Chest/Information-Security-notes
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: Forensic and Web

Browse Source
This commit is contained in:
chest 2025-02-17 23:08:26 +03:00 committed by cheeest
parent 3f0d76b72d
commit 90eeef9613
7 changed files with 124 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

87
.obsidian/workspace.json vendored
View File

@ -28,7 +28,7 @@
"state": { "state": {
"type": "markdown", "type": "markdown",
"state": { "state": {
"file": "Linux Terminal.md", "file": "Linux Admin/Linux Terminal.md",
"mode": "source", "mode": "source",
"source": false "source": false
}, },
@ -42,16 +42,72 @@
"state": { "state": {
"type": "markdown", "type": "markdown",
"state": { "state": {
"file": "Welcome.md", "file": "Linux Admin/Абузы.md",
"mode": "source", "mode": "source",
"source": false "source": false
}, },
"icon": "lucide-file", "icon": "lucide-file",
"title": "Welcome" "title": "Абузы"
}
},
{
"id": "0d2e07ac82ec6695",
"type": "leaf",
"state": {
"type": "markdown",
"state": {
"file": "Network.md",
"mode": "source",
"source": false
},
"icon": "lucide-file",
"title": "Network"
}
},
{
"id": "64438f04050c0437",
"type": "leaf",
"state": {
"type": "markdown",
"state": {
"file": "Forensic.md",
"mode": "source",
"source": false
},
"icon": "lucide-file",
"title": "Forensic"
}
},
{
"id": "3483d43f6e0761d0",
"type": "leaf",
"state": {
"type": "markdown",
"state": {
"file": "Forensic.md",
"mode": "source",
"source": false
},
"icon": "lucide-file",
"title": "Forensic"
}
},
{
"id": "f616323f043f6f43",
"type": "leaf",
"state": {
"type": "markdown",
"state": {
"file": "СЗИ.md",
"mode": "source",
"source": false
},
"icon": "lucide-file",
"title": "СЗИ"
} }
} }
], ],
"currentTab": 2 "currentTab": 6
} }
], ],
"direction": "vertical" "direction": "vertical"
@ -124,7 +180,7 @@
"state": { "state": {
"type": "backlink", "type": "backlink",
"state": { "state": {
"file": "Welcome.md", "file": "СЗИ.md",
"collapseAll": false, "collapseAll": false,
"extraContext": false, "extraContext": false,
"sortOrder": "alphabetical", "sortOrder": "alphabetical",
@ -134,7 +190,7 @@
"unlinkedCollapsed": true "unlinkedCollapsed": true
}, },
"icon": "links-coming-in", "icon": "links-coming-in",
"title": "Backlinks for Welcome" "title": "Backlinks for СЗИ"
} }
}, },
{ {
@ -143,12 +199,12 @@
"state": { "state": {
"type": "outgoing-link", "type": "outgoing-link",
"state": { "state": {
"file": "Welcome.md", "file": "СЗИ.md",
"linksCollapsed": false, "linksCollapsed": false,
"unlinkedCollapsed": true "unlinkedCollapsed": true
}, },
"icon": "links-going-out", "icon": "links-going-out",
"title": "Outgoing links from Welcome" "title": "Outgoing links from СЗИ"
} }
}, },
{ {
@ -172,13 +228,13 @@
"state": { "state": {
"type": "outline", "type": "outline",
"state": { "state": {
"file": "Welcome.md", "file": "СЗИ.md",
"followCursor": false, "followCursor": false,
"showSearch": false, "showSearch": false,
"searchQuery": "" "searchQuery": ""
}, },
"icon": "lucide-list", "icon": "lucide-list",
"title": "Outline of Welcome" "title": "Outline of СЗИ"
} }
} }
] ]
@ -198,11 +254,16 @@
"command-palette:Open command palette": false "command-palette:Open command palette": false
} }
}, },
"active": "3fbdec32d8680636", "active": "f616323f043f6f43",
"lastOpenFiles": [ "lastOpenFiles": [
"Linux Terminal.md", "Forensic.md",
"Абузы.md", "СЗИ.md",
"Network.md",
"Welcome.md", "Welcome.md",
"Web.md",
"Linux Admin/Абузы.md",
"Network",
"Linux Admin/Linux Terminal.md",
"Linux Admin", "Linux Admin",
"create a link.md" "create a link.md"
] ]

22
Forensic.md Normal file
View File

@ -0,0 +1,22 @@
### xxd
`xxd [filename]` -> hexdump файла
### binwalk
`binwalk [filename]` -> считывает все сигнатуры файла и обнаруживает скрытые в нём друуугииие файлы. Флаг `-e` извлекает их
### exiftool
`exiftool [filename]` -> смотрит метадату файла
### AUDACITY
Прога для смотрения музики
### Autopsy
Прога для анализа образа диска
### Volatility
Да поможет тебе Бог. (и HackTricks)
- `volatility -h`
- `volatility imageinfo -f file.dmp` -> покажет инфу про образ
- `volatility -f file.dmp --profile=Win7SP1x64 hivelist` -> инфа о юзерах
- `volatility -f file.dmp --profile=Win7SP1x64 hashdump` -> хэши глупых паролей
- `volatility -f file.dmp --profile=Win7SP1x64 clipboard` -> буфер глупого обмена

0
Linux Terminal.md → Linux Admin/Linux Terminal.md
View File

0
Абузы.md → Linux Admin/Абузы.md
View File

13
Network.md Normal file
View File

@ -0,0 +1,13 @@
### Wireshark
Эээээ... а что писать? Там всё есть
- `Follow` для текста
- `Export objects` для картинок
- Фильтры на HackTricks
- Статистика сверху в Wireshark
### Протоколы
- ICMP - ping (pong!)
- TCP - скушный текст, файлы и следование
- UDP - быстрые данные
- HTTP - хипертекст но без защиты
- FTP - файлыыыы
- SMTP - письмы

13
Web.md Normal file
View File

@ -0,0 +1,13 @@
(памагити)
Только HackTricks тебе в помощь.
Помнить про IDOR и подобные смешные уязвы
### SQLmap
`sqlmap -u "http://example.com/?id=1"`
а оальное на HackTricks
### База для начала
- /robots.txt
- /sitemap.xml
- /crossdomain.xml
- /clientaccesspolicy.xml
- /.well-known/

2
СЗИ.md Normal file
View File

@ -0,0 +1,2 @@
(пиздец.)