{"version":1,"pages":[{"id":"xJvabMIAIEo2xE05zFMY","title":"HackTricks","pathname":"/hacktricks","siteSpaceId":"sitesp_yCOEl","description":"Clone for Team 1nf1n1ty","breadcrumbs":[{"label":"Welcome!","emoji":"1f47e"}]},{"id":"N8qjAG33fE7y2Qa84CcP","title":"HackTricks Values & FAQ","pathname":"/hacktricks/welcome/hacktricks-values-and-faq","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Welcome!","emoji":"1f47e"}]},{"id":"7cQ57Ep7P2qhyI486VOI","title":"About the author","pathname":"/hacktricks/welcome/about-the-author","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Welcome!","emoji":"1f47e"}]},{"id":"Eq8wGB3e0zzNn1qGVznk","title":"Pentesting Methodology","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-methodology","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"NyPTHJkRRlKnG25XqMZP","title":"External Recon Methodology","pathname":"/hacktricks/generic-methodologies-and-resources/external-recon-methodology","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"0eeRlmEZCd4wvU0iCqlP","title":"Wide Source Code Search","pathname":"/hacktricks/generic-methodologies-and-resources/external-recon-methodology/wide-source-code-search","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"External Recon Methodology"}]},{"id":"vRBKAnKSf8KwEDFQAHiR","title":"Github Dorks & Leaks","pathname":"/hacktricks/generic-methodologies-and-resources/external-recon-methodology/github-leaked-secrets","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"External Recon Methodology"}]},{"id":"O5oAVCZldhRN1SMm5B25","title":"Pentesting Network","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"nPGEexe7ppz9JEtAtPrs","title":"DHCPv6","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/dhcpv6","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"Wz3F7XMxs8HNByYMdRkL","title":"EIGRP Attacks","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/eigrp-attacks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"rLud6dkJjJ4INgppVjfv","title":"GLBP & HSRP Attacks","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/glbp-and-hsrp-attacks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"OAEWQzfv7xo3mf8i1Kgz","title":"IDS and IPS Evasion","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/ids-evasion","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"DDj5UkpTO868hbBsxTgC","title":"Lateral VLAN Segmentation Bypass","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/lateral-vlan-segmentation-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"FbDoE7JgGAtVy16BgSS6","title":"Network Protocols Explained (ESP)","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/network-protocols-explained-esp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"MH2tpHMwy26IdlAg02Hs","title":"Nmap Summary (ESP)","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/nmap-summary-esp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"CAJCv6hEs1dJSIpjIMLX","title":"Pentesting IPv6","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/pentesting-ipv6","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"y8soasNuFFRqegldQqfn","title":"WebRTC DoS","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/webrtc-dos","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"3UbXlXFOm3eME33hZTms","title":"Spoofing LLMNR, NBT-NS, mDNS/DNS and WPAD and Relay Attacks","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/spoofing-llmnr-nbt-ns-mdns-dns-and-wpad-and-relay-attacks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"uU9O3z8r8qFf7w7WAbn8","title":"Spoofing SSDP and UPnP Devices with EvilSSDP","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-network/spoofing-ssdp-and-upnp-devices","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Network"}]},{"id":"k7IpzvDpHeHd3mvzb58c","title":"Pentesting Wifi","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-wifi","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"i8LzJYR2olgSNx5M1G2h","title":"Evil Twin EAP-TLS","pathname":"/hacktricks/generic-methodologies-and-resources/pentesting-wifi/evil-twin-eap-tls","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Pentesting Wifi"}]},{"id":"ijVA9bK0waN0fqq0bsnr","title":"Phishing Methodology","pathname":"/hacktricks/generic-methodologies-and-resources/phishing-methodology","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"PfA1C5pyhfOFa50e0JEe","title":"Clone a Website","pathname":"/hacktricks/generic-methodologies-and-resources/phishing-methodology/clone-a-website","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Phishing Methodology"}]},{"id":"0zOaqcR0LDpkQPYXtssn","title":"Detecting Phishing","pathname":"/hacktricks/generic-methodologies-and-resources/phishing-methodology/detecting-phising","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Phishing Methodology"}]},{"id":"da1h47SiHXo5RVDpvwfF","title":"Phishing Files & Documents","pathname":"/hacktricks/generic-methodologies-and-resources/phishing-methodology/phishing-documents","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Phishing Methodology"}]},{"id":"48FLLWLw423rVIoosoKo","title":"Basic Forensic Methodology","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"sIlHPDH11URIhLYw8psQ","title":"Baseline Monitoring","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/file-integrity-monitoring","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"o9F7bT6dp0lUfVQIT69z","title":"Anti-Forensic Techniques","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/anti-forensic-techniques","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"oDy6J2kYA0PByDgd5dvM","title":"Docker Forensics","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/docker-forensics","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"l0N9mHnf9NHc0QEH7PCB","title":"Image Acquisition & Mount","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/image-acquisition-and-mount","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"g4M02FLriPxMBbsml8KE","title":"Linux Forensics","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/linux-forensics","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"KkH0DcW8axQZdElCCSVM","title":"Malware Analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/malware-analysis","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"tKSRlCrutlJCoL6dycD8","title":"Memory dump analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/memory-dump-analysis","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"hlhGRJTtOngcPaDLjBdM","title":"Volatility - CheatSheet","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/memory-dump-analysis/volatility-cheatsheet","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Memory dump analysis"}]},{"id":"d8pLqxPwLdnBn6PHHzY4","title":"Partitions/File Systems/Carving","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/partitions-file-systems-carving","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"gc2iwutjVa65NZ0qolOp","title":"File/Data Carving & Recovery Tools","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/partitions-file-systems-carving/file-data-carving-recovery-tools","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Partitions/File Systems/Carving"}]},{"id":"lbnk2GLugvasWeVxalmq","title":"Pcap Inspection","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/pcap-inspection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"xEvhmIHRi0rCDkvNis15","title":"DNSCat pcap analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/pcap-inspection/dnscat-exfiltration","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Pcap Inspection"}]},{"id":"Q1874tvsCqZmuu2bntMk","title":"Suricata & Iptables cheatsheet","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/pcap-inspection/suricata-and-iptables-cheatsheet","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Pcap Inspection"}]},{"id":"qNgTz9apVOxxsPsXeo0Y","title":"USB Keystrokes","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/pcap-inspection/usb-keystrokes","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Pcap Inspection"}]},{"id":"B7xBzISDXYOjuDFWXks7","title":"Wifi Pcap Analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/pcap-inspection/wifi-pcap-analysis","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Pcap Inspection"}]},{"id":"rfGq9OVUs37ozbMfakyT","title":"Wireshark tricks","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/pcap-inspection/wireshark-tricks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Pcap Inspection"}]},{"id":"9bdohPfZSnJWyPmVOmUu","title":"Specific Software/File-Type Tricks","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"nCCBuQPgRqtBsdkv91fH","title":"Decompile compiled python binaries (exe, elf) - Retreive from .pyc","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/.pyc","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"8JokP4QdTHfdcmeae9y5","title":"Browser Artifacts","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/browser-artifacts","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"GkUlad6AYrlNw1ubNrio","title":"Deofuscation vbs (cscript.exe)","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/desofuscation-vbs-cscript.exe","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"EpPT3uITZDuNtBM4Ovhj","title":"Local Cloud Storage","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/local-cloud-storage","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"asi56aMPFtBnxPX46qGT","title":"Office file analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/office-file-analysis","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"VnqAjZUj6EydJCq2DCgw","title":"PDF File analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/pdf-file-analysis","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"eewfQFgmWji5czRZy7XI","title":"PNG tricks","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/png-tricks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"gUI0dJdi3mtvOBm23qzX","title":"Video and Audio file analysis","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/video-and-audio-file-analysis","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"vBlwQ7Ptatsv1i5T1Tah","title":"ZIPs tricks","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/specific-software-file-type-tricks/zips-tricks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Specific Software/File-Type Tricks"}]},{"id":"8sgt19CxQrcamHTiAFHI","title":"Windows Artifacts","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/windows-forensics","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"}]},{"id":"S8swweA8sBpWNp7gr3AF","title":"Interesting Windows Registry Keys","pathname":"/hacktricks/generic-methodologies-and-resources/basic-forensic-methodology/windows-forensics/interesting-windows-registry-keys","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Basic Forensic Methodology"},{"label":"Windows Artifacts"}]},{"id":"RVNW0Y6B2Am5MI62k7rH","title":"Brute Force - CheatSheet","pathname":"/hacktricks/generic-methodologies-and-resources/brute-force","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"BleSSXmQsQ3mWlCPClAk","title":"Python Sandbox Escape & Pyscript","pathname":"/hacktricks/generic-methodologies-and-resources/python","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"qujt0MdxbRrYSi4wU24N","title":"Bypass Python sandboxes","pathname":"/hacktricks/generic-methodologies-and-resources/python/bypass-python-sandboxes","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"7CS4fWmvTQMMpyJsDnu3","title":"LOAD_NAME / LOAD_CONST opcode OOB Read","pathname":"/hacktricks/generic-methodologies-and-resources/python/bypass-python-sandboxes/load_name-load_const-opcode-oob-read","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"},{"label":"Bypass Python sandboxes"}]},{"id":"mDRvGcD0qdbFaaEyozm4","title":"Class Pollution (Python's Prototype Pollution)","pathname":"/hacktricks/generic-methodologies-and-resources/python/class-pollution-pythons-prototype-pollution","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"Q6a3QovjjOGsCe0CPSpC","title":"Python Internal Read Gadgets","pathname":"/hacktricks/generic-methodologies-and-resources/python/python-internal-read-gadgets","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"cY6og6wjbqHwbctdspSv","title":"Pyscript","pathname":"/hacktricks/generic-methodologies-and-resources/python/pyscript","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"lJsUu4pyUbdi8A1eOFCO","title":"venv","pathname":"/hacktricks/generic-methodologies-and-resources/python/venv","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"QeqWBLDqaN66iZiKUKJy","title":"Web Requests","pathname":"/hacktricks/generic-methodologies-and-resources/python/web-requests","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"MdTALzB6UHUvrYRNamkL","title":"Bruteforce hash (few chars)","pathname":"/hacktricks/generic-methodologies-and-resources/python/bruteforce-hash-few-chars","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"vsTmrdKAtifPo3RaJf9C","title":"Basic Python","pathname":"/hacktricks/generic-methodologies-and-resources/python/basic-python","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Python Sandbox Escape & Pyscript"}]},{"id":"bBuaFiQRM1JWY7EnPsoF","title":"Exfiltration","pathname":"/hacktricks/generic-methodologies-and-resources/exfiltration","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"e3cyoGWrXMqmW3auCz97","title":"Tunneling and Port Forwarding","pathname":"/hacktricks/generic-methodologies-and-resources/tunneling-and-port-forwarding","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"IWNyT9x19e3NBQuOKVo5","title":"Threat Modeling","pathname":"/hacktricks/generic-methodologies-and-resources/threat-modeling","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"qhW6ZrMvL9Gju8jszR8e","title":"Search Exploits","pathname":"/hacktricks/generic-methodologies-and-resources/search-exploits","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"3Pkq5MH2O6PhRr3I9rFj","title":"Shells (Linux, Windows, MSFVenom)","pathname":"/hacktricks/generic-methodologies-and-resources/shells","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"}]},{"id":"zWMgLpThWp6AfJ4T6UUw","title":"MSFVenom - CheatSheet","pathname":"/hacktricks/generic-methodologies-and-resources/shells/msfvenom","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Shells (Linux, Windows, MSFVenom)"}]},{"id":"w8B6osjwTSG967sUPbZo","title":"Shells - Windows","pathname":"/hacktricks/generic-methodologies-and-resources/shells/windows","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Shells (Linux, Windows, MSFVenom)"}]},{"id":"0hrC6U9FcjBLuxrf0EMY","title":"Shells - Linux","pathname":"/hacktricks/generic-methodologies-and-resources/shells/linux","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Shells (Linux, Windows, MSFVenom)"}]},{"id":"YViYD6dteTA1lDV8jccw","title":"Full TTYs","pathname":"/hacktricks/generic-methodologies-and-resources/shells/full-ttys","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Generic Methodologies & Resources","emoji":"1f929"},{"label":"Shells (Linux, Windows, MSFVenom)"}]},{"id":"8VWgyW77AHxula17wciG","title":"Checklist - Linux Privilege Escalation","pathname":"/hacktricks/linux-hardening/linux-privilege-escalation-checklist","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"XPNgrzSM6j6IUHXcZPNk","title":"Linux Privilege Escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"RvFGUmN7nuBLjS7ZDQRH","title":"Arbitrary File Write to Root","pathname":"/hacktricks/linux-hardening/privilege-escalation/write-to-root","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"MLfW09bfGJpF3LdPwGZj","title":"Cisco - vmanage","pathname":"/hacktricks/linux-hardening/privilege-escalation/cisco-vmanage","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"A40bc7Vp0o0Nba9PLze5","title":"Containerd (ctr) Privilege Escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation/containerd-ctr-privilege-escalation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"8Q2LLlnMgDb9kNveNJJM","title":"D-Bus Enumeration & Command Injection Privilege Escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation/d-bus-enumeration-and-command-injection-privilege-escalation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"xdqrVkwGD7RurJKNG6Wm","title":"Docker Security","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"TnOxDR7vBHpPkkmHisDI","title":"Abusing Docker Socket for Privilege Escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/abusing-docker-socket-for-privilege-escalation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"OuIDZ8mdNNWrKi9y7dHi","title":"AppArmor","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/apparmor","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"XX3tCu5ZeBw7MlbwwDdZ","title":"AuthZ& AuthN - Docker Access Authorization Plugin","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/authz-and-authn-docker-access-authorization-plugin","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"9tnKa2VBLlYWB0KqcVG0","title":"CGroups","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/cgroups","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"OlWZfC749Hw81fwSU7jW","title":"Docker --privileged","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/docker-privileged","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"QaIQFbthYz3xOHMgClJu","title":"Docker Breakout / Privilege Escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/docker-breakout-privilege-escalation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"4vEcjcudlXh4rM8Y8UFW","title":"release_agent exploit - Relative Paths to PIDs","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/docker-breakout-privilege-escalation/release_agent-exploit-relative-paths-to-pids","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Docker Breakout / Privilege Escalation"}]},{"id":"onqWra2vzSudj3nrWrzY","title":"Docker release_agent cgroups escape","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/docker-breakout-privilege-escalation/docker-release_agent-cgroups-escape","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Docker Breakout / Privilege Escalation"}]},{"id":"2LVXuAnbCf5wenBpzAnj","title":"Sensitive Mounts","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/docker-breakout-privilege-escalation/sensitive-mounts","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Docker Breakout / Privilege Escalation"}]},{"id":"AE2sTklhz7uO0HfUHGZF","title":"Namespaces","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"Nsm73ZBNOMwD1jWbdNIu","title":"CGroup Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/cgroup-namespace","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"Bg0xyjLPqRKZAPp7XEae","title":"IPC Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/ipc-namespace","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"QT8Uoo4sUiZid1q8noxT","title":"PID Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/pid-namespace","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"sgIGgIFbqBjgFSBJorFm","title":"Mount Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/mount-namespace","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"bJxDvK2LnZkxgQC12bJm","title":"Network Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/network-namespace","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"YW0hsS7xmq8odh0QZNSc","title":"Time Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/time-namespace","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"JDsRGr6MkmxdWHfxiyp2","title":"User Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/user-namespace","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"AHzZtf2r8X0wYZ1oD8sp","title":"UTS Namespace","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/namespaces/uts-namespace","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"},{"label":"Namespaces"}]},{"id":"ei3VkCCTCaUVN84cGPYZ","title":"Seccomp","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/seccomp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"HGpdiveF0TTAJSj98j1s","title":"Weaponizing Distroless","pathname":"/hacktricks/linux-hardening/privilege-escalation/docker-security/weaponizing-distroless","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Docker