# RODGAR ## RODGAR - [Active Directory](https://rodgar.gitbook.io/rodgar/active-directory.md) - [Hard](https://rodgar.gitbook.io/rodgar/active-directory/hard.md) - [HackTheBox Fries](https://rodgar.gitbook.io/rodgar/active-directory/hard/hackthebox-fries.md) - [HackTheBox NanoCorp](https://rodgar.gitbook.io/rodgar/active-directory/hard/hackthebox-nanocorp.md) - [Medium](https://rodgar.gitbook.io/rodgar/active-directory/medium.md) - [HackTheBox TombWatcher](https://rodgar.gitbook.io/rodgar/active-directory/medium/hackthebox-tombwatcher.md): Como es común en las pruebas de penetración de Windows en la vida real, iniciará el cuadro TombWatcher con las credenciales para la siguiente cuenta --> henry / H3nry\_987TGV! - [HackTheBox Administrator](https://rodgar.gitbook.io/rodgar/active-directory/medium/hackthebox-administrator.md): Machine Information As is common in real life Windows pentests, you will start the Administrator box with credentials for the following account: Username: Olivia Password: ichliebedich - [HackTheBox Escape](https://rodgar.gitbook.io/rodgar/active-directory/medium/hackthebox-escape.md) - [HackTheBox Authority](https://rodgar.gitbook.io/rodgar/active-directory/medium/hackthebox-authority.md) - [Easy](https://rodgar.gitbook.io/rodgar/active-directory/easy.md) - [HackTheBox MonitorsFour](https://rodgar.gitbook.io/rodgar/active-directory/easy/hackthebox-monitorsfour.md) - [HackTheBox Active](https://rodgar.gitbook.io/rodgar/active-directory/easy/hackthebox-active.md) - [HackTheBox Sauna](https://rodgar.gitbook.io/rodgar/active-directory/easy/hackthebox-sauna.md) - [HackTheBox Forest](https://rodgar.gitbook.io/rodgar/active-directory/easy/hackthebox-forest.md) - [HackTheBox Cicada](https://rodgar.gitbook.io/rodgar/active-directory/easy/hackthebox-cicada.md) - [HackTheBox Timelapse](https://rodgar.gitbook.io/rodgar/active-directory/easy/hackthebox-timelapse.md) - [HackTheBox Return](https://rodgar.gitbook.io/rodgar/active-directory/easy/hackthebox-return.md) - [VulnLab](https://rodgar.gitbook.io/rodgar/plataformas/vulnlab.md) - [VulnLab Breach](https://rodgar.gitbook.io/rodgar/plataformas/vulnlab/vulnlab-breach.md) - [VulnLab Data](https://rodgar.gitbook.io/rodgar/plataformas/vulnlab/vulnlab-data.md) - [TryHackme](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme.md) - [TryHackme 0day](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-0day.md) - [TryHackme Daily Bugle](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-daily-bugle.md): Comprometer una cuenta de Joomla CMS a través de SQLi, practique descifrar hashes y aumente sus privilegios aprovechando yum. - [TryHackme Blog](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-blog.md): ¡Billy Joel hizo un blog en Wordpress! - [TryHackme Year of the Owl](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-year-of-the-owl.md): El búho tonto se sienta en su trono... - [TryHackme Wgel CTF](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-wgel-ctf.md): ¿Puedes exfiltrar la bandera raíz? - [TryHackme Chill Hack](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-chill-hack.md) - [TryHackme Wonderland](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-wonderland.md) - [TryHackne OhSINT](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackne-ohsint.md) - [TryHackme Cold VVars](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-cold-vvars.md) - [TryHackme Dav](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-dav.md) - [TryHackme RootMe](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-rootme.md) - [TryHackMe Basic Pentesting](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-basic-pentesting.md) - [TryHackMe Simple-CTF](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-simple-ctf.md) - [TryHackMe Vulnversity](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-vulnversity.md) - [Tryhackme Kenobi](https://rodgar.gitbook.io/rodgar/plataformas/tryhackme/tryhackme-kenobi.md) - [VulnHub](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub.md) - [Inferno](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/inferno.md) - [Election](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/election.md): Hoy vamos a resolver la maquina Election1 de OffSec nivel de dificultad media - [SYMFONOS 3](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/symfonos-3.md): Bueno seguimos con la seria de maquinas SYMFONOS - [SYMFONOS 