# Hacktricks.xyz [HackTricks](https://book.hacktricks.xyz/) [HackTricks](https://book.hacktricks.xyz/welcome/readme) [HackTricks Values & faq](https://book.hacktricks.xyz/welcome/hacktricks-values-and-faq) [About the author](https://book.hacktricks.xyz/welcome/about-the-author) [Getting Started in Hacking](https://book.hacktricks.xyz/welcome/getting-started-in-hacking) Generic Methodologies & Resources [Pentesting Methodology](https://book.hacktricks.xyz/generic-methodologies-and-resources/pentesting-methodology) [External Recon Methodology](https://book.hacktricks.xyz/generic-methodologies-and-resources/external-recon-methodology) [Pentesting Network](https://book.hacktricks.xyz/generic-methodologies-and-resources/pentesting-network) [Pentesting Wifi](https://book.hacktricks.xyz/generic-methodologies-and-resources/pentesting-wifi) [Phishing Methodology](https://book.hacktricks.xyz/generic-methodologies-and-resources/phishing-methodology) [Basic Forensic Methodology](https://book.hacktricks.xyz/generic-methodologies-and-resources/basic-forensic-methodology) [Brute Force - CheatSheet](https://book.hacktricks.xyz/generic-methodologies-and-resources/brute-force) [Python Sandbox Escape & Pyscript](https://book.hacktricks.xyz/generic-methodologies-and-resources/python) [Exfiltration](https://book.hacktricks.xyz/generic-methodologies-and-resources/exfiltration) [Tunneling and Port Forwarding](https://book.hacktricks.xyz/generic-methodologies-and-resources/tunneling-and-port-forwarding) [Threat Modeling](https://book.hacktricks.xyz/generic-methodologies-and-resources/threat-modeling) [Search Exploits](https://book.hacktricks.xyz/generic-methodologies-and-resources/search-exploits) [Shells (Linux, Windows, MSFVenom)](https://book.hacktricks.xyz/generic-methodologies-and-resources/shells) Linux Hardening [Checklist - Linux Privilege Escalation](https://book.hacktricks.xyz/linux-hardening/linux-privilege-escalation-checklist) [Linux Privilege Escalation](https://book.hacktricks.xyz/linux-hardening/privilege-escalation) [Useful Linux Commands](https://book.hacktricks.xyz/linux-hardening/useful-linux-commands) [Bypass Linux Restrictions](https://book.hacktricks.xyz/linux-hardening/bypass-bash-restrictions) [Linux Environment Variables](https://book.hacktricks.xyz/linux-hardening/linux-environment-variables) [Linux Post-Exploitation](https://book.hacktricks.xyz/linux-hardening/linux-post-exploitation) [FreeIPA Pentesting](https://book.hacktricks.xyz/linux-hardening/freeipa-pentesting) MacOS Hardening [macOS Security & Privilege Escalation](https://book.hacktricks.xyz/macos-hardening/macos-security-and-privilege-escalation) [macOS Red Teaming](https://book.hacktricks.xyz/macos-hardening/macos-red-teaming) [macOS Useful Commands](https://book.hacktricks.xyz/macos-hardening/macos-useful-commands) [macOS Auto Start](https://book.hacktricks.xyz/macos-hardening/macos-auto-start-locations) Windows Hardening [Checklist - Local Windows Privilege Escalation](https://book.hacktricks.xyz/windows-hardening/checklist-windows-privilege-escalation) [Windows Local Privilege Escalation](https://book.hacktricks.xyz/windows-hardening/windows-local-privilege-escalation) [Active Directory Methodology](https://book.hacktricks.xyz/windows-hardening/active-directory-methodology) [Windows Security Controls](https://book.hacktricks.xyz/windows-hardening/authentication-credentials-uac-and-efs) [NTLM](https://book.hacktricks.xyz/windows-hardening/ntlm) [Lateral Movement](https://book.hacktricks.xyz/windows-hardening/lateral-movement) [Pivoting to the