Pentest
  • Homepage
  • Pentest Links
  • 01 Prep
    • Target Inventory
    • OSINT and Dorks
    • Recon-ng dns zone snoop
    • ❤️Gitbook
  • 02 Scan
    • *Favorites
    • Burp
    • Dirb nikto wpscan etc
    • Enum Finger and Brute SSH
    • Fuzzing
    • Nmap
    • Open Port Checks OneLiner
    • Port Knocking
    • SSL Issues
    • Tcpdump
  • 03 Getting In
    • Char Evasion Tricks
    • Email SMTP
    • Eternal Blue
    • FTP
    • heartbleed
    • Metasploit
    • MySql
    • NFS
    • Oracle
    • Postgres
    • PowerShell Empire
    • Shells
    • rpc
    • SMB Samba
    • SSH Tips
    • SQLite3
    • Veil
  • 04 WebApps
    • Apache
    • Blogs
    • Coldfusion
    • Content Management (CMS)
    • Drupal
    • Elastix FreePBX
    • HttpFileServer (HFS)
    • IIS
    • IIS6 WebDav
    • Local File Inclusion (LFI)
    • Magento
    • Nagios
    • PFSense
    • php
    • php type juggling
    • phpLite
    • Web Injections
    • Javascript
    • Shellshock
    • SQL Injections (sqli)
    • SQLMap
    • WAF
    • Webmin
    • Web Scrape
    • Wordpress
  • 05 Passwords & Ciphers
    • Cipher Decrypt
    • Cipher RSA Wiener P-Q-E
    • Cracking
    • Dict Guess List Mangle
    • Get Hashes
    • Hydra Brutes
    • Images Exif Steg
    • Malware Analysis
    • Pull Hashes PCredz
    • SSH PrivKey Passphrase
    • Unzip Crack
    • Windows PW
  • 06 Linux PrivEsc
    • 1 Look Around
    • 2 Enums
    • 3 PrivEsc
    • 4 Kernel Exploits
    • 5 Looting
    • binaries
    • Buffer Overflow
    • bash prison
    • Monitor Files
    • mongodb node
    • Pivots
    • Remote Execute
    • Shell TTY Fix
    • TAR backups
    • Transfer Files
    • vnc
  • 07 Windows PrivEsc
    • 1 Windows cmd kungfu
    • 2 Enums
    • 3 PrivEsc
    • 4 Kernel Exploits
    • 5 Looting
    • Bloodhound
    • DLL Hijack MSF
    • Kerberos
    • Memory Analysis
    • NTDS
    • Powershell
    • Responder
    • Saved Creds runas
Powered by GitBook
On this page
  • Pentest Docs, Authorization Template, Get Out of Jail Letter
  • PenTest Cheat Sheets
  • PrivEsc
  • Exploits/CVE
  • Move Files
  • Buffer Overflows
  • Python
  • Hacking Challenges
  • OSCP Study Guides:
  • Best HTB Walkthroughs

Was this helpful?

Pentest Links

Pentest Docs, Authorization Template, Get Out of Jail Letter

  • http://www.counterhack.net/permission_memo.html

  • https://www.trustedsec.com/tools/physical-security-assessment-documentation/

  • https://github.com/trustedsec/physical-docs

PenTest Cheat Sheets

  • PentestingCheatsheet

  • KaliCheatsheet-HSploit

  • PentestingTools-HighOnCoffee

  • PenTest Methodology-hacktricks ***

  • Zero to OSCP in 292 Days

  • ****areyou1or0-OSCP-CommandsForOSCP ***

  • MiesslerSecLists-Docs,PrivescsPpwlist

  • PayloadAllTheThings .. "All the Tools you could ever want"

  • MetasploitCheatSheet-SANS

  • Big-List-of-Naughty-Strings

  • Restricted-Linux-Shell-Escaping-Techniques

  • PassingTheOSCP

  • ****HttpStaticServer-OneLiners****

  • ****google-nmap-robots-lfi-rce ..need more research

  • https://six2dez.gitbook.io/pentest-book/

PrivEsc

  • ****gtfobins.github.io ***

  • ****lolbas-project.github.io - for windows

  • PentestMonkey.net_ReverseShells

  • PrivEsc1N3 ..PrivEsc Win/Linux/Mac

Exploits/CVE

  • Mitre CVE Search

  • Github CVE-Search

  • OffensiveSecurity-BinSploits ..this is blowing my mind here!!

Move Files

  • Files from Kali to Windows (Easy: SMB, FTP, TFTP)

Buffer Overflows

  • https://github.com/Mrnmap/OSCP2020/tree/master/BufferOverflow

  • CyberMentor: https://www.youtube.com/playlist?list=PLLKT__MCUeix3O0DPbmuaRuR_4Hxo4m3G

  • CyberMentor Guide: https://github.com/johnjhacking/Buffer-Overflow-Guide

  • https://assassinukg.github.io/bufferoverflow/bufferoverflow-vulnserver/

  • https://github.com/justinsteven/dostackbufferoverflowgood/

  • gh0x0st Method: https://github.com/gh0x0st/Buffer_Overflow

Python

  • Google's Python Class: https://developers.google.com/edu/python

  • Python First Steps https://docs.microsoft.com/en-us/learn/paths/python-first-steps/

  • Python for Everybody https://www.youtube.com/watch?v=8DvywoWv6fI

  • Violent Python3: https://github.com/EONRaider/violent-python3

  • Black Hat Python3: https://github.com/EONRaider/blackhat-python3

  • Ethical Hacking: https://github.com/The-Art-of-Hacking/h4cker

  • Network-Cookbook https://github.com/PacktPublishing/Python-Network-Programming

  • Offensive Pentest https://github.com/PacktPublishing/Python-for-Offensive-PenTest

  • Python for Pentesters: https://www.pentesteracademy.com/course?id=1 (with paid subscription)

  • WebDevPro: https://www.youtube.com/channel/UCFhHkl9miEIaxNLjSYPBsMg/search?query=python

  • NSA Training: https://twitter.com/0xdeeb/status/1226388929626202112

  • The Coder's Apprentice https://www.spronck.net/pythonbook/

Hacking Challenges

  • overthewire.com

  • HackingChallengeList(blackroomsec)

  • PracticeLabs(mindmap)

  • CTF Resources(github)

  • CTF Notes (nopresearcher)

  • CTF Resources(r00k)

OSCP Study Guides:

  • OWASP Juice Shop

  • Useful Oscp Notes and Commands

  • johnjhacking prep guide

  • PenTest Methodology hacktricks

  • Zero to OSCP in 292 Days

  • Falconspy OSCP Approved Tools

  • OSCP-Human-Guide ..tons of stuff, including wp-scan options

  • OSCP-Commands

  • OSCP-Enum-StrongCourage

  • https://refabr1k.gitbook.io/oscp/

  • https://sushant747.gitbooks.io/total-oscp-guide/content/

  • https://sushant747.gitbooks.io/total-oscp-guide/content/list_of_common_ports.html --Great!!

  • https://github.com/cepxeo/pentest_notes/blob/master/offensive_sec.txt

Best HTB Walkthroughs

  • https://dm7500.github.io/oscp-prep/ ..David Martinez

  • https://ranakhalil101.medium.com/ ..Rana Khalil

  • https://int0x33.medium.com/day-73-oscp-notes-from-ippsec-oscp-style-videos-b6522a8d875a

PreviousHomepageNext01 Prep

Last updated 2 years ago

Was this helpful?