AutoRecon
Seatbelt
AutoRecon | Seatbelt | |
---|---|---|
18 | 8 | |
4,811 | 3,482 | |
- | 1.2% | |
5.0 | 6.1 | |
3 months ago | about 1 month ago | |
Python | C# | |
GNU General Public License v3.0 only | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
AutoRecon
- Failed first attempt with 50pts
- Failed the OSCP 😞
-
Autorecon installation issue
pipx install git+https://github.com/Tib3rius/AutoRecon.git
- All round web scanning tool - add yours to the list!
-
Linux Priv Escalation Scripts
Yeah it's been out for about a year now. Same repo, just a version update. https://github.com/Tib3rius/AutoRecon
-
Update: I passed with 100 points on second attempt AMA
smbmap - I believe so as it is a part of https://github.com/Tib3rius/AutoRecon
-
Resources after nmap scan
It sounds like you’re looking for something like AutoRecon.
-
I passed with 100 points on second attempt AMA
I used AutoRecon (thanks tibs) and PEAS for both linux and windows privesc. But again, the reason I failed the first time was because I relied to heavily on these tools. I really like the disclaimer on the autorecon github:
-
Just officially passed my OSCP with (70 + 10) points
Initial Recon/Exploitation - Initial scan your target with either autorecon (https://github.com/Tib3rius/AutoRecon) or an in-depth nmap scan. Then, for each port, enumerate with commands from hacktricks (https://book.hacktricks.xyz/), (https://fareedfauzi.gitbook.io/oscp-notes/services-enumeration/http-s/enumeration-checklist) and (https://web.archive.org/web/20200309204648/http://0daysecurity.com/penetration-testing/enumeration.html) but you could honestly just get away with hacktricks. If you see any sort of service, CMS, or whatever running, searchsploit it. Sometimes, you might get lucky and find an exploit that you can use or can keep in your back pocket for PE later. If you need help with how to actually do an exploit (https://ippsec.rocks/?#) is your friend. IPPSEC is the GOAT.
-
Just submitted the Exam Report. 70 points. My Thoughts and Journey.
Credits to the creator of these resources - Tib3rius Privilege Escalation Courses (Windows & Linux) - Tib3rius AutoRecon: https://github.com/Tib3rius/AutoRecon - https://github.com/mchern1kov/pentest-everything - https://kashz.gitbook.io/kashz-jewels/ - https://book.hacktricks.xyz/
Seatbelt
-
Allowed tools for OSCP
I'm taking my OSCP exam next Wednesday and was just wondering on what tools are actually prohibited and which are not. I'm specifically referring to linpeas, winpeas, seatbelt. I often times run these tools when I've exausted my enumeration methods for a quick find. Are these tools allowed on the AD set and the individual machines?
-
Cannot Load .NET assemblies in memory!
However, whenever I tried to run Seatbelt or similar software, it keeps failing at Load_3() with the error code 0x8007000b.
-
What are the alternative tools for wmic on cmd?
I'd recommend poking around at github and see what you find. A good starting point is WinPEAS if you're looking for automation. Seatbelt might also be helpful
-
Hardening Best Practices: Materials for Windows 10/11
Seatbelt: https://github.com/GhostPack/Seatbelt
- I passed with 100 points on second attempt AMA
- AzureDevOps + Github Question
- GhostPack/Seatbelt - Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
What are some alternatives?
nmapAutomator - A script that you can run in the background!
PEASS-ng - PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
OSCP-Exam-Report-Template - Modified template for the OSCP Exam and Labs. Used during my passing attempt
OSCP-Priv-Esc - Mind maps / flow charts to help with privilege escalation on the OSCP.
Windows11_Hardening - a collection about Windows 11
pentest-everything - This is my penetration testing cheatsheet
Ryujinx - Experimental Nintendo Switch Emulator written in C#
EZEA - EZEA (EaZy Enum Automator), made for OSCP. This tool uses bash to automate most of the enumeration proces
PrivescCheck - Privilege Escalation Enumeration Script for Windows
Harbor - An open source trusted cloud native registry project that stores, signs, and scans content.
exec-assembly - Execute .NET assemblies in Memory!