Cloud](https://cloud.hacktricks.xyz/pentesting-cloud/azure-security/az-lateral-movements) [Stealing Windows Credentials](https://book.hacktricks.xyz/windows-hardening/stealing-credentials) [Basic Win CMD for Pentesters](https://book.hacktricks.xyz/windows-hardening/basic-cmd-for-pentesters) [Basic PowerShell for Pentesters](https://book.hacktricks.xyz/windows-hardening/basic-powershell-for-pentesters) [Antivirus (AV) Bypass](https://book.hacktricks.xyz/windows-hardening/av-bypass) Mobile Pentesting [Android APK Checklist](https://book.hacktricks.xyz/mobile-pentesting/android-checklist) [Android Applications Pentesting](https://book.hacktricks.xyz/mobile-pentesting/android-app-pentesting) [iOS Pentesting Checklist](https://book.hacktricks.xyz/mobile-pentesting/ios-pentesting-checklist) [iOS Pentesting](https://book.hacktricks.xyz/mobile-pentesting/ios-pentesting) [Cordova Apps](https://book.hacktricks.xyz/mobile-pentesting/cordova-apps) [Xamarin Apps](https://book.hacktricks.xyz/mobile-pentesting/xamarin-apps) Network Services Pentesting [Pentesting JDWP - Java Debug Wire Protocol](https://book.hacktricks.xyz/network-services-pentesting/pentesting-jdwp-java-debug-wire-protocol) [Pentesting Printers](https://book.hacktricks.xyz/network-services-pentesting/pentesting-printers) [Pentesting SAP](https://book.hacktricks.xyz/network-services-pentesting/pentesting-sap) [Pentesting VoIP](https://book.hacktricks.xyz/network-services-pentesting/pentesting-voip) [Pentesting Remote GdbServer](https://book.hacktricks.xyz/network-services-pentesting/pentesting-remote-gdbserver) [7/tcp/udp - Pentesting Echo](https://book.hacktricks.xyz/network-services-pentesting/7-tcp-udp-pentesting-echo) [21 - Pentesting FTP](https://book.hacktricks.xyz/network-services-pentesting/pentesting-ftp) [22 - Pentesting SSH/SFTP](https://book.hacktricks.xyz/network-services-pentesting/pentesting-ssh) [23 - Pentesting Telnet](https://book.hacktricks.xyz/network-services-pentesting/pentesting-telnet) [25,465,587 - Pentesting SMTP/s](https://book.hacktricks.xyz/network-services-pentesting/pentesting-smtp) [43 - Pentesting WHOIS](https://book.hacktricks.xyz/network-services-pentesting/43-pentesting-whois) [49 - Pentesting TACACS+](https://book.hacktricks.xyz/network-services-pentesting/49-pentesting-tacacs+) [53 - Pentesting DNS](https://book.hacktricks.xyz/network-services-pentesting/pentesting-dns) [69/UDP TFTP/Bittorrent-tracker](https://book.hacktricks.xyz/network-services-pentesting/69-udp-tftp) [79 - Pentesting Finger](https://book.hacktricks.xyz/network-services-pentesting/pentesting-finger) [80,443 - Pentesting Web Methodology](https://book.hacktricks.xyz/network-services-pentesting/pentesting-web) [88tcp/udp - Pentesting Kerberos](https://book.hacktricks.xyz/network-services-pentesting/pentesting-kerberos-88) [110,995 - Pentesting POP](https://book.hacktricks.xyz/network-services-pentesting/pentesting-pop) [111/TCP/UDP - Pentesting Portmapper](https://book.hacktricks.xyz/network-services-pentesting/pentesting-rpcbind) [113 - Pentesting Ident](https://book.hacktricks.xyz/network-services-pentesting/113-pentesting-ident) [123/udp - Pentesting NTP](https://book.hacktricks.xyz/network-services-pentesting/pentesting-ntp) [135, 593 - Pentesting MSRPC](https://book.hacktricks.xyz/network-services-pentesting/135-pentesting-msrpc) [137,138,139 - Pentesting NetBios](https://book.hacktricks.xyz/network-services-pentesting/137-138-139-pentesting-netbios) [139,445 - Pentesting SMB](https://book.hacktricks.xyz/network-services-pentesting/pentesting-smb) [143,993 - Pentesting