2](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/symfonos-2.md) - [DJinn-3](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/djinn-3.md) - [Durian 1](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/durian-1.md) - [DarkHole 2](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/darkhole-2.md) - [OffSec DC-9](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/offsec-dc-9.md) - [OffSec Potato](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/offsec-potato.md) - [OffSec Pwned1](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/offsec-pwned1.md) - [OffSec VIKINGS](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/offsec-vikings.md) - [OffSec Tre](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/offsec-tre.md) - [OffSec MoneyBox](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/offsec-moneybox.md): Hoy vamos a hacer la maquina Money es facil asi que atento mi pana. - [OffSec DEATHNOTE](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/offsec-deathnote.md) - [OffSec Gaara](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/offsec-gaara.md) - [OffSec NoName](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/offsec-noname.md) - [OffSec Katana](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/offsec-katana.md) - [OffSec Sick0s](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/offsec-sick0s.md) - [OffSec BTRSys2.1](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/offsec-btrsys2.1.md) - [OffSec FunboxRookie](https://rodgar.gitbook.io/rodgar/plataformas/vulnhub/offsec-funboxrookie.md) - [The Hackers Labs](https://rodgar.gitbook.io/rodgar/plataformas/the-hackers-labs.md) - [The Hacker Labs Shadow](https://rodgar.gitbook.io/rodgar/plataformas/the-hackers-labs/the-hacker-labs-shadow.md) - [The Hackers Labs Company](https://rodgar.gitbook.io/rodgar/plataformas/the-hackers-labs/the-hackers-labs-company.md) - [The Hackers Labs Offensive](https://rodgar.gitbook.io/rodgar/plataformas/the-hackers-labs/the-hackers-labs-offensive.md) - [The Hackers Labs Resident](https://rodgar.gitbook.io/rodgar/plataformas/the-hackers-labs/the-hackers-labs-resident.md) - [The Hacker Labs Base](https://rodgar.gitbook.io/rodgar/plataformas/the-hackers-labs/the-hacker-labs-base.md) - [The Hackers Labs Statue](https://rodgar.gitbook.io/rodgar/plataformas/the-hackers-labs/the-hackers-labs-statue.md) - [The Hackers Labs Luna](https://rodgar.gitbook.io/rodgar/plataformas/the-hackers-labs/the-hackers-labs-luna.md) - [The Hackers Labs Templo](https://rodgar.gitbook.io/rodgar/plataformas/the-hackers-labs/the-hackers-labs-templo.md) - [The Hackers Labs GOIKO](https://rodgar.gitbook.io/rodgar/plataformas/the-hackers-labs/the-hackers-labs-goiko.md) - [The Hackers Labs Microsoft](https://rodgar.gitbook.io/rodgar/plataformas/the-hackers-labs/the-hackers-labs-microsoft.md): En esta ocasion vamos a resolver una maquina facil de esta nueva plataforma gratuita donde tenemos variedad no solo linux. - [Hack The Box](https://rodgar.gitbook.io/rodgar/plataformas/hack-the-box.md) - [Hack The Box Helix](https://rodgar.gitbook.io/rodgar/plataformas/hack-the-box/hack-the-box-helix.md) - [Hack The Box Principal](https://rodgar.gitbook.io/rodgar/plataformas/hack-the-box/hack-the-box-principal.md) - [Escalada de Privilegios](https://rodgar.gitbook.io/rodgar/othe/escalada-de-privilegios.md) - [Abuso de grupos de usuario especiales](https://rodgar.gitbook.io/rodgar/othe/escalada-de-privilegios/abuso-de-grupos-de-usuario-especiales.md) - [Docker](https://rodgar.gitbook.io/rodgar/othe/escalada-de-privilegios/abuso-de-grupos-de-usuario-especiales/docker.md) - [LXD](https://rodgar.gitbook.io/rodgar/othe/escalada-de-privilegios/abuso-de-grupos-de-usuario-especiales/lxd.md) - [ADM](https://rodgar.gitbook.io/rodgar/othe/escalada-de-privilegios/abuso-de-grupos-de-usuario-especiales/adm.md) - [Abuso de permisos incorrectamente implementados](https://rodgar.gitbook.io/rodgar/othe/escalada-de-privilegios/abuso-de-permisos-incorrectamente-implementados.md) - [Detección y explotación de Capabilities](https://rodgar.gitbook.io/rodgar/othe/escalada-de-privilegios/deteccion-y-explotacion-de-capabilities.md) - [Tareas Crom](https://rodgar.gitbook.io/rodgar/othe/escalada-de-privilegios/tareas-crom.md) - [Path Hijacking](https://rodgar.gitbook.io/rodgar/othe/escalada-de-privilegios/path-hijacking.md) - [Abusando de privilegios a nivel de