Automated Penetration Testing with Claude AI OverviewThis article demonstrates a complete, end-to-end penetration test driven a... 2026-6-13 21:1:21 | 阅读: 5 | 收藏 | Hacking Articles - www.hackingarticles.in claude mcp wordpress samba php

Penelope – A Modern Alternative to Netcat for Red Teamers OverviewThis article presents an end-to-end engagement built entirely around Penel... 2026-6-12 12:28:41 | 阅读: 15 | 收藏 | Hacking Articles - www.hackingarticles.in penelope reverse ignite windows payload

AI-Powered Penetration Testing with Metasploit OverviewThis article documents an end-to-end agentic penetration test. Claude Desk... 2026-6-6 11:26:53 | 阅读: 30 | 收藏 | Hacking Articles - www.hackingarticles.in claude mcp payload windows confirming

AI Powered Nmap using ShellGPT OverviewThis article examines how pairing ShellGPT — an AI-powered command-line as... 2026-5-31 16:57:39 | 阅读: 26 | 收藏 | Hacking Articles - www.hackingarticles.in shellgpt nmap ssh attacker sgpt

Windows Privilege Escalation: Bypass UAC OverviewThis article delivers a complete, hands-on walkthrough of User Account Con... 2026-5-21 15:12:27 | 阅读: 29 | 收藏 | Hacking Articles - www.hackingarticles.in windows bypass powershell fodhelper payload

A Detailed Guide on Nmap Firewall Scan This walkthrough confirms an uncomfortable truth for defenders: flag-based firewall... 2026-5-20 16:28:19 | 阅读: 36 | 收藏 | Hacking Articles - www.hackingarticles.in nmap reject ttl attacker defender

NetExec for OSCP: AD Pentesting This walkthrough takes you end-to-end against a Windows Server 2019 domain controll... 2026-5-19 03:6:16 | 阅读: 30 | 收藏 | Hacking Articles - www.hackingarticles.in ignite netexec nxc cmdshell bloodhound

Active Directory Exploitation with Metasploit The walkthrough covers thirteen distinct attack phases: AD CS template reconnaissan... 2026-5-5 07:6:22 | 阅读: 30 | 收藏 | Hacking Articles - www.hackingarticles.in windows auxiliary ignite raj dc01

Impacket for Pentester: Net This article walks through three authentication paths that impacket-net supports —... 2026-4-29 13:8:8 | 阅读: 13 | 收藏 | Hacking Articles - www.hackingarticles.in ignite raj 987 attacker privileged

Active Directory User Enumeration: A Comprehensive Guide This article walks through sixteen distinct techniques for enumerating users inside... 2026-4-28 17:31:1 | 阅读: 13 | 收藏 | Hacking Articles - www.hackingarticles.in raj ignite samr powerview bloodhound

Blue Teaming Active Directory: EVENmonitor This article demonstrates how EVENmonitor exposes the most common Active Directory... 2026-4-27 15:7:35 | 阅读: 12 | 收藏 | Hacking Articles - www.hackingarticles.in ignite evenmonitor 987 bloodyad security

Bypassing WDAC and AppLocker Using Ligolo Modern enterprises rely on AppLocker and Windows Defender Application Control (WDAC... 2026-4-22 20:43:44 | 阅读: 16 | 收藏 | Hacking Articles - www.hackingarticles.in ligolo payload memory applocker loader

AWS CloudGoat EC2 SSRF Exploitation Cloud environments are increasingly targeted due to misconfigurations rather than s... 2026-4-22 13:29:25 | 阅读: 14 | 收藏 | Hacking Articles - www.hackingarticles.in cloudgoat ec2 ssrf security cloud

GPO Abuse: Exploiting Vulnerable Group Policy Objects This article walks through a complete GPO-abuse attack chain in a lab domain named... 2026-4-21 21:15:37 | 阅读: 15 | 收藏 | Hacking Articles - www.hackingarticles.in gpo raj pygpoabuse vuln

