Tools for everything
Hacktricks
Cloud Hacktricks
Payloads
Payload all the things (Web and API pentest) : https://swisskyrepo.github.io/PayloadsAllTheThings/
Internet all the things (Cheetsheets for internal and AD pentest): https://swisskyrepo.github.io/InternalAllTheThings/
Enumeration
subdomain finder - https://crt.sh/ Can be invoked using curl:
curl -s https://crt.sh/\?q\=inlanefreight.com\&output\=json | jq .
To sort out unique subdomains:
curl -s https://crt.sh/\?q\=inlanefreight.com\&output\=json | jq . | grep name | cut -d":" -f2 | grep -v "CN=" | cut -d'"' -f2 | awk '{gsub(/\\n/,"\n");}1;' | sort -u
Privilege Escalation
Linux:
linpeas.sh: curl -L https://github.com/peass-ng/PEASS-ng/releases/latest/download/linpeas.sh | sh
linuxprivchecker (python script for linux enumeration): https://github.com/sleventyeleven/linuxprivchecker
Linux priv esc checklist: https://book.hacktricks.wiki/en/linux-hardening/linux-privilege-escalation-checklist.html
Windows:
Windows priv esc checklist: https://book.hacktricks.wiki/en/windows-hardening/checklist-windows-privilege-escalation.html
Seatbelt (C# code): https://github.com/GhostPack/Seatbelt
JAWS (powershell): https://github.com/411Hall/JAWS
Playgrounds
OWASP Juice Shop - Modern web app based on node.js, angular etc with OWASP Top 10: https://owasp.org/www-project-juice-shop/
DVWA - Damn Vulnerable Web Application - Older web app for legacy attacks: https://github.com/digininja/DVWA
Metasploitable3 - Upgraded metasploitable2 version: https://github.com/rapid7/metasploitable3
Portswigger web academy - https://portswigger.net/web-security
Under and Over the wire - For Linux command line and windows powershell mastery https://underthewire.tech/wargames https://overthewire.org/wargames/
Terminal improvements (coz, eh, default— eh!)
tmux - https://github.com/tmux/tmux
Small tmux cheatsheet -
CTRL + B (Hereby referred to as the prefix)
prefix + shift + % (Open a new terminal vertically side by side)
prefix + shift + " (Open a new terminal horizontally downwards)
prefix + arrow buttons <up/down/left/right> (interact with a specific terminal window)
prefix + c (new terminal tab)
prefix + <number> (go to a particular terminal tab)
prefix + shift + <number> (Create a new terminal <tab number> and send a terminal window to a particular terminal tab)

Videos/Channels I refer to
Old retired HTb boxes - Ippsec
John Hammond
Rana Khalil - Portswigger videos explanation
Last updated
Was this helpful?