IMAP](https://book.hacktricks.xyz/network-services-pentesting/pentesting-imap) [161,162,10161,10162/udp - Pentesting SNMP](https://book.hacktricks.xyz/network-services-pentesting/pentesting-snmp) [194,6667,6660-7000 - Pentesting IRC](https://book.hacktricks.xyz/network-services-pentesting/pentesting-irc) [264 - Pentesting Check Point FireWall-1](https://book.hacktricks.xyz/network-services-pentesting/pentesting-264-check-point-firewall-1) [389, 636, 3268, 3269 - Pentesting LDAP](https://book.hacktricks.xyz/network-services-pentesting/pentesting-ldap) [500/udp - Pentesting IPsec/IKE VPN](https://book.hacktricks.xyz/network-services-pentesting/ipsec-ike-vpn-pentesting) [502 - Pentesting Modbus](https://book.hacktricks.xyz/network-services-pentesting/pentesting-modbus) [512 - Pentesting Rexec](https://book.hacktricks.xyz/network-services-pentesting/512-pentesting-rexec) [513 - Pentesting Rlogin](https://book.hacktricks.xyz/network-services-pentesting/pentesting-rlogin) [514 - Pentesting Rsh](https://book.hacktricks.xyz/network-services-pentesting/pentesting-rsh) [515 - Pentesting Line Printer Daemon (LPD)](https://book.hacktricks.xyz/network-services-pentesting/515-pentesting-line-printer-daemon-lpd) [548 - Pentesting Apple Filing Protocol (AFP)](https://book.hacktricks.xyz/network-services-pentesting/584-pentesting-afp) [554,8554 - Pentesting RTSP](https://book.hacktricks.xyz/network-services-pentesting/554-8554-pentesting-rtsp) [623/UDP/TCP - IPMI](https://book.hacktricks.xyz/network-services-pentesting/623-udp-ipmi) [631 - Internet Printing Protocol(IPP)](https://book.hacktricks.xyz/network-services-pentesting/pentesting-631-internet-printing-protocol-ipp) [873 - Pentesting Rsync](https://book.hacktricks.xyz/network-services-pentesting/873-pentesting-rsync) [1026 - Pentesting Rusersd](https://book.hacktricks.xyz/network-services-pentesting/1026-pentesting-rusersd) [1080 - Pentesting Socks](https://book.hacktricks.xyz/network-services-pentesting/1080-pentesting-socks) [1098/1099/1050 - Pentesting Java RMI - RMI-IIOP](https://book.hacktricks.xyz/network-services-pentesting/1099-pentesting-java-rmi) [1433 - Pentesting MSSQL - Microsoft SQL Server](https://book.hacktricks.xyz/network-services-pentesting/pentesting-mssql-microsoft-sql-server) [1521,1522-1529 - Pentesting Oracle TNS Listener](https://book.hacktricks.xyz/network-services-pentesting/1521-1522-1529-pentesting-oracle-listener) [1723 - Pentesting PPTP](https://book.hacktricks.xyz/network-services-pentesting/1723-pentesting-pptp) [1883 - Pentesting MQTT (Mosquitto)](https://book.hacktricks.xyz/network-services-pentesting/1883-pentesting-mqtt-mosquitto) [2049 - Pentesting NFS Service](https://book.hacktricks.xyz/network-services-pentesting/nfs-service-pentesting) [2301,2381 - Pentesting Compaq/HP Insight Manager](https://book.hacktricks.xyz/network-services-pentesting/pentesting-compaq-hp-insight-manager) [2375, 2376 Pentesting Docker](https://book.hacktricks.xyz/network-services-pentesting/2375-pentesting-docker) [3128 - Pentesting Squid](https://book.hacktricks.xyz/network-services-pentesting/3128-pentesting-squid) [3260 - Pentesting ISCSI](https://book.hacktricks.xyz/network-services-pentesting/3260-pentesting-iscsi) [3299 - Pentesting SAPRouter](https://book.hacktricks.xyz/network-services-pentesting/3299-pentesting-saprouter) [3306 - Pentesting Mysql](https://book.hacktricks.xyz/network-services-pentesting/pentesting-mysql) [3389 - Pentesting RDP](https://book.hacktricks.xyz/network-services-pentesting/pentesting-rdp) [3632 - Pentesting distcc](https://book.hacktricks.xyz/network-services-pentesting/3632-pentesting-distcc) [3690 - Pentesting Subversion (svn server)](https://book.hacktricks.xyz/network-services-pentesting/3690-pentesting-subversion-svn-server) [3702/UDP - Pentesting WS-Discovery](https://book.hacktricks.xyz/network-services-pentesting/3702-udp-pentesting-ws-discovery) [4369 - Pentesting Erlang Port Mapper Daemon (epmd)](https://book.hacktricks.xyz/network-services-pentesting/4369-pentesting-erlang-port-mapper-daemon-epmd) [4786 - Cisco Smart Install](https://book.hacktricks.xyz/network-services-pentesting/4786-cisco-smart-install) [5000 - Pentesting Docker Registry](https://book.hacktricks.xyz/network-services-pentesting/5000-pentesting-docker-registry) [5353/UDP Multicast DNS (mDNS) and DNS-SD](https://book.hacktricks.xyz/network-services-pentesting/5353-udp-multicast-dns-mdns) [5432,5433 - Pentesting Postgresql](https://book.hacktricks.xyz/network-services-pentesting/pentesting-postgresql) [5439 - Pentesting Redshift](https://book.hacktricks.xyz/network-services-pentesting/5439-pentesting-redshift) [5555 - Android Debug Bridge](https://book.hacktricks.xyz/network-services-pentesting/5555-android-debug-bridge) [5601 - Pentesting Kibana](https://book.hacktricks.xyz/network-services-pentesting/5601-pentesting-kibana) [5671,5672 - Pentesting AMQP](https://book.hacktricks.xyz/network-services-pentesting/5671-5672-pentesting-amqp) [5800,5801,5900,5901 - Pentesting VNC](https://book.hacktricks.xyz/network-services-pentesting/pentesting-vnc) [5984,6984 - Pentesting CouchDB](https://book.hacktricks.xyz/network-services-pentesting/5984-pentesting-couchdb) [5985,5986 - Pentesting WinRM](https://book.hacktricks.xyz/network-services-pentesting/5985-5986-pentesting-winrm) [5985,5986 - Pentesting OMI](https://book.hacktricks.xyz/network-services-pentesting/5985-5986-pentesting-omi) [6000 - Pentesting X11](https://book.hacktricks.xyz/network-services-pentesting/6000-pentesting-x11) [6379 - Pentesting Redis](https://book.hacktricks.xyz/network-services-pentesting/6379-pentesting-redis) [8009 - Pentesting Apache JServ Protocol (AJP)](https://book.hacktricks.xyz/network-services-pentesting/8009-pentesting-apache-jserv-protocol-ajp) [8086 - Pentesting InfluxDB](https://book.hacktricks.xyz/network-services-pentesting/8086-pentesting-influxdb) [8089 - Pentesting Splunkd](https://book.hacktricks.xyz/network-services-pentesting/8089-splunkd) [8333,18333,38333,18444 - Pentesting Bitcoin](https://book.hacktricks.xyz/network-services-pentesting/8333-18333-38333-18444-pentesting-bitcoin) [9000 - Pentesting FastCGI](https://book.hacktricks.xyz/network-services-pentesting/9000-pentesting-fastcgi) [9001 - Pentesting HSQLDB](https://book.hacktricks.xyz/network-services-pentesting/9001-pentesting-hsqldb) [9042/9160 - Pentesting Cassandra](https://book.hacktricks.xyz/network-services-pentesting/cassandra) [9100 - Pentesting Raw Printing (JetDirect, AppSocket, PDL-datastream)](https://book.hacktricks.xyz/network-services-pentesting/9100-pjl) [9200 - Pentesting Elasticsearch](https://book.hacktricks.xyz/network-services-pentesting/9200-pentesting-elasticsearch) [10000 - Pentesting Network Data Management Protocol (ndmp)](https://book.hacktricks.xyz/network-services-pentesting/10000-network-data-management-protocol-ndmp) [11211 - Pentesting Memcache](https://book.hacktricks.xyz/network-services-pentesting/11211-memcache) [15672 - Pentesting RabbitMQ Management](https://book.hacktricks.xyz/network-services-pentesting/15672-pentesting-rabbitmq-management) [24007,24008,24009,49152 - Pentesting GlusterFS](https://book.hacktricks.xyz/network-services-pentesting/24007-24008-24009-49152-pentesting-glusterfs) [27017,27018 - Pentesting MongoDB](https://book.hacktricks.xyz/network-services-pentesting/27017-27018-mongodb) [44134 - Pentesting Tiller (Helm)](https://book.hacktricks.xyz/network-services-pentesting/44134-pentesting-tiller-helm) [44818/UDP/TCP - Pentesting EthernetIP](https://book.hacktricks.xyz/network-services-pentesting/44818-ethernetip) [47808/udp - Pentesting BACNet](https://book.hacktricks.xyz/network-services-pentesting/47808-udp-bacnet) [50030,50060,50070,50075,50090 - Pentesting Hadoop](https://book.hacktricks.xyz/network-services-pentesting/50030-50060-50070-50075-50090-pentesting-hadoop) Pentesting Web [Web Vulnerabilities Methodology](https://book.hacktricks.xyz/pentesting-web/web-vulnerabilities-methodology) [Reflecting Techniques - PoCs and Polygloths CheatSheet](https://book.hacktricks.xyz/pentesting-web/pocs-and-polygloths-cheatsheet) [2FA/OTP Bypass](https://book.hacktricks.xyz/pentesting-web/2fa-bypass) [Account Takeover](https://book.hacktricks.xyz/pentesting-web/account-takeover) [Bypass Payment Process](https://book.hacktricks.xyz/pentesting-web/bypass-payment-process) [Captcha Bypass](https://book.hacktricks.xyz/pentesting-web/captcha-bypass) [Cache Poisoning and Cache Deception](https://book.hacktricks.xyz/pentesting-web/cache-deception) [Clickjacking](https://book.hacktricks.xyz/pentesting-web/clickjacking) [Client Side Template Injection (CSTI)](https://book.hacktricks.xyz/pentesting-web/client-side-template-injection-csti) [Client Side Path Traversal](https://book.hacktricks.xyz/pentesting-web/client-side-path-traversal) [Command Injection](https://book.hacktricks.xyz/pentesting-web/command-injection) [Content Security Policy (CSP) Bypass](https://book.hacktricks.xyz/pentesting-web/content-security-policy-csp-bypass) [Cookies Hacking](https://book.hacktricks.xyz/pentesting-web/hacking-with-cookies) [CORS - Misconfigurations & Bypass](https://book.hacktricks.xyz/pentesting-web/cors-bypass) [CRLF (%0D%0A) Injection](https://book.hacktricks.xyz/pentesting-web/crlf-0d-0a) [CSRF (Cross Site Request Forgery)](https://book.hacktricks.xyz/pentesting-web/csrf-cross-site-request-forgery) [Dangling Markup - HTML scriptless injection](https://book.hacktricks.xyz/pentesting-web/dangling-markup-html-scriptless-injection) [Dependency Confusion](https://book.hacktricks.xyz/pentesting-web/dependency-confusion) [Deserialization](https://book.hacktricks.xyz/pentesting-web/deserialization) [Domain/Subdomain takeover](https://book.hacktricks.xyz/pentesting-web/domain-subdomain-takeover) [Email Injections](https://book.hacktricks.xyz/pentesting-web/email-injections) [File Inclusion/Path traversal](https://book.hacktricks.xyz/pentesting-web/file-inclusion) [File Upload](https://book.hacktricks.xyz/pentesting-web/file-upload) [Formula/CSV/Doc/LaTeX Injection](https://book.hacktricks.xyz/pentesting-web/formula-doc-latex-injection) [HTTP Connection Contamination](https://book.hacktricks.xyz/pentesting-web/http-connection-contamination) [HTTP Connection Request Smuggling](https://book.hacktricks.xyz/pentesting-web/http-connection-request-smuggling) [HTTP Request Smuggling / HTTP Desync Attack](https://book.hacktricks.xyz/pentesting-web/http-request-smuggling) [HTTP Response Smuggling / Desync](https://book.hacktricks.xyz/pentesting-web/http-response-smuggling-desync) [Upgrade Header Smuggling](https://book.hacktricks.xyz/pentesting-web/h2c-smuggling) [hop-by-hop headers](https://book.hacktricks.xyz/pentesting-web/abusing-hop-by-hop-headers) [IDOR](https://book.hacktricks.xyz/pentesting-web/idor) [Integer