* Cantinho Satkeys

Refresh History
  • Gerard: j'espère que tous sont en train d'être bem
    Hoje às 13:28
  • Gerard: Boas tardes
    Hoje às 13:26
  • FELISCUNHA: ghyt74   49E09B4F  e bom fim de semana   4tj97u<z
    Hoje às 11:51
  • JPratas: try65hytr Pessoal  4tj97u<z classic k7y8j0
    Hoje às 03:29
  • yaro-82: 1994
    07 de Setembro de 2025, 16:49
  • FELISCUNHA: Votos de um santo domingo para todo o auditório  43e5r6
    07 de Setembro de 2025, 10:52
  • j.s.: tenham um excelente fim de semana  49E09B4F
    06 de Setembro de 2025, 17:07
  • j.s.: dgtgtr a todos  4tj97u<z
    06 de Setembro de 2025, 17:07
  • FELISCUNHA: Boa tarde pessoal  49E09B4F bom fim de semana  htg6454y
    05 de Setembro de 2025, 14:53
  • JPratas: try65hytr A Todos  4tj97u<z classic k7y8j0
    05 de Setembro de 2025, 03:10
  • cereal killa: dgtgtr pessoal  4tj97u<z
    03 de Setembro de 2025, 15:26
  • FELISCUNHA: ghyt74  pessoal   49E09B4F
    01 de Setembro de 2025, 11:36
  • j.s.: de regresso a casa  535reqef34
    31 de Agosto de 2025, 20:21
  • j.s.: try65hytr a todos  4tj97u<z
    31 de Agosto de 2025, 20:21
  • FELISCUNHA: ghyt74   49E09B4e bom fim de semana  4tj97u<z
    30 de Agosto de 2025, 11:48
  • henrike: try65hytr     k7y8j0
    29 de Agosto de 2025, 21:52
  • JPratas: try65hytr Pessoal 4tj97u<z 2dgh8i classic k7y8j0
    29 de Agosto de 2025, 03:57
  • cereal killa: dgtgtr pessoal  2dgh8i
    27 de Agosto de 2025, 12:28
  • FELISCUNHA: Votos de um santo domingo para todo o auditório  4tj97u<z
    24 de Agosto de 2025, 11:26
  • janstu10: reed
    24 de Agosto de 2025, 10:52
« anterior seguinte »
Páginas: [1]   Ir para o fundo

Autor Tópico: Advanced Linux Privilege Escalation with Hack The Box  (Lida 126 vezes)

0 Membros e 1 Visitante estão a ver este tópico.

Offline mitsumi

  • Sub-Administrador
  • ****
  • Mensagens: 124987
  • Karma: +0/-0
Advanced Linux Privilege Escalation with Hack The Box
« em: 07 de Março de 2021, 09:57 »

Advanced Linux Privilege Escalation with Hack The Box
MP4 | h264, 1280x720 | Lang: English | Audio: aac, 44100 Hz | 5h 9m | 3.77 GB
How to find and exploit modern Linux Privilege Escalation vulnerabilities without relying on Metasploit.

What you'll learn
How to use multiple methods to escalate privileges on popular Linux Distros
How to succeed in CTF style exams such as the OSCP, eCPPT and CEH
How to escalate privileges in CTFs such as HackTheBox, TryHackMe and more
How to level up your ethical hacking, penetration testing and red teaming skills to earn more money in your career
How to map modern attacks against the MITRE ATT&CK framework!
Requirements
A HackTheBox VIP Subscription is Required
Basic knowledge of virtual machines

Description
New Spring\Summer 2021 Launch!

This is a 100% hands on course as you will be using the same tradecraft and techniques Red Teamer's and advanced adversaries use to escalate privileges on Linux servers after they have gained initial access and established a foothold. This course is not "death by PowerPoint", in fact there is not a single Powerpoint slide in the course. This course is aimed for intermediate to advanced users who are hungry to know how to discover and exploit novel escalation paths on popular Linux servers (including some that are patched). Everything is carefully, explained - step-by-step and mapped to MITRE ATT&CK

Additionally, although Metasploit is used in some attacks, we will be using less Metasploit and more manual walk-throughs because I wanted to take the time to carefully explain WHY each method works and detail how common misconfigurations happen in enterprise environments.

Where Metasploit is used, everything is carefully explained and deconstructed so you can understand why and how it works. Exploits start easy and escalate in difficulty as you progress through the course.

The Techniques

You will quickly learn and execute the following escalation of privilege techniques across 5 vulnerable machines.                                                                                                                                                                                                        New videos are being released weekly.

Malicious Python Package

CVE

Modify Launch Daemon (NEW! Just added 02/12/2021 6 New Lectures!)

The Tools

You will use ffuf, gobuster, dirsearch, nmap, Bash Scripting, Python Scripting, netcat, pwncat, Burp Suite (advanced features) and more. You will learn how to threat hunt for SQLi attacks and how to exploit Server Side Template Injection (SSTI) attacks and much much more.

My dream for you

By the end of this course you should be able to use these techniques in:

Your day to day work

OSCP preparation

CTF hacking

About the lab

There are 5 vulnerable machines.

No lab setup is required as the entire environment is already established in HackTheBox VIP labs

I wanted to make this course as realistic as possible while removing as many barriers to entry as possible so I've partnered with HackTheBox VIP labs to make it as easy as possible to get started.

Yes, HackTheBox is an additional charge but it offers hundreds of pre-configured vulnerable machines in a lab which is accessible via a VPN connection. This means you can get started right away and don't have to waste time fumbling with VirtualBox and VMWare settings on your local system. Most of the systems are also licensed which provides the best environment for realistic exploitation.

Tip:

I made these videos so all commands are zoomed in close so you can watch on a mobile phone if desired. I hate watching videos on my smartphone and squinting at the command prompt or terminal. Never again will that happen.

Who this course is for:
Students interested in how attackers escalate privileges on popular Linux servers
Intermediate to Advanced cyber security students.

Download link:
Só visivel para registados e com resposta ao tópico.

Only visible to registered and with a reply to the topic.

Links are Interchangeable - No Password - Single Extraction
Registado
Páginas: [1]   Ir para o topo
« anterior seguinte »