Skip to main content
View All Products
Compute
Storage
Networking
Databases
Services
Developer Tools
Industries
Pricing
Community
Engage With Us
Explore Content
Series
15
  1. As Seen on TFIR
    56
  2. Cloud Simplified
    56
  3. Craft of Code
    37
  4. DIY Cloud
    51
  5. HackerSploit
    32
  6. In the Node Newsletter
    44
  7. Learnk8s Labs
    8
  8. Linode Kubernetes with Helm
    11
  9. OpenAI Versus Project
    9
  10. Partner Roundups
    26
  11. Super User
    162
  12. Tech With Tim Linux Beginners Series
    14
  13. Terraforming Kubernetes
    6
  14. Top Docs
    75
  15. Try IaC
    5
Featuring
38
  1. Alexis Ahmed (HackerSploit)
    33
  2. Andrew Burke
    1
  3. Austin Gil
    21
  4. Billy Thompson
    14
  5. Brandon Hopkins
    25
  6. Chris Nesbitt-Smith
    2
  7. Chris Psaltis
    1
  8. Code with Harry
    31
  9. Code with Tomi
    13
  10. Daniele Polencic
    2
  11. Darcy Declute
    1
  12. David Burgess
    16
  13. David Flanagan
    1
  14. Florian Walther
    1
  15. Gardiner Bryant
    60
  16. James Steel
    26
  17. Jay LaCroix
    76
  18. Jay Lyman
    1
  19. Jérôme Petazzoni (Tiny Shell Script)
    11
  20. Jose Portilla
    1
  21. Josh | KeepItTechie
    21
  22. Justin Mitchel
    29
  23. Kevin Cunningham
    1
  24. Lana Lux
    5
  25. Liam Eagle
    2
  26. Mauricio “Salaboy” Salatino
    2
  27. Mike Jung
    3
  28. Nelson Djalo
    6
  29. Salman Iqbal
    3
  30. Sam Hawley
    2
  31. Sid Palas
    10
  32. Swapnil Bhartiya
    50
  33. Talia Nassi
    1
  34. Tech with Tim
    27
  35. TechHut
    9
  36. Veronica
    1
  37. Walt Ribeiro
    17
  38. zSecurity
    1
Content Types
7
  1. Customer Stories
    37
  2. Ebooks
    15
  3. Email Newsletters
    44
  4. Project Brief
    1
  5. Research
    5
  6. Videos
    1
  7. Webinars
    29
Categories
13
  1. Cloud Overviews
    19
  2. Compute
    52
  3. Containers (Kubernetes, Docker)
    107
  4. Databases
    27
  5. Developer Tools
    147
  6. Linode
    45
  7. Linux
    80
  8. Multicloud
    3
  9. Networking
    14
  10. Open Source
    16
  11. Partner Network
    40
  12. Security
    57
  13. Storage
    25
In order to see embedded YouTube videos, you must have "performance" cookies enabled in your cookie preferences.
ContentHackerSploitLinux Red Team Exploitation Techniques | Red Team Series 4-12

Linux Red Team Exploitation Techniques | Red Team Series 4-12

This guide is part of the HackerSploit Red Team series of guides. In this video, we will cover Exploitation Techniques for Linux systems. Techniques used to gain a foothold include targeted spear phishing and exploiting weaknesses on public-facing web servers. Footholds gained through initial access may allow for continued access, like valid accounts and use of external remote services, or may be limited use due to changing passwords.

Chapters:
0:01 Introduction
0:39 What We’ll Be Covering
1:07 Mitre Attack Initial Access Techniques
1:32 Our Target Server
2:24 Infrastructure Overview
2:55 Let’s Get Started
3:10 Performing an nmap Scan
5:18 nmap Results
6:48 Accessing their Web Server
7:08 Analyzing the Web Application
7:50 Running a Directory Brute Force
12:15 Configuring the Hosts File
13:30 Tips for Enumerating a WordPress Site
14:12 Scanning a WordPress Site with wpscan
17:04 Working with Users as a Vector
17:47 SSH Brute Force with Hydra
20:12 Logging in with our Brute Forced Credentials
20:40 Enumerating Data on the Remote Server
21:59 Using netstat
22:45 How Do We Access the MySQL Database Server?
25:56 Listing Databases & Tables
27:45 Changing a Database User’s Password
29:22 Logging into wp-admin
30:49 Conclusion

New to Linode? Get started here with a $100 credit.
Read the doc for more information on Exploitation Techniques.
Learn more about Hackersploit.
Subscribe to get notified of new episodes as they come out.

#Linode #Security #RedTeam #Hackersploit
Product: Linode, Security, Red Team; Hackersploit;

You might also like…

  1. Hackersploit and Docker Image Analysis with Trivy.

    All-In-One Open Source Security Scanner Docker Image Analysis with Trivy

    Trivy is used by cybersecurity experts to find vulnerabilities & IaC misconfigurations, SBOM discovery and more.
  2. How SSL, TLS, & HTTPS Work video thumbnail

    How SSL, TLS, & HTTPS Work | Keeping Your Connections Safe

    In this video, @gardiner_bryant explains HTTPS (Hyper Text Transport Protocol Secure) and how SSL and TLS keep your connection safe.
  3. Wazuh Intrusion Detection featuring Alexis Ahmed

    Intrusion Detection with Wazuh – Blue Team Series with Hackersploit

    In this episode of our Blue Team series with @HackerSploit, we cover intrusion detection with Wazuh, an open source detection application.
  4. Snort Intrusion Detection Featuring Alexis Ahmed

    Intrusion Detection with Snort – Blue Team Series with Hackersploit

    In this second episode of our Blue Team series @HackerSploit introduces intrusion detection with Snort, a powerful intrusion detection app.
Prev Next