Overflow](https://book.hacktricks.xyz/pentesting-web/integer-overflow) [JWT Vulnerabilities (Json Web Tokens)](https://book.hacktricks.xyz/pentesting-web/hacking-jwt-json-web-tokens) [LDAP Injection](https://book.hacktricks.xyz/pentesting-web/ldap-injection) [Login Bypass](https://book.hacktricks.xyz/pentesting-web/login-bypass) [NoSQL injection](https://book.hacktricks.xyz/pentesting-web/nosql-injection) [OAuth to Account takeover](https://book.hacktricks.xyz/pentesting-web/oauth-to-account-takeover) [Open Redirect](https://book.hacktricks.xyz/pentesting-web/open-redirect) [Parameter Pollution](https://book.hacktricks.xyz/pentesting-web/parameter-pollution) [Phone Number Injections](https://book.hacktricks.xyz/pentesting-web/phone-number-injections) [PostMessage Vulnerabilities](https://book.hacktricks.xyz/pentesting-web/postmessage-vulnerabilities) [Race Condition](https://book.hacktricks.xyz/pentesting-web/race-condition) [Rate Limit Bypass](https://book.hacktricks.xyz/pentesting-web/rate-limit-bypass) [Registration & Takeover Vulnerabilities](https://book.hacktricks.xyz/pentesting-web/registration-vulnerabilities) [Regular expression Denial of Service - ReDoS](https://book.hacktricks.xyz/pentesting-web/regular-expression-denial-of-service-redos) [Reset/Forgotten Password Bypass](https://book.hacktricks.xyz/pentesting-web/reset-password) [SAML Attacks](https://book.hacktricks.xyz/pentesting-web/saml-attacks) [Server Side Inclusion/Edge Side Inclusion Injection](https://book.hacktricks.xyz/pentesting-web/server-side-inclusion-edge-side-inclusion-injection) [SQL Injection](https://book.hacktricks.xyz/pentesting-web/sql-injection) [SSRF (Server Side Request Forgery)](https://book.hacktricks.xyz/pentesting-web/ssrf-server-side-request-forgery) [SSTI (Server Side Template Injection)](https://book.hacktricks.xyz/pentesting-web/ssti-server-side-template-injection) [Reverse Tab Nabbing](https://book.hacktricks.xyz/pentesting-web/reverse-tab-nabbing) [Unicode Injection](https://book.hacktricks.xyz/pentesting-web/unicode-injection) [WebSocket Attacks](https://book.hacktricks.xyz/pentesting-web/websocket-attacks) [Web Tool - WFuzz](https://book.hacktricks.xyz/pentesting-web/web-tool-wfuzz) [XPATH injection](https://book.hacktricks.xyz/pentesting-web/xpath-injection) [XSLT Server Side Injection (Extensible Stylesheet Languaje Transformations)](https://book.hacktricks.xyz/pentesting-web/xslt-server-side-injection-extensible-stylesheet-languaje-transformations) [XXE - XEE - XML External Entity](https://book.hacktricks.xyz/pentesting-web/xxe-xee-xml-external-entity) [XSS (Cross Site Scripting)](https://book.hacktricks.xyz/pentesting-web/xss-cross-site-scripting) [XSSI (Cross-Site Script Inclusion)](https://book.hacktricks.xyz/pentesting-web/xssi-cross-site-script-inclusion) [XS-Search/XS-Leaks](https://book.hacktricks.xyz/pentesting-web/xs-search) Cloud Security [Pentesting Kubernetes](https://cloud.hacktricks.xyz/pentesting-cloud/kubernetes-security) [Pentesting Cloud (AWS, GCP, Az...)](https://cloud.hacktricks.xyz/pentesting-cloud/pentesting-cloud-methodology) [Pentesting CI/CD (Github, Jenkins, Terraform...)](https://cloud.hacktricks.xyz/pentesting-ci-cd/pentesting-ci-cd-methodology) Hardware/Physical Access [Physical Attacks](https://book.hacktricks.xyz/hardware-physical-access/physical-attacks) [Escaping from KIOSKs](https://book.hacktricks.xyz/hardware-physical-access/escaping-from-gui-applications) [Firmware Analysis](https://book.hacktricks.xyz/hardware-physical-access/firmware-analysis) Reversing & Exploiting [Reversing Tools & Basic