Security"}]},{"id":"enCKZoDmXbGu8KxwGMv1","title":"Escaping from Jails","pathname":"/hacktricks/linux-hardening/privilege-escalation/escaping-from-limited-bash","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"8pkwu7NBtQeiIMw9JEGt","title":"euid, ruid, suid","pathname":"/hacktricks/linux-hardening/privilege-escalation/euid-ruid-suid","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"FmIK4QbtAlGO3gIIPJjT","title":"Interesting Groups - Linux Privesc","pathname":"/hacktricks/linux-hardening/privilege-escalation/interesting-groups-linux-pe","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"AE971zmWSDasDdSIqCpl","title":"lxd/lxc Group - Privilege escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation/interesting-groups-linux-pe/lxd-privilege-escalation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"},{"label":"Interesting Groups - Linux Privesc"}]},{"id":"BsAl0luh6yeui9wo14CB","title":"Logstash","pathname":"/hacktricks/linux-hardening/privilege-escalation/logstash","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"rXZuZDG77qi3gmEAiBbJ","title":"ld.so privesc exploit example","pathname":"/hacktricks/linux-hardening/privilege-escalation/ld.so.conf-example","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"e2oiUaao2Ad9oEyOmb6g","title":"Linux Active Directory","pathname":"/hacktricks/linux-hardening/privilege-escalation/linux-active-directory","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"1LwrcmOkw1z2IoMs8WfL","title":"Linux Capabilities","pathname":"/hacktricks/linux-hardening/privilege-escalation/linux-capabilities","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"mDtYX5X3UUNGi0Dq8cIF","title":"NFS no_root_squash/no_all_squash misconfiguration PE","pathname":"/hacktricks/linux-hardening/privilege-escalation/nfs-no_root_squash-misconfiguration-pe","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"LGE70tJuwu7Lo1L0sXUT","title":"Node inspector/CEF debug abuse","pathname":"/hacktricks/linux-hardening/privilege-escalation/electron-cef-chromium-debugger-abuse","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"sa8aNxNSKqkl0kF9E6ex","title":"Payloads to execute","pathname":"/hacktricks/linux-hardening/privilege-escalation/payloads-to-execute","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"q2vNdbapqWpzaCcZF7U1","title":"RunC Privilege Escalation","pathname":"/hacktricks/linux-hardening/privilege-escalation/runc-privilege-escalation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"WOkYav6YjDTCbTkPCNbi","title":"SELinux","pathname":"/hacktricks/linux-hardening/privilege-escalation/selinux","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"PUMEawL5FEBVswGe8JjM","title":"Socket Command Injection","pathname":"/hacktricks/linux-hardening/privilege-escalation/socket-command-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"HYiOGzCvDae8XV5WEG2L","title":"Splunk LPE and Persistence","pathname":"/hacktricks/linux-hardening/privilege-escalation/splunk-lpe-and-persistence","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"LTGrPgRTuCUD9W9az6Fp","title":"SSH Forward Agent exploitation","pathname":"/hacktricks/linux-hardening/privilege-escalation/ssh-forward-agent-exploitation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"INPKYJijitZ3jW9DGGiu","title":"Wildcards Spare tricks","pathname":"/hacktricks/linux-hardening/privilege-escalation/wildcards-spare-tricks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Privilege Escalation"}]},{"id":"2YXRhfHltBypypIdYCbW","title":"Useful Linux Commands","pathname":"/hacktricks/linux-hardening/useful-linux-commands","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"DWl3FAGu6nLe9rZB0AOQ","title":"Bypass Linux Restrictions","pathname":"/hacktricks/linux-hardening/bypass-bash-restrictions","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"bfFJyN9oXTfFI9S9c9V5","title":"Bypass FS protections: read-only / no-exec / Distroless","pathname":"/hacktricks/linux-hardening/bypass-bash-restrictions/bypass-fs-protections-read-only-no-exec-distroless","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Bypass Linux Restrictions"}]},{"id":"ZUhz76yGIGRcleNahmEi","title":"DDexec / EverythingExec","pathname":"/hacktricks/linux-hardening/bypass-bash-restrictions/bypass-fs-protections-read-only-no-exec-distroless/ddexec","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Bypass Linux Restrictions"},{"label":"Bypass FS protections: read-only / no-exec / Distroless"}]},{"id":"j7Xlb34vzZWsY3waiZzy","title":"Linux Environment Variables","pathname":"/hacktricks/linux-hardening/linux-environment-variables","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"zcFkvikzHgjsB4vp9BtF","title":"Linux Post-Exploitation","pathname":"/hacktricks/linux-hardening/linux-post-exploitation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"L8EBYJy5EUWSq8XjWb2Z","title":"PAM - Pluggable Authentication Modules","pathname":"/hacktricks/linux-hardening/linux-post-exploitation/pam-pluggable-authentication-modules","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"},{"label":"Linux Post-Exploitation"}]},{"id":"DRBBrMDqufB3isE7KDjq","title":"FreeIPA Pentesting","pathname":"/hacktricks/linux-hardening/freeipa-pentesting","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Linux Hardening","emoji":"1f427"}]},{"id":"I7X6rvZoZqssMpJl2Elq","title":"macOS Security & Privilege Escalation","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"}]},{"id":"k1tf2C4WKuZF77p0Fxnn","title":"macOS Apps - Inspecting, debugging and Fuzzing","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-apps-inspecting-debugging-and-fuzzing","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"RzmANxpj4YI5nvHBnqVo","title":"Objects in memory","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-apps-inspecting-debugging-and-fuzzing/objects-in-memory","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Apps - Inspecting, debugging and Fuzzing"}]},{"id":"TtuLTyzMyyfugV3AH2ad","title":"Introduction to x64","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-apps-inspecting-debugging-and-fuzzing/introduction-to-x64","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Apps - Inspecting, debugging and Fuzzing"}]},{"id":"RTHh2CBdHMuT1PDjb5Fg","title":"Introduction to ARM64v8","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-apps-inspecting-debugging-and-fuzzing/arm64-basic-assembly","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Apps - Inspecting, debugging and Fuzzing"}]},{"id":"AGWWj3Y3cA6idUeV8ako","title":"macOS AppleFS","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-applefs","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"ulC26absy5rxwUvWt9gy","title":"macOS Bypassing Firewalls","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-bypassing-firewalls","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"ZEi4qHx2uMYA4vx31pCJ","title":"macOS Defensive Apps","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-defensive-apps","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"8v3YIYvKK6tKktJeJmCZ","title":"macOS GCD - Grand Central Dispatch","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-gcd-grand-central-dispatch","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"iuxkYZkOcgPgqWuVyhK7","title":"macOS Kernel & System Extensions","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/mac-os-architecture","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"WIX0EAt4XpKjcp7BVEgJ","title":"macOS IOKit","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/mac-os-architecture/macos-iokit","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Kernel & System Extensions"}]},{"id":"r1toHBGbG78ac0mztrkL","title":"macOS Kernel Extensions","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/mac-os-architecture/macos-kernel-extensions","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Kernel & System Extensions"}]},{"id":"6N4Sim4sMGw2mwP8Foyg","title":"macOS Kernel Vulnerabilities","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/mac-os-architecture/macos-kernel-vulnerabilities","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Kernel & System Extensions"}]},{"id":"yGjmW3QIIScuTUDmiEMT","title":"macOS System Extensions","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/mac-os-architecture/macos-system-extensions","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Kernel & System Extensions"}]},{"id":"bjkwzIii8igmiAJbx48Z","title":"macOS Network Services & Protocols","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-protocols","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"LgnBZ572ISyEu4v7TDlb","title":"macOS File Extension & URL scheme app handlers","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-file-extension-apps","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"Yg7cUZ3lkvd9gDzyrSPZ","title":"macOS Files, Folders, Binaries & Memory","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-files-folders-and-binaries","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"rnl0O8FeBtowZsWVruj3","title":"macOS Bundles","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-files-folders-and-binaries/macos-bundles","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Files, Folders, Binaries & Memory"}]},{"id":"a71wKkIc8UaCKTKtpoTk","title":"macOS Installers Abuse","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-files-folders-and-binaries/macos-installers-abuse","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Files, Folders, Binaries & Memory"}]},{"id":"uN9Mtn0FpTxO9vb4JbrN","title":"macOS Memory Dumping","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-files-folders-and-binaries/macos-memory-dumping","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Files, Folders, Binaries & Memory"}]},{"id":"Wh3NVilXyQ0rOJmSDYNX","title":"macOS Sensitive Locations & Interesting Daemons","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-files-folders-and-binaries/macos-sensitive-locations","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Files, Folders, Binaries & Memory"}]},{"id":"rn7OyRrk9MguJN6Ch8o8","title":"macOS Universal binaries & Mach-O Format","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-files-folders-and-binaries/universal-binaries-and-mach-o-format","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Files, Folders, Binaries & Memory"}]},{"id":"fNtotHBvZlYYHISWliYq","title":"macOS Objective-C","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-basic-objective-c","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"NaQfX15ZeLOfwSLyVEnQ","title":"macOS Privilege Escalation","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-privilege-escalation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"GxhzSNwWUzC6LMBSt5TW","title":"macOS Process Abuse","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"mqyjbdSS5BFiJo512zhX","title":"macOS Dirty NIB","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-dirty-nib","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"Tas8sRBxpL7nrCtHw3Yp","title":"macOS Chromium Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-chromium-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"pFnxog1Os4YmbCYcSVZk","title":"macOS Electron Applications Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-electron-applications-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"n3qpwD6sDm1tJoDaAmgt","title":"macOS Function Hooking","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-function-hooking","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"sD3vb1ki3hUB7HaJKO22","title":"macOS IPC - Inter Process Communication","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"oFACMhnT8sRdc3auUcSp","title":"macOS MIG - Mach Interface Generator","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-mig-mach-interface-generator","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"}]},{"id":"r8vMhbr1NUjBtb2hEJNV","title":"macOS XPC","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-xpc","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"}]},{"id":"LaJa0mUEGwnAjKzjQKUi","title":"macOS XPC Authorization","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-xpc/macos-xpc-authorization","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"},{"label":"macOS XPC"}]},{"id":"Kd2rL0g31mA1FZGj51zV","title":"macOS XPC Connecting Process Check","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-xpc/macos-xpc-connecting-process-check","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"},{"label":"macOS XPC"}]},{"id":"t18v5BfmPqUYF1qvD9qS","title":"macOS PID Reuse","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-xpc/macos-xpc-connecting-process-check/macos-pid-reuse","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"},{"label":"macOS XPC"},{"label":"macOS XPC Connecting Process Check"}]},{"id":"QwErFNH35FGwqmZT7H8n","title":"macOS xpc_connection_get_audit_token Attack","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-xpc/macos-xpc-connecting-process-check/macos-xpc_connection_get_audit_token-attack","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"},{"label":"macOS XPC"},{"label":"macOS XPC Connecting Process Check"}]},{"id":"lCJS7DPHTVKBt4g920Nj","title":"macOS Thread Injection via Task port","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ipc-inter-process-communication/macos-thread-injection-via-task-port","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS IPC - Inter Process Communication"}]},{"id":"ccqh1Ebxp2RY6rhoOuMO","title":"macOS Java Applications Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-java-apps-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"iQHNuFjO8YeKR8B4Cfgw","title":"macOS Library Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-library-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"3TbZGAKsmBRs9OKXc6mk","title":"macOS Dyld Hijacking & DYLD_INSERT_LIBRARIES","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-library-injection/macos-dyld-hijacking-and-dyld_insert_libraries","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS Library Injection"}]},{"id":"CYCRJVwfGKVN0UooxrXY","title":"macOS Dyld Process","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-library-injection/macos-dyld-process","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"},{"label":"macOS Library Injection"}]},{"id":"sYPwlyXao4PzsuJ5a70U","title":"macOS Perl Applications Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-perl-applications-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"VfKXJvmRx3glmeF0pzFF","title":"macOS Python Applications Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-python-applications-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"9NVOMlMCn4FS6fRRERnl","title":"macOS Ruby Applications Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-ruby-applications-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"1Dh3qQEPrTfuPJEGtpxc","title":"macOS .Net Applications Injection","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-proces-abuse/macos-.net-applications-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Process Abuse"}]},{"id":"TWZbaUgoJ4E8geSx9vPW","title":"macOS Security Protections","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"nSoJSZ8kcBET4K41WR0n","title":"macOS Gatekeeper / Quarantine / XProtect","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-gatekeeper","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"KoQ6WLlMKiVIpFq8J4mo","title":"macOS Launch/Environment Constraints & Trust Cache","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-launch-environment-constraints","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"VceI8rpFIC7Doq1Ssi2c","title":"macOS Sandbox","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-sandbox","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"mvbcmhDC2epX7zFel031","title":"macOS Default Sandbox Debug","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-sandbox/macos-default-sandbox-debug","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS Sandbox"}]},{"id":"HX1ddopsL2jmQB9DOaDZ","title":"macOS Sandbox Debug & Bypass","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-sandbox/macos-sandbox-debug-and-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS Sandbox"}]},{"id":"4MEh42Q9qY2lnN9SaqpI","title":"macOS Office Sandbox Bypasses","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-sandbox/macos-sandbox-debug-and-bypass/macos-office-sandbox-bypasses","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS Sandbox"},{"label":"macOS Sandbox Debug & Bypass"}]},{"id":"V0JNTEc3iZmbqKrWVyX9","title":"macOS SIP","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-sip","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"uwsznEzsA2Wf9PgAa9Zr","title":"macOS TCC","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-tcc","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"qAbEjHVkaAle17uglHEe","title":"macOS Apple Events","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-tcc/macos-apple-events","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS TCC"}]},{"id":"5FtRRyw1QzIVRAq00amx","title":"macOS TCC Bypasses","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-tcc/macos-tcc-bypasses","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS TCC"}]},{"id":"F8ZMaoVVolaDaCXMbW9q","title":"macOS Apple Scripts","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-tcc/macos-tcc-bypasses/macos-apple-scripts","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS TCC"},{"label":"macOS TCC Bypasses"}]},{"id":"Y3qxpwE3rfPQJ189hgOa","title":"macOS TCC Payloads","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-tcc/macos-tcc-payloads","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS TCC"}]},{"id":"p5dxlNb0LxaqNwlhfc7u","title":"macOS Dangerous Entitlements & TCC perms","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-dangerous-entitlements","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"9SIVsX7XG9xuLpCG6GAM","title":"macOS FS Tricks","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-fs-tricks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"}]},{"id":"WJM9ZblQdQNbkhbtQTRa","title":"macOS xattr-acls extra stuff","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-security-protections/macos-fs-tricks/macos-xattr-acls-extra-stuff","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"},{"label":"macOS Security Protections"},{"label":"macOS FS Tricks"}]},{"id":"bNa1TAElXnDOM26rfe8j","title":"macOS Users","pathname":"/hacktricks/macos-hardening/macos-security-and-privilege-escalation/macos-users","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Security & Privilege Escalation"}]},{"id":"AKszgMuEo87BC9fJqfaH","title":"macOS Red Teaming","pathname":"/hacktricks/macos-hardening/macos-red-teaming","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"}]},{"id":"vAUZWkjifmNhfInr0uk9","title":"macOS MDM","pathname":"/hacktricks/macos-hardening/macos-red-teaming/macos-mdm","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Red Teaming"}]},{"id":"IcYShx1OjnKOURUBaFtx","title":"Enrolling Devices in Other Organisations","pathname":"/hacktricks/macos-hardening/macos-red-teaming/macos-mdm/enrolling-devices-in-other-organisations","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Red Teaming"},{"label":"macOS MDM"}]},{"id":"CuWzXZZx9ll3vZrLpN0D","title":"macOS Serial Number","pathname":"/hacktricks/macos-hardening/macos-red-teaming/macos-mdm/macos-serial-number","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Red Teaming"},{"label":"macOS MDM"}]},{"id":"9q3SOB6PbpzmlWuVlQG2","title":"macOS Keychain","pathname":"/hacktricks/macos-hardening/macos-red-teaming/macos-keychain","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"},{"label":"macOS Red Teaming"}]},{"id":"cK4rdrb2OtAPmEcguE7r","title":"macOS Useful Commands","pathname":"/hacktricks/macos-hardening/macos-useful-commands","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"}]},{"id":"ZfADepIRpOGshJPXSPtQ","title":"macOS Auto