Cardboard Iguana Security
/
tags
/
Language
Dark mode
Light mode
Search
Search
39 items with this tag.
Wednesday, December 18, 2024
Abusing wildcard expansion in Bash
Language/Bash
Application/tar
AttackCycle/Exploitation
OS/Linux
Wednesday, December 18, 2024
ARP scanning
Protocol/ARP
Language/Python/Scapy
Scripts
Protocol/ICMP
Wednesday, December 18, 2024
Avoid dropping privileges with SUID Bash
Language/Bash
AttackCycle/Exploitation
HowTo
Wednesday, December 18, 2024
Backdoor Visual Basic Scripts
AttackCycle/Exploitation
HowTo
Language/VisualBasic
FileFormat/VBS
Protocol/SMB
OS/Windows
Wednesday, December 18, 2024
Bash reverse shell
Language/Bash
AttackCycle/LateralMovement
Application/netcat
Application/socat
Wednesday, December 18, 2024
Bash scripting
Language/Bash
Wednesday, December 18, 2024
Cross-site scripting (XSS) attacks
FileFormat/HTML
Language/JavaScript
AttackCycle/Exploitation/XSS
AttackCycle/AntiForensics
Standard/URI
AttackCycle/Exfiltration
Wednesday, December 18, 2024
Day One to Obsidian conversion script
Application/Obsidian
Application/DayOne
Language/Python
Wednesday, December 18, 2024
Debugging Bash scripts
Language/Bash
Wednesday, December 18, 2024
Equivalent Windows and *NIX commands
OS/AIX
OS/Linux
OS/macOS
OS/Android
OS/Windows
Application/cat
Application/type
Application/dig
Application/nslookup
Application/grep
Application/findstr
Application/select
Application/ifconfig
Application/ipconfig
Application/ls
Application/dir
Application/more
Application/netstat
Application/ping
Application/shutdown
Application/sleep
Application/timeout
Application/sudo
Application/RunAs
Application/tcpdump
Application/windump
Application/traceroute
Application/tracert
Application/wget
Application/whoami
Application/hostname
Language/Bash
Application/cmd
Wednesday, December 18, 2024
Exploit VBA scripts with msfvenom
HowTo
Application/Metasploit/msfvenom
Language/VisualBasic
Application/Metasploit/meterpreter
Application/Excel
Application/Word
OS/Windows/WSH
Wednesday, December 18, 2024
Extract the webpage title from a URL
HowTo
Language/Python
OS/Linux/Distros/Debian
Wednesday, December 18, 2024
How to exploit the Bash PS4 (debugging) prompt
Language/Bash
AttackCycle/PrivEsc
HowTo
Wednesday, December 18, 2024
Java
Language/Java
Application/netcat
Protocol/HTTP
OS/Linux/Distros/Kali
AttackCycle/Exploitation
Wednesday, December 18, 2024
Load a shell with a simple executable
HowTo
AttackCycle/Exploitation
Application/Metasploit/msfvenom
Language/Bash
Wednesday, December 18, 2024
Local file inclusion (LFI) attacks
AttackCycle/Exploitation/LocalFileInclusion
Language/PHP
Wednesday, December 18, 2024
Magic numbers
Language/PHP
AttackCycle/AntiForensics
Wednesday, December 18, 2024
msfvenom
Application/Metasploit/msfvenom
AttackCycle/Exploitation
Application/netcat
OS/Linux
OS/Windows
OS/macOS
FileFormat/HTA
Application/Metasploit/meterpreter
Language/VisualBasic
Language/Bash
Language/Python
Language/Perl
Language/PHP
Language/Java
Wednesday, December 18, 2024
Perl
Language/Perl
AttackCycle/Exploitation
Application/netcat
Application/socat
Wednesday, December 18, 2024
PHP
Language/PHP
AttackCycle/Exploitation
OS/Linux/Distros/Kali
Application/netcat
Application/socat
Wednesday, December 18, 2024
PHP local file inclusion attacks
AttackCycle/Exploitation/LocalFileInclusion
Language/PHP
OS/Linux/Distros/Kali
AttackCycle/Exploitation/NullByteAttacks
Wednesday, December 18, 2024
Poison null byte in PHP
AttackCycle/Exploitation/NullByteAttacks
Language/PHP
Wednesday, December 18, 2024
Port scanning with Bash
Language/Bash
AttackCycle/Reconnaissance
Protocol/TCP
Wednesday, December 18, 2024
PowerShell reverse shell
Application/PowerShell
AttackCycle/Exploitation
Application/whoami
Language/PHP
Wednesday, December 18, 2024
Python
Language/Python
Scripts
Application/netcat
Application/socat
AttackCycle/Exploitation
Wednesday, December 18, 2024
Quick-n-dirty Python web server
Language/Python
Protocol/HTTP
AttackCycle/Exfiltration
AttackCycle/Exploitation
Wednesday, December 18, 2024
RCE via XXE in PHP
AttackCycle/Exploitation/XXE
Language/PHP
FileFormat/XML
Wednesday, December 18, 2024
Read a file beginning with a dash (-)
Language/Bash
HowTo
Application/cat
Wednesday, December 18, 2024
Remove duplicate lines in Bash
Language/Bash
HowTo
Wednesday, December 18, 2024
Ruby
Language/Ruby
AttackCycle/Exploitation
Application/netcat
Application/socat
Wednesday, December 18, 2024
Set the PATH in a session on UNIX-like operating systems
Language/Bash
OS/Linux
OS/AIX
HowTo
Wednesday, December 18, 2024
Shell stabilization
Application/netcat
Language/Python
Application/rlwrap
Application/socat
Language/Bash
Wednesday, December 18, 2024
SQL injection attacks
AttackCycle/Exploitation/SQLi
Language/PHP
Protocol/HTTP
Application/BurpSuite
Language/SQL
Application/MySQL
AttackCycle/PrivEsc
AttackCycle/Reconnaissance
Wednesday, December 18, 2024
UNIX file descriptors
OS/Linux
OS/AIX
Language/Bash
OS/macOS
Standard/POSIX
Wednesday, December 18, 2024
Use Bash functions to “backdoor” executables
Language/Bash
AttackCycle/Exploitation
AttackCycle/PrivEsc
HowTo
Wednesday, December 18, 2024
ViM
Language/Python
AttackCycle/PrivEsc
Application/ViM
Wednesday, December 18, 2024
Visual Basic for Applications
Language/VisualBasic
OS/Windows/WSH
AttackCycle/Exploitation
Wednesday, December 18, 2024
Windows Scripting Host
OS/Windows/WSH
Language/VisualBasic
AttackCycle/Exploitation
Wednesday, December 18, 2024
youtube-dl
Application/youtube-dl
Application/ffmpeg
Language/Python
Standard/HD