Web Enumeration
Overview Websites are their own dedicated beast when it comes to enumeration. There are countless combinations of ports, web server configurations, and applications that could be the weakness onto...
Host Enumeration
Overview These commands are typically used during the post-exploitation phase of information gathering. Once access to a host is obtained, further information about the target itself is required...
Sat 30 May 2026
information_gathering
Service Enumeration
FTP (20, 21) standard: control channel on port 21, data channel on port 20 ftp is insecure, cleartext anonymous login may be active allowing read or read/write without creds tftp is an alternate...
Sat 30 May 2026
information_gathering
Exploitation
Overview One fork after the assessment stage, requires utilizing the information from the two prior steps to prepare targeted attacks against the found endpoint. Attacks can be prioritized with...
Sun 31 May 2026
exploitation
Post-Exploitation
Overview Once exploitation succeeds, access tends to be granted as least-privilege (ie, a locked-down service account specifically used for running the web app). This stage essentially starts a...
Sat 30 May 2026
post_exploitation