Sudoers](https://rodgar.gitbook.io/rodgar/othe/escalada-de-privilegios/abusando-de-privilegios-a-nivel-de-sudoers.md): El archivo sudoers es un archivo que incluye una lista de los usuarios que pueden usar el comando sudo para obtener privilegios root (no restrictivo) - [Abusando de privilegios SUID](https://rodgar.gitbook.io/rodgar/othe/escalada-de-privilegios/abusando-de-privilegios-suid.md): Este permiso especial permite a un usuario acceder a los archivos y directorios que, normalmente, están disponibles sólo para el propietario. - [OWASP TOP 10](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10.md) - [SQL Injections](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/sql-injections.md): Bueno vamos a practicar un poco de SQL Injection con una maquina de Vulnhub. - [XSS](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/xss.md) - [XXE](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/xxe.md) - [Path traversal Lab](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/path-traversal-lab.md) - [LFI con Wrappers](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/lfi-con-wrappers.md) - [Log Poisoning (LFI -> RCE)](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/log-poisoning-lfi-greater-than-rce.md) - [Server-Side Template Injection (SSTI)](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/server-side-template-injection-ssti.md) - [Ataque de oráculo de relleno (Padding Oracle)](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/ataque-de-oraculo-de-relleno-padding-oracle.md) - [Inyecciones LaTeX](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/inyecciones-latex.md) - [Ataques de transferencia de zona (AXFR – Full Zone Transfer)](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/ataques-de-transferencia-de-zona-axfr-full-zone-transfer.md) - [Enumeración y explotación de WebDAV](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/enumeracion-y-explotacion-de-webdav.md) - [ShellShock](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/shellshock.md) - [Enumeración y explotación de SQUID Proxies](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/enumeracion-y-explotacion-de-squid-proxies.md) - [Insecure Direct Object Reference (IDORs)](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/insecure-direct-object-reference-idors.md) - [Json Web Token](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/json-web-token.md) - [Intercambio de recursos de origen cruzado (CORS)](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/intercambio-de-recursos-de-origen-cruzado-cors.md) - [Abuso de subidas de archivos](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/abuso-de-subidas-de-archivos.md) - [Laboratorio 1](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/abuso-de-subidas-de-archivos/laboratorio-1.md) - [Laboratorio 2](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/abuso-de-subidas-de-archivos/laboratorio-2.md) - [Laboratorio 3](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/abuso-de-subidas-de-archivos/laboratorio-3.md) - [Laboratorio 4](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/abuso-de-subidas-de-archivos/laboratorio-4.md) - [Laboratorio 5](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/abuso-de-subidas-de-archivos/laboratorio-5.md) - [Laboratorio 6](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/abuso-de-subidas-de-archivos/laboratorio-6.md) - [Laboratorio 7](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/abuso-de-subidas-de-archivos/laboratorio-7.md) - [Laboratorio 8](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/abuso-de-subidas-de-archivos/laboratorio-8.md) - [Laboratorio 9](https://rodgar.gitbook.io/rodgar/othe/owasp-top-10/abuso-de-subidas-de-archivos/laboratorio-9.md) - [Pivoting](https://rodgar.gitbook.io/rodgar/othe/pivoting.md) - [Pivoting](https://rodgar.gitbook.io/rodgar/othe/pivoting/pivoting.md) - [Internal TryHackme](https://rodgar.gitbook.io/rodgar/othe/pivoting/internal-tryhackme.md) - [Basic /Doctor](https://rodgar.gitbook.io/rodgar/othe/pivoting/basic-doctor.md): Esta vez vamos a practicar un poco de pivoting con la maquina Basci y Doctor de Vulnyx. - [Pluck /Brain](https://rodgar.gitbook.io/rodgar/othe/pivoting/pluck-brain.md) --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on a page URL with the `ask` query parameter: ``` GET https://rodgar.gitbook.io/rodgar/active-directory.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.