1- Discovering interesting files and directories on web-servers
In this Red teaming approach, we are showcasing how to enumerate forcibly using Brute-Forcing NSE scripts which are Active techniques to find directories that are not visible Passively. Nmap offers good NSE scripts, but you can also tweak them to display more sensitive info by tweaking the commands with more advanced arguments hunting for more impactful PoCs such as LFI, Path Traversal, and more.
2- Finding SQL injection vulnerabilities manually using NSE scripts
As we progress, NMAP offers over 24 NSE scripts written in LUA that are focused on SQL Injection. However, Encoding payloads when it comes to SQL injection is very crucial. If you do not encode a payload based on the encoding type the target is using, it will not be able to exploit an SQL injection until you apply the right encoding. NMAP Scripts already have specific encoding types for various payloads so you cannot miss the important ones.
➡️Watch the full episode: / find-with-nmap-62461046
Become a member and join the Offensive Security Front-Line on our Patreon channel, showing you continuous techniques and methodologies in Offensive Security. Discover our exclusive content with our FREE trial for 7 days!
To Join: / blackhatethicalhacking
---------------
Check out our Courses:
Offensive Security & Ethical Hacking Course:
www.blackhatet...
The Bug Bounty Hunting Course:
www.blackhatet...
---------------
Follow and Connect with us on:
www.blackhatet...
/ secur1ty1samyth
/ secur1ty1samyth
/ black-hat-ethical-hacking
github.com/bla...
/ discord
---------------
Soundtracks:
Music Credit: LAKEY INSPIRED
Music By: LAKEY INSPIRED
Track Name: "Distant"
Official "LAKEY INSPIRED" KZbin Channel:
/ @lakeyinspired
Music Credit: LAKEY INSPIRED
Music By: LAKEY INSPIRED
Track Name: "Angels By"
Official "LAKEY INSPIRED" KZbin Channel:
/ @lakeyinspired
---------------