Skip to main content

Documentation Index

Fetch the complete documentation index at: https://rootea.es/llms.txt

Use this file to discover all available pages before exploring further.

Fulcrum

··
Operating systemLinux
DifficultyInsane
IP10.10.10.62
Retirement date
SkillsAPI Enumeration - Endpoint Brute Force Advanced XXE Exploitation (XML External Entity Injection) XXE - Custom Entities XXE - External Entities XXE - XML Parameter Entities XXE - Blind SSRF (Exfiltrate data out-of-band) + Base64 Wrapper [Reading Internal Files] XXE + RFI (Remote File Inclusion) / SSRF to RCE Host Discovery - Bash Scripting Port Discovery - Bash Scripting Decrypting PSCredential Password with PowerShell PIVOTING 1 - Tunneling with Chisel + Evil-WinRM Gaining access to a Windows system PowerView.ps1 - Active Directory Users Enumeration (Playing with Get-DomainUser) Information Leakage - Domain User Password PIVOTING 2 - Using Invoke-Command to execute commands on another Windows server Firewall Bypassing (Playing with Test-NetConnection in PowerShell) - DNS Reverse Shell Authenticating to the DC shares - SYSVOL Enumeration Information Leakage - Domain Admin Password PIVOTING 3 - Using Invoke-Command to execute commands on the Domain Controller (DC)

Writeups

LanguageAuthorFormatLink
🇪🇸 ESS4vitarVídeoOpen
🇬🇧 EN0xdfTextoOpen
🇬🇧 ENIppSecVídeoOpen

Skill resources

Curated documentation for each technique listed in the Skills column above. Sources: HackTricks, GTFOBins, PortSwigger, etc.
SkillSourceLink
Remote File Inclusion (RFI)HackTricksOpen
XML External EntityHackTricksOpen
Active DirectoryHackTricksOpen
Server-Side Request ForgeryHackTricksOpen
Remote Code Execution (RCE)HackTricksOpen