Security Workbook on Pentesting
Search…
Security Workbook on Pentesting
About us
References
Bug Bounty
Resources
Web-App Pentest
API Pentest
Android App Pentest
iOS App Pentest
Network Pentest
Source Code Review
Cloud Security
Thick Client Pentesting
Architecture
Testing Approach
Hardcoded Sensitive information
Unquoted Service Paths
DLL Hijacking
SQL Injection
Lack of code obfuscation
Buffer Overflow
Mindmaps
Tools Cheat Sheet
Burp Extensions For Bug Bounty & Pen-Testing
Tools Used For Android Testing
Bug Bounty & Pen-Test Templates
CTF's
Powered By GitBook
Thick Client Pentesting
As of Now added references will be adding clear details soon
Thick client applications, called desktop applications, are full-featured computers that are connected to a network. Unlike thin clients, which lack hard drives and other features, thick clients are functional whether they are connected to a network or not.
While a thick client is fully functional without a network connection, it is only a “client” when it is connected to a server. The server may provide the thick client with programs and files that are not stored on the local machine’s hard drive
References
https://payatu.com/blog/farid/Thick-Client-Basic
Thick Client Penetration Testing Methodology
CyberArk
An introduction to privileged file operation abuse on Windows - Almond Offensive Security Blog
From thick client exploitation to becoming Kubernetes cluster Admin — The story of a fun bug we…
Medium
More Thick Client Fun!
Medium
thick client proxying
summitt/Burp-Non-HTTP-Extension | ★1201
jitpack
https://owasp.org/www-pdf-archive/Thick_Client_%28In%29Security_-_Neelay_S_Shah_-_Mar_24.pdf
Introduction to Hacking Thick Clients: Part 1 - the GUI
NetSPI
Build a TCP proxy in Python (part 1/3)
Medium
Previous
Cloud Security
Next
Architecture
Last modified 7mo ago
Copy link