Active Directory Lab Setup for Penetration Testing Using PowerShell This article provides a complete walkthrough of both phases — from clicking “Create... 2026-4-17 18:5:0 | 阅读: 12 | 收藏 | Hacking Articles - www.hackingarticles.in windows machine client ignite powershell

Lateral Movement: Enabling RDP Remotely This article presents a hands-on walkthrough demonstrating multiple real-world tech... 2026-4-16 18:19:31 | 阅读: 13 | 收藏 | Hacking Articles - www.hackingarticles.in client remote windows netexec ignite

A Detailed Guide on SSH Port forwarding & Tunnelling This article walks through SSH tunnelling in a practical, lab‑oriented way. You wil... 2026-4-14 18:38:51 | 阅读: 14 | 收藏 | Hacking Articles - www.hackingarticles.in ssh remote tunnel machine forwarding

A Detailed Guide on Local Port Forwarding In the contemporary digital world, penetration testing and red team engagements, di... 2026-4-12 11:11:58 | 阅读: 10 | 收藏 | Hacking Articles - www.hackingarticles.in forwarding ligolo attacker machine ssh

PostgreSQL Penetration Testing 嗯，用户让我帮忙总结一篇文章的内容，控制在一百个字以内，而且不需要用“文章内容总结”之类的开头。首先，我需要仔细阅读用户提供的文章内容。 这篇文章主要讲的是PostgreSQL的渗透测试流程，从初始侦察到后利用阶段，使用实际例子和攻击技术。里面提到了实验室设置、配置、网络扫描、认证测试、密码攻击、文件读取、密码哈希转储、数据库枚举、命令执行、反向shell访问、Metasploit利用以及安全加固和修复。 接下来，我需要将这些关键点浓缩到100字以内。要确保涵盖主要步骤和工具的使用，比如Hydra、Metasploit等。同时，要提到安全加固措施，如网络控制、认证授权和加密等。 最后，确保语言简洁明了，直接描述文章内容，不使用任何开头语句。这样用户就能快速了解文章的核心内容了。 </think> 文章介绍PostgreSQL渗透测试流程,涵盖实验室搭建、配置优化、网络扫描、认证攻击、密码破解、文件读取、密码哈希转储等步骤,并演示如何利用Metasploit框架执行命令和建立反向shell,最后提供安全加固建议,包括网络控制、认证授权和加密保护等措施。... 2026-3-15 10:56:55 | 阅读: 13 | 收藏 | Hacking Articles - www.hackingarticles.in database security reverse network

DotNetToJScript: Execute C# from Jscript 嗯，用户让我总结这篇文章的内容，控制在100字以内，而且不需要特定的开头。首先，我需要快速浏览文章，抓住主要观点。 文章主要讲的是企业安全防护中的一个漏洞。现代企业通常使用应用白名单、端点保护和用户权限限制来防止恶意代码执行。然而，脚本执行（如JScript）常常被允许，因为很多业务依赖于这些脚本。 DotNetToJScript工具可以将.NET程序转换为JScript，这样就可以在内存中执行代码，绕过传统的安全控制措施。攻击者利用这一点，通过脚本加载恶意代码，避免被检测到。 总结一下，文章揭示了企业安全中的一个关键漏洞：脚本执行允许恶意代码绕过应用白名单和端点保护。攻击者利用DotNetToJScript在内存中执行代码，从而避开检测。 现在我要把这些要点浓缩到100字以内。确保涵盖主要技术手段和攻击方式。 </think> 文章揭示了企业安全防护中的一个关键漏洞：通过将.NET程序转换为JScript并利用可信的Windows脚本引擎，在内存中执行恶意代码，绕过应用白名单、端点保护等传统安全控制措施。这种技术使攻击者能够在不写入磁盘的情况下实现隐蔽的代码执行和命令与控制通信。... 2026-2-10 18:49:55 | 阅读: 16 | 收藏 | Hacking Articles - www.hackingarticles.in payload shellcode jscript windows memory