02 Scan
Last updated
Was this helpful?
Last updated
Was this helpful?
Scans:
nmap
dirb
gobuster
nikto
wp-scan
Browse:
http and https - can be diff
ssl certificate details
follow links, paths, clues
source
comments
configs
robots.txt
home directories
versions
login defaults/guessing
path/slash/files =
forms/php = or
Exploits
google 'coldfusion 8 exploits'
searchsploit/exploitdb/blogs/github
Known: - - Directory Traversal
//Heartbleed (Well-Known)
Remote Code Execution (RCE)
CRM/= Vulns, Addon, Upload, Theme
Brute:
login