CARTP-cheatsheet
CARTP-cheatsheet copied to clipboard
Published
20 hours ago •
0xJs
0xJs
Azure AD cheatsheet for the CARTP course
CARTP-cheatsheet
Azure AD cheatsheet for the CARTP course
Index
- General
- Recon \ OSINT
- Initial access attacks
- Authenticated enumeration
- Privilege Escalation
- Cloud <-> On-Prem - Lateral Movement
- Persistence
General
- List of Microsoft portals https://msportals.io/
- Great resources
- https://pentestbook.six2dez.com/enumeration/cloud/azure
- https://github.com/Kyuu-Ji/Awesome-Azure-Pentest
- https://github.com/dafthack/CloudPentestCheatsheets/blob/master/cheatsheets/Azure.md
Access C disk of a computer (check local admin)
ls \\<COMPUTERNAME>\c$
Use this parameter to not print errors powershell
-ErrorAction SilentlyContinue
Rename powershell windows
$host.ui.RawUI.WindowTitle = "<NAME>"
Save Credentials
$creds = get-credential
$password = ConvertTo-SecureString '<PASSWORD>' -AsPlainText -Force
$creds = New-Object System.Management.Automation.PSCredential('<USERNAME>', $password)
Find a specific file
Get-Childitem -Path C:\ -Force -Include <FILENAME OR WORD TO SEARCH> -Recurse -ErrorAction SilentlyContinue
PSSession
Save pssession in variable
$sess = New-PSSession -Credential $creds -ComputerName <IP>
Run commands on machine
Invoke-Commannd -ScriptBlock {COMMAND} -Session $sess
Load script on machine
Invoke-Commannd -Filepath <PATH TO SCRIPT> -Session $sess
Copy item through PSSession
Copy-Item -ToSession $sess -Path <PATH> -Destination <DEST> -verbose
0xJs