials","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"Lk9S55mS24LGvIUQ9sbl","title":"Windows Credentials Protections","pathname":"/hacktricks/windows-hardening/stealing-credentials/credentials-protections","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Stealing Windows Credentials"}]},{"id":"Vt1TtvJVpCgPj3QRYvlV","title":"Mimikatz","pathname":"/hacktricks/windows-hardening/stealing-credentials/credentials-mimikatz","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Stealing Windows Credentials"}]},{"id":"k5tpGJSSgWWRn4b3O2Xu","title":"WTS Impersonator","pathname":"/hacktricks/windows-hardening/stealing-credentials/wts-impersonator","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Stealing Windows Credentials"}]},{"id":"qqDJLhmXNPEkShLoUdJ2","title":"Basic Win CMD for Pentesters","pathname":"/hacktricks/windows-hardening/basic-cmd-for-pentesters","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"EBj5O9C8sQilkwtGJr44","title":"Basic PowerShell for Pentesters","pathname":"/hacktricks/windows-hardening/basic-powershell-for-pentesters","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"b7BzP7cqRm6Sx1lt8rpl","title":"PowerView/SharpView","pathname":"/hacktricks/windows-hardening/basic-powershell-for-pentesters/powerview","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Basic PowerShell for Pentesters"}]},{"id":"BPgpQ11H2GNoSKVwRBon","title":"Antivirus (AV) Bypass","pathname":"/hacktricks/windows-hardening/av-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"rVihU3b13F4TTSSGC2xs","title":"Android APK Checklist","pathname":"/hacktricks/mobile-pentesting/android-checklist","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"}]},{"id":"Fmnq2UHTJaVkyPmgGMxR","title":"Android Applications Pentesting","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"}]},{"id":"20Ce4tK5PdZq8wcDP0hN","title":"Android Applications Basics","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/android-applications-basics","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"zkpAhO5yoKzt0v7pxE2j","title":"Android Task Hijacking","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/android-task-hijacking","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"BXMJbf4GecE6zi76gPLv","title":"ADB Commands","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/adb-commands","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"UZ0N9taxClCMLljH44C0","title":"APK decompilers","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/apk-decompilers","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"QJpJGSNl3jQWDkw5lFdZ","title":"AVD - Android Virtual Device","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/avd-android-virtual-device","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"885Y0vdhmdZlBxj7grZ8","title":"Bypass Biometric Authentication (Android)","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/bypass-biometric-authentication-android","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"j9aQR1TyQT5KT8FD8IHA","title":"content:// protocol","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/content-protocol","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"1IQv9BwDUfQHqgxoFkLM","title":"Drozer Tutorial","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/drozer-tutorial","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"BmB0YAN6z0aLHmXjWeeN","title":"Exploiting Content Providers","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/drozer-tutorial/exploiting-content-providers","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"},{"label":"Drozer Tutorial"}]},{"id":"Yms8r8nJFWEKeVSxKviW","title":"Exploiting a debuggeable application","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/exploiting-a-debuggeable-applciation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"Bxt0rAsHTOdt5TwPJPN7","title":"Frida Tutorial","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/frida-tutorial","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"gclCJEdsUczOOBZZWsTe","title":"Frida Tutorial 1","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/frida-tutorial/frida-tutorial-1","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"},{"label":"Frida Tutorial"}]},{"id":"0zbUGSvJXjYS84EQqKcz","title":"Frida Tutorial 2","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/frida-tutorial/frida-tutorial-2","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"},{"label":"Frida Tutorial"}]},{"id":"hCAmaKTTmOzsmzKnexGm","title":"Frida Tutorial 3","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/frida-tutorial/owaspuncrackable-1","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"},{"label":"Frida Tutorial"}]},{"id":"bI9pk9eFkXmaZ5SuwW2R","title":"Objection Tutorial","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/frida-tutorial/objection-tutorial","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"},{"label":"Frida Tutorial"}]},{"id":"UWAwYcMJVbZhsTkfNylh","title":"Google CTF 2018 - Shall We Play a Game?","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/google-ctf-2018-shall-we-play-a-game","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"92u0An582zxLRvlJO7gk","title":"Install Burp Certificate","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/install-burp-certificate","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"NFhPudgbbwIxbleobLjP","title":"Intent Injection","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/intent-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"JMwQsVU3SdhTjxZsXibQ","title":"Make APK Accept CA Certificate","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/make-apk-accept-ca-certificate","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"T9vLvGliGCSpwER0G9De","title":"Manual DeObfuscation","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/manual-deobfuscation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"k4HbjabU2tuarDX3UZCb","title":"React Native Application","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/react-native-application","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"s8iYJl1FNxgKFjUUNyjb","title":"Reversing Native Libraries","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/reversing-native-libraries","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"9RlkGky8q0gA5FGyXXQa","title":"Smali - Decompiling/[Modifying]/Compiling","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/smali-changes","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"QvUfjLAH7QwqqinXjgyR","title":"Spoofing your location in Play Store","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/spoofing-your-location-in-play-store","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"CrgcPBadxywRdzBQvoF6","title":"Tapjacking","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/tapjacking","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"wGkpqcQBoiPOAj72fH3p","title":"Webview Attacks","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/webview-attacks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"dTIdgm4tF8PLz8gcgW2J","title":"iOS Pentesting Checklist","pathname":"/hacktricks/mobile-pentesting/ios-pentesting-checklist","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"}]},{"id":"aIHw0JYsTgpo5I75pEX4","title":"iOS Pentesting","pathname":"/hacktricks/mobile-pentesting/ios-pentesting","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"}]},{"id":"1rC9QoEbRX8YvtUgHOJS","title":"iOS App Extensions","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-app-extensions","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"Z1oNjKjzHVdlkvQmqrLb","title":"iOS Basics","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-basics","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"3PCyjJ21rcxo7oqlMHbZ","title":"iOS Basic Testing Operations","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/basic-ios-testing-operations","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"V94w6eLTgugUl23p07I8","title":"iOS Burp Suite Configuration","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/burp-configuration-for-ios","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"myK9XlPIXg1Si9uDjq3s","title":"iOS Custom URI Handlers / Deeplinks / Custom Schemes","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-custom-uri-handlers-deeplinks-custom-schemes","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"HZVqJj0h2AjpO4k9AmFf","title":"iOS Extracting Entitlements From Compiled Application","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/extracting-entitlements-from-compiled-application","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"uMm4rzVQK3rxzOgOFOFd","title":"iOS Frida Configuration","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/frida-configuration-in-ios","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"UNpga5RSngvuIZP6TuA3","title":"iOS Hooking With Objection","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-hooking-with-objection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"qZYcnjFfDDpKzjNrYrAO","title":"iOS Protocol Handlers","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-protocol-handlers","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"1a77ioqTnQHf8UyH1kAG","title":"iOS Serialisation and Encoding","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-serialisation-and-encoding","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"TNmvp6jbyci6ft8ZHGpL","title":"iOS Testing Environment","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-testing-environment","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"tHcisM7EAEcQLt4dEI9S","title":"iOS UIActivity Sharing","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-uiactivity-sharing","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"tqCu2a4iKV3mIpvbaHD5","title":"iOS Universal Links","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-universal-links","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"7OQnz8zsA80LmKHz5uod","title":"iOS UIPasteboard","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-uipasteboard","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"6jrB21F3QYhZZVPyTOMO","title":"iOS WebViews","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-webviews","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"XKkfHB3d6utFEi3OOa0j","title":"Cordova Apps","pathname":"/hacktricks/mobile-pentesting/cordova-apps","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"}]},{"id":"5tsVmDIaSng0tPR7fknV","title":"Xamarin Apps","pathname":"/hacktricks/mobile-pentesting/xamarin-apps","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"}]},{"id":"byrQNPdxcblPmuzaPDzB","title":"Pentesting JDWP - Java Debug Wire Protocol","pathname":"/hacktricks/network-services-pentesting/pentesting-jdwp-java-debug-wire-protocol","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"NNu4BrTZHO02ytUUXIug","title":"Pentesting SAP","pathname":"/hacktricks/network-services-pentesting/pentesting-sap","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"2X9hvnklT66l6UUcHFVz","title":"Pentesting VoIP","pathname":"/hacktricks/network-services-pentesting/pentesting-voip","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"QA1UJuyj5Rg6o1wnoXWm","title":"Basic VoIP Protocols","pathname":"/hacktricks/network-services-pentesting/pentesting-voip/basic-voip-protocols","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"Pentesting VoIP"}]},{"id":"KR5K34VxBQ40ZQdyAwX7","title":"SIP (Session Initiation Protocol)","pathname":"/hacktricks/network-services-pentesting/pentesting-voip/basic-voip-protocols/sip-session-initiation-protocol","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"Pentesting VoIP"},{"label":"Basic VoIP Protocols"}]},{"id":"0txkqjfp3fD6dUQb0gGj","title":"Pentesting Remote GdbServer","pathname":"/hacktricks/network-services-pentesting/pentesting-remote-gdbserver","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"yMYrkglt1xZ2tp7WorSQ","title":"7/tcp/udp - Pentesting Echo","pathname":"/hacktricks/network-services-pentesting/7-tcp-udp-pentesting-echo","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"gU1kJLXFgTqWlCrF69bq","title":"21 - Pentesting FTP","pathname":"/hacktricks/network-services-pentesting/pentesting-ftp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"bPbwqesvBWAq4QTJ9DSH","title":"FTP Bounce attack - Scan","pathname":"/hacktricks/network-services-pentesting/pentesting-ftp/ftp-bounce-attack","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"21 - Pentesting FTP"}]},{"id":"1BhdBe6d0LCFIMQYRtfp","title":"FTP Bounce - Download 2ºFTP file","pathname":"/hacktricks/network-services-pentesting/pentesting-ftp/ftp-bounce-download-2oftp-file","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"21 - Pentesting FTP"}]},{"id":"RedibzILsO0YfJ9fQPJs","title":"22 - Pentesting SSH/SFTP","pathname":"/hacktricks/network-services-pentesting/pentesting-ssh","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"2O72bm84N7dtwdREbYP2","title":"23 - Pentesting Telnet","pathname":"/hacktricks/network-services-pentesting/pentesting-telnet","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"2aX1dt93t2WZ5AiLl7Wv","title":"25,465,587 - Pentesting SMTP/s","pathname":"/hacktricks/network-services-pentesting/pentesting-smtp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"OTHkgAjjLLkVqH0imcRz","title":"SMTP Smuggling","pathname":"/hacktricks/network-services-pentesting/pentesting-smtp/smtp-smuggling","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"25,465,587 - Pentesting SMTP/s"}]},{"id":"wyPbjqetHs2jYPpz0Jcy","title":"SMTP - Commands","pathname":"/hacktricks/network-services-pentesting/pentesting-smtp/smtp-commands","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"25,465,587 - Pentesting SMTP/s"}]},{"id":"wek0VQR1BGIfNC2gxT1q","title":"43 - Pentesting WHOIS","pathname":"/hacktricks/network-services-pentesting/43-pentesting-whois","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"7cBLRRArAi7Yz3sBmUbq","title":"49 - Pentesting TACACS+","pathname":"/hacktricks/network-services-pentesting/49-pentesting-tacacs+","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"FlL0kaVX6tTRZHXVDtnY","title":"53 - Pentesting DNS","pathname":"/hacktricks/network-services-pentesting/pentesting-dns","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"yLe32BNEGMEvG7RgFcGH","title":"69/UDP TFTP/Bittorrent-tracker","pathname":"/hacktricks/network-services-pentesting/69-udp-tftp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"y91NQ7ivQASxhNWw9FwS","title":"79 - Pentesting Finger","pathname":"/hacktricks/network-services-pentesting/pentesting-finger","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"wSnUcbpAO8a3umeCxQli","title":"80,443 - Pentesting Web Methodology","pathname":"/hacktricks/network-services-pentesting/pentesting-web","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"DmLnzQREoiODVi7IqGUU","title":"403 & 401 Bypasses","pathname":"/hacktricks/network-services-pentesting/pentesting-web/403-and-401-bypasses","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"H2KCTuurOGkMzK73iE3W","title":"AEM - Adobe Experience Cloud","pathname":"/hacktricks/network-services-pentesting/pentesting-web/aem-adobe-experience-cloud","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"Qj2kntMark4IuXLQ3Qcr","title":"Angular","pathname":"/hacktricks/network-services-pentesting/pentesting-web/angular","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"cYEsVXSkkkqlJQaObcOG","title":"Apache","pathname":"/hacktricks/network-services-pentesting/pentesting-web/apache","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"lUkUzskEvZGzYQ8Zbc4o","title":"Artifactory Hacking guide","pathname":"/hacktricks/network-services-pentesting/pentesting-web/artifactory-hacking-guide","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"XWLVp9BO02o5RdMsLP4q","title":"Bolt CMS","pathname":"/hacktricks/network-services-pentesting/pentesting-web/bolt-cms","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"h8yNzlUaRHF0UaFCs3NK","title":"Buckets","pathname":"/hacktricks/network-services-pentesting/pentesting-web/buckets","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"kmGSEpi0MdWCXBPSj6jO","title":"Firebase Database","pathname":"/hacktricks/network-services-pentesting/pentesting-web/buckets/firebase-database","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"Buckets"}]},{"id":"DOaeEWQmBiVbxTWPzdqr","title":"CGI","pathname":"/hacktricks/network-services-pentesting/pentesting-web/cgi","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"kOkzONLPGFZPf3NpfmpE","title":"DotNetNuke (DNN)","pathname":"/hacktricks/network-services-pentesting/pentesting-web/dotnetnuke-dnn","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"WXcPkhrbnj8X8qVh7k7l","title":"Drupal","pathname":"/hacktricks/network-services-pentesting/pentesting-web/drupal","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"9gFomggN2q1W0ydFRpWe","title":"Drupal RCE","pathname":"/hacktricks/network-services-pentesting/pentesting-web/drupal/drupal-rce","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"Drupal"}]},{"id":"xioQlOsyfGlwCxbtMIIc","title":"Electron Desktop Apps","pathname":"/hacktricks/network-services-pentesting/pentesting-web/electron-desktop-apps","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"Oo6bU2Le3XXPUc1ftGMY","title":"Electron contextIsolation RCE via preload code","pathname":"/hacktricks/network-services-pentesting/pentesting-web/electron-desktop-apps/electron-contextisolation-rce-via-preload-code","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"Electron Desktop Apps"}]},{"id":"ZCk1hdHMApZXTwD6ZQRi","title":"Electron contextIsolation RCE via Electron internal code","pathname":"/hacktricks/network-services-pentesting/pentesting-web/electron-desktop-apps/electron-contextisolation-rce-via-electron-internal-code","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"Electron Desktop Apps"}]},{"id":"8iFtL2LEDiDMEWkJOlMa","title":"Electron contextIsolation RCE via IPC","pathname":"/hacktricks/network-services-pentesting/pentesting-web/electron-desktop-apps/electron-contextisolation-rce-via-ipc","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"Electron Desktop Apps"}]},{"id":"aTyYBcpuF4gdy9KmxuD1","title":"Flask","pathname":"/hacktricks/network-services-pentesting/pentesting-web/flask","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"hxib8mg4qnwRiBazJqaT","title":"NodeJS Express","pathname":"/hacktricks/network-services-pentesting/pentesting-web/nodejs-express","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"mqnnnsS30ZDd3nYIh0Uo","title":"Git","pathname":"/hacktricks/network-services-pentesting/pentesting-web/git","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"aXPSKMcrxF3MomPaQYc8","title":"Golang","pathname":"/hacktricks/network-services-pentesting/pentesting-web/golang","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"YGIJ3cTBq08lH1zKhkoW","title":"GWT - Google Web Toolkit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/gwt-google-web-toolkit","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"auR8mAJH3f4IlzzA4Bm9","title":"Grafana","pathname":"/hacktricks/network-services-pentesting/pentesting-web/grafana","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"DaHHPlyal5eNsYzCBmhS","title":"GraphQL","pathname":"/hacktricks/network-services-pentesting/pentesting-web/graphql","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"DpKZS4FiH87CUAae8E3Y","title":"H2 - Java SQL database","pathname":"/hacktricks/network-services-pentesting/pentesting-web/h2-java-sql-database","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"RsbhoPOTIMLBLZ2xrfeE","title":"IIS - Internet Information Services","pathname":"/hacktricks/network-services-pentesting/pentesting-web/iis-internet-information-services","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"tAkFCtLdAtURJT7YSd1n","title":"ImageMagick Security","pathname":"/hacktricks/network-services-pentesting/pentesting-web/imagemagick-security","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"aHypidb0sNlixInIUeB5","title":"JBOSS","pathname":"/hacktricks/network-services-pentesting/pentesting-web/jboss","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"vHxmxG4X7auWnzZY3Ety","title":"Jira & Confluence","pathname":"/hacktricks/network-services-pentesting/pentesting-web/jira","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"orNqDsgFSrvsPJPuGaL1","title":"Joomla","pathname":"/hacktricks/network-services-pentesting/pentesting-web/joomla","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"lNFJr95ICUpe9FJGBDww","title":"JSP","pathname":"/hacktricks/network-services-pentesting/pentesting-web/jsp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"Z38wOJ7fNMFEqGz71ZwI","title":"Laravel","pathname":"/hacktricks/network-services-pentesting/pentesting-web/laravel","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"V19hXxaKXX77MBxqLgtz","title":"Moodle","pathname":"/hacktricks/network-services-pentesting/pentesting-web/moodle","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"qtGvXBmqdusg7foDdjCO","title":"Nginx","pathname":"/hacktricks/network-services-pentesting/pentesting-web/nginx","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"7osur2wxcC1AVsBUmQgu","title":"NextJS","pathname":"/hacktricks/network-services-pentesting/pentesting-web/nextjs","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"CN7ojyPftH6nIZQL4lzY","title":"PHP Tricks","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"fg81K7kW0p2xKjV46n2y","title":"PHP - Useful Functions & disable_functions/open_basedir bypass","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"}]},{"id":"vq4Hjkq7z8ncAhfxz308","title":"disable_functions bypass - php-fpm/FastCGI","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-fpm-fastcgi","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"JuWZs6CelnKahLQijPcu","title":"disable_functions bypass - dl function","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-dl-function","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"JRvPC9SQgO0wN8xS3tMW","title":"disable_functions bypass - PHP 7.0-7.4 (*nix only)","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-7.0-7.4-nix-only","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"Mx8MgGOyWUN7ktEm7LEd","title":"disable_functions bypass - Imagick <= 3.3.0 PHP >= 5.4 Exploit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-imagick-less-than-3.3.0-php-greater-than-5.4-exploit","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"KqYR1e3E34cWnUXWepvS","title":"disable_functions - PHP 5.x Shellshock Exploit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-php-5.x-shellshock-exploit","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"1aAE8JHwnfzwUzzXV9up","title":"disable_functions - PHP 5.2.4 ionCube extension Exploit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-php-5.2.4-ioncube-extension-exploit","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"p1QanK5s4UcG9XU84S2u","title":"disable_functions bypass - PHP <= 5.2.9 on windows","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-less-than-5.2.9-on-windows","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"wSrEz0AJQZwQN7IFEZhU","title":"disable_functions bypass - PHP 5.2.4 and 5.2.5 PHP cURL","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-5.2.4-and-5.2.5-php-curl","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"ks1zd4Dxm4U0MQu0SGvQ","title":"disable_functions bypass - PHP safe_mode bypass via proc_open() and custom environment Exploit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-safe_mode-bypass-via-proc_open-and-custom-environment-exploit","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"67Qc8JMLZOXYoYJeh4hL","title":"disable_functions bypass - PHP Perl Extension Safe_mode Bypass Exploit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-perl-extension-safe_mode-bypass-exploit","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"fhkdJjdt8B24YATxVIL3","title":"disable_functions bypass - PHP 5.2.3 - Win32std ext Protections Bypass","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-5.2.3-win32std-ext-protections-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"GCaJm16TeRgqKtMSaLzd","title":"disable_functions bypass - PHP 5.2 - FOpen Exploit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-5.2-fopen-exploit","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"DhrJ0c24B72KK6exz36d","title":"disable_functions bypass - via mem","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-via-mem","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"6QArVAcYsM9UWQQMSD73","title":"disable_functions bypass - mod_cgi","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-mod_cgi","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"U0htHGI7b6tgYmRkxTxO","title":"disable_functions bypass - PHP 4 >= 4.2.0, PHP 5 pcntl_exec","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-4-greater-than-4.2.0-php-5-pcntl_exec","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"yDEjtHIeGUzc5Zx39DOq","title":"PHP - RCE abusing object creation: new $_GET[\"a\"]($_GET[\"b\"])","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-rce-abusing-object-creation-new-usd_get-a-usd_get-b","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"}]},{"id":"hf7K3O9krJS57ihs7jdW","title":"PHP SSRF","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-ssrf","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"}]},{"id":"nbq1aRIpDj0uATFHxGFF","title":"PrestaShop","pathname":"/hacktricks/network-services-pentesting/pentesting-web/prestashop","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"6HBs6CPx9gRUegFnnl5Y","title":"Python","pathname":"/hacktricks/network-services-pentesting/pentesting-web/python","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"2sUiGZEDqr84igLIZw97","title":"Rocket Chat","pathname":"/hacktricks/network-services-pentesting/pentesting-web/rocket-chat","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"kIpPSYMtS5mG4rIMGCgQ","title":"Special HTTP headers","pathname":"/hacktricks/network-services-pentesting/pentesting-web/special-http-headers","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"M2N3QezGyrdDNuvouQhR","title":"Source code Review / SAST Tools","pathname":"/hacktricks/network-services-pentesting/pentesting-web/code-review-tools","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"4Suj21TOhod5dajR9wzD","title":"Spring Actuators","pathname":"/hacktricks/network-services-pentesting/pentesting-web/spring-actuators","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"T4zbax6jiuvDevgWz7EM","title":"Symfony","pathname":"/hacktricks/network-services-pentesting/pentesting-web/symphony","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"wNWnoVsXPuZ6LsdWgrN4","title":"Tomcat","pathname":"/hacktricks/network-services-pentesting/pentesting-web/tomcat","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"Sl3TruXE4WmFYFTF6mt6","title":"Basic