Start","pathname":"/hacktricks/macos-hardening/macos-auto-start-locations","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"MacOS Hardening","emoji":"1f34f"}]},{"id":"SOTCzD7XfHVcr5nMFsUE","title":"Checklist - Local Windows Privilege Escalation","pathname":"/hacktricks/windows-hardening/checklist-windows-privilege-escalation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"Eb50MHnhZQOSkLn0lKkN","title":"Windows Local Privilege Escalation","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"6C4zV2ZYmese6We9mWvI","title":"Abusing Tokens","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/privilege-escalation-abusing-tokens","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"fnLSeQRd5YwtaA1dd3Ut","title":"Access Tokens","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/access-tokens","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"URiQd0jMtQUz6Fg9mTKw","title":"ACLs - DACLs/SACLs/ACEs","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/acls-dacls-sacls-aces","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"CmFuPPIywHqYJHogzipg","title":"AppendData/AddSubdirectory permission over service registry","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/appenddata-addsubdirectory-permission-over-service-registry","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"2u3xbpkuMykxOXJvc6A3","title":"Create MSI with WIX","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/create-msi-with-wix","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"zbFNRAd5OlUR0W76Ol5k","title":"COM Hijacking","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/com-hijacking","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"Gy4pWvhpNcxVrIz6db43","title":"Dll Hijacking","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/dll-hijacking","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"Pn9jfMrmULYh99XQ85iU","title":"Writable Sys Path +Dll Hijacking Privesc","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/dll-hijacking/writable-sys-path-+dll-hijacking-privesc","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"},{"label":"Dll Hijacking"}]},{"id":"5qiyadBLQdVGGVW0yWGt","title":"DPAPI - Extracting Passwords","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/dpapi-extracting-passwords","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"TONGlc4HDBOjxX0gaElg","title":"From High Integrity to SYSTEM with Name Pipes","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/from-high-integrity-to-system-with-name-pipes","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"Qjncd4Znlms4OqRDAHv4","title":"Integrity Levels","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/integrity-levels","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"r0wZXtFlen2ejqCg7xjy","title":"JuicyPotato","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/juicypotato","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"gJMBVvnK04qDZZGXgKlf","title":"Leaked Handle Exploitation","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/leaked-handle-exploitation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"hHIzwGPJN5wO9mNMx114","title":"MSI Wrapper","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/msi-wrapper","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"SJgVxt0X3S54sPsCOWDr","title":"Named Pipe Client Impersonation","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/named-pipe-client-impersonation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"so2p6rt5wIksWfauo4Zs","title":"Privilege Escalation with Autoruns","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/privilege-escalation-with-autorun-binaries","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"APjyysOa3io8S82w4wHl","title":"RoguePotato, PrintSpoofer, SharpEfsPotato, GodPotato","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/roguepotato-and-printspoofer","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"xPG8yWfqbT1Cf2QfWHPQ","title":"SeDebug + SeImpersonate copy token","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/sedebug-+-seimpersonate-copy-token","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"YL0yrADFBzT3z0ReX18u","title":"SeImpersonate from High To System","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/seimpersonate-from-high-to-system","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"LqEhqEHx3H9S7D9RDNVm","title":"Windows C Payloads","pathname":"/hacktricks/windows-hardening/windows-local-privilege-escalation/windows-c-payloads","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Local Privilege Escalation"}]},{"id":"UyXUAOffYIteflr4u46d","title":"Active Directory Methodology","pathname":"/hacktricks/windows-hardening/active-directory-methodology","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"qXvz7XAj5qvwlpHxxJmR","title":"Abusing Active Directory ACLs/ACEs","pathname":"/hacktricks/windows-hardening/active-directory-methodology/acl-persistence-abuse","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"gNrsZw7rvDYNP1ZPotPo","title":"Shadow Credentials","pathname":"/hacktricks/windows-hardening/active-directory-methodology/acl-persistence-abuse/shadow-credentials","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"},{"label":"Abusing Active Directory ACLs/ACEs"}]},{"id":"BYF31PNxcqAcTV3Pl17d","title":"AD Certificates","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-certificates","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"Acuyaa0NrzSb1fgdvNkW","title":"AD CS Account Persistence","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-certificates/account-persistence","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"},{"label":"AD Certificates"}]},{"id":"TVjRPCEQPYr2A9JE3ReF","title":"AD CS Domain Escalation","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-certificates/domain-escalation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"},{"label":"AD Certificates"}]},{"id":"IjOc4HiSvYeCspdsEnh6","title":"AD CS Domain Persistence","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-certificates/domain-persistence","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"},{"label":"AD Certificates"}]},{"id":"zad3hZrgnnvZIHicSV1S","title":"AD CS Certificate Theft","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-certificates/certificate-theft","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"},{"label":"AD Certificates"}]},{"id":"94sdB2MMFBTtH3mGDEoC","title":"AD information in printers","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-information-in-printers","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"FLK0wFQ69mm8N2BS2TKz","title":"AD DNS Records","pathname":"/hacktricks/windows-hardening/active-directory-methodology/ad-dns-records","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"9T8L4S4uB5xPIyx9IswQ","title":"ASREPRoast","pathname":"/hacktricks/windows-hardening/active-directory-methodology/asreproast","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"6CnrRXWLOM6pBaosuAVG","title":"BloodHound & Other AD Enum Tools","pathname":"/hacktricks/windows-hardening/active-directory-methodology/bloodhound","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"Xz2syHCoS303Giwa15Wl","title":"Constrained Delegation","pathname":"/hacktricks/windows-hardening/active-directory-methodology/constrained-delegation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"ocekHmquOcJU0y8LItQX","title":"Custom SSP","pathname":"/hacktricks/windows-hardening/active-directory-methodology/custom-ssp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"YX2xZwYuQDXmFVpFtXE5","title":"DCShadow","pathname":"/hacktricks/windows-hardening/active-directory-methodology/dcshadow","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"CPEfH2RH6YINBYQ6WzVC","title":"DCSync","pathname":"/hacktricks/windows-hardening/active-directory-methodology/dcsync","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"nHMw53mwHO2HY33leJGa","title":"Diamond Ticket","pathname":"/hacktricks/windows-hardening/active-directory-methodology/diamond-ticket","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"xiePRx3gY7KKtKLZsPBp","title":"DSRM Credentials","pathname":"/hacktricks/windows-hardening/active-directory-methodology/dsrm-credentials","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"4y8YO6awkxyd1o38FFIj","title":"External Forest Domain - OneWay (Inbound) or bidirectional","pathname":"/hacktricks/windows-hardening/active-directory-methodology/external-forest-domain-oneway-inbound","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"icctq3rKPCpJ7MGX6uFl","title":"External Forest Domain - One-Way (Outbound)","pathname":"/hacktricks/windows-hardening/active-directory-methodology/external-forest-domain-one-way-outbound","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"j1cLFXvTo2oD56c235JP","title":"Golden Ticket","pathname":"/hacktricks/windows-hardening/active-directory-methodology/golden-ticket","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"taGzbd9sSeehAGH3m05g","title":"Kerberoast","pathname":"/hacktricks/windows-hardening/active-directory-methodology/kerberoast","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"FAIriLkYzZqax1PXGjCm","title":"Kerberos Authentication","pathname":"/hacktricks/windows-hardening/active-directory-methodology/kerberos-authentication","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"qhDX3sESfliIjExdYZAp","title":"Kerberos Double Hop Problem","pathname":"/hacktricks/windows-hardening/active-directory-methodology/kerberos-double-hop-problem","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"CLZ3jZqaeEvA7hXzX8Gi","title":"LAPS","pathname":"/hacktricks/windows-hardening/active-directory-methodology/laps","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"cteImqMAkeDp75hfNR7S","title":"MSSQL AD Abuse","pathname":"/hacktricks/windows-hardening/active-directory-methodology/abusing-ad-mssql","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"vecJGL2qsvzsyVZuNBUW","title":"Over Pass the Hash/Pass the Key","pathname":"/hacktricks/windows-hardening/active-directory-methodology/over-pass-the-hash-pass-the-key","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"9epkqapptGLuc7HxAmBi","title":"Pass the Ticket","pathname":"/hacktricks/windows-hardening/active-directory-methodology/pass-the-ticket","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"Xit8n9tbf9Z0etRVVHzQ","title":"Password Spraying / Brute Force","pathname":"/hacktricks/windows-hardening/active-directory-methodology/password-spraying","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"liX3LC5ycREeizhuTus5","title":"PrintNightmare","pathname":"/hacktricks/windows-hardening/active-directory-methodology/printnightmare","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"9cOZpttFJ2APJzT8XOGb","title":"Force NTLM Privileged Authentication","pathname":"/hacktricks/windows-hardening/active-directory-methodology/printers-spooler-service-abuse","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"Jz3QdZdWBr3JnvZPTxNi","title":"Privileged Groups","pathname":"/hacktricks/windows-hardening/active-directory-methodology/privileged-groups-and-token-privileges","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"0Z2H6xodLR7EtehSvG56","title":"RDP Sessions Abuse","pathname":"/hacktricks/windows-hardening/active-directory-methodology/rdp-sessions-abuse","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"NxEkvARygRWeBiJU5DN7","title":"Resource-based Constrained Delegation","pathname":"/hacktricks/windows-hardening/active-directory-methodology/resource-based-constrained-delegation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"MQymdP8crxmEq3pnYU2G","title":"Security Descriptors","pathname":"/hacktricks/windows-hardening/active-directory-methodology/security-descriptors","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"xmfQ3S6kqJaQQHe6IGDi","title":"SID-History Injection","pathname":"/hacktricks/windows-hardening/active-directory-methodology/sid-history-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"Jhnx9SlCXnuNSNoPdFub","title":"Silver Ticket","pathname":"/hacktricks/windows-hardening/active-directory-methodology/silver-ticket","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"AvNzqOkM4pO6LZX5oPdc","title":"Skeleton Key","pathname":"/hacktricks/windows-hardening/active-directory-methodology/skeleton-key","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"onyWkpBoLOk6AERY50XG","title":"Unconstrained Delegation","pathname":"/hacktricks/windows-hardening/active-directory-methodology/unconstrained-delegation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Active Directory Methodology"}]},{"id":"BKcmeM001sZPBqEkpWtr","title":"Windows Security Controls","pathname":"/hacktricks/windows-hardening/authentication-credentials-uac-and-efs","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"mNnyeJCF8841v8wWaRKx","title":"UAC - User Account Control","pathname":"/hacktricks/windows-hardening/authentication-credentials-uac-and-efs/uac-user-account-control","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Windows Security Controls"}]},{"id":"5npNwF1xMt7KxuXEvyek","title":"NTLM","pathname":"/hacktricks/windows-hardening/ntlm","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"rpvk3Hz5J6Vc7ntxnh1t","title":"Places to steal NTLM creds","pathname":"/hacktricks/windows-hardening/ntlm/places-to-steal-ntlm-creds","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"NTLM"}]},{"id":"03PNM9c0YJRJSL3LnlEA","title":"Lateral Movement","pathname":"/hacktricks/windows-hardening/lateral-movement","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"7mjkKTJOEB3oCxcfKsxu","title":"AtExec / SchtasksExec","pathname":"/hacktricks/windows-hardening/lateral-movement/atexec","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Lateral Movement"}]},{"id":"qvEGhUHQqx9U58DrQEEG","title":"DCOM Exec","pathname":"/hacktricks/windows-hardening/lateral-movement/dcom-exec","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Lateral Movement"}]},{"id":"1V0tijqM3g6EpiHNT4vE","title":"PsExec/Winexec/ScExec","pathname":"/hacktricks/windows-hardening/lateral-movement/psexec-and-winexec","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Lateral Movement"}]},{"id":"rHczOmjmxOU4orODapFu","title":"SmbExec/ScExec","pathname":"/hacktricks/windows-hardening/lateral-movement/smbexec","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Lateral Movement"}]},{"id":"zpVQ0yH0LtWbudZgRMM2","title":"WinRM","pathname":"/hacktricks/windows-hardening/lateral-movement/winrm","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Lateral Movement"}]},{"id":"PPAVWhw9aghpwYwI2X2X","title":"WmiExec","pathname":"/hacktricks/windows-hardening/lateral-movement/wmiexec","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Lateral Movement"}]},{"id":"dq5PBapQkSpQqQA0rVPr","title":"Stealing Windows Credentials","pathname":"/hacktricks/windows-hardening/stealing-credentials","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"10yFdqitv9kD0vtIEntA","title":"Windows Credentials Protections","pathname":"/hacktricks/windows-hardening/stealing-credentials/credentials-protections","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Stealing Windows Credentials"}]},{"id":"mIdbcFM55VJfBNKdM2kt","title":"Mimikatz","pathname":"/hacktricks/windows-hardening/stealing-credentials/credentials-mimikatz","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Stealing Windows Credentials"}]},{"id":"iLeqJZBsAJcILSe0NGgL","title":"WTS Impersonator","pathname":"/hacktricks/windows-hardening/stealing-credentials/wts-impersonator","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Stealing Windows Credentials"}]},{"id":"rk9eQIKGfIMD99I77oVH","title":"Basic Win CMD for Pentesters","pathname":"/hacktricks/windows-hardening/basic-cmd-for-pentesters","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"L6CV8UKIZ1LTUBCv1EZf","title":"Basic PowerShell for Pentesters","pathname":"/hacktricks/windows-hardening/basic-powershell-for-pentesters","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"pxYoHTJXX44KAMQDPxOz","title":"PowerView/SharpView","pathname":"/hacktricks/windows-hardening/basic-powershell-for-pentesters/powerview","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"},{"label":"Basic PowerShell for Pentesters"}]},{"id":"tEgXv8V183AGxrPQ4DkD","title":"Antivirus (AV) Bypass","pathname":"/hacktricks/windows-hardening/av-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Windows Hardening","emoji":"1fa9f"}]},{"id":"CqErphJUibMOsAmZqPuW","title":"Android APK Checklist","pathname":"/hacktricks/mobile-pentesting/android-checklist","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"}]},{"id":"omIsR5BERNP2C6S5H7aZ","title":"Android Applications Pentesting","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"}]},{"id":"54P52Izla05sa0Hfw5Ob","title":"Android Applications Basics","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/android-applications-basics","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"khemKZDluMjnvkkwWUEU","title":"Android Task Hijacking","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/android-task-hijacking","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"zpAxicjctUB3E29WZOFr","title":"ADB Commands","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/adb-commands","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"OaIJU2khv4Iv2AeKLA9s","title":"APK decompilers","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/apk-decompilers","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"R7dlj4wxW58GLfpmgNkr","title":"AVD - Android Virtual Device","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/avd-android-virtual-device","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"wS9rfCOFFBqbd27zis10","title":"Bypass Biometric Authentication (Android)","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/bypass-biometric-authentication-android","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"RRK4kVBKpKOdD3kcXKxx","title":"content:// protocol","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/content-protocol","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"jXaFgcVa8RABfJ8JhlUX","title":"Drozer Tutorial","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/drozer-tutorial","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"8EP2w1GUoKHZu8GTXw0L","title":"Exploiting Content Providers","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/drozer-tutorial/exploiting-content-providers","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"},{"label":"Drozer Tutorial"}]},{"id":"PIJeeD8gy4vWl3oPETaI","title":"Exploiting a debuggeable application","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/exploiting-a-debuggeable-applciation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"ElIelV7T4MbgxBdfoCtO","title":"Frida Tutorial","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/frida-tutorial","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"uXJoEB8sVUD6bzLxFw7d","title":"Frida Tutorial 1","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/frida-tutorial/frida-tutorial-1","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"},{"label":"Frida Tutorial"}]},{"id":"DcWfsr4sWzIezEd6feEg","title":"Frida Tutorial 2","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/frida-tutorial/frida-tutorial-2","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"},{"label":"Frida Tutorial"}]},{"id":"GmJqD9El2ObjCaQBUnrY","title":"Frida Tutorial 3","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/frida-tutorial/owaspuncrackable-1","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"},{"label":"Frida Tutorial"}]},{"id":"Pcuy6d8l51Q0PnkIlP6I","title":"Objection Tutorial","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/frida-tutorial/objection-tutorial","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"},{"label":"Frida Tutorial"}]},{"id":"RYQv4HI8xXNtHM0x7lWB","title":"Google CTF 2018 - Shall We Play a Game?","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/google-ctf-2018-shall-we-play-a-game","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"r2Gqk02dFQQI5t59IZWp","title":"Install