Misc
Payloads & Cheatsheets
Copy-paste payloads grouped by attack phase. Open a category to see its cards, or hit ⌘K to search every payload.
Recon
Network enumeration and footprinting: Nmap host discovery, scan types, NSE scripts and firewall evasion.
1 cheatsheetWeb
Web exploitation: fuzzing, SQLi, XSS, SSRF, XXE, file inclusion, upload and more.
64 cheatsheetsPrivilege Escalation
Escalate to root / SYSTEM on Linux and Windows.
2 cheatsheetsAD Attacks
The full Active Directory kill chain: poisoning, password spraying, Kerberoasting, ACL abuse, DCSync, trust attacks and domain dominance.
17 cheatsheetsPassword Attacks
Credential theft and lateral movement: SAM/LSASS/Credential Manager dumping, Linux + network cred hunting, Pass-the-Hash / Ticket / Certificate.
1 cheatsheetPivoting
Tunnel into internal networks: Ligolo, SSH forwards, proxychains.
3 cheatsheetsShells
Reverse / bind shells and TTY upgrades.
2 cheatsheetsMetasploit
The Metasploit Framework: workspaces, modules, sessions and Meterpreter post-exploitation.
1 cheatsheetFile Transfers
Move files on and off targets across Linux and Windows.
1 cheatsheetCracking
Brute-force logins and crack captured hashes.
2 cheatsheets