Tomcat Info","pathname":"/hacktricks/network-services-pentesting/pentesting-web/tomcat/basic-tomcat-info","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"Tomcat"}]},{"id":"NOTrEhb693G5w7jI0NQS","title":"Uncovering CloudFlare","pathname":"/hacktricks/network-services-pentesting/pentesting-web/uncovering-cloudflare","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"ijZmZnrmruoejdNLHoYG","title":"VMWare (ESX, VCenter...)","pathname":"/hacktricks/network-services-pentesting/pentesting-web/vmware-esx-vcenter...","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"u81Yo1tclTCRPXiJGahA","title":"Web API Pentesting","pathname":"/hacktricks/network-services-pentesting/pentesting-web/web-api-pentesting","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"Bv8lRa29tW6sQQBkR7ir","title":"WebDav","pathname":"/hacktricks/network-services-pentesting/pentesting-web/put-method-webdav","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"ZVeX3awMEYKFDklYY6OK","title":"Werkzeug / Flask Debug","pathname":"/hacktricks/network-services-pentesting/pentesting-web/werkzeug","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"YBhO0ouwtpqBzYbcMhSq","title":"Wordpress","pathname":"/hacktricks/network-services-pentesting/pentesting-web/wordpress","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"fnq2R1lk75eLKRY6EnVw","title":"88tcp/udp - Pentesting Kerberos","pathname":"/hacktricks/network-services-pentesting/pentesting-kerberos-88","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"fcM5elvOnxRNProyDFX6","title":"Harvesting tickets from Windows","pathname":"/hacktricks/network-services-pentesting/pentesting-kerberos-88/harvesting-tickets-from-windows","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"88tcp/udp - Pentesting Kerberos"}]},{"id":"6QlLEb5mvxmyTp2qQzQY","title":"Harvesting tickets from Linux","pathname":"/hacktricks/network-services-pentesting/pentesting-kerberos-88/harvesting-tickets-from-linux","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"88tcp/udp - Pentesting Kerberos"}]},{"id":"a3nVGlI2PjL4zulczRBw","title":"110,995 - Pentesting POP","pathname":"/hacktricks/network-services-pentesting/pentesting-pop","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"YphMLOPx8nSzin4EZqCE","title":"111/TCP/UDP - Pentesting Portmapper","pathname":"/hacktricks/network-services-pentesting/pentesting-rpcbind","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"iHVJX7XG1skyRAOWriBg","title":"113 - Pentesting Ident","pathname":"/hacktricks/network-services-pentesting/113-pentesting-ident","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"UulxsERKBiqWQzyaYivQ","title":"123/udp - Pentesting NTP","pathname":"/hacktricks/network-services-pentesting/pentesting-ntp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"jZwmcPLGGumoH3G1Fslw","title":"135, 593 - Pentesting MSRPC","pathname":"/hacktricks/network-services-pentesting/135-pentesting-msrpc","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"zXVPDycSHSsysVYeKN3G","title":"137,138,139 - Pentesting NetBios","pathname":"/hacktricks/network-services-pentesting/137-138-139-pentesting-netbios","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"DnSDg4uxDoPyZJTX0Rt1","title":"139,445 - Pentesting SMB","pathname":"/hacktricks/network-services-pentesting/pentesting-smb","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"kh0FzMhyEkc4J91DSBDo","title":"rpcclient enumeration","pathname":"/hacktricks/network-services-pentesting/pentesting-smb/rpcclient-enumeration","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"139,445 - Pentesting SMB"}]},{"id":"rOnk9bmASaBg58WZNOhh","title":"143,993 - Pentesting IMAP","pathname":"/hacktricks/network-services-pentesting/pentesting-imap","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"adHMXB0PzxYfpNtzQbGs","title":"161,162,10161,10162/udp - Pentesting SNMP","pathname":"/hacktricks/network-services-pentesting/pentesting-snmp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"NVdXq3JoIe75HRoiFVJK","title":"Cisco SNMP","pathname":"/hacktricks/network-services-pentesting/pentesting-snmp/cisco-snmp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"161,162,10161,10162/udp - Pentesting SNMP"}]},{"id":"P492tWlLGo6YupJHD9UB","title":"SNMP RCE","pathname":"/hacktricks/network-services-pentesting/pentesting-snmp/snmp-rce","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"161,162,10161,10162/udp - Pentesting SNMP"}]},{"id":"TI3zHlNhkKw4VlD7Caot","title":"194,6667,6660-7000 - Pentesting IRC","pathname":"/hacktricks/network-services-pentesting/pentesting-irc","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"i8ZGhhQTUsneIJS2EaJC","title":"264 - Pentesting Check Point FireWall-1","pathname":"/hacktricks/network-services-pentesting/pentesting-264-check-point-firewall-1","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"eJ58hHIAUVW9zt8iwQ6l","title":"389, 636, 3268, 3269 - Pentesting LDAP","pathname":"/hacktricks/network-services-pentesting/pentesting-ldap","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"eLPoRcuEWaqNba7GAtW0","title":"500/udp - Pentesting IPsec/IKE VPN","pathname":"/hacktricks/network-services-pentesting/ipsec-ike-vpn-pentesting","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"F6MhXe2siuYUEjs0dSMz","title":"502 - Pentesting Modbus","pathname":"/hacktricks/network-services-pentesting/pentesting-modbus","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"Oxp1P653sA2ZaAX46yCr","title":"512 - Pentesting Rexec","pathname":"/hacktricks/network-services-pentesting/512-pentesting-rexec","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"lngL0TMNHPd8v1hRdD2M","title":"513 - Pentesting Rlogin","pathname":"/hacktricks/network-services-pentesting/pentesting-rlogin","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"1JV5BI8jQexpSU97BLVI","title":"514 - Pentesting Rsh","pathname":"/hacktricks/network-services-pentesting/pentesting-rsh","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"bLrqUTWgCajqRaHFZXgB","title":"515 - Pentesting Line Printer Daemon (LPD)","pathname":"/hacktricks/network-services-pentesting/515-pentesting-line-printer-daemon-lpd","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"Lh12LDKN81poxaa5bwei","title":"548 - Pentesting Apple Filing Protocol (AFP)","pathname":"/hacktricks/network-services-pentesting/584-pentesting-afp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"iMTtQs7nPnrqPYWlpML8","title":"554,8554 - Pentesting RTSP","pathname":"/hacktricks/network-services-pentesting/554-8554-pentesting-rtsp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"OXR1yicQiWArMywB31JY","title":"623/UDP/TCP - IPMI","pathname":"/hacktricks/network-services-pentesting/623-udp-ipmi","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"tk7ZOgmIrUlsAV9jBqNl","title":"631 - Internet Printing Protocol(IPP)","pathname":"/hacktricks/network-services-pentesting/pentesting-631-internet-printing-protocol-ipp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"pKngdXNfj8JbYq5ZgDwG","title":"700 - Pentesting EPP","pathname":"/hacktricks/network-services-pentesting/700-pentesting-epp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"ZLuqTk0zfp5e195JnnWF","title":"873 - Pentesting Rsync","pathname":"/hacktricks/network-services-pentesting/873-pentesting-rsync","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"q4feQZ9Bc6NkAU3rWn1G","title":"1026 - Pentesting Rusersd","pathname":"/hacktricks/network-services-pentesting/1026-pentesting-rusersd","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"01J9Z4mu7RFDgzBQY1O1","title":"1080 - Pentesting Socks","pathname":"/hacktricks/network-services-pentesting/1080-pentesting-socks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"bEuR36eQjXjTvQ4Xqnqp","title":"1098/1099/1050 - Pentesting Java RMI - RMI-IIOP","pathname":"/hacktricks/network-services-pentesting/1099-pentesting-java-rmi","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"UW40sk8AXFjRKnJiKMmz","title":"1414 - Pentesting IBM MQ","pathname":"/hacktricks/network-services-pentesting/1414-pentesting-ibmmq","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"F2ekFVzf1jq6JBXAXCcu","title":"1433 - Pentesting MSSQL - Microsoft SQL Server","pathname":"/hacktricks/network-services-pentesting/pentesting-mssql-microsoft-sql-server","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"pdrV3Hs0LuutTaeDvS6M","title":"Types of MSSQL Users","pathname":"/hacktricks/network-services-pentesting/pentesting-mssql-microsoft-sql-server/types-of-mssql-users","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"1433 - Pentesting MSSQL - Microsoft SQL Server"}]},{"id":"SxRc5NQNJa9gq2t5hh4E","title":"1521,1522-1529 - Pentesting Oracle TNS Listener","pathname":"/hacktricks/network-services-pentesting/1521-1522-1529-pentesting-oracle-listener","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"YB2OhCgnnq04c3LcZwOV","title":"1723 - Pentesting PPTP","pathname":"/hacktricks/network-services-pentesting/1723-pentesting-pptp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"7cczdw4AfwOiTAUBZhp8","title":"1883 - Pentesting MQTT (Mosquitto)","pathname":"/hacktricks/network-services-pentesting/1883-pentesting-mqtt-mosquitto","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"JyFBgkpljr9GZjs0TjJp","title":"2049 - Pentesting NFS Service","pathname":"/hacktricks/network-services-pentesting/nfs-service-pentesting","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"KFKknO4Non4XVeReuGCK","title":"2301,2381 - Pentesting Compaq/HP Insight Manager","pathname":"/hacktricks/network-services-pentesting/pentesting-compaq-hp-insight-manager","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"y23P1yKVNURznUKVZWzP","title":"2375, 2376 Pentesting Docker","pathname":"/hacktricks/network-services-pentesting/2375-pentesting-docker","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"t5ieaM9RwhZKzsuAx8HS","title":"3128 - Pentesting Squid","pathname":"/hacktricks/network-services-pentesting/3128-pentesting-squid","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"lgmaas8uiQTzPuluSK6T","title":"3260 - Pentesting ISCSI","pathname":"/hacktricks/network-services-pentesting/3260-pentesting-iscsi","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"9IMhXAj68z9Mh8la6nhP","title":"3299 - Pentesting SAPRouter","pathname":"/hacktricks/network-services-pentesting/3299-pentesting-saprouter","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"yj5Kebub8w3H8OUWOtho","title":"3306 - Pentesting Mysql","pathname":"/hacktricks/network-services-pentesting/pentesting-mysql","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"n6GzdzhddLUUJfwLc217","title":"3389 - Pentesting RDP","pathname":"/hacktricks/network-services-pentesting/pentesting-rdp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"VEwM7n051A8GUY05Y6ev","title":"3632 - Pentesting distcc","pathname":"/hacktricks/network-services-pentesting/3632-pentesting-distcc","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"x7OV6AxHZ4lDemfYH6Lq","title":"3690 - Pentesting Subversion (svn server)","pathname":"/hacktricks/network-services-pentesting/3690-pentesting-subversion-svn-server","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"2XUKJDSKc84M963s4wHf","title":"3702/UDP - Pentesting WS-Discovery","pathname":"/hacktricks/network-services-pentesting/3702-udp-pentesting-ws-discovery","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"tcidZkAaLZNCZ4zXQpRr","title":"4369 - Pentesting Erlang Port Mapper Daemon (epmd)","pathname":"/hacktricks/network-services-pentesting/4369-pentesting-erlang-port-mapper-daemon-epmd","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"AWbXKbDMxS1PW9aCKrs3","title":"4786 - Cisco Smart Install","pathname":"/hacktricks/network-services-pentesting/4786-cisco-smart-install","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"6zq7Ncds26XePjmEzifV","title":"4840 - OPC Unified Architecture","pathname":"/hacktricks/network-services-pentesting/4840-pentesting-opc-ua","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"yv5S5heZivYybhM6cQIv","title":"5000 - Pentesting Docker Registry","pathname":"/hacktricks/network-services-pentesting/5000-pentesting-docker-registry","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"WSNXIbw4DO3vzJMeSscz","title":"5353/UDP Multicast DNS (mDNS) and DNS-SD","pathname":"/hacktricks/network-services-pentesting/5353-udp-multicast-dns-mdns","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"U5y2TZn7tWegSDR6RuV4","title":"5432,5433 - Pentesting Postgresql","pathname":"/hacktricks/network-services-pentesting/pentesting-postgresql","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"38e4miFRPXiYtrgk6xPz","title":"5439 - Pentesting Redshift","pathname":"/hacktricks/network-services-pentesting/5439-pentesting-redshift","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"Of5J97vIzYZSvaqEEHjx","title":"5555 - Android Debug Bridge","pathname":"/hacktricks/network-services-pentesting/5555-android-debug-bridge","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"x993VbfiGbL8932wFVuU","title":"5601 - Pentesting Kibana","pathname":"/hacktricks/network-services-pentesting/5601-pentesting-kibana","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"aLUC9VN0aG2uQeytigWH","title":"5671,5672 - Pentesting AMQP","pathname":"/hacktricks/network-services-pentesting/5671-5672-pentesting-amqp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"AGajEVjHNZVrZHeC6t6v","title":"5800,5801,5900,5901 - Pentesting VNC","pathname":"/hacktricks/network-services-pentesting/pentesting-vnc","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"8LRI0itUSX2ZTn5FfVMW","title":"5984,6984 - Pentesting CouchDB","pathname":"/hacktricks/network-services-pentesting/5984-pentesting-couchdb","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"c1l2v4CAQUvr7JW9iWmP","title":"5985,5986 - Pentesting WinRM","pathname":"/hacktricks/network-services-pentesting/5985-5986-pentesting-winrm","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"YdXrmTBPSDu13qur1Le6","title":"5985,5986 - Pentesting OMI","pathname":"/hacktricks/network-services-pentesting/5985-5986-pentesting-omi","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"VpgB4Fy24slIZ5ZdeJr0","title":"6000 - Pentesting X11","pathname":"/hacktricks/network-services-pentesting/6000-pentesting-x11","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"5HJgDkGuL6MHQG3OcwxJ","title":"6379 - Pentesting Redis","pathname":"/hacktricks/network-services-pentesting/6379-pentesting-redis","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"fi869YCYmf2J1hF2NfN7","title":"8009 - Pentesting Apache JServ Protocol (AJP)","pathname":"/hacktricks/network-services-pentesting/8009-pentesting-apache-jserv-protocol-ajp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"AXD5TMiz8tTCYI4fjIpF","title":"8086 - Pentesting InfluxDB","pathname":"/hacktricks/network-services-pentesting/8086-pentesting-influxdb","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"UHkhhV8zgQUQOLwnMUSM","title":"8089 - Pentesting Splunkd","pathname":"/hacktricks/network-services-pentesting/8089-splunkd","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"Q4PxTM0ruGStNziPshkp","title":"8333,18333,38333,18444 - Pentesting Bitcoin","pathname":"/hacktricks/network-services-pentesting/8333-18333-38333-18444-pentesting-bitcoin","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"S64ow3DxS3jwqGwHJ6E9","title":"9000 - Pentesting FastCGI","pathname":"/hacktricks/network-services-pentesting/9000-pentesting-fastcgi","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"zNpmiqloKHv4O0aj0p67","title":"9001 - Pentesting HSQLDB","pathname":"/hacktricks/network-services-pentesting/9001-pentesting-hsqldb","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"vn5R8tivXN3dCvMZwwV2","title":"9042/9160 - Pentesting Cassandra","pathname":"/hacktricks/network-services-pentesting/cassandra","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"hVKnSr43sTO895bT2gRe","title":"9100 - Pentesting Raw Printing (JetDirect, AppSocket, PDL-datastream)","pathname":"/hacktricks/network-services-pentesting/9100-pjl","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"fXw0kiiTh3W2PyTjvzbO","title":"9200 - Pentesting Elasticsearch","pathname":"/hacktricks/network-services-pentesting/9200-pentesting-elasticsearch","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"L7NAaQzVvdqx0tfDmnEx","title":"10000 - Pentesting Network Data Management Protocol (ndmp)","pathname":"/hacktricks/network-services-pentesting/10000-network-data-management-protocol-ndmp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"A6ddCULGAX67rJATdGVq","title":"11211 - Pentesting Memcache","pathname":"/hacktricks/network-services-pentesting/11211-memcache","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"U7r2gni7gmeL2CJBiw3u","title":"Memcache Commands","pathname":"/hacktricks/network-services-pentesting/11211-memcache/memcache-commands","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"11211 - Pentesting Memcache"}]},{"id":"fm18igYt5uq190z5itWb","title":"15672 - Pentesting RabbitMQ Management","pathname":"/hacktricks/network-services-pentesting/15672-pentesting-rabbitmq-management","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"AtBDcaCBCAOonGpSZWVf","title":"24007,24008,24009,49152 - Pentesting GlusterFS","pathname":"/hacktricks/network-services-pentesting/24007-24008-24009-49152-pentesting-glusterfs","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"29clwgKtGmLGJBnHl3BB","title":"27017,27018 - Pentesting MongoDB","pathname":"/hacktricks/network-services-pentesting/27017-27018-mongodb","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"o1SXiDW9IFWUpHhyCkEg","title":"44134 - Pentesting Tiller (Helm)","pathname":"/hacktricks/network-services-pentesting/44134-pentesting-tiller-helm","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"b52To9ADjnlN1xrVndcE","title":"44818/UDP/TCP - Pentesting EthernetIP","pathname":"/hacktricks/network-services-pentesting/44818-ethernetip","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"qEKj4Z3WeaKSbeoWaasY","title":"47808/udp - Pentesting BACNet","pathname":"/hacktricks/network-services-pentesting/47808-udp-bacnet","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"xefn2SJ95OxL9mEWaqZN","title":"50030,50060,50070,50075,50090 - Pentesting Hadoop","pathname":"/hacktricks/network-services-pentesting/50030-50060-50070-50075-50090-pentesting-hadoop","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"X9mKfBOOYRUEh82POlUS","title":"Web Vulnerabilities Methodology","pathname":"/hacktricks/pentesting-web/web-vulnerabilities-methodology","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"pKtAj1wpISJs8OdxgkxU","title":"Reflecting Techniques - PoCs and Polygloths CheatSheet","pathname":"/hacktricks/pentesting-web/pocs-and-polygloths-cheatsheet","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"AB8bke71XOPhfJ9cNrbG","title":"Web Vulns List","pathname":"/hacktricks/pentesting-web/pocs-and-polygloths-cheatsheet/web-vulns-list","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Reflecting Techniques - PoCs and Polygloths CheatSheet"}]},{"id":"JTnUOq4qBJcCBOFLvNJo","title":"2FA/MFA/OTP Bypass","pathname":"/hacktricks/pentesting-web/2fa-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"KCppnlpxqGPY6fvQzc0M","title":"Account Takeover","pathname":"/hacktricks/pentesting-web/account-takeover","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"O4tSYV50o71Wutsd9cnh","title":"Browser Extension Pentesting Methodology","pathname":"/hacktricks/pentesting-web/browser-extension-pentesting-methodology","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"huWZSiTXeTjrXcD3BAw2","title":"BrowExt - ClickJacking","pathname":"/hacktricks/pentesting-web/browser-extension-pentesting-methodology/browext-clickjacking","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Browser Extension Pentesting Methodology"}]},{"id":"fXWMqFYj029C14N7IfMq","title":"BrowExt - permissions & host_permissions","pathname":"/hacktricks/pentesting-web/browser-extension-pentesting-methodology/browext-permissions-and-host_permissions","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Browser Extension Pentesting Methodology"}]},{"id":"HwfjzxmdjSa6lygiyHnP","title":"BrowExt - XSS Example","pathname":"/hacktricks/pentesting-web/browser-extension-pentesting-methodology/browext-xss-example","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Browser Extension Pentesting Methodology"}]},{"id":"VRx6ltFdOmgzqZB58CZM","title":"Bypass Payment Process","pathname":"/hacktricks/pentesting-web/bypass-payment-process","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"5pnWeTCysE8SGy4mpWMc","title":"Captcha Bypass","pathname":"/hacktricks/pentesting-web/captcha-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"xN0azMmud5Mg6snDSEJ1","title":"Cache Poisoning and Cache Deception","pathname":"/hacktricks/pentesting-web/cache-deception","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"iq9PlRTPoJMYUSuKI9iT","title":"Cache Poisoning via URL discrepancies","pathname":"/hacktricks/pentesting-web/cache-deception/cache-poisoning-via-url-discrepancies","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Cache Poisoning and Cache Deception"}]},{"id":"kcQPLI3qGgAQJzV3jm8K","title":"Cache Poisoning to DoS","pathname":"/hacktricks/pentesting-web/cache-deception/cache-poisoning-to-dos","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Cache Poisoning and Cache Deception"}]},{"id":"4GqOlHAFkCuxJ4EeQ7o6","title":"Clickjacking","pathname":"/hacktricks/pentesting-web/clickjacking","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"JWnac3LliMpj5v1afOfb","title":"Client Side Template Injection (CSTI)","pathname":"/hacktricks/pentesting-web/client-side-template-injection-csti","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"q17xsXNKG9DJtDz6vRQ4","title":"Client Side Path Traversal","pathname":"/hacktricks/pentesting-web/client-side-path-traversal","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"DrwWch1HX78VeuFPEM6X","title":"Command Injection","pathname":"/hacktricks/pentesting-web/command-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"Ld4T1897SnAtXmgatqYN","title":"Content Security Policy (CSP) Bypass","pathname":"/hacktricks/pentesting-web/content-security-policy-csp-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"rfX67PdNpj8DsqW5FFRJ","title":"CSP bypass: self + 'unsafe-inline' with Iframes","pathname":"/hacktricks/pentesting-web/content-security-policy-csp-bypass/csp-bypass-self-+-unsafe-inline-with-iframes","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Content Security Policy (CSP) Bypass"}]},{"id":"U9QCIeuWCqRBEY1StHf0","title":"Cookies Hacking","pathname":"/hacktricks/pentesting-web/hacking-with-cookies","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"i2uUmXou64b0nMGCdwxZ","title":"Cookie Tossing","pathname":"/hacktricks/pentesting-web/hacking-with-cookies/cookie-tossing","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Cookies Hacking"}]},{"id":"WuJGAUTwg0KyipTqYs7t","title":"Cookie Jar Overflow","pathname":"/hacktricks/pentesting-web/hacking-with-cookies/cookie-jar-overflow","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Cookies Hacking"}]},{"id":"2d2gyKd7EtlZ9MkjnfI6","title":"Cookie Bomb","pathname":"/hacktricks/pentesting-web/hacking-with-cookies/cookie-bomb","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Cookies Hacking"}]},{"id":"EnAkWkBR4fkGJu9R2Pjl","title":"CORS - Misconfigurations & Bypass","pathname":"/hacktricks/pentesting-web/cors-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"5SPlnkFUWYe8x5rh0DDP","title":"CRLF (%0D%0A) Injection","pathname":"/hacktricks/pentesting-web/crlf-0d-0a","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"f2XzU78OqDYiW2yWjdmv","title":"CSRF (Cross Site Request Forgery)","pathname":"/hacktricks/pentesting-web/csrf-cross-site-request-forgery","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"8lHk3Gqtgy1vGnbUxnof","title":"Dangling Markup - HTML scriptless injection","pathname":"/hacktricks/pentesting-web/dangling-markup-html-scriptless-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"rjd0fakaBL20XDE04LBE","title":"SS-Leaks","pathname":"/hacktricks/pentesting-web/dangling-markup-html-scriptless-injection/ss-leaks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Dangling Markup - HTML scriptless injection"}]},{"id":"OYAkDR9VYUNNeodB4Dpk","title":"Dependency Confusion","pathname":"/hacktricks/pentesting-web/dependency-confusion","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"KwLKrWnTbpDpxhWJruCn","title":"Deserialization","pathname":"/hacktricks/pentesting-web/deserialization","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"jnLvYHkgSRlmGXVF15Xo","title":"NodeJS - __proto__ & prototype Pollution","pathname":"/hacktricks/pentesting-web/deserialization/nodejs-proto-prototype-pollution","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"l8hLzfOavh2ZJiLtZFTH","title":"Client Side Prototype Pollution","pathname":"/hacktricks/pentesting-web/deserialization/nodejs-proto-prototype-pollution/client-side-prototype-pollution","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"},{"label":"NodeJS - __proto__ & prototype Pollution"}]},{"id":"Stsz1GrPuOIWflJxrEIm","title":"Express Prototype Pollution Gadgets","pathname":"/hacktricks/pentesting-web/deserialization/nodejs-proto-prototype-pollution/express-prototype-pollution-gadgets","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"},{"label":"NodeJS - __proto__ & prototype Pollution"}]},{"id":"Gy3wzujz42TvvxSrEnc4","title":"Prototype Pollution to RCE","pathname":"/hacktricks/pentesting-web/deserialization/nodejs-proto-prototype-pollution/prototype-pollution-to-rce","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"},{"label":"NodeJS - __proto__ & prototype Pollution"}]},{"id":"0p75UmN5vv89w37rhcc7","title":"Java JSF ViewState (.faces) Deserialization","pathname":"/hacktricks/pentesting-web/deserialization/java-jsf-viewstate-.faces-deserialization","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"dkiCYCBcQ1KItKFy9Pr3","title":"Java DNS Deserialization, GadgetProbe and Java Deserialization Scanner","pathname":"/hacktricks/pentesting-web/deserialization/java-dns-deserialization-and-gadgetprobe","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"5a7bxHSMPK0S9B2UqxCP","title":"Basic Java Deserialization (ObjectInputStream, readObject)","pathname":"/hacktricks/pentesting-web/deserialization/basic-java-deserialization-objectinputstream-readobject","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"5LBxF9dHLKzOsfrm8kCl","title":"PHP - Deserialization + Autoload Classes","pathname":"/hacktricks/pentesting-web/deserialization/php-deserialization-+-autoload-classes","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"Up1edkMRyqnFMaXewll4","title":"CommonsCollection1 