20-26 September 2021
What I’ve learned:
Bash scripting | Introduction to Python3.
Reading list:
- Chapter 14 of book: Linux Basics for Hackers Getting Started with Networking, Scripting, and Security in Kali
- Horizontal Privilege Escalation: What is it and how to find them?, by The Infosec Student.
- Introductory Networking from tryhackme.com.
-
The 101 of ELF files on Linux: Understanding and Analysis, by Michael Boelen.
What I’ve enjoyed:
Since, I’ve noticed some webs have 3306 port open, I felt curious about how to exploit that (in one of my sites, of course). I’ve read this article (https://www.hackingarticles.in/penetration-testing-on-mysql-port-3306/) and tried to replicate it unsuccessfully. It was worthy the try though.
Also, an interesting concept I didn’t know about was ID scanning in wordpres. It’s something remarkably easy. By adding ?author={1andsoon} like this
https://anotherwordpresssite.com/?author=1
you can get the list of users of a site.