[email protected]
Search…
[email protected]
About Calvin Lai (fkclai)
My Work
Exploit/CVE PoC
ZeroLogon Exploit
Remote Retrieved Chrome saved Encrypted Password
Twitter Control an RCE attack
Hacking Report (HTB)
Hits & Summary
Windows Machine
Linux Machine
PenTest & Exploitation Guide
01 Reconnaissance
02 Port Enumeration
03 Web Enumeration
04 Windows Enum & Exploit
05 File Enumeration
06 Reverse Shell Cheat Sheet
07 SQL Injection
08 BruteForce
09 XSS Bypass Checklist
10 Spring Boot
11 WPA
12 Payload list
Vuln Hub (Writeup)
MrRobot
CYBERRY
MATRIX 1
Node-1
DPwwn-1
DC7
AiWeb-2
AiWeb-1
BrainPan
CTF (Writeup)
Hacker One
CTF Learn
P.W.N. University - CTF 2018
HITCON
Pwnable
Useful Command/Tools
Windows
Linux
Offensive Security Lab & Exam
Lab
Powered By GitBook
05 File Enumeration

General

1
# Check 1 real file type
2
file file.xxx
3
​
4
# Analyze strings
5
strings file.xxx
6
strings -a -n 15 file.xxx # Check the entire file and outputs strings long
7
​
8
# Check embedded files
9
binwalk file.xxx # Check
10
binwalk -e file.xxx # Extract
11
​
12
# Check as binary file in hex
13
ghex file.xxx
14
​
15
# Check metadata
16
exiftool file.xxx
17
​
18
# Compressed files
19
fcrackzip file.zip
Copied!

Disk Mount

1
# guestmount can mount any kind of disk file
2
sudo apt-get install libguestfs-tools
3
guestmount --add yourVirtualDisk.vhdx --inspector --ro /mnt/anydirectory
Copied!

Audio

1
# Check for Stego
2
hideme stego.mp3 -f && cat output.txt #AudioStego
Copied!

Images

1
# Stego
2
wget http://www.caesum.com/handbook/Stegsolve.jar -O stegsolve.jar
3
chmod +x stegsolve.jar
4
java -jar stegsolve.jar
5
​
6
# Stegpy
7
stegpy -p file.png
8
​
9
# Check png corrupted
10
pngcheck -v image.jpeg
11
​
12
# Check what kind of image is
13
identify -verbose image.jpeg
Copied!
Previous
RDP
Next - PenTest & Exploitation Guide
06 Reverse Shell Cheat Sheet
Last modified 1yr ago
Copy link
Contents
General
Disk Mount
Audio
Images