Methods](https://book.hacktricks.xyz/reversing-and-exploiting/reversing-tools-basic-methods) [Common API used in Malware](https://book.hacktricks.xyz/reversing-and-exploiting/common-api-used-in-malware) [Word Macros](https://book.hacktricks.xyz/reversing-and-exploiting/word-macros) [Linux Exploiting (Basic) (SPA)](https://book.hacktricks.xyz/reversing-and-exploiting/linux-exploiting-basic-esp) [Exploiting Tools](https://book.hacktricks.xyz/reversing-and-exploiting/tools) [Windows Exploiting (Basic Guide - OSCP lvl)](https://book.hacktricks.xyz/reversing-and-exploiting/windows-exploiting-basic-guide-oscp-lvl) Crypto & Stego [Cryptographic/Compression Algorithms](https://book.hacktricks.xyz/crypto-and-stego/cryptographic-algorithms) [Certificates](https://book.hacktricks.xyz/crypto-and-stego/certificates) [Cipher Block Chaining CBC-MAC](https://book.hacktricks.xyz/crypto-and-stego/cipher-block-chaining-cbc-mac-priv) [Crypto CTFs Tricks](https://book.hacktricks.xyz/crypto-and-stego/crypto-ctfs-tricks) [Electronic Code Book (ECB)](https://book.hacktricks.xyz/crypto-and-stego/electronic-code-book-ecb) [Hash Length Extension Attack](https://book.hacktricks.xyz/crypto-and-stego/hash-length-extension-attack) [Padding Oracle](https://book.hacktricks.xyz/crypto-and-stego/padding-oracle-priv) [RC4 - Encrypt\&Decrypt](https://book.hacktricks.xyz/crypto-and-stego/rc4-encrypt-and-decrypt) [Stego Tricks](https://book.hacktricks.xyz/crypto-and-stego/stego-tricks) [Esoteric languages](https://book.hacktricks.xyz/crypto-and-stego/esoteric-languages) [Blockchain & Crypto Currencies](https://book.hacktricks.xyz/crypto-and-stego/blockchain-and-crypto-currencies) External Platforms Reviews/Writeups [BRA.I.NSMASHER Presentation](https://book.hacktricks.xyz/external-platforms-reviews-writeups/bra.i.nsmasher-presentation) C2 [Merlin](https://book.hacktricks.xyz/c2/merlin) [Empire](https://book.hacktricks.xyz/c2/empire) [Salseo](https://book.hacktricks.xyz/c2/salseo) [ICMPsh](https://book.hacktricks.xyz/c2/icmpsh) [Cobalt Strike](https://book.hacktricks.xyz/c2/cobalt-strike) TODO [Other Big References](https://book.hacktricks.xyz/todo/references) [Rust Basics](https://book.hacktricks.xyz/todo/rust-basics) [More Tools](https://book.hacktricks.xyz/todo/more-tools) [MISC](https://book.hacktricks.xyz/todo/misc) [Pentesting DNS](https://book.hacktricks.xyz/todo/pentesting-dns) [Hardware Hacking](https://book.hacktricks.xyz/todo/hardware-hacking) [Radio Hacking](https://book.hacktricks.xyz/todo/radio-hacking) [Burp Suite](https://book.hacktricks.xyz/todo/burp-suite) [Other Web Tricks](https://book.hacktricks.xyz/todo/other-web-tricks) [Interesting HTTP](https://book.hacktricks.xyz/todo/interesting-http) [Emails Vulnerabilities](https://book.hacktricks.xyz/todo/emails-vulns) [Android Forensics](https://book.hacktricks.xyz/todo/android-forensics) [TR-069](https://book.hacktricks.xyz/todo/tr-069) [6881/udp - Pentesting BitTorrent](https://book.hacktricks.xyz/todo/6881-udp-pentesting-bittorrent) [CTF Write-ups](https://book.hacktricks.xyz/todo/ctf-write-ups) [1911 - Pentesting fox](https://book.hacktricks.xyz/todo/1911-pentesting-fox) [Online Platforms with API](https://book.hacktricks.xyz/todo/online-platforms-with-api) [Stealing Sensitive Information Disclosure from a Web](https://book.hacktricks.xyz/todo/stealing-sensitive-information-disclosure-from-a-web) [Post Exploitation](https://book.hacktricks.xyz/todo/post-exploitation) --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://book.konstantinsecurity.com/readme/pentest/hacktricks-xyz.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.