Payload - Java Transformers to Rutime exec() and Thread Sleep","pathname":"/hacktricks/pentesting-web/deserialization/java-transformers-to-rutime-exec-payload","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"Wylz8V5HG8LVvilBqhAW","title":"Basic .Net deserialization (ObjectDataProvider gadget, ExpandedWrapper, and Json.Net)","pathname":"/hacktricks/pentesting-web/deserialization/basic-.net-deserialization-objectdataprovider-gadgets-expandedwrapper-and-json.net","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"DuS9IktPu848P6lwetzv","title":"Exploiting __VIEWSTATE knowing the secrets","pathname":"/hacktricks/pentesting-web/deserialization/exploiting-__viewstate-knowing-the-secret","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"I2PaLo6eZJX0CCC4wakR","title":"Exploiting __VIEWSTATE without knowing the secrets","pathname":"/hacktricks/pentesting-web/deserialization/exploiting-__viewstate-parameter","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"MLPEi6fTUPoHTnA5rYGj","title":"Python Yaml Deserialization","pathname":"/hacktricks/pentesting-web/deserialization/python-yaml-deserialization","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"JUK9aCxKsws9GXq5JgXd","title":"JNDI - Java Naming and Directory Interface & Log4Shell","pathname":"/hacktricks/pentesting-web/deserialization/jndi-java-naming-and-directory-interface-and-log4shell","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"RbZssmomg6USe8QJ4Xdl","title":"Ruby Class Pollution","pathname":"/hacktricks/pentesting-web/deserialization/ruby-class-pollution","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"qHnbWENaQazVM9FviTxN","title":"Domain/Subdomain takeover","pathname":"/hacktricks/pentesting-web/domain-subdomain-takeover","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"PgXN3gxsV6mXXo0BT4gN","title":"Email Injections","pathname":"/hacktricks/pentesting-web/email-injections","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"epJDYomwzx1VziL2507H","title":"File Inclusion/Path traversal","pathname":"/hacktricks/pentesting-web/file-inclusion","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"Dmx14UWUWXnfYxjEti34","title":"phar:// deserialization","pathname":"/hacktricks/pentesting-web/file-inclusion/phar-deserialization","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"Eg7oKzNhBuzOLAdnkKJp","title":"LFI2RCE via PHP Filters","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-php-filters","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"3C2QWuAR3lIRy9wGB7TO","title":"LFI2RCE via Nginx temp files","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-nginx-temp-files","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"7lNWrmyWP38OU7cnFsCY","title":"LFI2RCE via PHP_SESSION_UPLOAD_PROGRESS","pathname":"/hacktricks/pentesting-web/file-inclusion/via-php_session_upload_progress","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"zdI1aMuZz3sMAxtnCEiI","title":"LFI2RCE via Segmentation Fault","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-segmentation-fault","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"HaIffJ6x7OWHOpArmG1O","title":"LFI2RCE via phpinfo()","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-phpinfo","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"yFfkNnwysGkJdrVWVO5F","title":"LFI2RCE Via temp file uploads","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-temp-file-uploads","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"qVs9eAFFMUk9O7WPWe1r","title":"LFI2RCE via Eternal waiting","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-eternal-waiting","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"xy5KntuoRZVJiv0WPmMb","title":"LFI2RCE Via compress.zlib + PHP_STREAM_PREFER_STUDIO + Path Disclosure","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-compress.zlib-+-php_stream_prefer_studio-+-path-disclosure","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"8vPnbKCqV0Evsupi3vB1","title":"File Upload","pathname":"/hacktricks/pentesting-web/file-upload","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"1ZqnOEFFRe5NchXDtt8h","title":"PDF Upload - XXE and CORS bypass","pathname":"/hacktricks/pentesting-web/file-upload/pdf-upload-xxe-and-cors-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Upload"}]},{"id":"Qa5GxWZedc5Ka8GwGOPD","title":"Formula/CSV/Doc/LaTeX/GhostScript Injection","pathname":"/hacktricks/pentesting-web/formula-csv-doc-latex-ghostscript-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"5Cv5pToMVj3LhMkOCbQc","title":"gRPC-Web Pentest","pathname":"/hacktricks/pentesting-web/grpc-web-pentest","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"1Q5a7ZZmBvnjkUEgYYhl","title":"HTTP Connection Contamination","pathname":"/hacktricks/pentesting-web/http-connection-contamination","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"1xkth1fcsLIv1OIuCr2Z","title":"HTTP Connection Request Smuggling","pathname":"/hacktricks/pentesting-web/http-connection-request-smuggling","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"iWN85lmRmTWM0TWotetJ","title":"HTTP Request Smuggling / HTTP Desync Attack","pathname":"/hacktricks/pentesting-web/http-request-smuggling","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"rG9n9hZFvUmYlOIrKu9E","title":"Browser HTTP Request Smuggling","pathname":"/hacktricks/pentesting-web/http-request-smuggling/browser-http-request-smuggling","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"HTTP Request Smuggling / HTTP Desync Attack"}]},{"id":"usvN7L71ipJyalA9sjRo","title":"Request Smuggling in HTTP/2 Downgrades","pathname":"/hacktricks/pentesting-web/http-request-smuggling/request-smuggling-in-http-2-downgrades","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"HTTP Request Smuggling / HTTP Desync Attack"}]},{"id":"eIwSKgBZYmxSHmirFHgp","title":"HTTP Response Smuggling / Desync","pathname":"/hacktricks/pentesting-web/http-response-smuggling-desync","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"mhDFAhcDzOeQFTGdJ6A9","title":"Upgrade Header Smuggling","pathname":"/hacktricks/pentesting-web/h2c-smuggling","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"RIlcROZS8kgo9p4Ndh6x","title":"hop-by-hop headers","pathname":"/hacktricks/pentesting-web/abusing-hop-by-hop-headers","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"7VV09B0Vx7Bu0ujsX5LV","title":"IDOR","pathname":"/hacktricks/pentesting-web/idor","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"9uhNsPqsRXryXaWSIGTP","title":"JWT Vulnerabilities (Json Web Tokens)","pathname":"/hacktricks/pentesting-web/hacking-jwt-json-web-tokens","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"qGYQsPkDgmIFkrlWXf3C","title":"LDAP Injection","pathname":"/hacktricks/pentesting-web/ldap-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"eZZYElqyYwf73ZUUcied","title":"Login Bypass","pathname":"/hacktricks/pentesting-web/login-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"xryuYgq4j9OY2XEBB1fX","title":"Login bypass List","pathname":"/hacktricks/pentesting-web/login-bypass/sql-login-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Login Bypass"}]},{"id":"u65KobEf8D9Sp4ynQur0","title":"NoSQL injection","pathname":"/hacktricks/pentesting-web/nosql-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"GUWoGZCPsDaQuziLq8cL","title":"OAuth to Account takeover","pathname":"/hacktricks/pentesting-web/oauth-to-account-takeover","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"nKbphysZgPZv6LmvtDGj","title":"Open Redirect","pathname":"/hacktricks/pentesting-web/open-redirect","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"eO0I0E6RtIzOgmN0i9hM","title":"ORM Injection","pathname":"/hacktricks/pentesting-web/orm-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"nldFTurQPW7inAA8A3z0","title":"Parameter Pollution","pathname":"/hacktricks/pentesting-web/parameter-pollution","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"6VuSa8NMGcsnfqcJf0TJ","title":"Phone Number Injections","pathname":"/hacktricks/pentesting-web/phone-number-injections","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"uEK36KBEDYU0SOYW5mNF","title":"PostMessage Vulnerabilities","pathname":"/hacktricks/pentesting-web/postmessage-vulnerabilities","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"TRwLNg3MhcqbL19F1uQg","title":"Blocking main page to steal postmessage","pathname":"/hacktricks/pentesting-web/postmessage-vulnerabilities/blocking-main-page-to-steal-postmessage","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"PostMessage Vulnerabilities"}]},{"id":"zEl6gxsD8S6awUypjXeS","title":"Bypassing SOP with Iframes - 1","pathname":"/hacktricks/pentesting-web/postmessage-vulnerabilities/bypassing-sop-with-iframes-1","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"PostMessage Vulnerabilities"}]},{"id":"XeHtYb1i4351H7FI6NXi","title":"Bypassing SOP with Iframes - 2","pathname":"/hacktricks/pentesting-web/postmessage-vulnerabilities/bypassing-sop-with-iframes-2","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"PostMessage Vulnerabilities"}]},{"id":"2jFiTXHM6ANqU9BvW8DT","title":"Steal postmessage modifying iframe location","pathname":"/hacktricks/pentesting-web/postmessage-vulnerabilities/steal-postmessage-modifying-iframe-location","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"PostMessage Vulnerabilities"}]},{"id":"X2uQQjPoCRcRzKGxBuJm","title":"Proxy / WAF Protections Bypass","pathname":"/hacktricks/pentesting-web/proxy-waf-protections-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"E23QeLXm4GYGpENzVzJk","title":"Race Condition","pathname":"/hacktricks/pentesting-web/race-condition","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"mEDcSAPEzxifbwo5WKIk","title":"Rate Limit Bypass","pathname":"/hacktricks/pentesting-web/rate-limit-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"RdljiQBYzJ2DoKMFExl3","title":"Registration & Takeover Vulnerabilities","pathname":"/hacktricks/pentesting-web/registration-vulnerabilities","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"vBtLcJkljWC6dw9lDUFr","title":"Regular expression Denial of Service - ReDoS","pathname":"/hacktricks/pentesting-web/regular-expression-denial-of-service-redos","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"xalq2mJBUrqrA2UfCAPp","title":"Reset/Forgotten Password Bypass","pathname":"/hacktricks/pentesting-web/reset-password","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"X2dr6UnMCc95dHaGigDp","title":"Reverse Tab Nabbing","pathname":"/hacktricks/pentesting-web/reverse-tab-nabbing","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"SPflDotfAUYTuksTdpf1","title":"SAML Attacks","pathname":"/hacktricks/pentesting-web/saml-attacks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"9V6qUyN7870UwVJNT3T2","title":"SAML Basics","pathname":"/hacktricks/pentesting-web/saml-attacks/saml-basics","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SAML Attacks"}]},{"id":"JCHfafjtMqSeu1fXaoT7","title":"Server Side Inclusion/Edge Side Inclusion Injection","pathname":"/hacktricks/pentesting-web/server-side-inclusion-edge-side-inclusion-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"H1kinRyjjcpUoRXRspY9","title":"SQL Injection","pathname":"/hacktricks/pentesting-web/sql-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"XuvyQv9kfPZyLj8JiwRO","title":"MS Access SQL Injection","pathname":"/hacktricks/pentesting-web/sql-injection/ms-access-sql-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"7OO2OCleNvDYLiXlYYw1","title":"MSSQL Injection","pathname":"/hacktricks/pentesting-web/sql-injection/mssql-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"OzS0I0sT15SPhkvXYR7s","title":"MySQL injection","pathname":"/hacktricks/pentesting-web/sql-injection/mysql-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"nU5AY5yX7cFrYkk75Fp4","title":"MySQL File priv to SSRF/RCE","pathname":"/hacktricks/pentesting-web/sql-injection/mysql-injection/mysql-ssrf","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"MySQL injection"}]},{"id":"2af6mC2Fx93NDZvrzbJI","title":"Oracle injection","pathname":"/hacktricks/pentesting-web/sql-injection/oracle-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"5HjeqX3Hy5b0ZIkcGjGt","title":"Cypher Injection (neo4j)","pathname":"/hacktricks/pentesting-web/sql-injection/cypher-injection-neo4j","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"KV6Ih9aMh3rcUU4RnKTr","title":"PostgreSQL injection","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"WFg7R4H6hlxBe8lpyvYw","title":"dblink/lo_import data exfiltration","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection/dblink-lo_import-data-exfiltration","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"PostgreSQL injection"}]},{"id":"DxIYb7FbwUQvaTx0j0ut","title":"PL/pgSQL Password Bruteforce","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection/pl-pgsql-password-bruteforce","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"PostgreSQL injection"}]},{"id":"OedlgcP5B3YnmqVdeRtw","title":"Network - Privesc, Port Scanner and NTLM chanllenge response disclosure","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection/network-privesc-port-scanner-and-ntlm-chanllenge-response-disclosure","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"PostgreSQL injection"}]},{"id":"SwLnXEwgDxdpmw20uykh","title":"Big Binary Files Upload (PostgreSQL)","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection/big-binary-files-upload-postgresql","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"PostgreSQL injection"}]},{"id":"1YveJZdezY8LE79s0OjQ","title":"RCE with PostgreSQL Languages","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection/rce-with-postgresql-languages","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"PostgreSQL injection"}]},{"id":"PpqfnYMqFA2oAMOfVqnz","title":"RCE with PostgreSQL Extensions","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection/rce-with-postgresql-extensions","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"PostgreSQL injection"}]},{"id":"C97K54nmSeq2f7ttx713","title":"SQLMap - CheatSheet","pathname":"/hacktricks/pentesting-web/sql-injection/sqlmap","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"RzdSHg9w7KEtsVaZts6v","title":"Second Order Injection - SQLMap","pathname":"/hacktricks/pentesting-web/sql-injection/sqlmap/second-order-injection-sqlmap","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"SQLMap - CheatSheet"}]},{"id":"EQP7YGs9YLYT64QVCcz3","title":"SSRF (Server Side Request Forgery)","pathname":"/hacktricks/pentesting-web/ssrf-server-side-request-forgery","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"QFVux0Y330PhA0Gs6RQ1","title":"URL Format Bypass","pathname":"/hacktricks/pentesting-web/ssrf-server-side-request-forgery/url-format-bypass","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SSRF (Server Side Request Forgery)"}]},{"id":"GZ0tRea88zgcevrRxW6X","title":"SSRF Vulnerable Platforms","pathname":"/hacktricks/pentesting-web/ssrf-server-side-request-forgery/ssrf-vulnerable-platforms","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SSRF (Server Side Request Forgery)"}]},{"id":"P11ieR4nGPcTmVgeR3vP","title":"Cloud SSRF","pathname":"/hacktricks/pentesting-web/ssrf-server-side-request-forgery/cloud-ssrf","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SSRF (Server Side Request Forgery)"}]},{"id":"RYFkqXWhsJXDMzW6ZP9W","title":"SSTI (Server Side Template Injection)","pathname":"/hacktricks/pentesting-web/ssti-server-side-template-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"6xO7DbaX0UxKR1i7X9i7","title":"EL - Expression Language","pathname":"/hacktricks/pentesting-web/ssti-server-side-template-injection/el-expression-language","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SSTI (Server Side Template Injection)"}]},{"id":"IM7d68s5Q0usYAuNlAsY","title":"Jinja2 SSTI","pathname":"/hacktricks/pentesting-web/ssti-server-side-template-injection/jinja2-ssti","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SSTI (Server Side Template Injection)"}]},{"id":"0Hd4W2lk9bKnxjTk5lI2","title":"Timing Attacks","pathname":"/hacktricks/pentesting-web/timing-attacks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"e9X7IKbKP3qhsLJJT4fN","title":"Unicode Injection","pathname":"/hacktricks/pentesting-web/unicode-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"qpz81r2zswP5Lv50gtOY","title":"Unicode Normalization","pathname":"/hacktricks/pentesting-web/unicode-injection/unicode-normalization","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Unicode Injection"}]},{"id":"RkFldmoERB1M9jjjTrg5","title":"UUID Insecurities","pathname":"/hacktricks/pentesting-web/uuid-insecurities","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"2WjsCN95K3NkLQgkW6v2","title":"WebSocket Attacks","pathname":"/hacktricks/pentesting-web/websocket-attacks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"5Sn97zvx6mwsJYmW20JS","title":"Web Tool - WFuzz","pathname":"/hacktricks/pentesting-web/web-tool-wfuzz","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"7ptJqqixy1pISfLcV3X3","title":"XPATH injection","pathname":"/hacktricks/pentesting-web/xpath-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"B4z4PG8Cqv9gHg0xIi3F","title":"XSLT Server Side Injection (Extensible Stylesheet Language Transformations)","pathname":"/hacktricks/pentesting-web/xslt-server-side-injection-extensible-stylesheet-language-transformations","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"pvVoovH0lmplbmKyxdRX","title":"XXE - XEE - XML External Entity","pathname":"/hacktricks/pentesting-web/xxe-xee-xml-external-entity","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"MIGbG9t3OUH8TuKBg5gI","title":"XSS (Cross Site Scripting)","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"dVxRO7lDHqMwVdAFPouX","title":"Abusing Service Workers","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/abusing-service-workers","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"xJuJBHOldUzPjTnuQflS","title":"Chrome Cache to XSS","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/chrome-cache-to-xss","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"j8ZY8ondrwacKW12UpFa","title":"Debugging Client Side JS","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/debugging-client-side-js","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"gNyniLZrJHgFKujcY7R2","title":"Dom Clobbering","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/dom-clobbering","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"udkzFFJWjbU93lutAISo","title":"DOM Invader","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/dom-invader","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"XfQ28BQLekNlEsByvm1K","title":"DOM XSS","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/dom-xss","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"URrIWsXPeOUYsaqSBCiv","title":"Iframes in XSS, CSP and SOP","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/iframes-in-xss-and-csp","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"zRJfIOOjDf028ccBX6ri","title":"Integer Overflow","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/integer-overflow","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"N33htGvkAEjVr4sbkvoF","title":"JS Hoisting","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/js-hoisting","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"9krVqCaQE24gEDTNBwJI","title":"Misc JS Tricks & Relevant Info","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/other-js-tricks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"A56VbWr4ILfJeFPhYH37","title":"PDF Injection","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/pdf-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"Mf7JUPfj4Z7bEfMVm6hm","title":"Server Side XSS (Dynamic PDF)","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/server-side-xss-dynamic-pdf","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"I29aRIfd8M4xCTrPzlVE","title":"Shadow DOM","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/shadow-dom","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"hYcaYNszokfwKLAaYfWi","title":"SOME - Same Origin Method Execution","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/some-same-origin-method-execution","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"nL7snXu1q1A1a4D2ziY8","title":"Sniff Leak","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/sniff-leak","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"hSTHuRfPkY7eiAyoTM1t","title":"Steal Info JS","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/steal-info-js","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"2sBIZUd0iPIoei3Zg8cl","title":"XSS in Markdown","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/xss-in-markdown","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"7lBAbaltX5a3A5IkvAwO","title":"XSSI (Cross-Site Script Inclusion)","pathname":"/hacktricks/pentesting-web/xssi-cross-site-script-inclusion","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"F5ZXCruCW5gMXu2Ld5rB","title":"XS-Search/XS-Leaks","pathname":"/hacktricks/pentesting-web/xs-search","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"cUVL3os1oqLrLjErMA0w","title":"Connection Pool Examples","pathname":"/hacktricks/pentesting-web/xs-search/connection-pool-example","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"VVjBNmL6ODk6fs8SSGyN","title":"Connection Pool by Destination Example","pathname":"/hacktricks/pentesting-web/xs-search/connection-pool-by-destination-example","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"e1WgeSVf82wYYWAgQAJl","title":"Cookie Bomb + Onerror XS Leak","pathname":"/hacktricks/pentesting-web/xs-search/cookie-bomb-+-onerror-xs-leak","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"rRhrAIwi6XezbiSXjCLs","title":"URL Max Length - Client Side","pathname":"/hacktricks/pentesting-web/xs-search/url-max-length-client-side","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"3p5nREaMzcvDnr6cFvTA","title":"performance.now example","pathname":"/hacktricks/pentesting-web/xs-search/performance.now-example","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"HwQWhFbMhpfZdAs9MwCT","title":"performance.now + Force heavy task","pathname":"/hacktricks/pentesting-web/xs-search/performance.now-+-force-heavy-task","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"RscII4rinEAa0AXzsUax","title":"Event Loop Blocking + Lazy images","pathname":"/hacktricks/pentesting-web/xs-search/event-loop-blocking-+-lazy-images","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"hAZAIbt3FbfNEl7JXdfv","title":"JavaScript Execution XS Leak","pathname":"/hacktricks/pentesting-web/xs-search/javascript-execution-xs-leak","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"HQUqRklcyeOMUS9Gz4Ol","title":"CSS Injection","pathname":"/hacktricks/pentesting-web/xs-search/css-injection","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"OWWIXk9phP5hPl3hY7Hk","title":"CSS Injection Code","pathname":"/hacktricks/pentesting-web/xs-search/css-injection/css-injection-code","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"},{"label":"CSS Injection"}]},{"id":"UoQOAi31nJrdkRi7ao91","title":"Iframe Traps","pathname":"/hacktricks/pentesting-web/iframe-traps","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"gqTky2a6UGFD1LB5aBu2","title":"Physical Attacks","pathname":"/hacktricks/hardware-physical-access/physical-attacks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Hardware/Physical Access","emoji":"1f60e"}]},{"id":"VM0L6lMj5U2xdXxZti1s","title":"Escaping from KIOSKs","pathname":"/hacktricks/hardware-physical-access/escaping-from-gui-applications","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Hardware/Physical Access","emoji":"1f60e"}]},{"id":"TZUJatT0571mpKQJwhJB","title":"Firmware Analysis","pathname":"/hacktricks/hardware-physical-access/firmware-analysis","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Hardware/Physical Access","emoji":"1f60e"}]},{"id":"PRnOzPFyLsOLSlm5VBJa","title":"Bootloader testing","pathname":"/hacktricks/hardware-physical-access/firmware-analysis/bootloader-testing","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Hardware/Physical Access","emoji":"1f60e"},{"label":"Firmware Analysis"}]},{"id":"JxxVy6eobxCMe9KfLJrF","title":"Firmware Integrity","pathname":"/hacktricks/hardware-physical-access/firmware-analysis/firmware-integrity","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Hardware/Physical Access","emoji":"1f60e"},{"label":"Firmware Analysis"}]},{"id":"A2VjlaX6cx1HP09yjxZK","title":"Basic Stack Binary Exploitation Methodology","pathname":"/hacktricks/binary-exploitation/basic-stack-binary-exploitation-methodology","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"rceJdBphM1RzbJlYAKzC","title":"ELF Basic Information","pathname":"/hacktricks/binary-exploitation/basic-stack-binary-exploitation-methodology/elf-tricks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Basic Stack Binary Exploitation Methodology"}]},{"id":"KyIRX19sggl6cjHvJt9f","title":"Exploiting Tools","pathname":"/hacktricks/binary-exploitation/basic-stack-binary-exploitation-methodology/tools","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Basic Stack Binary Exploitation Methodology"}]},{"id":"5IOaSHaY5EjAyZdX9L1M","title":"PwnTools","pathname":"/hacktricks/binary-exploitation/basic-stack-binary-exploitation-methodology/tools/pwntools","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Basic Stack Binary Exploitation Methodology"},{"label":"Exploiting Tools"}]},{"id":"1MburgrmyjqMLKl5rjKd","title":"Stack Overflow","pathname":"/hacktricks/binary-exploitation/stack-overflow","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"SaxMCcl4yVAUBiAuNz1E","title":"Pointer Redirecting","pathname":"/hacktricks/binary-exploitation/stack-overflow/pointer-redirecting","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"}]},{"id":"JIOcENdO7ZjajojY60LC","title":"Ret2win","pathname":"/hacktricks/binary-exploitation/stack-overflow/ret2win","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"}]},{"id":"XQy48G5r0qjb1DOOVFd2","title":"Ret2win - arm64","pathname":"/hacktricks/binary-exploitation/stack-overflow/ret2win/ret2win-arm64","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"},{"label":"Ret2win"}]},{"id":"LkfSEqa4HATPanjyk4y4","title":"Stack Shellcode","pathname":"/hacktricks/binary-exploitation/stack-overflow/stack-shellcode","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"}]},{"id":"jCp0duaCYHmLDL8wdMNZ","title":"Stack Shellcode - arm64","pathname":"/hacktricks/binary-exploitation/stack-overflow/stack-shellcode/stack-shellcode-arm64","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"},{"label":"Stack Shellcode"}]},{"id":"qxcpyHJsB6B3ZnjKurt5","title":"Stack Pivoting - EBP2Ret - EBP chaining","pathname":"/hacktricks/binary-exploitation/stack-overflow/stack-pivoting-ebp2ret-ebp-chaining","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"}]},{"id":"QddiP3fFkOJSE6VZ8Iw6","title":"Uninitialized Variables","pathname":"/hacktricks/binary-exploitation/stack-overflow/uninitialized-variables","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"}]},{"id":"RaBEfRjOzWRsYbR7wvod","title":"ROP - Return Oriented Programing","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"5pvcI6ZpMJjKcInL8GPz","title":"BROP - Blind Return Oriented Programming","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/brop-blind-return-oriented-programming","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"2iWt5tUimWPdc28AjE7J","title":"Ret2csu","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2csu","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"2vEjyOTmK8F94wHJa29J","title":"Ret2dlresolve","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2dlresolve","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"0gjK7uSPrbatijXEtV6Z","title":"Ret2esp / Ret2reg","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2esp-ret2reg","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"eRW7aPmZLh7m13cI5Soy","title":"Ret2lib","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2lib","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"FVqSbdPa35Fz76UG067G","title":"Leaking libc address with ROP","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2lib/rop-leaking-libc-address","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"},{"label":"Ret2lib"}]},{"id":"wqquktRkYFQ07R4KvTiZ","title":"Leaking libc - template","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2lib/rop-leaking-libc-address/rop-leaking-libc-template","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"},{"label":"Ret2lib"},{"label":"Leaking libc address with ROP"}]},{"id":"HBzwUUXP9R8npRNZUSRG","title":"One Gadget","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2lib/one-gadget","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"},{"label":"Ret2lib"}]},{"id":"0j8drvm0xzqdwxXpR3OE","title":"Ret2lib + Printf leak - arm64","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2lib/ret2lib-+-printf-leak-arm64","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"},{"label":"Ret2lib"}]},{"id":"vbP9lhKNFTgLPquNzAoB","title":"Ret2syscall","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/rop-syscall-execv","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"nBDiomchgRsgua6ullYG","title":"Ret2syscall - ARM64","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/rop-syscall-execv/ret2syscall-arm64","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"},{"label":"Ret2syscall"}]},{"id":"qEjd3Ra1PZoWVSZnBcKP","title":"Ret2vDSO","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2vdso","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"EMpkNR0TADA3Al6U62QH","title":"SROP - Sigreturn-Oriented Programming","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/srop-sigreturn-oriented-programming","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"qIAT9LirToamUjFaiJA0","title":"SROP - ARM64","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/srop-sigreturn-oriented-programming/srop-arm64","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"},{"label":"SROP - Sigreturn-Oriented Programming"}]},{"id":"chJPZJwZEbgL5BGvjPDF","title":"Array Indexing","pathname":"/hacktricks/binary-exploitation/array-indexing","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"bbZy6zlqpKxdFC318o6L","title":"Integer Overflow","pathname":"/hacktricks/binary-exploitation/integer-overflow","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"79TxZOXZKLGu7HXHHjFU","title":"Format Strings","pathname":"/hacktricks/binary-exploitation/format-strings","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"jPuMrHHtN6g2JgjS2QT2","title":"Format Strings - Arbitrary Read Example","pathname":"/hacktricks/binary-exploitation/format-strings/format-strings-arbitrary-read-example","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Format Strings"}]},{"id":"WUiodsbuhcSDI5ra8zVt","title":"Format Strings Template","pathname":"/hacktricks/binary-exploitation/format-strings/format-strings-template","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Format Strings"}]},{"id":"2INf0VD3IufFMCBappe1","title":"Libc Heap","pathname":"/hacktricks/binary-exploitation/libc-heap","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"fRMM9niR5cAvS4qjX8Vc","title":"Bins & Memory Allocations","pathname":"/hacktricks/binary-exploitation/libc-heap/bins-and-memory-allocations","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"5hTVpP1ekxKaa5CuGPSB","title":"Heap Memory Functions","pathname":"/hacktricks/binary-exploitation/libc-heap/heap-memory-functions","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"TbHmePMlk8B6niavLG9E","title":"free","pathname":"/hacktricks/binary-exploitation/libc-heap/heap-memory-functions/free","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"},{"label":"Heap Memory Functions"}]},{"id":"EbhCRqCBpWpfkoPOd0Hw","title":"malloc & sysmalloc","pathname":"/hacktricks/binary-exploitation/libc-heap/heap-memory-functions/malloc-and-sysmalloc","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"},{"label":"Heap Memory Functions"}]},{"id":"AZRFxBm71qUg1LN6IkO6","title":"unlink","pathname":"/hacktricks/binary-exploitation/libc-heap/heap-memory-functions/unlink","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"},{"label":"Heap Memory Functions"}]},{"id":"bIPFduAbIVkgRIyV9eqi","title":"Heap Functions Security Checks","pathname":"/hacktricks/binary-exploitation/libc-heap/heap-memory-functions/heap-functions-security-checks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"},{"label":"Heap Memory Functions"}]},{"id":"wpt3nYoDiYrXnzhQDyoX","title":"Use After Free","pathname":"/hacktricks/binary-exploitation/libc-heap/use-after-free","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"OJyZ9ZjltCd8HD6jOpl5","title":"First Fit","pathname":"/hacktricks/binary-exploitation/libc-heap/use-after-free/first-fit","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"},{"label":"Use After Free"}]},{"id":"w8oroir3OAOqTKQBWupb","title":"Double Free","pathname":"/hacktricks/binary-exploitation/libc-heap/double-free","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"2dAC6mPB2SnoIo6ypZCV","title":"Overwriting a freed chunk","pathname":"/hacktricks/binary-exploitation/libc-heap/overwriting-a-freed-chunk","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"zZjBeYeHQRfnSAQkQ0pd","title":"Heap Overflow","pathname":"/hacktricks/binary-exploitation/libc-heap/heap-overflow","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"csV4Ild92CpNxLcJTa4b","title":"Unlink Attack","pathname":"/hacktricks/binary-exploitation/libc-heap/unlink-attack","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"yt6fYeRqb4O4wEetpDiz","title":"Fast Bin Attack","pathname":"/hacktricks/binary-exploitation/libc-heap/fast-bin-attack","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"5G7iMBSe3Hoebu3LJ0Qr","title":"Unsorted Bin Attack","pathname":"/hacktricks/binary-exploitation/libc-heap/unsorted-bin-attack","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"Aja6eYBh2ysrHAn5OW80","title":"Large Bin Attack","pathname":"/hacktricks/binary-exploitation/libc-heap/large-bin-attack","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"Yb72P2hAhWUFZGbdmjYY","title":"Tcache Bin Attack","pathname":"/hacktricks/binary-exploitation/libc-heap/tcache-bin-attack","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"B7SwKdcwa1E0MIaoISLT","title":"Off by one overflow","pathname":"/hacktricks/binary-exploitation/libc-heap/off-by-one-overflow","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"CH4CMR5hDLZsDNyoaCHh","title":"House of Spirit","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-spirit","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"DfflftRLguTC8xigT6M2","title":"House of Lore | Small bin Attack","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-lore","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"v3xQistQfHyWt3iconlP","title":"House of Einherjar","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-einherjar","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"c9tF5iFiGChFP1arBMtz","title":"House of Force","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-force","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"4FZfwLZjWrN08o35mtWf","title":"House of Orange","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-orange","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"uF13Iynnw0QAL01vWYwV","title":"House of Rabbit","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-rabbit","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"jgiMVDLiFqj6jWyOFwiO","title":"House of Roman","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-roman","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"doziq2oh41ZHeXkzNCOz","title":"Common Binary Exploitation Protections & Bypasses","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"gyCBezs2Jw1dY0DeNFDo","title":"ASLR","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/aslr","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"UXgz0YQQkZyIJ4Bmv8Om","title":"Ret2plt","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/aslr/ret2plt","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"},{"label":"ASLR"}]},{"id":"pmLLMTFxMWZpP7LMIL12","title":"Ret2ret & Reo2pop","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/aslr/ret2ret","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"},{"label":"ASLR"}]},{"id":"MKKxYBoaZciDzIWxi16f","title":"CET & Shadow Stack","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/cet-and-shadow-stack","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"zcsh2YochxJP0NgPZj4E","title":"Libc Protections","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/libc-protections","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"hUCyti2YQsHYXZ7bu7yH","title":"Memory Tagging Extension (MTE)","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/memory-tagging-extension-mte","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"UDorkUTvEjY7e1LsvUDL","title":"No-exec / NX","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/no-exec-nx","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"baYLOANQjMs7ACVIGwEz","title":"PIE","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/pie","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"syByFJBx84WuIo7XeXAB","title":"BF Addresses in the Stack","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/pie/bypassing-canary-and-pie","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"},{"label":"PIE"}]},{"id":"rYaSiATCWGqGyF7BhqBq","title":"Relro","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/relro","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"6zWSlcEuclUcVMQss35u","title":"Stack Canaries","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/stack-canaries","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"0V1ygGgUNscVhhunwC46","title":"BF Forked & Threaded Stack Canaries","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/stack-canaries/bf-forked-stack-canaries","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"},{"label":"Stack Canaries"}]},{"id":"ycYuEyf9xsDG4ZR9m4Su","title":"Print Stack Canary","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/stack-canaries/print-stack-canary","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"},{"label":"Stack Canaries"}]},{"id":"Q0mZzyiOZK1Idc7UHASs","title":"Write What Where 2 Exec","pathname":"/hacktricks/binary-exploitation/arbitrary-write-2-exec","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"WaWKWDvo0M6u7a1MMsGl","title":"WWW2Exec - atexit()","pathname":"/hacktricks/binary-exploitation/arbitrary-write-2-exec/www2exec-atexit","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Write What Where 2 Exec"}]},{"id":"LRkI3hWDjuMc5QGDa3dL","title":"WWW2Exec - .dtors & .fini_array","pathname":"/hacktricks/binary-exploitation/arbitrary-write-2-exec/www2exec-.dtors-and-.fini_array","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Write What Where 2 Exec"}]},{"id":"yPTAFbcqXPnpdIox29bl","title":"WWW2Exec - GOT/PLT","pathname":"/hacktricks/binary-exploitation/arbitrary-write-2-exec/aw2exec-got-plt","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Write What Where 2 Exec"}]},{"id":"K9012kcx6XFLFIh7wG9J","title":"WWW2Exec - __malloc_hook & __free_hook","pathname":"/hacktricks/binary-exploitation/arbitrary-write-2-exec/aw2exec-__malloc_hook","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Write What Where 2 Exec"}]},{"id":"4RPL0YSwYzzxbuBP9Sy4","title":"Common Exploiting Problems","pathname":"/hacktricks/binary-exploitation/common-exploiting-problems","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"9rZSY24W7nXyz3RL7PHg","title":"Windows Exploiting (Basic Guide - OSCP lvl)","pathname":"/hacktricks/binary-exploitation/windows-exploiting-basic-guide-oscp-lvl","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"ecqU7UvViEp9bflbCmYY","title":"iOS Exploiting","pathname":"/hacktricks/binary-exploitation/ios-exploiting","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"ZeOaZ3VSKjq63IKHRJp7","title":"Reversing Tools & Basic