Burp Certificate","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/install-burp-certificate","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"8eT0S1s02nCMF1bWM5hV","title":"Intent Injection","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/intent-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"S9KjF6iQbhF2rXKN83gP","title":"Make APK Accept CA Certificate","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/make-apk-accept-ca-certificate","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"GbxS65yvdq04O1lrNGPw","title":"Manual DeObfuscation","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/manual-deobfuscation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"UIe4wKBDAIl6b0ydRTeD","title":"React Native Application","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/react-native-application","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"wVn1Ns34z6EBKbwFFkmh","title":"Reversing Native Libraries","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/reversing-native-libraries","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"pEnzC7jsrHPNS6gzAQaN","title":"Smali - Decompiling/[Modifying]/Compiling","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/smali-changes","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"XKWGDlTll8ofULP9LWXG","title":"Spoofing your location in Play Store","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/spoofing-your-location-in-play-store","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"B5PQmyDdICdpq0MRHtAq","title":"Tapjacking","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/tapjacking","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"dxIuC358r0oxiDiCDlop","title":"Webview Attacks","pathname":"/hacktricks/mobile-pentesting/android-app-pentesting/webview-attacks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"Android Applications Pentesting"}]},{"id":"0whcPdtHvNshNlYKPm9o","title":"iOS Pentesting Checklist","pathname":"/hacktricks/mobile-pentesting/ios-pentesting-checklist","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"}]},{"id":"HRA30AO4d1AFpOqGnCZU","title":"iOS Pentesting","pathname":"/hacktricks/mobile-pentesting/ios-pentesting","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"}]},{"id":"li2jxn37O55KFI4RZlVq","title":"iOS App Extensions","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-app-extensions","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"xbBM9JTTWmJpsu84CZl6","title":"iOS Basics","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-basics","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"EnvPFHUpoH5q9hrVMJ7L","title":"iOS Basic Testing Operations","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/basic-ios-testing-operations","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"sOCGUsjFXBhA8cPXYh4d","title":"iOS Burp Suite Configuration","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/burp-configuration-for-ios","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"WWnwwxzJMVSeONqIS9wr","title":"iOS Custom URI Handlers / Deeplinks / Custom Schemes","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-custom-uri-handlers-deeplinks-custom-schemes","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"tkyglDnKmhJCDoIBNuPB","title":"iOS Extracting Entitlements From Compiled Application","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/extracting-entitlements-from-compiled-application","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"KFB2LUpxIbEgxIbgeRJC","title":"iOS Frida Configuration","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/frida-configuration-in-ios","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"kURXqDaxgyxVAuq48Q3p","title":"iOS Hooking With Objection","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-hooking-with-objection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"wV9ojzZxyOsCT0ygSgaT","title":"iOS Protocol Handlers","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-protocol-handlers","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"q54xltyQrUKxP72qTMcf","title":"iOS Serialisation and Encoding","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-serialisation-and-encoding","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"8RWbU8qwkxMW2yghyUpM","title":"iOS Testing Environment","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-testing-environment","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"lAmqVv5kRcZMBWM0YSNk","title":"iOS UIActivity Sharing","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-uiactivity-sharing","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"T7qGp4nj5sRT1XgVxhus","title":"iOS Universal Links","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-universal-links","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"YMmozIBfHGChVDQUIfYn","title":"iOS UIPasteboard","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-uipasteboard","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"ZVHgjpqTO06Qy94sgyqW","title":"iOS WebViews","pathname":"/hacktricks/mobile-pentesting/ios-pentesting/ios-webviews","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"},{"label":"iOS Pentesting"}]},{"id":"ICavilRXfnEXzNvCl7uf","title":"Cordova Apps","pathname":"/hacktricks/mobile-pentesting/cordova-apps","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"}]},{"id":"8rsIRRMMH7iaWD8uVEWb","title":"Xamarin Apps","pathname":"/hacktricks/mobile-pentesting/xamarin-apps","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Mobile Pentesting","emoji":"1f4f1"}]},{"id":"qVV1Xj5O0iU4Oc7Pz3p4","title":"Pentesting JDWP - Java Debug Wire Protocol","pathname":"/hacktricks/network-services-pentesting/pentesting-jdwp-java-debug-wire-protocol","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"eoApj2dcfvUvzKJJAu7q","title":"Pentesting SAP","pathname":"/hacktricks/network-services-pentesting/pentesting-sap","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"pboxPhuSRzn1Uk13s2yO","title":"Pentesting VoIP","pathname":"/hacktricks/network-services-pentesting/pentesting-voip","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"RnEIDYtPrREU2s2WzN57","title":"Basic VoIP Protocols","pathname":"/hacktricks/network-services-pentesting/pentesting-voip/basic-voip-protocols","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"Pentesting VoIP"}]},{"id":"XVMwGOjdpTDUu7eUv52e","title":"SIP (Session Initiation Protocol)","pathname":"/hacktricks/network-services-pentesting/pentesting-voip/basic-voip-protocols/sip-session-initiation-protocol","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"Pentesting VoIP"},{"label":"Basic VoIP Protocols"}]},{"id":"tOFr4j6eWySvAkY4YiYN","title":"Pentesting Remote GdbServer","pathname":"/hacktricks/network-services-pentesting/pentesting-remote-gdbserver","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"zJ0RN8Mjmw61uiAPClkm","title":"7/tcp/udp - Pentesting Echo","pathname":"/hacktricks/network-services-pentesting/7-tcp-udp-pentesting-echo","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"yuWxtiz4M78sShyQBSZw","title":"21 - Pentesting FTP","pathname":"/hacktricks/network-services-pentesting/pentesting-ftp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"jgWhLZKn8IwtVpIT5vql","title":"FTP Bounce attack - Scan","pathname":"/hacktricks/network-services-pentesting/pentesting-ftp/ftp-bounce-attack","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"21 - Pentesting FTP"}]},{"id":"CEUpwtt7Xv2cqjvrCI0O","title":"FTP Bounce - Download 2ºFTP file","pathname":"/hacktricks/network-services-pentesting/pentesting-ftp/ftp-bounce-download-2oftp-file","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"21 - Pentesting FTP"}]},{"id":"mzUopEP6gIpQXV2zQdK2","title":"22 - Pentesting SSH/SFTP","pathname":"/hacktricks/network-services-pentesting/pentesting-ssh","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"w7STN1pbdP1sOvdM1Om2","title":"23 - Pentesting Telnet","pathname":"/hacktricks/network-services-pentesting/pentesting-telnet","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"bQXN0LGy0WHqQ2C7hu5O","title":"25,465,587 - Pentesting SMTP/s","pathname":"/hacktricks/network-services-pentesting/pentesting-smtp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"7XbV1HAKpC7GNMBCWR77","title":"SMTP Smuggling","pathname":"/hacktricks/network-services-pentesting/pentesting-smtp/smtp-smuggling","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"25,465,587 - Pentesting SMTP/s"}]},{"id":"BoktN0n2yC0IYcHGtpQ1","title":"SMTP - Commands","pathname":"/hacktricks/network-services-pentesting/pentesting-smtp/smtp-commands","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"25,465,587 - Pentesting SMTP/s"}]},{"id":"MfZ1qi0aJvvzcmRLF0Tq","title":"43 - Pentesting WHOIS","pathname":"/hacktricks/network-services-pentesting/43-pentesting-whois","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"xL8f6vm5K9qrF7tisean","title":"49 - Pentesting TACACS+","pathname":"/hacktricks/network-services-pentesting/49-pentesting-tacacs+","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"GpkMbz3fl3rQki7ejaP6","title":"53 - Pentesting DNS","pathname":"/hacktricks/network-services-pentesting/pentesting-dns","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"1yTtcVo1UNXbm4Zkykgo","title":"69/UDP TFTP/Bittorrent-tracker","pathname":"/hacktricks/network-services-pentesting/69-udp-tftp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"TS5RHnbuQsM5DBCHTKdZ","title":"79 - Pentesting Finger","pathname":"/hacktricks/network-services-pentesting/pentesting-finger","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"zgcfGrIgJuCqmq01kLkX","title":"80,443 - Pentesting Web Methodology","pathname":"/hacktricks/network-services-pentesting/pentesting-web","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"x2frE4lN0LT44Y1XfheU","title":"403 & 401 Bypasses","pathname":"/hacktricks/network-services-pentesting/pentesting-web/403-and-401-bypasses","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"w1e0BEajZYuL5UgYYQ2b","title":"AEM - Adobe Experience Cloud","pathname":"/hacktricks/network-services-pentesting/pentesting-web/aem-adobe-experience-cloud","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"xR7dJSpG3sKetdBrEbur","title":"Angular","pathname":"/hacktricks/network-services-pentesting/pentesting-web/angular","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"rlfM3BX0vtkE2ZFYXSBb","title":"Apache","pathname":"/hacktricks/network-services-pentesting/pentesting-web/apache","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"CkevFL3OFPuBYa6lpF8q","title":"Artifactory Hacking guide","pathname":"/hacktricks/network-services-pentesting/pentesting-web/artifactory-hacking-guide","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"J10YBHfinkKWOrq4wZii","title":"Bolt CMS","pathname":"/hacktricks/network-services-pentesting/pentesting-web/bolt-cms","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"yU1hDLgydgxsRworSel1","title":"Buckets","pathname":"/hacktricks/network-services-pentesting/pentesting-web/buckets","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"QneTldq6hFoEJFyDv2uB","title":"Firebase Database","pathname":"/hacktricks/network-services-pentesting/pentesting-web/buckets/firebase-database","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"Buckets"}]},{"id":"gsOhhaHeKdqsdE5toZUi","title":"CGI","pathname":"/hacktricks/network-services-pentesting/pentesting-web/cgi","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"jEJXr7TUHWeWgAxGkEjf","title":"DotNetNuke (DNN)","pathname":"/hacktricks/network-services-pentesting/pentesting-web/dotnetnuke-dnn","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"II4zJXYqh9ZZnwNCAp6g","title":"Drupal","pathname":"/hacktricks/network-services-pentesting/pentesting-web/drupal","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"smB7Vk4aMPB1j0jQUry5","title":"Drupal RCE","pathname":"/hacktricks/network-services-pentesting/pentesting-web/drupal/drupal-rce","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"Drupal"}]},{"id":"Awv8MzFClRqreD7aOYP6","title":"Electron Desktop Apps","pathname":"/hacktricks/network-services-pentesting/pentesting-web/electron-desktop-apps","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"8oZacmfV7q7Q8XVMPWrW","title":"Electron contextIsolation RCE via preload code","pathname":"/hacktricks/network-services-pentesting/pentesting-web/electron-desktop-apps/electron-contextisolation-rce-via-preload-code","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"Electron Desktop Apps"}]},{"id":"YAC0ezP4tOf0eWell0bp","title":"Electron contextIsolation RCE via Electron internal code","pathname":"/hacktricks/network-services-pentesting/pentesting-web/electron-desktop-apps/electron-contextisolation-rce-via-electron-internal-code","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"Electron Desktop Apps"}]},{"id":"zkRF0zGWYqsXZ5nCTkSD","title":"Electron contextIsolation RCE via IPC","pathname":"/hacktricks/network-services-pentesting/pentesting-web/electron-desktop-apps/electron-contextisolation-rce-via-ipc","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"Electron Desktop Apps"}]},{"id":"KfoYafM31CaD1HC53Hv3","title":"Flask","pathname":"/hacktricks/network-services-pentesting/pentesting-web/flask","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"TEjG2WnoTO39PcgVkhL0","title":"NodeJS Express","pathname":"/hacktricks/network-services-pentesting/pentesting-web/nodejs-express","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"C7nMjCRcqo0WTiFsMWn2","title":"Git","pathname":"/hacktricks/network-services-pentesting/pentesting-web/git","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"10dlpbLfqfnV2GtltGF9","title":"Golang","pathname":"/hacktricks/network-services-pentesting/pentesting-web/golang","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"GT0KEYysppccQBf9DRvJ","title":"GWT - Google Web Toolkit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/gwt-google-web-toolkit","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"fw26EfXUn0DPEMry05YU","title":"Grafana","pathname":"/hacktricks/network-services-pentesting/pentesting-web/grafana","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"A414bGm8RwQdZqD6iavU","title":"GraphQL","pathname":"/hacktricks/network-services-pentesting/pentesting-web/graphql","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"ltyRhMa598Qf8QjimXUi","title":"H2 - Java SQL database","pathname":"/hacktricks/network-services-pentesting/pentesting-web/h2-java-sql-database","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"olBf0vtBlS8pXhhSDT1n","title":"IIS - Internet Information Services","pathname":"/hacktricks/network-services-pentesting/pentesting-web/iis-internet-information-services","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"qb4eNKW8kyWPRzbgw9yX","title":"ImageMagick Security","pathname":"/hacktricks/network-services-pentesting/pentesting-web/imagemagick-security","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"qLCUmZwEmTMBT4MZH4dc","title":"JBOSS","pathname":"/hacktricks/network-services-pentesting/pentesting-web/jboss","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"Uq2u1kqqvjDnwZlJBt5l","title":"Jira & Confluence","pathname":"/hacktricks/network-services-pentesting/pentesting-web/jira","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"jYvai98LL5IIpDp6zzlq","title":"Joomla","pathname":"/hacktricks/network-services-pentesting/pentesting-web/joomla","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"G0CN7cXwoBsZyyjRKZ17","title":"JSP","pathname":"/hacktricks/network-services-pentesting/pentesting-web/jsp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"ERfCsGUinHFmQkyCDZx2","title":"Laravel","pathname":"/hacktricks/network-services-pentesting/pentesting-web/laravel","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"xwJIFhuZIScVPQ6WgzPA","title":"Moodle","pathname":"/hacktricks/network-services-pentesting/pentesting-web/moodle","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"vcL3ymPIgAnE4KTatKLI","title":"Nginx","pathname":"/hacktricks/network-services-pentesting/pentesting-web/nginx","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"XdH3KnIU1hBI4S2ltM5b","title":"NextJS","pathname":"/hacktricks/network-services-pentesting/pentesting-web/nextjs","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"jrpe4mb0OwNJFYdOOv3u","title":"PHP Tricks","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"xWsiC6yy12Whs3eauvjY","title":"PHP - Useful Functions & disable_functions/open_basedir bypass","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"}]},{"id":"YUWnPSCcV8ec8ft9ypGz","title":"disable_functions bypass - php-fpm/FastCGI","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-fpm-fastcgi","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"B6Wv7wrpaF1Uo67f9QOv","title":"disable_functions bypass - dl function","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-dl-function","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"KAGCCwgJR5v5wnJCAKYB","title":"disable_functions bypass - PHP 7.0-7.4 (*nix only)","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-7.0-7.4-nix-only","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"PJt7gDoqeNOoKPoBLx5j","title":"disable_functions bypass - Imagick <= 3.3.0 PHP >= 5.4 Exploit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-imagick-less-than-3.3.0-php-greater-than-5.4-exploit","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"d9rmi8avSdhPCm65YvHc","title":"disable_functions - PHP 5.x Shellshock Exploit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-php-5.x-shellshock-exploit","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"Lt6mm79DG1m42mFkjcB2","title":"disable_functions - PHP 5.2.4 ionCube extension Exploit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-php-5.2.4-ioncube-extension-exploit","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"Kb2eDVkwOsGBMkqb9IlB","title":"disable_functions bypass - PHP <= 5.2.9 on windows","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-less-than-5.2.9-on-windows","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"4XZq0fOT3vjHiP0XrJsk","title":"disable_functions bypass - PHP 5.2.4 and 5.2.5 PHP cURL","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-5.2.4-and-5.2.5-php-curl","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"eb3oVlOxIGmkzcNpdA1J","title":"disable_functions bypass - PHP safe_mode bypass via proc_open() and custom environment Exploit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-safe_mode-bypass-via-proc_open-and-custom-environment-exploit","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"VsVd16uEsq72tLOiWPOs","title":"disable_functions bypass - PHP Perl Extension Safe_mode Bypass Exploit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-perl-extension-safe_mode-bypass-exploit","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"FMKhkyzKVJQqAIPVLOfv","title":"disable_functions bypass - PHP 5.2.3 - Win32std ext Protections Bypass","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-5.2.3-win32std-ext-protections-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"j51siKPZQk05SKyXgadm","title":"disable_functions bypass - PHP 5.2 - FOpen Exploit","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-5.2-fopen-exploit","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"6DvxfKfwJele2G4ydAr4","title":"disable_functions bypass - via mem","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-via-mem","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"EBhFOUA9r1j0Bi3LD9Z5","title":"disable_functions bypass - mod_cgi","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-mod_cgi","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"RMKWBBcaCLxjI17zIbeq","title":"disable_functions bypass - PHP 4 >= 4.2.0, PHP 5 pcntl_exec","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-useful-functions-disable_functions-open_basedir-bypass/disable_functions-bypass-php-4-greater-than-4.2.0-php-5-pcntl_exec","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"},{"label":"PHP - Useful Functions & disable_functions/open_basedir bypass"}]},{"id":"OQx3mrjqh2v1MA09mMPz","title":"PHP - RCE abusing object creation: new $_GET[\"a\"]($_GET[\"b\"])","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-rce-abusing-object-creation-new-usd_get-a-usd_get-b","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"}]},{"id":"tfNnIDuaIOX7Wnmbbarn","title":"PHP SSRF","pathname":"/hacktricks/network-services-pentesting/pentesting-web/php-tricks-esp/php-ssrf","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"PHP Tricks"}]},{"id":"39zanBYlPtIO8T1MS7aW","title":"Python","pathname":"/hacktricks/network-services-pentesting/pentesting-web/python","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"IZJklzMdWXoDrEQwk512","title":"Rocket Chat","pathname":"/hacktricks/network-services-pentesting/pentesting-web/rocket-chat","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"LB0pfP21bskI3QKFSNtL","title":"Special HTTP headers","pathname":"/hacktricks/network-services-pentesting/pentesting-web/special-http-headers","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"RVD0jFc0IiQHtMjG6rCs","title":"Source code Review / SAST Tools","pathname":"/hacktricks/network-services-pentesting/pentesting-web/code-review-tools","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"fAXoewFzRb2YPfzR13my","title":"Spring Actuators","pathname":"/hacktricks/network-services-pentesting/pentesting-web/spring-actuators","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"SpTLnjgd9KanCDg5TRG2","title":"Symfony","pathname":"/hacktricks/network-services-pentesting/pentesting-web/symphony","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"AjtjOWsBhf40HPPrV0ei","title":"Tomcat","pathname":"/hacktricks/network-services-pentesting/pentesting-web/tomcat","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"dndwIM6wQ671yBo4bvip","title":"Basic Tomcat Info","pathname":"/hacktricks/network-services-pentesting/pentesting-web/tomcat/basic-tomcat-info","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"},{"label":"Tomcat"}]},{"id":"xSCMwjO4rw7j9h5Ra9IZ","title":"Uncovering CloudFlare","pathname":"/hacktricks/network-services-pentesting/pentesting-web/uncovering-cloudflare","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"JMWcHjRE8yO8SKoSjY7G","title":"VMWare (ESX, VCenter...)","pathname":"/hacktricks/network-services-pentesting/pentesting-web/vmware-esx-vcenter...","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"xK9tDjYo7gIBoWUptJEa","title":"Web API Pentesting","pathname":"/hacktricks/network-services-pentesting/pentesting-web/web-api-pentesting","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"54UX3RvBi8YTeSaONAcS","title":"WebDav","pathname":"/hacktricks/network-services-pentesting/pentesting-web/put-method-webdav","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"1ICpSJXQd36hurJr4BF1","title":"Werkzeug / Flask Debug","pathname":"/hacktricks/network-services-pentesting/pentesting-web/werkzeug","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"WVMQMq7sEuuYE9s5yK7i","title":"Wordpress","pathname":"/hacktricks/network-services-pentesting/pentesting-web/wordpress","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"80,443 - Pentesting Web Methodology"}]},{"id":"6TKtbBXEWMpkXQFbHOVb","title":"88tcp/udp - Pentesting Kerberos","pathname":"/hacktricks/network-services-pentesting/pentesting-kerberos-88","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"irOVgCCOkUQzpGfnsirC","title":"Harvesting tickets from Windows","pathname":"/hacktricks/network-services-pentesting/pentesting-kerberos-88/harvesting-tickets-from-windows","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"88tcp/udp - Pentesting Kerberos"}]},{"id":"B1aVBj8HwKAglHcKBw0C","title":"Harvesting tickets from Linux","pathname":"/hacktricks/network-services-pentesting/pentesting-kerberos-88/harvesting-tickets-from-linux","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"88tcp/udp - Pentesting Kerberos"}]},{"id":"7rsaur4XM1qetxtxcpCb","title":"110,995 - Pentesting POP","pathname":"/hacktricks/network-services-pentesting/pentesting-pop","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"8J4p4I0Lhs9gvaLzN4oz","title":"111/TCP/UDP - Pentesting Portmapper","pathname":"/hacktricks/network-services-pentesting/pentesting-rpcbind","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"1SOLHn21AhswEw7nWltA","title":"113 - Pentesting Ident","pathname":"/hacktricks/network-services-pentesting/113-pentesting-ident","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"ALrm2dF1U0R99tu4Fv4c","title":"123/udp - Pentesting NTP","pathname":"/hacktricks/network-services-pentesting/pentesting-ntp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"l9SzCfWDDwcCsYW8fCPB","title":"135, 593 - Pentesting MSRPC","pathname":"/hacktricks/network-services-pentesting/135-pentesting-msrpc","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"6KPJojs8xWURJzDnnyj8","title":"137,138,139 - Pentesting NetBios","pathname":"/hacktricks/network-services-pentesting/137-138-139-pentesting-netbios","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"DUNGCzSyApQW4HW0uIQb","title":"139,445 - Pentesting SMB","pathname":"/hacktricks/network-services-pentesting/pentesting-smb","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"NHdhrNUyTiwuTvUAruqh","title":"rpcclient enumeration","pathname":"/hacktricks/network-services-pentesting/pentesting-smb/rpcclient-enumeration","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"139,445 - Pentesting SMB"}]},{"id":"hNZ3OdGPRgok5Aiscw6w","title":"143,993 - Pentesting IMAP","pathname":"/hacktricks/network-services-pentesting/pentesting-imap","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"RHKfSzqqZBrHtopoQT6O","title":"161,162,10161,10162/udp - Pentesting SNMP","pathname":"/hacktricks/network-services-pentesting/pentesting-snmp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"MlHaCw5Bm7PB6bq7liCh","title":"Cisco SNMP","pathname":"/hacktricks/network-services-pentesting/pentesting-snmp/cisco-snmp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"161,162,10161,10162/udp - Pentesting SNMP"}]},{"id":"Gyvmw3ttzWQ87lmfmhmv","title":"SNMP RCE","pathname":"/hacktricks/network-services-pentesting/pentesting-snmp/snmp-rce","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"161,162,10161,10162/udp - Pentesting SNMP"}]},{"id":"UeGtwfA1f099VdstwH8t","title":"194,6667,6660-7000 - Pentesting IRC","pathname":"/hacktricks/network-services-pentesting/pentesting-irc","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"ZrA0uFeLmusY8zXEamIK","title":"264 - Pentesting Check Point FireWall-1","pathname":"/hacktricks/network-services-pentesting/pentesting-264-check-point-firewall-1","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"X5hXiWUaovVRBDBJj716","title":"389, 636, 3268, 3269 - Pentesting LDAP","pathname":"/hacktricks/network-services-pentesting/pentesting-ldap","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"4GG8pxujj5RQcogVK2Bi","title":"500/udp - Pentesting IPsec/IKE VPN","pathname":"/hacktricks/network-services-pentesting/ipsec-ike-vpn-pentesting","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"yaNrQuxSuYYu8y5kwomm","title":"502 - Pentesting Modbus","pathname":"/hacktricks/network-services-pentesting/pentesting-modbus","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"stH3gD4DNII2jrVSc5RM","title":"512 - Pentesting Rexec","pathname":"/hacktricks/network-services-pentesting/512-pentesting-rexec","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"etW7txI2ihigSGQ30U6W","title":"513 - Pentesting Rlogin","pathname":"/hacktricks/network-services-pentesting/pentesting-rlogin","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"LRpJWAXUpjdLquphxJmD","title":"514 - Pentesting Rsh","pathname":"/hacktricks/network-services-pentesting/pentesting-rsh","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"oKN68mpK5YsexpuOzVXD","title":"515 - Pentesting Line Printer Daemon (LPD)","pathname":"/hacktricks/network-services-pentesting/515-pentesting-line-printer-daemon-lpd","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"4CvaLhHyma2QN5NRojZ7","title":"548 - Pentesting Apple Filing Protocol (AFP)","pathname":"/hacktricks/network-services-pentesting/584-pentesting-afp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"245k0ebdO7gQ5hunaAop","title":"554,8554 - Pentesting RTSP","pathname":"/hacktricks/network-services-pentesting/554-8554-pentesting-rtsp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"UgJ1qYhRfkmZ0WQut8S1","title":"623/UDP/TCP - IPMI","pathname":"/hacktricks/network-services-pentesting/623-udp-ipmi","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"zKksBradfbjDiR8ryZAw","title":"631 - Internet Printing Protocol(IPP)","pathname":"/hacktricks/network-services-pentesting/pentesting-631-internet-printing-protocol-ipp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"JVJk0MM5GjNcXNp6Gwgc","title":"700 - Pentesting EPP","pathname":"/hacktricks/network-services-pentesting/700-pentesting-epp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"BumgYf99NpbEc4ZjUjbF","title":"873 - Pentesting Rsync","pathname":"/hacktricks/network-services-pentesting/873-pentesting-rsync","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"ze0PaHrHw1UKY3D9YUmu","title":"1026 - Pentesting Rusersd","pathname":"/hacktricks/network-services-pentesting/1026-pentesting-rusersd","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"oDcEYUH1s9BUifUAokNt","title":"1080 - Pentesting Socks","pathname":"/hacktricks/network-services-pentesting/1080-pentesting-socks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"NKxFLeeY7I4nIlJqhj1D","title":"1098/1099/1050 - Pentesting Java RMI - RMI-IIOP","pathname":"/hacktricks/network-services-pentesting/1099-pentesting-java-rmi","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"fgOm3ebZzaLUx0kV8XnH","title":"1414 - Pentesting IBM MQ","pathname":"/hacktricks/network-services-pentesting/1414-pentesting-ibmmq","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"1Iknx64UNcB8qaWrtWwY","title":"1433 - Pentesting MSSQL - Microsoft SQL Server","pathname":"/hacktricks/network-services-pentesting/pentesting-mssql-microsoft-sql-server","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"sEsRjcazz1htetwIVaVk","title":"Types of MSSQL Users","pathname":"/hacktricks/network-services-pentesting/pentesting-mssql-microsoft-sql-server/types-of-mssql-users","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"1433 - Pentesting MSSQL - Microsoft SQL Server"}]},{"id":"8GfL3fgapBsfftJBCvXb","title":"1521,1522-1529 - Pentesting Oracle TNS Listener","pathname":"/hacktricks/network-services-pentesting/1521-1522-1529-pentesting-oracle-listener","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"LQfeh26mqYQFG6AvcS5G","title":"1723 - Pentesting PPTP","pathname":"/hacktricks/network-services-pentesting/1723-pentesting-pptp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"9q0zMdW8Y93sV4lPWncQ","title":"1883 - Pentesting MQTT (Mosquitto)","pathname":"/hacktricks/network-services-pentesting/1883-pentesting-mqtt-mosquitto","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"zFkC4xOx2KJeJ2V4yefu","title":"2049 - Pentesting NFS Service","pathname":"/hacktricks/network-services-pentesting/nfs-service-pentesting","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"OHQvetFN9Tyw6vbiJvkJ","title":"2301,2381 - Pentesting Compaq/HP Insight Manager","pathname":"/hacktricks/network-services-pentesting/pentesting-compaq-hp-insight-manager","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"EGYt8yABxTGHzm8vKLIg","title":"2375, 2376 Pentesting Docker","pathname":"/hacktricks/network-services-pentesting/2375-pentesting-docker","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"aKfqiQYhp9bXBL5PBU3w","title":"3128 - Pentesting Squid","pathname":"/hacktricks/network-services-pentesting/3128-pentesting-squid","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"FuIbiL6q7KOs2udNcqwz","title":"3260 - Pentesting ISCSI","pathname":"/hacktricks/network-services-pentesting/3260-pentesting-iscsi","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"tNdiFeK3DRFEXDSSbd0P","title":"3299 - Pentesting SAPRouter","pathname":"/hacktricks/network-services-pentesting/3299-pentesting-saprouter","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"jSTsmW0GSnhfLlCgp2va","title":"3306 - Pentesting Mysql","pathname":"/hacktricks/network-services-pentesting/pentesting-mysql","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"PhPe2avA1eNonMPkuf62","title":"3389 - Pentesting RDP","pathname":"/hacktricks/network-services-pentesting/pentesting-rdp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"xyFL8piZgBybcdA1HKWa","title":"3632 - Pentesting distcc","pathname":"/hacktricks/network-services-pentesting/3632-pentesting-distcc","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"KZ1XCN1VJiUBAECwv4Vt","title":"3690 - Pentesting Subversion (svn server)","pathname":"/hacktricks/network-services-pentesting/3690-pentesting-subversion-svn-server","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"PMuDeuNziWTkNTBEjO8x","title":"3702/UDP - Pentesting WS-Discovery","pathname":"/hacktricks/network-services-pentesting/3702-udp-pentesting-ws-discovery","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"L4P6Tp6k84tSXonE8rEC","title":"4369 - Pentesting Erlang Port Mapper Daemon (epmd)","pathname":"/hacktricks/network-services-pentesting/4369-pentesting-erlang-port-mapper-daemon-epmd","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"Woar4Asx8IJb91ovtB0a","title":"4786 - Cisco Smart Install","pathname":"/hacktricks/network-services-pentesting/4786-cisco-smart-install","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"lrn3IHJsI6igNE8OZy5r","title":"4840 - OPC Unified Architecture","pathname":"/hacktricks/network-services-pentesting/4840-pentesting-opc-ua","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"zOlIiODe0lqmbaXPrBTG","title":"5000 - Pentesting Docker Registry","pathname":"/hacktricks/network-services-pentesting/5000-pentesting-docker-registry","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"CLpeFPxCXxey51Zz95O0","title":"5353/UDP Multicast DNS (mDNS) and DNS-SD","pathname":"/hacktricks/network-services-pentesting/5353-udp-multicast-dns-mdns","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"I9TWSXdBerRIdhYjt3X3","title":"5432,5433 - Pentesting Postgresql","pathname":"/hacktricks/network-services-pentesting/pentesting-postgresql","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"F4tx8Ml9LnXgUFvPajGW","title":"5439 - Pentesting Redshift","pathname":"/hacktricks/network-services-pentesting/5439-pentesting-redshift","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"dGBlSMDInILLi7KBjB25","title":"5555 - Android Debug Bridge","pathname":"/hacktricks/network-services-pentesting/5555-android-debug-bridge","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"WOgN35xVZ2dnJS32MGRP","title":"5601 - Pentesting Kibana","pathname":"/hacktricks/network-services-pentesting/5601-pentesting-kibana","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"HEcVvmeImTPvljvVtLzp","title":"5671,5672 - Pentesting AMQP","pathname":"/hacktricks/network-services-pentesting/5671-5672-pentesting-amqp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"CwGKhb9u0ipjSTPTXWOo","title":"5800,5801,5900,5901 - Pentesting VNC","pathname":"/hacktricks/network-services-pentesting/pentesting-vnc","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"u2BKGNokh1I46XoKkXXv","title":"5984,6984 - Pentesting CouchDB","pathname":"/hacktricks/network-services-pentesting/5984-pentesting-couchdb","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"jxjH5Zygku8VLZv8IDZw","title":"5985,5986 - Pentesting WinRM","pathname":"/hacktricks/network-services-pentesting/5985-5986-pentesting-winrm","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"PwVz23QvIwZyVMGqV2ji","title":"5985,5986 - Pentesting OMI","pathname":"/hacktricks/network-services-pentesting/5985-5986-pentesting-omi","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"mZzM4zH1Vmbctujvdw1i","title":"6000 - Pentesting X11","pathname":"/hacktricks/network-services-pentesting/6000-pentesting-x11","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"u58rTUHLOXDjcnAVI7Ab","title":"6379 - Pentesting Redis","pathname":"/hacktricks/network-services-pentesting/6379-pentesting-redis","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"3jLkLoRY2FZaXq4sX0gm","title":"8009 - Pentesting Apache JServ Protocol (AJP)","pathname":"/hacktricks/network-services-pentesting/8009-pentesting-apache-jserv-protocol-ajp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"Z8n5k0KOFooSViaHZkqG","title":"8086 - Pentesting InfluxDB","pathname":"/hacktricks/network-services-pentesting/8086-pentesting-influxdb","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"OCs9l0pxbMizqG8K4Emy","title":"8089 - Pentesting Splunkd","pathname":"/hacktricks/network-services-pentesting/8089-splunkd","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"4m7SjLubKYlJ72hNF8bB","title":"8333,18333,38333,18444 - Pentesting Bitcoin","pathname":"/hacktricks/network-services-pentesting/8333-18333-38333-18444-pentesting-bitcoin","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"fzd5NDvj7aCRe3WIX7vo","title":"9000 - Pentesting FastCGI","pathname":"/hacktricks/network-services-pentesting/9000-pentesting-fastcgi","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"0iezc5D3HmdnIP2gXSGA","title":"9001 - Pentesting HSQLDB","pathname":"/hacktricks/network-services-pentesting/9001-pentesting-hsqldb","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"rfON9CILB7FMze1hZ3Cn","title":"9042/9160 - Pentesting Cassandra","pathname":"/hacktricks/network-services-pentesting/cassandra","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"3a6DeHi6YMKSOU2bK0BN","title":"9100 - Pentesting Raw Printing (JetDirect, AppSocket, PDL-datastream)","pathname":"/hacktricks/network-services-pentesting/9100-pjl","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"vvkoOGJSPsPIMFTJwdo5","title":"9200 - Pentesting Elasticsearch","pathname":"/hacktricks/network-services-pentesting/9200-pentesting-elasticsearch","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"c1BOWxuFTcBo2Myv5Ngo","title":"10000 - Pentesting Network Data Management Protocol (ndmp)","pathname":"/hacktricks/network-services-pentesting/10000-network-data-management-protocol-ndmp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"XfbgMJBqwjTRbzcKLjhq","title":"11211 - Pentesting Memcache","pathname":"/hacktricks/network-services-pentesting/11211-memcache","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"NswXM3FMWPqAH0x2b6Gs","title":"Memcache Commands","pathname":"/hacktricks/network-services-pentesting/11211-memcache/memcache-commands","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"},{"label":"11211 - Pentesting Memcache"}]},{"id":"082dkU5q9dhiovlCrCch","title":"15672 - Pentesting RabbitMQ Management","pathname":"/hacktricks/network-services-pentesting/15672-pentesting-rabbitmq-management","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"X7nRoLoWPFbYw8ZXIge9","title":"24007,24008,24009,49152 - Pentesting GlusterFS","pathname":"/hacktricks/network-services-pentesting/24007-24008-24009-49152-pentesting-glusterfs","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"f8PuMQhvPu1fzFS3Z4yD","title":"27017,27018 - Pentesting MongoDB","pathname":"/hacktricks/network-services-pentesting/27017-27018-mongodb","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"RHCNfJ75e20Zl4xHbugJ","title":"44134 - Pentesting Tiller (Helm)","pathname":"/hacktricks/network-services-pentesting/44134-pentesting-tiller-helm","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"qEzD3Lxcu8dwDJTSWih8","title":"44818/UDP/TCP - Pentesting EthernetIP","pathname":"/hacktricks/network-services-pentesting/44818-ethernetip","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"2uDVtFnSvapmCHg5MnPt","title":"47808/udp - Pentesting