Monthly Archives: March 2023

223. Exploits for Enumerating Users (OBJ 5.2) In this lesson, we’re going to talk about exploits for enumerating users in a couple of different languages. First, we have PowerShell. If you want to list all the users in a domain, you can simply use this command on one line; Import-Module ActiveDirectory; Get-ADUser-Identity <username>-properties*. This’ll return […]

220. Exploits and Automation (OBJ 5.2) In this section of the course, we’re going to discuss some different exploits and automations that you can perform using scripting and programming language code during your engagements. Now, as we move throughout this section, we’re going to continue looking at the Fifth Domain for our exam, which is […]

216. Coding in JavaScript (OBJ 5.2) In this lesson, we’re going to talk about coding in JavaScript. JavaScript is a truly powerful programming language, that can add interactivity to a website. JavaScript is a relatively compact and flexible language, but programmers have created a lot of different tools, on top of the core JavaScript language, […]

213. Python Example (OBJ 5.2) This time, we’re going to look at a Python script. So here on the screen, you’ll see the Python script. Now again, on the exam, they’re not going to tell you it’s a Python script, they’re going to expect you to be able to figure that out. Now, what are […]

210. Coding in PowerShell (OBJ 5.2) In this lesson, we’re going to take a look at how you can do coding inside of PowerShell. First, let’s talk about commenting your code. Just like we did in Bash, we can use the hashtag to comment a line of code. So if I use hashtag, This is […]

207. Analyzing Scripts (OBJ 5.2) In the last section of the course, we focused on learning the basics of scripting and programming languages by understanding variables, loops, logic control structures, data structures, and some object-oriented programming concepts using pseudocode. Now, in this section of the course, we’re going to focus on some real world scripting […]

203. Loops (OBJ 5.1) In this lesson, we’re going to talk about loops. Loops are one type of flow control that allows you to be able to control which order the code is going to be executed in a given program. For example, if I wanted to run a piece of code 10 different times, […]

200. Scripting Basics (OBJ 5.1 & OBJ 5.2) In this section of the course we’re going to talk about the basics of scripting and how you can create your own scripts during your penetration tests and engagements to automate some or all of your workflow. This topic is really focused on domain five tools and […]

198. Lessons Learned (OBJ 4.2) In this lesson, we’re going to talk about Lessons Learned, which is a key part of your post-report delivery activities. Now, Lessons Learned are an analysis of the events that can provide us insight into how we can improve our penetration testing process in the future. The Lessons Learned process […]

195. Destroy Test Data (OBJ 4.2) In this lesson, we’re going to talk about how you destroy your test data. Now when I’m talking about test data, I’m talking about all the things you’ve collected during this engagement. As you’ve been going through and doing password cracking, as you’ve been going through and doing hash […]