The PTF (pentestration tests framework) enumerates the stages one's should perform during a test (as described in the OSSTMM manual)
Network footprinting
Discovery & Probing
Enumeration
Vulnerability assessment
Penetration (or exploitation)
Plus other tests as well as physical, wireless assessment...

#Trace: linux 提权教程。

#Trace: 最早看到的jboss利用文档是咖啡发在新闻组里的，后来在sid也发了一篇，转过来。
Often while doing Internal Infrastructure assessments, its common to find unrestricted access to JBOSS JMX console. This web interface allows deployment of arbitrary war files.

#Trace: 附FOCA和Metagoofil的演示视频。

Using FOCA to collect Metadata about an organization
Irongeek -Using metagoofil to extract metadata from public document

Now a days hacking has shifted from attacking systems to know how they work or for the trill of getting into a system for the sake of the hunt but many hackers are doing it for profit, in fact many companies around the world and states are employing hacker for information both for political and financial gain. One of the places where most of this information resides is in databases and one of the most popular databases in enterprises and governments now a days is Microsoft SQL Server and on this blog post I will cover some of the attacks you can do against this system with Metasploit 3.3.

#Trace:  端口重定向的一个tips。

A weakness exists in the design of Windows unsalted password hashing mechanism.

Z (Z [at] wechall [dot] net) submitted this cool video to us. According to his submission:- I had to cut this video to a short one, so please use the pause button if something is too quick :) The mission is to create a new Windows domain administrator - in case we do not have any user in the domain or any local user at the workstation.

Metasploit是一个很好的攻击工具包，当然我们这次不是介绍这个工具包的，主要是大牛MC写 了很多oracle的工具，在最近会经常用。我主要会用到经典工具tnscmd移植到MSF中的小工具（不如pl的好用，没换行，看结果很 累），sid_brute和login_brute，用的最多的还是暴力破解oracle用户名和密码的login_brute。下面就说下怎么安装和使 用，主要是安装，因为有些需要注意的东西，请注意斜体字。

#Trace: Offensive Security的免费课程，相当不错。

Author: 影子

一些我常用到的猥琐的tips，猥琐流使用，非猥琐流请飘过

Trace注： NMAP最新版支持判断Oracle TNS Listener版本。

NP写的一个vbs，渗透内网用的。

Trace: 这文章要好好看，值得学习。fox牛这次放血了。