BACNet","pathname":"/hacktricks/network-services-pentesting/47808-udp-bacnet","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"g1YS8aM0K4eyTpFScR7h","title":"50030,50060,50070,50075,50090 - Pentesting Hadoop","pathname":"/hacktricks/network-services-pentesting/50030-50060-50070-50075-50090-pentesting-hadoop","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Network Services Pentesting","emoji":"1f47d"}]},{"id":"ef4AgZfjltxKY3kDBlrl","title":"Web Vulnerabilities Methodology","pathname":"/hacktricks/pentesting-web/web-vulnerabilities-methodology","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"wJjvAudIcYOeUb2zHyON","title":"Reflecting Techniques - PoCs and Polygloths CheatSheet","pathname":"/hacktricks/pentesting-web/pocs-and-polygloths-cheatsheet","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"fDp80xZJAW3mc9DWQc7s","title":"Web Vulns List","pathname":"/hacktricks/pentesting-web/pocs-and-polygloths-cheatsheet/web-vulns-list","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Reflecting Techniques - PoCs and Polygloths CheatSheet"}]},{"id":"SkgUGStzx3kLKqjSPtSn","title":"2FA/MFA/OTP Bypass","pathname":"/hacktricks/pentesting-web/2fa-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"ToImNahis7AjBRsuf276","title":"Account Takeover","pathname":"/hacktricks/pentesting-web/account-takeover","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"gKaYhmz2jBH43BnKTDqs","title":"Browser Extension Pentesting Methodology","pathname":"/hacktricks/pentesting-web/browser-extension-pentesting-methodology","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"JVjpLZCkpXCQxCsKTgYA","title":"BrowExt - ClickJacking","pathname":"/hacktricks/pentesting-web/browser-extension-pentesting-methodology/browext-clickjacking","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Browser Extension Pentesting Methodology"}]},{"id":"qft6Q8nA442NddBolhtL","title":"BrowExt - permissions & host_permissions","pathname":"/hacktricks/pentesting-web/browser-extension-pentesting-methodology/browext-permissions-and-host_permissions","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Browser Extension Pentesting Methodology"}]},{"id":"X0PCXRgvyMlwTNTbumi5","title":"BrowExt - XSS Example","pathname":"/hacktricks/pentesting-web/browser-extension-pentesting-methodology/browext-xss-example","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Browser Extension Pentesting Methodology"}]},{"id":"7EfabyHGAoeQdiEapnv3","title":"Bypass Payment Process","pathname":"/hacktricks/pentesting-web/bypass-payment-process","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"hSnL720PE5CocO2YYrDX","title":"Captcha Bypass","pathname":"/hacktricks/pentesting-web/captcha-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"hoKs7Xr5JowLyCy0Uijm","title":"Cache Poisoning and Cache Deception","pathname":"/hacktricks/pentesting-web/cache-deception","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"V1WYXyW6lUoh42jElw3l","title":"Cache Poisoning via URL discrepancies","pathname":"/hacktricks/pentesting-web/cache-deception/cache-poisoning-via-url-discrepancies","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Cache Poisoning and Cache Deception"}]},{"id":"klcn2SSxKgO6dhYWWgxC","title":"Cache Poisoning to DoS","pathname":"/hacktricks/pentesting-web/cache-deception/cache-poisoning-to-dos","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Cache Poisoning and Cache Deception"}]},{"id":"9QhZbEB5aKjXhhpYnvIe","title":"Clickjacking","pathname":"/hacktricks/pentesting-web/clickjacking","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"dODazU6XcjEcXIzdaLQ4","title":"Client Side Template Injection (CSTI)","pathname":"/hacktricks/pentesting-web/client-side-template-injection-csti","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"rHWIOKu9kaKvVLg2XO0c","title":"Client Side Path Traversal","pathname":"/hacktricks/pentesting-web/client-side-path-traversal","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"EzCmJ8qog7x8p7KmfQ2p","title":"Command Injection","pathname":"/hacktricks/pentesting-web/command-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"cuSGbVggfyIgrilRJXO9","title":"Content Security Policy (CSP) Bypass","pathname":"/hacktricks/pentesting-web/content-security-policy-csp-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"e4G2D0NNJN3iPFCrRCxm","title":"CSP bypass: self + 'unsafe-inline' with Iframes","pathname":"/hacktricks/pentesting-web/content-security-policy-csp-bypass/csp-bypass-self-+-unsafe-inline-with-iframes","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Content Security Policy (CSP) Bypass"}]},{"id":"bJnrL5dfTgJIWJoco2N0","title":"Cookies Hacking","pathname":"/hacktricks/pentesting-web/hacking-with-cookies","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"Eqn75wmrxx1Kcb1oX4Sp","title":"Cookie Tossing","pathname":"/hacktricks/pentesting-web/hacking-with-cookies/cookie-tossing","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Cookies Hacking"}]},{"id":"iRcdVI73Uaav4uhfhRDs","title":"Cookie Jar Overflow","pathname":"/hacktricks/pentesting-web/hacking-with-cookies/cookie-jar-overflow","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Cookies Hacking"}]},{"id":"nnT0DTr6xXZ5gbB439Pt","title":"Cookie Bomb","pathname":"/hacktricks/pentesting-web/hacking-with-cookies/cookie-bomb","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Cookies Hacking"}]},{"id":"imqI6D6tQKx3s6uDYMcp","title":"CORS - Misconfigurations & Bypass","pathname":"/hacktricks/pentesting-web/cors-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"oDJubAEO30fNonljqiu6","title":"CRLF (%0D%0A) Injection","pathname":"/hacktricks/pentesting-web/crlf-0d-0a","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"NALNJYXXgqPZvxv9UJat","title":"CSRF (Cross Site Request Forgery)","pathname":"/hacktricks/pentesting-web/csrf-cross-site-request-forgery","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"J49k9NyNptuuFbxUA1DR","title":"Dangling Markup - HTML scriptless injection","pathname":"/hacktricks/pentesting-web/dangling-markup-html-scriptless-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"BTiwETjFI6IZ5VdlKeRN","title":"SS-Leaks","pathname":"/hacktricks/pentesting-web/dangling-markup-html-scriptless-injection/ss-leaks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Dangling Markup - HTML scriptless injection"}]},{"id":"BsXo1sONZfBXIw9U1iiF","title":"Dependency Confusion","pathname":"/hacktricks/pentesting-web/dependency-confusion","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"JAYgdWWYyKGKkXlJLoWh","title":"Deserialization","pathname":"/hacktricks/pentesting-web/deserialization","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"MpdlDhKIxlE2l6ljaGWu","title":"NodeJS - __proto__ & prototype Pollution","pathname":"/hacktricks/pentesting-web/deserialization/nodejs-proto-prototype-pollution","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"aFMxfeZ5pUJwJ109U2fC","title":"Client Side Prototype Pollution","pathname":"/hacktricks/pentesting-web/deserialization/nodejs-proto-prototype-pollution/client-side-prototype-pollution","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"},{"label":"NodeJS - __proto__ & prototype Pollution"}]},{"id":"GKefy0XLLB9qEnKa87uk","title":"Express Prototype Pollution Gadgets","pathname":"/hacktricks/pentesting-web/deserialization/nodejs-proto-prototype-pollution/express-prototype-pollution-gadgets","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"},{"label":"NodeJS - __proto__ & prototype Pollution"}]},{"id":"jnzDlTJtmjLKwlW1yI48","title":"Prototype Pollution to RCE","pathname":"/hacktricks/pentesting-web/deserialization/nodejs-proto-prototype-pollution/prototype-pollution-to-rce","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"},{"label":"NodeJS - __proto__ & prototype Pollution"}]},{"id":"gEwG4k2GNQgfX6IrNN2l","title":"Java JSF ViewState (.faces) Deserialization","pathname":"/hacktricks/pentesting-web/deserialization/java-jsf-viewstate-.faces-deserialization","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"HlDvgyWRJFd0WFw046c7","title":"Java DNS Deserialization, GadgetProbe and Java Deserialization Scanner","pathname":"/hacktricks/pentesting-web/deserialization/java-dns-deserialization-and-gadgetprobe","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"Bn0iispYV5AzfWvY0rdf","title":"Basic Java Deserialization (ObjectInputStream, readObject)","pathname":"/hacktricks/pentesting-web/deserialization/basic-java-deserialization-objectinputstream-readobject","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"JpN1dMQ2m1ZrhP9b7RDo","title":"PHP - Deserialization + Autoload Classes","pathname":"/hacktricks/pentesting-web/deserialization/php-deserialization-+-autoload-classes","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"6Y2injUETzujQyBKVlwI","title":"CommonsCollection1 Payload - Java Transformers to Rutime exec() and Thread Sleep","pathname":"/hacktricks/pentesting-web/deserialization/java-transformers-to-rutime-exec-payload","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"s31mNCf0v8Gwq7xGCfi5","title":"Basic .Net deserialization (ObjectDataProvider gadget, ExpandedWrapper, and Json.Net)","pathname":"/hacktricks/pentesting-web/deserialization/basic-.net-deserialization-objectdataprovider-gadgets-expandedwrapper-and-json.net","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"31FuYddGXAAkFpwdk87D","title":"Exploiting __VIEWSTATE knowing the secrets","pathname":"/hacktricks/pentesting-web/deserialization/exploiting-__viewstate-knowing-the-secret","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"HFC3fNvLUfhpRke0c6dQ","title":"Exploiting __VIEWSTATE without knowing the secrets","pathname":"/hacktricks/pentesting-web/deserialization/exploiting-__viewstate-parameter","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"KEbDljIJLtrfeQ1mm9uC","title":"Python Yaml Deserialization","pathname":"/hacktricks/pentesting-web/deserialization/python-yaml-deserialization","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"SVXM576MYIl56kxylTb7","title":"JNDI - Java Naming and Directory Interface & Log4Shell","pathname":"/hacktricks/pentesting-web/deserialization/jndi-java-naming-and-directory-interface-and-log4shell","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Deserialization"}]},{"id":"AiCfacvEbkPDpGKlrd23","title":"Domain/Subdomain takeover","pathname":"/hacktricks/pentesting-web/domain-subdomain-takeover","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"DpAFNbg2SoH0mwx07B8f","title":"Email Injections","pathname":"/hacktricks/pentesting-web/email-injections","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"I2dCJ1bXUrmkrpdu39T5","title":"File Inclusion/Path traversal","pathname":"/hacktricks/pentesting-web/file-inclusion","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"4wnT5KM8wWTORVUNueLx","title":"phar:// deserialization","pathname":"/hacktricks/pentesting-web/file-inclusion/phar-deserialization","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"yD1U1InI2iftiYuZ7PYo","title":"LFI2RCE via PHP Filters","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-php-filters","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"PMNOTffEb3sMfvF0M8Wd","title":"LFI2RCE via Nginx temp files","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-nginx-temp-files","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"1ZTZuIQNa8NlRzDZR7OY","title":"LFI2RCE via PHP_SESSION_UPLOAD_PROGRESS","pathname":"/hacktricks/pentesting-web/file-inclusion/via-php_session_upload_progress","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"vPF6Yd0NzydTh9A3MOBm","title":"LFI2RCE via Segmentation Fault","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-segmentation-fault","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"X4Jzxi74tEyA7Zd2ByBB","title":"LFI2RCE via phpinfo()","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-phpinfo","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"Y4PPHGnvaNZBCySCnRZq","title":"LFI2RCE Via temp file uploads","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-temp-file-uploads","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"zARrNaNIKFWUPBTCaZ05","title":"LFI2RCE via Eternal waiting","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-eternal-waiting","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"jDWeirCKO1X3eNa48q0K","title":"LFI2RCE Via compress.zlib + PHP_STREAM_PREFER_STUDIO + Path Disclosure","pathname":"/hacktricks/pentesting-web/file-inclusion/lfi2rce-via-compress.zlib-+-php_stream_prefer_studio-+-path-disclosure","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Inclusion/Path traversal"}]},{"id":"RF2zDZpo8MKDpkUkMhUb","title":"File Upload","pathname":"/hacktricks/pentesting-web/file-upload","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"Wr0kinsRmlSZ6wq7R5HQ","title":"PDF Upload - XXE and CORS bypass","pathname":"/hacktricks/pentesting-web/file-upload/pdf-upload-xxe-and-cors-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"File Upload"}]},{"id":"f5FXmRRD1OWeFvVKDsI3","title":"Formula/CSV/Doc/LaTeX/GhostScript Injection","pathname":"/hacktricks/pentesting-web/formula-csv-doc-latex-ghostscript-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"bOLDxnAZmCvPnr4xomEn","title":"gRPC-Web Pentest","pathname":"/hacktricks/pentesting-web/grpc-web-pentest","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"TpNMPMEgxDoy8TY9rX8a","title":"HTTP Connection Contamination","pathname":"/hacktricks/pentesting-web/http-connection-contamination","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"3mQOzj8lutQgDQ0dg6Ce","title":"HTTP Connection Request Smuggling","pathname":"/hacktricks/pentesting-web/http-connection-request-smuggling","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"A0m2jxyntyqXnfRZz2Bb","title":"HTTP Request Smuggling / HTTP Desync Attack","pathname":"/hacktricks/pentesting-web/http-request-smuggling","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"NQvhoIcWIVND01Au6aI7","title":"Browser HTTP Request Smuggling","pathname":"/hacktricks/pentesting-web/http-request-smuggling/browser-http-request-smuggling","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"HTTP Request Smuggling / HTTP Desync Attack"}]},{"id":"6rfkax3dX9LS4mWk426r","title":"Request Smuggling in HTTP/2 Downgrades","pathname":"/hacktricks/pentesting-web/http-request-smuggling/request-smuggling-in-http-2-downgrades","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"HTTP Request Smuggling / HTTP Desync Attack"}]},{"id":"O3ChIcxFXZR1KIr5hhXw","title":"HTTP Response Smuggling / Desync","pathname":"/hacktricks/pentesting-web/http-response-smuggling-desync","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"461PlCpu9GsEhg4yv0E6","title":"Upgrade Header Smuggling","pathname":"/hacktricks/pentesting-web/h2c-smuggling","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"nYVR0s5RoBF28a6oBhut","title":"hop-by-hop headers","pathname":"/hacktricks/pentesting-web/abusing-hop-by-hop-headers","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"YdmSolFCyu6RlwDrluBA","title":"IDOR","pathname":"/hacktricks/pentesting-web/idor","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"UcVT1lQC9jnl9GyJjWXY","title":"JWT Vulnerabilities (Json Web Tokens)","pathname":"/hacktricks/pentesting-web/hacking-jwt-json-web-tokens","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"MjnY6S9Ctx8ef40SwemE","title":"LDAP Injection","pathname":"/hacktricks/pentesting-web/ldap-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"56mtiH1qFgIk9xwyM5Ht","title":"Login Bypass","pathname":"/hacktricks/pentesting-web/login-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"4cDfMnV8MjP4qq72atAi","title":"Login bypass List","pathname":"/hacktricks/pentesting-web/login-bypass/sql-login-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Login Bypass"}]},{"id":"m2qbiZNidKwILWGx3aS9","title":"NoSQL injection","pathname":"/hacktricks/pentesting-web/nosql-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"CeLwElcJIuVlqgTqMksa","title":"OAuth to Account takeover","pathname":"/hacktricks/pentesting-web/oauth-to-account-takeover","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"d4gENmPLyQhu3eiRHijl","title":"Open Redirect","pathname":"/hacktricks/pentesting-web/open-redirect","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"2qlyBJfyxBSzs3C4XLvc","title":"ORM Injection","pathname":"/hacktricks/pentesting-web/orm-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"98K7XBc0MlwcoDquLhdk","title":"Parameter Pollution","pathname":"/hacktricks/pentesting-web/parameter-pollution","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"wyFKdMUWAK7lhOTCdZiE","title":"Phone Number Injections","pathname":"/hacktricks/pentesting-web/phone-number-injections","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"OEswDIBFzt1aORaIUkg5","title":"PostMessage Vulnerabilities","pathname":"/hacktricks/pentesting-web/postmessage-vulnerabilities","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"O08c9kfO7l7XKYVMbSFU","title":"Blocking main page to steal postmessage","pathname":"/hacktricks/pentesting-web/postmessage-vulnerabilities/blocking-main-page-to-steal-postmessage","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"PostMessage Vulnerabilities"}]},{"id":"xBdBQL8kFINcL8QlKHVq","title":"Bypassing SOP with Iframes - 1","pathname":"/hacktricks/pentesting-web/postmessage-vulnerabilities/bypassing-sop-with-iframes-1","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"PostMessage Vulnerabilities"}]},{"id":"EhwENhhxEJy7JyESUVxl","title":"Bypassing SOP with Iframes - 2","pathname":"/hacktricks/pentesting-web/postmessage-vulnerabilities/bypassing-sop-with-iframes-2","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"PostMessage Vulnerabilities"}]},{"id":"JLUYWXF2oL9RpO1PD3NK","title":"Steal postmessage modifying iframe location","pathname":"/hacktricks/pentesting-web/postmessage-vulnerabilities/steal-postmessage-modifying-iframe-location","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"PostMessage Vulnerabilities"}]},{"id":"bcXsyo9OvHlBtP8KO2tu","title":"Proxy / WAF Protections Bypass","pathname":"/hacktricks/pentesting-web/proxy-waf-protections-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"7JKpmO3nyCvmwHTBnfeq","title":"Race Condition","pathname":"/hacktricks/pentesting-web/race-condition","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"lMABiF9Py3iNnlW4xA6y","title":"Rate Limit Bypass","pathname":"/hacktricks/pentesting-web/rate-limit-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"0l7ptfVdYOevx0dCPs07","title":"Registration & Takeover Vulnerabilities","pathname":"/hacktricks/pentesting-web/registration-vulnerabilities","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"Iw4lStFgInIowj2nqdUr","title":"Regular expression Denial of Service - ReDoS","pathname":"/hacktricks/pentesting-web/regular-expression-denial-of-service-redos","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"JI1kbDozkHZtvTBgDg6W","title":"Reset/Forgotten Password Bypass","pathname":"/hacktricks/pentesting-web/reset-password","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"eNRQ5jhc0T5PLPpgPJvs","title":"Reverse Tab Nabbing","pathname":"/hacktricks/pentesting-web/reverse-tab-nabbing","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"YM5QRKZgMSmCSI9p1Kcc","title":"SAML Attacks","pathname":"/hacktricks/pentesting-web/saml-attacks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"ch3tarVAChPoEJ6P1rnI","title":"SAML Basics","pathname":"/hacktricks/pentesting-web/saml-attacks/saml-basics","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SAML Attacks"}]},{"id":"9XTBJyqWoZPjHfeQpRr5","title":"Server Side Inclusion/Edge Side Inclusion Injection","pathname":"/hacktricks/pentesting-web/server-side-inclusion-edge-side-inclusion-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"374GWASmyULi9HFfzvVc","title":"SQL Injection","pathname":"/hacktricks/pentesting-web/sql-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"C6e9TmSxdsZurTzETr2Y","title":"MS Access SQL