Tag Explorer

SeRestorePrivilege (2) acl-abuse (2) active-directory (42) adcs (8) aggressor-script (2) alwaysinstallelevated (2) arbitrary-file-read (4) argus-surveillance-dvr (2) asrep-roasting (4) autorun (2) bad-odf (2) beacon (2) beginner (2) bloodhound (4) bloodyad (2) blue-team (4) buffer-overflow (2) c2 (4) capabilities (2) career (1) certificate (1) certificate-services (1) certification (1) certipy (4) cheatsheet (7) chisel (2) cmd (2) cobalt-strike (2) command-injection (4) credential-dumping (2) credential-harvesting (2) credential-hunting (1) credential-reuse (2) cron (4) cve-2011-1249 (2) cve-2017-1000028 (2) cve-2018-15745 (2) cve-2019-7214 (2) cve-2020-10199 (2) cve-2021-44967 (2) cve-2023-26469 (2) cve-2023-27163 (2) cve-2023-34152 (2) cypher (2) dacl-abuse (2) dcsync (2) default-credentials (2) delegation (1) deserialization (2) devsecops (4) dll-hijack (2) dll-hijacking (2) dll-injection (2) docker (4) dotnet-decompile (2) email-attack (2) env (2) esc1 (2) evasion (2) evil-winrm (6) file-inclusion (1) file-upload (4) find (4) force-change-password (2) ftp (6) glassfish (2) gmsa (2) godpotato (4) golden-ticket (4) gpo-abuse (2) gtfobins (4) hash-crack (2) htaccess-bypass (2) htb (1) html-smuggling (2) iis (4) imagemagick (2) impacket (15) initial-access (1) japan (1) jorani (2) kerberoast (6) kerberoasting (6) kerberos (15) kernel-exploit (2) laps (2) lateral-movement (6) ldap (6) lfi (3) ligolo-mp (2) ligolo-ng (2) limesurvey (2) linux (4) log-poisoning (2) lsass (2) lxd (2) macro (2) maltrail (2) marketing (2) mimikatz (2) misp (2) ms11-046 (2) msfvenom (2) mssql (4) netexec (2) nexus (2) ntlm (2) ntlm-relay (2) ntlm-theft (4) ntlmv2 (4) odf-macro (2) offsec (1) onsen (1) opencti (2) oscp (42) osep (2) osint (2) overpass-the-hash (2) pass-the-hash (8) pass-the-ticket (4) password-spray (4) path-traversal (4) pen-200 (1) pentest (46) pg (2) phishing (2) php (198) php-upload (2) pivoting (2) pkinit (2) post-exploitation (12) postgresql (2) potato (6) powershell (2) privilege-escalation (238) process-injection (2) proving-grounds (3) rbcd (6) rce (227) red-team (4) redteam (2) reflective-dll (2) registry (2) relay (2) responder (6) reverse-shell (2) rfi (2) rpc (2) rubeus (2) runascs (2) scf (2) sebackup-privilege (2) secretsdump (2) seimpersonate (4) seimpersonateprivilege (2) service-misconfig (4) sharpgpoabuse (2) sharphound (2) silver-ticket (4) smartermail (2) smb (12) smb-relay (2) smtp (4) soc (4) sqli (2) ssrf (4) stix (2) strace (2) sudo (6) suid (190) synaman (2) threat-intelligence (4) token-abuse (2) travel (1) tunneling (2) uac-bypass (2) weak-credentials (2) web (6) webdav (2) whoami (2) windows (19) winrm (4) wmi (2) xxe (2) 旅行 (1) 日本 (1) 温泉 (1)

---

Attack Trends Overview

The following charts are generated from post front matter and update automatically when new writeups are added.

1. OS Distribution

pie title OS distribution across writeups
  "Linux" : 160
  "Windows" : 90
  "Other / Unknown" : 54

2. Initial Access Pattern by OS

pie title Linux initial access pattern
  "Web / App Exploit" : 138
  "Database Abuse" : 0
  "Credential Abuse" : 4
  "CVE-driven Exploit" : 6
  "Other" : 12

pie title Windows initial access pattern
  "Web / App Exploit" : 58
  "Database Abuse" : 0
  "Credential Abuse" : 0
  "CVE-driven Exploit" : 10
  "Other" : 22

3. Privilege Escalation Primitive Share

pie title Privilege escalation primitive share
  "SUID / GTFOBins-like" : 190
  "sudo policy abuse" : 4
  "Other / Generic" : 110

4. Technique Signal Snapshot

Technique Signal	Posts
rce	227
suid	190
php	198
web	6
sudo	6
cve-*	18
file-upload	4
postgresql	2
Total Writeups	304