Methods","pathname":"/hacktricks/reversing/reversing-tools-basic-methods","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"}]},{"id":"KsyRR2GskJHFBm8GKW35","title":"Angr","pathname":"/hacktricks/reversing/reversing-tools-basic-methods/angr","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"},{"label":"Reversing Tools & Basic Methods"}]},{"id":"bXJtOBC4s43A0IP9TdlX","title":"Angr - Examples","pathname":"/hacktricks/reversing/reversing-tools-basic-methods/angr/angr-examples","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"},{"label":"Reversing Tools & Basic Methods"},{"label":"Angr"}]},{"id":"Ksjrs4PK3p8raghI8Hn4","title":"Z3 - Satisfiability Modulo Theories (SMT)","pathname":"/hacktricks/reversing/reversing-tools-basic-methods/satisfiability-modulo-theories-smt-z3","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"},{"label":"Reversing Tools & Basic Methods"}]},{"id":"cRf2qtCF6QLdtDaaisvm","title":"Cheat Engine","pathname":"/hacktricks/reversing/reversing-tools-basic-methods/cheat-engine","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"},{"label":"Reversing Tools & Basic Methods"}]},{"id":"wFK9KMPQz0gUCjxT6Cbk","title":"Blobrunner","pathname":"/hacktricks/reversing/reversing-tools-basic-methods/blobrunner","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"},{"label":"Reversing Tools & Basic Methods"}]},{"id":"6JPAVKn8nuv13iu483Ru","title":"Common API used in Malware","pathname":"/hacktricks/reversing/common-api-used-in-malware","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"}]},{"id":"6uMfnR16eyAUVNmPs3tW","title":"Word Macros","pathname":"/hacktricks/reversing/word-macros","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"}]},{"id":"oZFWJzrTHsQwW7bXV5N1","title":"Cryptographic/Compression Algorithms","pathname":"/hacktricks/crypto-and-stego/cryptographic-algorithms","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"f59btXPjrkuy4uOAEhwa","title":"Unpacking binaries","pathname":"/hacktricks/crypto-and-stego/cryptographic-algorithms/unpacking-binaries","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"},{"label":"Cryptographic/Compression Algorithms"}]},{"id":"B2Rv4V1SSCXCPZWHwvxx","title":"Certificates","pathname":"/hacktricks/crypto-and-stego/certificates","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"wNTui1IM3nLWxWP29lue","title":"Cipher Block Chaining CBC-MAC","pathname":"/hacktricks/crypto-and-stego/cipher-block-chaining-cbc-mac-priv","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"s3Sw29RBofeSDvyYSV9N","title":"Crypto CTFs Tricks","pathname":"/hacktricks/crypto-and-stego/crypto-ctfs-tricks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"vMd688wgfWLVX6x983g9","title":"Electronic Code Book (ECB)","pathname":"/hacktricks/crypto-and-stego/electronic-code-book-ecb","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"bauT1jVRVNyewpWGCBrT","title":"Hash Length Extension Attack","pathname":"/hacktricks/crypto-and-stego/hash-length-extension-attack","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"w8Y3EPQ50yr3I7HDBKnu","title":"Padding Oracle","pathname":"/hacktricks/crypto-and-stego/padding-oracle-priv","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"cZn8FuRxAQOw3H7rHZKD","title":"RC4 - Encrypt&Decrypt","pathname":"/hacktricks/crypto-and-stego/rc4-encrypt-and-decrypt","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"dxBV62V8oVpplHnmqrr6","title":"Stego Tricks","pathname":"/hacktricks/crypto-and-stego/stego-tricks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"msIy2U1zS44XJGMRTgXA","title":"Esoteric languages","pathname":"/hacktricks/crypto-and-stego/esoteric-languages","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"nNFj62jeQLULx77F0UXC","title":"Blockchain & Crypto Currencies","pathname":"/hacktricks/crypto-and-stego/blockchain-and-crypto-currencies","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"OO7iV9WOYzWuraOt1JYC","title":"Salseo","pathname":"/hacktricks/c2/salseo","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"C2","emoji":"1f982"}]},{"id":"CzhfRJSbPGnqfwy93UYs","title":"ICMPsh","pathname":"/hacktricks/c2/icmpsh","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"C2","emoji":"1f982"}]},{"id":"w4IAlYXW5dSMwKTFolbO","title":"Cobalt Strike","pathname":"/hacktricks/c2/cobalt-strike","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"C2","emoji":"1f982"}]},{"id":"UyizZDvcIAqjVTggKJIo","title":"Other Big References","pathname":"/hacktricks/todo/references","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"F1Uuovik8YApZRBz1DdB","title":"Rust Basics","pathname":"/hacktricks/todo/rust-basics","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"QgXYA5OXDSrTHVM9fpQL","title":"More Tools","pathname":"/hacktricks/todo/more-tools","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"wFVLyXjGtVp4izyTO2DR","title":"MISC","pathname":"/hacktricks/todo/misc","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"7vCHJQRx0sXZFNdXAERj","title":"Pentesting DNS","pathname":"/hacktricks/todo/pentesting-dns","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"diJ8n3SpDZ0hJ2EXQWp7","title":"Hardware Hacking","pathname":"/hacktricks/todo/hardware-hacking","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"jEutT39zRZ2Rm0kplTRA","title":"I2C","pathname":"/hacktricks/todo/hardware-hacking/i2c","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Hardware Hacking"}]},{"id":"G2SuNKqBlQoNTHCoV17g","title":"UART","pathname":"/hacktricks/todo/hardware-hacking/uart","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Hardware Hacking"}]},{"id":"nRziiyrcT4YWBNYMH7aZ","title":"Radio","pathname":"/hacktricks/todo/hardware-hacking/radio","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Hardware Hacking"}]},{"id":"9vPTD3B0A9ssYhTpUiu7","title":"JTAG","pathname":"/hacktricks/todo/hardware-hacking/jtag","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Hardware Hacking"}]},{"id":"7trny6lAAVS2VpjOvO8L","title":"SPI","pathname":"/hacktricks/todo/hardware-hacking/spi","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Hardware Hacking"}]},{"id":"QQ7ZY8nSucYPCSzjP9PF","title":"Industrial Control Systems Hacking","pathname":"/hacktricks/todo/industrial-control-systems-hacking","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"a0mDICnPaQ6DRW46zwrb","title":"Modbus Protocol","pathname":"/hacktricks/todo/industrial-control-systems-hacking/modbus","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Industrial Control Systems Hacking"}]},{"id":"FbB4UA58nNFRxBOEty7u","title":"Radio Hacking","pathname":"/hacktricks/todo/radio-hacking","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"QpbNKHJ5XMF6Mid3wvcz","title":"Pentesting RFID","pathname":"/hacktricks/todo/radio-hacking/pentesting-rfid","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"gZvZlARRVekuTkiuxM5H","title":"Infrared","pathname":"/hacktricks/todo/radio-hacking/infrared","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"h57TXeSgBn1SAsHVz6iu","title":"Sub-GHz RF","pathname":"/hacktricks/todo/radio-hacking/sub-ghz-rf","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"Woc1ZIjcYznBGdrB4R7L","title":"iButton","pathname":"/hacktricks/todo/radio-hacking/ibutton","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"nzMq5180HUYUp8wX3fzq","title":"Flipper Zero","pathname":"/hacktricks/todo/radio-hacking/flipper-zero","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"Uzl5f1EUnSIzzMXDm70c","title":"FZ - NFC","pathname":"/hacktricks/todo/radio-hacking/flipper-zero/fz-nfc","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"},{"label":"Flipper Zero"}]},{"id":"0qugbz8I0ES3JiTRQ1sA","title":"FZ - Sub-GHz","pathname":"/hacktricks/todo/radio-hacking/flipper-zero/fz-sub-ghz","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"},{"label":"Flipper Zero"}]},{"id":"y9Z3m7C2oUJCGRcTtZ7H","title":"FZ - Infrared","pathname":"/hacktricks/todo/radio-hacking/flipper-zero/fz-infrared","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"},{"label":"Flipper Zero"}]},{"id":"i9QqcgqOhKoHuh3zdfo0","title":"FZ - iButton","pathname":"/hacktricks/todo/radio-hacking/flipper-zero/fz-ibutton","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"},{"label":"Flipper Zero"}]},{"id":"9r6EpORTjHDx8OZqvQ13","title":"FZ - 125kHz RFID","pathname":"/hacktricks/todo/radio-hacking/flipper-zero/fz-125khz-rfid","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"},{"label":"Flipper Zero"}]},{"id":"z0fuqp94hBRJYPAnAYUe","title":"Proxmark 3","pathname":"/hacktricks/todo/radio-hacking/proxmark-3","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"ZAttVdtKdnJeqm9yLAw2","title":"FISSURE - The RF Framework","pathname":"/hacktricks/todo/radio-hacking/fissure-the-rf-framework","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"z2ucHaxOBeskJpgxGSuF","title":"Low-Power Wide Area Network","pathname":"/hacktricks/todo/radio-hacking/low-power-wide-area-network","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"BlkVr5UtM8pYpct0dT2c","title":"Pentesting BLE - Bluetooth Low Energy","pathname":"/hacktricks/todo/radio-hacking/pentesting-ble-bluetooth-low-energy","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"oVAOo7ZdRBSVeTqADDZV","title":"Test LLMs","pathname":"/hacktricks/todo/test-llms","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"RsuJbIXJjsTodipToecl","title":"LLM Training","pathname":"/hacktricks/todo/llm-training-data-preparation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"p0pEmV4cnQ5yveiuPYbl","title":"0. Basic LLM Concepts","pathname":"/hacktricks/todo/llm-training-data-preparation/0.-basic-llm-concepts","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"LLM Training"}]},{"id":"tYE5521ZpbcXI0srf3rN","title":"1. Tokenizing","pathname":"/hacktricks/todo/llm-training-data-preparation/1.-tokenizing","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"LLM Training"}]},{"id":"DUU28An60kF9WQ7FdUDZ","title":"2. Data Sampling","pathname":"/hacktricks/todo/llm-training-data-preparation/2.-data-sampling","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"LLM Training"}]},{"id":"MFIfX5MHaIREO5urrsPS","title":"3. Token Embeddings","pathname":"/hacktricks/todo/llm-training-data-preparation/3.-token-embeddings","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"LLM Training"}]},{"id":"J8p9yoxC7JLGKMgDaNCe","title":"4. Attention Mechanisms","pathname":"/hacktricks/todo/llm-training-data-preparation/4.-attention-mechanisms","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"LLM Training"}]},{"id":"M5KXJ1YXiUjPatMdIHMX","title":"5. LLM Architecture","pathname":"/hacktricks/todo/llm-training-data-preparation/5.-llm-architecture","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"LLM Training"}]},{"id":"sFTUQ3gUGORT8j20euxg","title":"6. Pre-training & Loading models","pathname":"/hacktricks/todo/llm-training-data-preparation/6.-pre-training-and-loading-models","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"LLM Training"}]},{"id":"8PBLM2x0F1nXwjZdxy0a","title":"7.0. LoRA Improvements in fine-tuning","pathname":"/hacktricks/todo/llm-training-data-preparation/7.0.-lora-improvements-in-fine-tuning","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"LLM Training"}]},{"id":"ukSRwBMHti24FMW742Qp","title":"7.1. Fine-Tuning for Classification","pathname":"/hacktricks/todo/llm-training-data-preparation/7.1.-fine-tuning-for-classification","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"LLM Training"}]},{"id":"H9Y2Ut1Yh8pCSVEzxEYu","title":"7.2. Fine-Tuning to follow instructions","pathname":"/hacktricks/todo/llm-training-data-preparation/7.2.-fine-tuning-to-follow-instructions","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"LLM Training"}]},{"id":"WLAd2ipaMP3h8VhnpJDx","title":"Burp Suite","pathname":"/hacktricks/todo/burp-suite","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"8ngIQHXlKO4Az0vkFNmI","title":"Other Web Tricks","pathname":"/hacktricks/todo/other-web-tricks","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"XLoxUD6vKQS3erSZbO7L","title":"Interesting HTTP","pathname":"/hacktricks/todo/interesting-http","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"BpBr7oGFXV5fr8PV0sIQ","title":"Android Forensics","pathname":"/hacktricks/todo/android-forensics","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"vaa1O8U9JylmYEEStMlE","title":"TR-069","pathname":"/hacktricks/todo/tr-069","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"Pyom9nHRli2GqVB0bpSM","title":"6881/udp - Pentesting BitTorrent","pathname":"/hacktricks/todo/6881-udp-pentesting-bittorrent","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"L63U5XCdGHye91zQ5rDL","title":"Online Platforms with API","pathname":"/hacktricks/todo/online-platforms-with-api","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"RYYhNix1vN6aCOvjrtHc","title":"Stealing Sensitive Information Disclosure from a Web","pathname":"/hacktricks/todo/stealing-sensitive-information-disclosure-from-a-web","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"9OaDwDOGVMJFJwxF4WnL","title":"Post Exploitation","pathname":"/hacktricks/todo/post-exploitation","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"mp4OvN6GRffqRwCXxmFT","title":"Investment Terms","pathname":"/hacktricks/todo/investment-terms","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"fByCCtsGiwMthFKCLpoc","title":"Cookies Policy","pathname":"/hacktricks/todo/cookies-policy","siteSpaceId":"sitesp_KByzn","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]}]}