Injection","pathname":"/hacktricks/pentesting-web/sql-injection/ms-access-sql-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"cJCKY56kqMEmvIg4bLjK","title":"MSSQL Injection","pathname":"/hacktricks/pentesting-web/sql-injection/mssql-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"rUlC9pQwj2PpS38Dba5z","title":"MySQL injection","pathname":"/hacktricks/pentesting-web/sql-injection/mysql-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"eIm603XasOluiI6zvjEg","title":"MySQL File priv to SSRF/RCE","pathname":"/hacktricks/pentesting-web/sql-injection/mysql-injection/mysql-ssrf","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"MySQL injection"}]},{"id":"L8OUAkHcrh9JQ8rMXK6t","title":"Oracle injection","pathname":"/hacktricks/pentesting-web/sql-injection/oracle-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"kI6LHMgxwMV6560B90Al","title":"Cypher Injection (neo4j)","pathname":"/hacktricks/pentesting-web/sql-injection/cypher-injection-neo4j","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"J2LnigC5nRYtJvMZTb0o","title":"PostgreSQL injection","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"VhbCdye6Xtau0TpBP6Wn","title":"dblink/lo_import data exfiltration","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection/dblink-lo_import-data-exfiltration","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"PostgreSQL injection"}]},{"id":"EUbwnhhhaC2DONBJVPsL","title":"PL/pgSQL Password Bruteforce","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection/pl-pgsql-password-bruteforce","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"PostgreSQL injection"}]},{"id":"Qc5XOhusfjmNIwt9lI3V","title":"Network - Privesc, Port Scanner and NTLM chanllenge response disclosure","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection/network-privesc-port-scanner-and-ntlm-chanllenge-response-disclosure","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"PostgreSQL injection"}]},{"id":"EJhe9ubZcz5H98AGLqIf","title":"Big Binary Files Upload (PostgreSQL)","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection/big-binary-files-upload-postgresql","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"PostgreSQL injection"}]},{"id":"oXB1gx9UrtB9Gek6Fpcc","title":"RCE with PostgreSQL Languages","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection/rce-with-postgresql-languages","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"PostgreSQL injection"}]},{"id":"8TOhAkzPVVYdKX9ZpfYi","title":"RCE with PostgreSQL Extensions","pathname":"/hacktricks/pentesting-web/sql-injection/postgresql-injection/rce-with-postgresql-extensions","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"PostgreSQL injection"}]},{"id":"hF0JXfSUUUvH4wgxAHu3","title":"SQLMap - Cheetsheat","pathname":"/hacktricks/pentesting-web/sql-injection/sqlmap","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"}]},{"id":"7TlsOTMwwNjfeHG1Gc3B","title":"Second Order Injection - SQLMap","pathname":"/hacktricks/pentesting-web/sql-injection/sqlmap/second-order-injection-sqlmap","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SQL Injection"},{"label":"SQLMap - Cheetsheat"}]},{"id":"8gBLDWEqUIHAM6lfyvYc","title":"SSRF (Server Side Request Forgery)","pathname":"/hacktricks/pentesting-web/ssrf-server-side-request-forgery","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"624ZSnZ96kCp6sGBaOcN","title":"URL Format Bypass","pathname":"/hacktricks/pentesting-web/ssrf-server-side-request-forgery/url-format-bypass","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SSRF (Server Side Request Forgery)"}]},{"id":"Nk9UWtMkT7OsrXTwktFu","title":"SSRF Vulnerable Platforms","pathname":"/hacktricks/pentesting-web/ssrf-server-side-request-forgery/ssrf-vulnerable-platforms","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SSRF (Server Side Request Forgery)"}]},{"id":"Fyuxpt3U7DG9jdOWQM4k","title":"Cloud SSRF","pathname":"/hacktricks/pentesting-web/ssrf-server-side-request-forgery/cloud-ssrf","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SSRF (Server Side Request Forgery)"}]},{"id":"d1Dklk8rOX5IoaEpclXt","title":"SSTI (Server Side Template Injection)","pathname":"/hacktricks/pentesting-web/ssti-server-side-template-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"qqalaqF1XDhMr94XqLQJ","title":"EL - Expression Language","pathname":"/hacktricks/pentesting-web/ssti-server-side-template-injection/el-expression-language","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SSTI (Server Side Template Injection)"}]},{"id":"yJUkZuhWYntCwXYUFvQ3","title":"Jinja2 SSTI","pathname":"/hacktricks/pentesting-web/ssti-server-side-template-injection/jinja2-ssti","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"SSTI (Server Side Template Injection)"}]},{"id":"uO1vy2CVsK2Rajhbdb7G","title":"Timing Attacks","pathname":"/hacktricks/pentesting-web/timing-attacks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"3qCMv5Swx2L6VFnxdmER","title":"Unicode Injection","pathname":"/hacktricks/pentesting-web/unicode-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"dDCuJJFCQEgNGPbvEWmz","title":"Unicode Normalization","pathname":"/hacktricks/pentesting-web/unicode-injection/unicode-normalization","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"Unicode Injection"}]},{"id":"Xzv3Lp2RDxpYmey5kkIs","title":"UUID Insecurities","pathname":"/hacktricks/pentesting-web/uuid-insecurities","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"JwwxwJttznDPpkKtukJZ","title":"WebSocket Attacks","pathname":"/hacktricks/pentesting-web/websocket-attacks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"fogIrrzvosAMPkAyVauL","title":"Web Tool - WFuzz","pathname":"/hacktricks/pentesting-web/web-tool-wfuzz","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"ZuDMoRWGUmHF9MxhSCvu","title":"XPATH injection","pathname":"/hacktricks/pentesting-web/xpath-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"3FqfeAKhOx8OP2x7bZQz","title":"XSLT Server Side Injection (Extensible Stylesheet Language Transformations)","pathname":"/hacktricks/pentesting-web/xslt-server-side-injection-extensible-stylesheet-language-transformations","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"xUsR2jrS3xHNrGTDipd6","title":"XXE - XEE - XML External Entity","pathname":"/hacktricks/pentesting-web/xxe-xee-xml-external-entity","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"41Kj5QbrkKH4XiLNK90r","title":"XSS (Cross Site Scripting)","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"gjsBvlGYQAJkTECVQB5w","title":"Abusing Service Workers","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/abusing-service-workers","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"upWUIgDAutQSLWGBtKEo","title":"Chrome Cache to XSS","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/chrome-cache-to-xss","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"Y3Om0pGhZ6XjCku2UkPA","title":"Debugging Client Side JS","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/debugging-client-side-js","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"ZNf6m3FyzYQjtxHxKkOg","title":"Dom Clobbering","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/dom-clobbering","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"6xHzebcsVWMB5GGeRGfC","title":"DOM Invader","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/dom-invader","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"yRLkJ0ab33bUeFTmoTzv","title":"DOM XSS","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/dom-xss","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"4Ze3BjVIzLA3dIC24CTN","title":"Iframes in XSS, CSP and SOP","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/iframes-in-xss-and-csp","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"mHnhaqqRXhf7GRGTaLdn","title":"Integer Overflow","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/integer-overflow","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"0LquKMu8HYZw0UZ2h5Md","title":"JS Hoisting","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/js-hoisting","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"4iqsZXjUW2CXcKWco3Kx","title":"Misc JS Tricks & Relevant Info","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/other-js-tricks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"5jmMqo8UGSAOmfI0QMbC","title":"PDF Injection","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/pdf-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"jvQojMISmccERRFvb9yP","title":"Server Side XSS (Dynamic PDF)","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/server-side-xss-dynamic-pdf","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"5Fz5BDaglrjkH6nTTxZg","title":"Shadow DOM","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/shadow-dom","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"rjU1riR0XOrF7Nfgoqk1","title":"SOME - Same Origin Method Execution","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/some-same-origin-method-execution","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"VJhk12FR6COwauQjTDl8","title":"Sniff Leak","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/sniff-leak","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"09Zbd8pg5fZIKpAcAMcx","title":"Steal Info JS","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/steal-info-js","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"equuHPlaasZhR5wOdslk","title":"XSS in Markdown","pathname":"/hacktricks/pentesting-web/xss-cross-site-scripting/xss-in-markdown","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XSS (Cross Site Scripting)"}]},{"id":"ornaugD2Bzhp8Q3y90Q0","title":"XSSI (Cross-Site Script Inclusion)","pathname":"/hacktricks/pentesting-web/xssi-cross-site-script-inclusion","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"7gbuwot7ViTt2uZoA8xN","title":"XS-Search/XS-Leaks","pathname":"/hacktricks/pentesting-web/xs-search","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"6vWiJubbtRcgIbSmYus2","title":"Connection Pool Examples","pathname":"/hacktricks/pentesting-web/xs-search/connection-pool-example","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"r6f5J5BarDB3axOU8G4l","title":"Connection Pool by Destination Example","pathname":"/hacktricks/pentesting-web/xs-search/connection-pool-by-destination-example","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"sC6aLKc4lQcjU1XEOpHi","title":"Cookie Bomb + Onerror XS Leak","pathname":"/hacktricks/pentesting-web/xs-search/cookie-bomb-+-onerror-xs-leak","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"62ezsX0KuWQaIgR8SztB","title":"URL Max Length - Client Side","pathname":"/hacktricks/pentesting-web/xs-search/url-max-length-client-side","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"GORnyAc4SEVorOGjWbSR","title":"performance.now example","pathname":"/hacktricks/pentesting-web/xs-search/performance.now-example","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"0oZfXh99FD0ds8E2znop","title":"performance.now + Force heavy task","pathname":"/hacktricks/pentesting-web/xs-search/performance.now-+-force-heavy-task","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"sfEGOwDw3ueUjPBYftC0","title":"Event Loop Blocking + Lazy images","pathname":"/hacktricks/pentesting-web/xs-search/event-loop-blocking-+-lazy-images","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"jOgSuv5sQKE8508HFZRJ","title":"JavaScript Execution XS Leak","pathname":"/hacktricks/pentesting-web/xs-search/javascript-execution-xs-leak","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"4BrEBen69B7721vRHtNS","title":"CSS Injection","pathname":"/hacktricks/pentesting-web/xs-search/css-injection","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"}]},{"id":"E9znAB6wEsgOpf9wqJ7P","title":"CSS Injection Code","pathname":"/hacktricks/pentesting-web/xs-search/css-injection/css-injection-code","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"},{"label":"XS-Search/XS-Leaks"},{"label":"CSS Injection"}]},{"id":"vq2nHEKMesAWao0YZHTg","title":"Iframe Traps","pathname":"/hacktricks/pentesting-web/iframe-traps","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Pentesting Web","emoji":"1f578"}]},{"id":"LdIWIRFuYm2JVor1jhQi","title":"Physical Attacks","pathname":"/hacktricks/hardware-physical-access/physical-attacks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Hardware/Physical Access","emoji":"1f60e"}]},{"id":"e3PYyqEPxxxipdAjAypn","title":"Escaping from KIOSKs","pathname":"/hacktricks/hardware-physical-access/escaping-from-gui-applications","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Hardware/Physical Access","emoji":"1f60e"}]},{"id":"lDJo4bpbBpXEWVuJhth7","title":"Firmware Analysis","pathname":"/hacktricks/hardware-physical-access/firmware-analysis","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Hardware/Physical Access","emoji":"1f60e"}]},{"id":"xE5VF5Mr5ngl82kehri0","title":"Bootloader testing","pathname":"/hacktricks/hardware-physical-access/firmware-analysis/bootloader-testing","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Hardware/Physical Access","emoji":"1f60e"},{"label":"Firmware Analysis"}]},{"id":"wZzLbVKaL4nBtB5NYeH1","title":"Firmware Integrity","pathname":"/hacktricks/hardware-physical-access/firmware-analysis/firmware-integrity","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Hardware/Physical Access","emoji":"1f60e"},{"label":"Firmware Analysis"}]},{"id":"zbgBmdfjYd2JddBMREG9","title":"Basic Stack Binary Exploitation Methodology","pathname":"/hacktricks/binary-exploitation/basic-stack-binary-exploitation-methodology","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"YkmN5o7fRIdVfnqIofE3","title":"ELF Basic Information","pathname":"/hacktricks/binary-exploitation/basic-stack-binary-exploitation-methodology/elf-tricks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Basic Stack Binary Exploitation Methodology"}]},{"id":"VUj9bA3rgftjFmFvnfTE","title":"Exploiting Tools","pathname":"/hacktricks/binary-exploitation/basic-stack-binary-exploitation-methodology/tools","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Basic Stack Binary Exploitation Methodology"}]},{"id":"ZziZX3KAa06PobalK4bS","title":"PwnTools","pathname":"/hacktricks/binary-exploitation/basic-stack-binary-exploitation-methodology/tools/pwntools","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Basic Stack Binary Exploitation Methodology"},{"label":"Exploiting Tools"}]},{"id":"at1Zy5WO7sLi6EkBNJ3S","title":"Stack Overflow","pathname":"/hacktricks/binary-exploitation/stack-overflow","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"8iynLNyTdGCjBo1lxlTd","title":"Pointer Redirecting","pathname":"/hacktricks/binary-exploitation/stack-overflow/pointer-redirecting","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"}]},{"id":"pdVkCUCZ2wAkgZBX6C23","title":"Ret2win","pathname":"/hacktricks/binary-exploitation/stack-overflow/ret2win","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"}]},{"id":"ukD9Arxl6wZI3RISIJtl","title":"Ret2win - arm64","pathname":"/hacktricks/binary-exploitation/stack-overflow/ret2win/ret2win-arm64","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"},{"label":"Ret2win"}]},{"id":"isZqIqxEyYjC8Swpt12A","title":"Stack Shellcode","pathname":"/hacktricks/binary-exploitation/stack-overflow/stack-shellcode","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"}]},{"id":"mVOrhXPghmdLr98SltdS","title":"Stack Shellcode - arm64","pathname":"/hacktricks/binary-exploitation/stack-overflow/stack-shellcode/stack-shellcode-arm64","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"},{"label":"Stack Shellcode"}]},{"id":"KY6oMwNTxoXHtRJMMHLW","title":"Stack Pivoting - EBP2Ret - EBP chaining","pathname":"/hacktricks/binary-exploitation/stack-overflow/stack-pivoting-ebp2ret-ebp-chaining","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"}]},{"id":"291qlBcDfvudlqN1WCNd","title":"Uninitialized Variables","pathname":"/hacktricks/binary-exploitation/stack-overflow/uninitialized-variables","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Stack Overflow"}]},{"id":"BVJRd4tAWMW1z2FWdZrG","title":"ROP - Return Oriented Programing","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"hwxWcmqdoZZ4xgu2JK1X","title":"BROP - Blind Return Oriented Programming","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/brop-blind-return-oriented-programming","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"bqBgNbSDr5urYFEshy6N","title":"Ret2csu","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2csu","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"vZhJUd9PdZsKJC7H94ea","title":"Ret2dlresolve","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2dlresolve","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"iCSJXiR4hEDzfkzo7sKx","title":"Ret2esp / Ret2reg","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2esp-ret2reg","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"0t3oIK3AL2IbJVT8U7nh","title":"Ret2lib","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2lib","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"iNMFYtpxRqB9lQIJDTfn","title":"Leaking libc address with ROP","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2lib/rop-leaking-libc-address","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"},{"label":"Ret2lib"}]},{"id":"C9sgsnUpJKbNB5ywBqcM","title":"Leaking libc - template","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2lib/rop-leaking-libc-address/rop-leaking-libc-template","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"},{"label":"Ret2lib"},{"label":"Leaking libc address with ROP"}]},{"id":"eem6GqeB6MvADw3EDqKe","title":"One Gadget","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2lib/one-gadget","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"},{"label":"Ret2lib"}]},{"id":"g1jCZ4f9xcMPb3RGDKJA","title":"Ret2lib + Printf leak - arm64","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2lib/ret2lib-+-printf-leak-arm64","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"},{"label":"Ret2lib"}]},{"id":"XxNjfWA3Y2ou2xiINLKg","title":"Ret2syscall","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/rop-syscall-execv","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"vMvvCz5SX231NiO29UU9","title":"Ret2syscall - ARM64","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/rop-syscall-execv/ret2syscall-arm64","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"},{"label":"Ret2syscall"}]},{"id":"VJ0rsjl7ZVnN8c6ibwQq","title":"Ret2vDSO","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/ret2vdso","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"w7roqGnbck4Ito7yaeyV","title":"SROP - Sigreturn-Oriented Programming","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/srop-sigreturn-oriented-programming","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"}]},{"id":"7iCArSqysBWTEvxDWEMc","title":"SROP - ARM64","pathname":"/hacktricks/binary-exploitation/rop-return-oriented-programing/srop-sigreturn-oriented-programming/srop-arm64","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"ROP - Return Oriented Programing"},{"label":"SROP - Sigreturn-Oriented Programming"}]},{"id":"SQLN0y8MkRiPmiq9qEaa","title":"Array Indexing","pathname":"/hacktricks/binary-exploitation/array-indexing","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"kTEKVVJLVWEGGQNd0HcX","title":"Integer Overflow","pathname":"/hacktricks/binary-exploitation/integer-overflow","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"9KyFUtLQlXNeSP3TtxuS","title":"Format Strings","pathname":"/hacktricks/binary-exploitation/format-strings","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"HYakI2m8zueLPUbMJx5M","title":"Format Strings - Arbitrary Read Example","pathname":"/hacktricks/binary-exploitation/format-strings/format-strings-arbitrary-read-example","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Format Strings"}]},{"id":"p3O2EZzPGgViPWQyHTBd","title":"Format Strings Template","pathname":"/hacktricks/binary-exploitation/format-strings/format-strings-template","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Format Strings"}]},{"id":"NfCnn85MXQBJNpHrTJSn","title":"Libc Heap","pathname":"/hacktricks/binary-exploitation/libc-heap","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"aJbiX2xvyNzRpjAGvlFM","title":"Bins & Memory Allocations","pathname":"/hacktricks/binary-exploitation/libc-heap/bins-and-memory-allocations","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"2T98c6lI7UCk3uYKGfGX","title":"Heap Memory Functions","pathname":"/hacktricks/binary-exploitation/libc-heap/heap-memory-functions","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"n2Uw24R7gaViQdy5DLY4","title":"free","pathname":"/hacktricks/binary-exploitation/libc-heap/heap-memory-functions/free","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"},{"label":"Heap Memory Functions"}]},{"id":"5dFbCss11AqHXsy7L0Pv","title":"malloc & sysmalloc","pathname":"/hacktricks/binary-exploitation/libc-heap/heap-memory-functions/malloc-and-sysmalloc","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"},{"label":"Heap Memory Functions"}]},{"id":"muuhNtBphRGiq1NnX7yi","title":"unlink","pathname":"/hacktricks/binary-exploitation/libc-heap/heap-memory-functions/unlink","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"},{"label":"Heap Memory Functions"}]},{"id":"IPuP5vcBLbJT8lEhwZkp","title":"Heap Functions Security Checks","pathname":"/hacktricks/binary-exploitation/libc-heap/heap-memory-functions/heap-functions-security-checks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"},{"label":"Heap Memory Functions"}]},{"id":"WxMZn7WnHsD4RAIUYwhX","title":"Use After Free","pathname":"/hacktricks/binary-exploitation/libc-heap/use-after-free","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"8I4mYD5gMpqiCx3wMl35","title":"First Fit","pathname":"/hacktricks/binary-exploitation/libc-heap/use-after-free/first-fit","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"},{"label":"Use After Free"}]},{"id":"J1JY5ECLdzatcF7aLQwp","title":"Double Free","pathname":"/hacktricks/binary-exploitation/libc-heap/double-free","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"V6fik3Vu29IvnHFK78VK","title":"Overwriting a freed chunk","pathname":"/hacktricks/binary-exploitation/libc-heap/overwriting-a-freed-chunk","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"ef00QyVWovc6wFRAVLZY","title":"Heap Overflow","pathname":"/hacktricks/binary-exploitation/libc-heap/heap-overflow","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"8MsMF04US0pF3s35acbI","title":"Unlink Attack","pathname":"/hacktricks/binary-exploitation/libc-heap/unlink-attack","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"i6xzTjyz93O4AsOkKwwf","title":"Fast Bin Attack","pathname":"/hacktricks/binary-exploitation/libc-heap/fast-bin-attack","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"lWgjnp6EvL80EJgbdmrk","title":"Unsorted Bin Attack","pathname":"/hacktricks/binary-exploitation/libc-heap/unsorted-bin-attack","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"iroO58ywfZcTqRXB8DWu","title":"Large Bin Attack","pathname":"/hacktricks/binary-exploitation/libc-heap/large-bin-attack","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"EwKb1oo2Y2rzfEMdK4kC","title":"Tcache Bin Attack","pathname":"/hacktricks/binary-exploitation/libc-heap/tcache-bin-attack","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"1RUZKXJrzLx93x5mDlKN","title":"Off by one overflow","pathname":"/hacktricks/binary-exploitation/libc-heap/off-by-one-overflow","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"TOuJBobzjFAMMHDswwOl","title":"House of Spirit","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-spirit","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"ys70FkUAyYT82MmfwfnM","title":"House of Lore | Small bin Attack","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-lore","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"0CZYaKp6huwFVNeAacgF","title":"House of Einherjar","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-einherjar","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"2Dnhb3dIKfSxhPzZuE33","title":"House of Force","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-force","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"SFTTFZv3Uw0XOiFx7Bc1","title":"House of Orange","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-orange","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"KQLXb4DkMFfJXmonnSz6","title":"House of Rabbit","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-rabbit","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"dGuB0tWkyqB2YQu6epi7","title":"House of Roman","pathname":"/hacktricks/binary-exploitation/libc-heap/house-of-roman","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Libc Heap"}]},{"id":"KoJjgbqcRXbq91iInQWz","title":"Common Binary Exploitation Protections & Bypasses","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"Wm5V52liFTCD5uCuvVSp","title":"ASLR","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/aslr","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"vlNpMH7pIhETHBxCf1I1","title":"Ret2plt","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/aslr/ret2plt","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"},{"label":"ASLR"}]},{"id":"a43aFnmj5InjHe3JPoZB","title":"Ret2ret & Reo2pop","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/aslr/ret2ret","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"},{"label":"ASLR"}]},{"id":"M1OsiyWSfrJY5roeg1zu","title":"CET & Shadow Stack","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/cet-and-shadow-stack","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"TALIJmwOvs5dIgxr40u8","title":"Libc Protections","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/libc-protections","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"k7OmrbDlfM2FDDHnaehT","title":"Memory Tagging Extension (MTE)","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/memory-tagging-extension-mte","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"tJ24y43MsNmFZvibqlJq","title":"No-exec / NX","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/no-exec-nx","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"7QshFkO3hVnmCPjwBN3k","title":"PIE","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/pie","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"EhK3DlqUNEPMNt7YzN4E","title":"BF Addresses in the Stack","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/pie/bypassing-canary-and-pie","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"},{"label":"PIE"}]},{"id":"CM82Up5MeMhY0MRseUSy","title":"Relro","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/relro","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"Uvn2ViRGzAAURPpfLZ7H","title":"Stack Canaries","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/stack-canaries","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"}]},{"id":"u61jBZ5h2LqLAfvJIzuv","title":"BF Forked & Threaded Stack Canaries","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/stack-canaries/bf-forked-stack-canaries","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"},{"label":"Stack Canaries"}]},{"id":"7hriSWb2SdtjRbpIFlGy","title":"Print Stack Canary","pathname":"/hacktricks/binary-exploitation/common-binary-protections-and-bypasses/stack-canaries/print-stack-canary","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Common Binary Exploitation Protections & Bypasses"},{"label":"Stack Canaries"}]},{"id":"mVJYrIcUSfowWfeKYzAk","title":"Write What Where 2 Exec","pathname":"/hacktricks/binary-exploitation/arbitrary-write-2-exec","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"gaAtN6HKiBuQrKUPd2XX","title":"WWW2Exec - atexit()","pathname":"/hacktricks/binary-exploitation/arbitrary-write-2-exec/www2exec-atexit","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Write What Where 2 Exec"}]},{"id":"KhGNnBTVXyWAkRjSA1Bu","title":"WWW2Exec - .dtors & .fini_array","pathname":"/hacktricks/binary-exploitation/arbitrary-write-2-exec/www2exec-.dtors-and-.fini_array","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Write What Where 2 Exec"}]},{"id":"yStf7aLXAy3GPXSfKm5d","title":"WWW2Exec - GOT/PLT","pathname":"/hacktricks/binary-exploitation/arbitrary-write-2-exec/aw2exec-got-plt","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Write What Where 2 Exec"}]},{"id":"205XPvZiaQUiTicgquZw","title":"WWW2Exec - __malloc_hook & __free_hook","pathname":"/hacktricks/binary-exploitation/arbitrary-write-2-exec/aw2exec-__malloc_hook","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"},{"label":"Write What Where 2 Exec"}]},{"id":"4VIFUJfja5t8Fim9Cdiv","title":"Common Exploiting Problems","pathname":"/hacktricks/binary-exploitation/common-exploiting-problems","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"7bZZDdNfI3W1aCHCY9Ly","title":"Windows Exploiting (Basic Guide - OSCP lvl)","pathname":"/hacktricks/binary-exploitation/windows-exploiting-basic-guide-oscp-lvl","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Binary Exploitation","emoji":"1f3af"}]},{"id":"UjwAcryap67jkyjiMs38","title":"Reversing Tools & Basic Methods","pathname":"/hacktricks/reversing/reversing-tools-basic-methods","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"}]},{"id":"t6BsuxOyv7fb927IMxGO","title":"Angr","pathname":"/hacktricks/reversing/reversing-tools-basic-methods/angr","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"},{"label":"Reversing Tools & Basic Methods"}]},{"id":"H46JzhjW5H6BqFGCy303","title":"Angr - Examples","pathname":"/hacktricks/reversing/reversing-tools-basic-methods/angr/angr-examples","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"},{"label":"Reversing Tools & Basic Methods"},{"label":"Angr"}]},{"id":"Bjgas66RCEmLwAtVucmA","title":"Z3 - Satisfiability Modulo Theories (SMT)","pathname":"/hacktricks/reversing/reversing-tools-basic-methods/satisfiability-modulo-theories-smt-z3","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"},{"label":"Reversing Tools & Basic Methods"}]},{"id":"GnMuKWAWZecfL4m5OkDi","title":"Cheat Engine","pathname":"/hacktricks/reversing/reversing-tools-basic-methods/cheat-engine","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"},{"label":"Reversing Tools & Basic Methods"}]},{"id":"BRH20OJ0aDQdpUzhK3We","title":"Blobrunner","pathname":"/hacktricks/reversing/reversing-tools-basic-methods/blobrunner","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"},{"label":"Reversing Tools & Basic Methods"}]},{"id":"MT6VrPxDKuYqn1emtQNW","title":"Common API used in Malware","pathname":"/hacktricks/reversing/common-api-used-in-malware","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"}]},{"id":"Yi76iPmkOjnIhJUHqLbT","title":"Word Macros","pathname":"/hacktricks/reversing/word-macros","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Reversing","emoji":"1f529"}]},{"id":"jf5cldaeacCxSc8bR6GP","title":"Cryptographic/Compression Algorithms","pathname":"/hacktricks/crypto-and-stego/cryptographic-algorithms","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"rSYv7iulVj1D5GXkYeqm","title":"Unpacking binaries","pathname":"/hacktricks/crypto-and-stego/cryptographic-algorithms/unpacking-binaries","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"},{"label":"Cryptographic/Compression Algorithms"}]},{"id":"LmaWEyWBAf2fKy0bripn","title":"Certificates","pathname":"/hacktricks/crypto-and-stego/certificates","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"G57ybvfDuUVWCIS5HmZ3","title":"Cipher Block Chaining CBC-MAC","pathname":"/hacktricks/crypto-and-stego/cipher-block-chaining-cbc-mac-priv","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"peoRwV6kXcCHytAsF4NC","title":"Crypto CTFs Tricks","pathname":"/hacktricks/crypto-and-stego/crypto-ctfs-tricks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"i4bvC6eE03qbugtmMNnE","title":"Electronic Code Book (ECB)","pathname":"/hacktricks/crypto-and-stego/electronic-code-book-ecb","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"7iOHZaHGgaxUn2yhT2Lq","title":"Hash Length Extension Attack","pathname":"/hacktricks/crypto-and-stego/hash-length-extension-attack","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"nezB2pd5IphUcmAxVl4k","title":"Padding Oracle","pathname":"/hacktricks/crypto-and-stego/padding-oracle-priv","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"eab9O1I9SVyJ5GECgXs5","title":"RC4 - Encrypt&Decrypt","pathname":"/hacktricks/crypto-and-stego/rc4-encrypt-and-decrypt","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"8rVyClutoG10WPKLiAnR","title":"Stego Tricks","pathname":"/hacktricks/crypto-and-stego/stego-tricks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"TQ2GMlpteLFgSQV4ExYY","title":"Esoteric languages","pathname":"/hacktricks/crypto-and-stego/esoteric-languages","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"TqXTve7wDueTwP8eI7cy","title":"Blockchain & Crypto Currencies","pathname":"/hacktricks/crypto-and-stego/blockchain-and-crypto-currencies","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"Crypto & Stego","emoji":"1f52e"}]},{"id":"SYj6xaULuf9MiC6wGsOa","title":"Salseo","pathname":"/hacktricks/c2/salseo","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"C2","emoji":"1f982"}]},{"id":"L0eLxi2KtOLMK2GYVEaE","title":"ICMPsh","pathname":"/hacktricks/c2/icmpsh","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"C2","emoji":"1f982"}]},{"id":"tlow0Lz8NgO8EF0tQIfD","title":"Cobalt Strike","pathname":"/hacktricks/c2/cobalt-strike","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"C2","emoji":"1f982"}]},{"id":"J1xCAiN05Be2RWZdd7Oq","title":"Other Big References","pathname":"/hacktricks/todo/references","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"Eyey4ejTXEBkTeUhVcRE","title":"Rust Basics","pathname":"/hacktricks/todo/rust-basics","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"3yAEBiLM2wCnNyUFJg0j","title":"More Tools","pathname":"/hacktricks/todo/more-tools","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"xLSs1FkxE5vI975Gc9l6","title":"MISC","pathname":"/hacktricks/todo/misc","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"pxWnrnLeyK1Zq6HgGGbe","title":"Pentesting DNS","pathname":"/hacktricks/todo/pentesting-dns","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"U8GvRR8Qv61LrrbFiL4k","title":"Hardware Hacking","pathname":"/hacktricks/todo/hardware-hacking","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"sVZm4UutrIEtMZdE6y2p","title":"I2C","pathname":"/hacktricks/todo/hardware-hacking/i2c","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Hardware Hacking"}]},{"id":"rlnGSeAoM4fF1e2WLl2V","title":"UART","pathname":"/hacktricks/todo/hardware-hacking/uart","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Hardware Hacking"}]},{"id":"h1LBLKQD2wmlREJthIG9","title":"Radio","pathname":"/hacktricks/todo/hardware-hacking/radio","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Hardware Hacking"}]},{"id":"JyqRW1eToLXoZcoYiHMw","title":"JTAG","pathname":"/hacktricks/todo/hardware-hacking/jtag","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Hardware Hacking"}]},{"id":"ekect2UVdM9pvbk8mpmR","title":"SPI","pathname":"/hacktricks/todo/hardware-hacking/spi","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Hardware Hacking"}]},{"id":"OMtaD07tvaleAaPyvV4X","title":"Industrial Control Systems Hacking","pathname":"/hacktricks/todo/industrial-control-systems-hacking","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"K6jbB7RxXQHnOznnplJh","title":"Modbus Protocol","pathname":"/hacktricks/todo/industrial-control-systems-hacking/modbus","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Industrial Control Systems Hacking"}]},{"id":"TIo2QnFmDSe0vfi5Ba53","title":"Radio Hacking","pathname":"/hacktricks/todo/radio-hacking","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"10LNdiilC70kWsikQZiH","title":"Pentesting RFID","pathname":"/hacktricks/todo/radio-hacking/pentesting-rfid","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"mpmOf3pCNlaeaGxURTPB","title":"Infrared","pathname":"/hacktricks/todo/radio-hacking/infrared","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"4ZgdSxmgk0jx37oUQ1IX","title":"Sub-GHz RF","pathname":"/hacktricks/todo/radio-hacking/sub-ghz-rf","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"DLt8PEnw4gCktBbYZTuU","title":"iButton","pathname":"/hacktricks/todo/radio-hacking/ibutton","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"Jlsf9UV8HGQdsf6IgMtc","title":"Flipper Zero","pathname":"/hacktricks/todo/radio-hacking/flipper-zero","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"YqYyfHjpdTFwOjUVU9qL","title":"FZ - NFC","pathname":"/hacktricks/todo/radio-hacking/flipper-zero/fz-nfc","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"},{"label":"Flipper Zero"}]},{"id":"gsLcgxhEQ8FyclxbwUpB","title":"FZ - Sub-GHz","pathname":"/hacktricks/todo/radio-hacking/flipper-zero/fz-sub-ghz","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"},{"label":"Flipper Zero"}]},{"id":"LaEDGQ5Np6rnkTa9fv9p","title":"FZ - Infrared","pathname":"/hacktricks/todo/radio-hacking/flipper-zero/fz-infrared","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"},{"label":"Flipper Zero"}]},{"id":"u6YIDQJc12hifdYFvTlH","title":"FZ - iButton","pathname":"/hacktricks/todo/radio-hacking/flipper-zero/fz-ibutton","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"},{"label":"Flipper Zero"}]},{"id":"tv9bCzKKwWAYBGrGTd7S","title":"FZ - 125kHz RFID","pathname":"/hacktricks/todo/radio-hacking/flipper-zero/fz-125khz-rfid","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"},{"label":"Flipper Zero"}]},{"id":"PJfATqgdwem6oonEMzJN","title":"Proxmark 3","pathname":"/hacktricks/todo/radio-hacking/proxmark-3","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"tD6yi4elKdOucXELD8RJ","title":"FISSURE - The RF Framework","pathname":"/hacktricks/todo/radio-hacking/fissure-the-rf-framework","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"AJ2OMmopyhZBcay50SRA","title":"Low-Power Wide Area Network","pathname":"/hacktricks/todo/radio-hacking/low-power-wide-area-network","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"vqbSCVfIDHitKzUmCpAp","title":"Pentesting BLE - Bluetooth Low Energy","pathname":"/hacktricks/todo/radio-hacking/pentesting-ble-bluetooth-low-energy","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"},{"label":"Radio Hacking"}]},{"id":"RHbUyIeHLVYW0hcmrs1q","title":"Burp Suite","pathname":"/hacktricks/todo/burp-suite","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"lr9DngEZtYnMyyCC5X06","title":"Other Web Tricks","pathname":"/hacktricks/todo/other-web-tricks","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"IXb2hO8aUUFog4tCpoCQ","title":"Interesting HTTP","pathname":"/hacktricks/todo/interesting-http","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"oDsmMs5C5BI1wCFABBVJ","title":"Emails Vulnerabilities","pathname":"/hacktricks/todo/emails-vulns","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"gt50pfeQQnlqGHxSlrHl","title":"Android Forensics","pathname":"/hacktricks/todo/android-forensics","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"igalpYImqxuG0a40BIPt","title":"TR-069","pathname":"/hacktricks/todo/tr-069","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"qsnc6PEKTToRjtCzXFnk","title":"6881/udp - Pentesting BitTorrent","pathname":"/hacktricks/todo/6881-udp-pentesting-bittorrent","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"Xka4B3SmhqrMPwMIpatP","title":"Online Platforms with API","pathname":"/hacktricks/todo/online-platforms-with-api","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"2gerxiqFQGk8tXK8R2lA","title":"Stealing Sensitive Information Disclosure from a Web","pathname":"/hacktricks/todo/stealing-sensitive-information-disclosure-from-a-web","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"NBVWNaM4nY1P53HAkERW","title":"Post Exploitation","pathname":"/hacktricks/todo/post-exploitation","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]},{"id":"aaSvrl1TtBwpCbay65rn","title":"Cookies Policy","pathname":"/hacktricks/todo/cookies-policy","siteSpaceId":"sitesp_yCOEl","description":"","breadcrumbs":[{"label":"TODO","emoji":"270d"}]}]}