Skip to content

mimicbox/cheatsheets

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

63 Commits
NIkto-Cheat-Sheet.pdf
NIkto-Cheat-Sheet.pdf
 
 
README.md
README.md
 
 
SQLi-Cheat.md
SQLi-Cheat.md
 
 
basic_pentest.md
basic_pentest.md
 
 
cmd.exe_cheat.md
cmd.exe_cheat.md
 
 
docker_cheatsheet_r3v2.pdf
docker_cheatsheet_r3v2.pdf
 
 
file_transfer_cheat.md
file_transfer_cheat.md
 
 
find_command_cheat.sh
find_command_cheat.sh
 
 
fuff.md
fuff.md
 
 
git-cheat-sheet-education.pdf
git-cheat-sheet-education.pdf
 
 
http_codes.md
http_codes.md
 
 
hydra_cheat.md
hydra_cheat.md
 
 
john_cheat.pdf
john_cheat.pdf
 
 
linux_cmds.md
linux_cmds.md
 
 
login_brute_force.md
login_brute_force.md
 
 
metasploit_cheat.md
metasploit_cheat.md
 
 
msfvenom_cheat.md
msfvenom_cheat.md
 
 
nmap_cheat.md
nmap_cheat.md
 
 
osint_cheat_sheet.pdf
osint_cheat_sheet.pdf
 
 
powershell_cheatsheet.md
powershell_cheatsheet.md
 
 
powerview_cheatsheet.ps1
powerview_cheatsheet.ps1
 
 
splunk-quick-reference-guide.pdf
splunk-quick-reference-guide.pdf
 
 
sqlmap_cheat.md
sqlmap_cheat.md
 
 
windows_to_unix_commands.md
windows_to_unix_commands.md
 
 
wireshark_cheat.md
wireshark_cheat.md
 
 

Repository files navigation

cheatsheets TODO: Organize this thing

All of my cheatsheets for pentest/ctf

Sourced from around the web, or compiled by myself

Payloads

https://github.com/swisskyrepo/PayloadsAllTheThings Hugely helpful repo of pretty much everything payload

Reverse Shells

https://highon.coffee/blog/reverse-shell-cheat-sheet/

Upgrading a Shell to tty (including ctrl+c and tab complete)

python3 -c 'import pty; pty.spawn("/bin/bash")'
ctrl + z
stty -a <--- take note of rows and columns
stty raw -echo; fg
stty rows <x> columns <y>

Further info: https://blog.ropnop.com/upgrading-simple-shells-to-fully-interactive-ttys/

Session Hijacking

https://resources.infosecinstitute.com/topic/session-hijacking-cheat-sheet/

GTFOBINS(exploiting UNIX binaries)

https://gtfobins.github.io/

OWASP Cheatsheet series

https://github.com/OWASP/CheatSheetSeries

Active Directory Exploitation

https://github.com/S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet

REGEX (Because who remembers regex)

https://cheatography.com/davechild/cheat-sheets/regular-expressions/

https://pythex.org <--- great tool to test REGEX for python

Python

https://www.pythoncheatsheet.org/

CTF Resources (Including links to CTFs themselves)

https://github.com/apsdehal/awesome-ctf

Linux Priv Escalation

https://blog.g0tmi1k.com/2011/08/basic-linux-privilege-escalation/

Windows Priv Escalation

https://infosecwriteups.com/privilege-escalation-in-windows-380bee3a2842

HTTP Headers

https://kapeli.com/cheat_sheets/HTTP_Header_Fields.docset/Contents/Resources/Documents/index

OSINT Framework

https://osintframework.com/

DNS Enumeration (Helpful for subdomains)

https://medium.com/@klockw3rk/back-to-basics-dns-enumeration-446017957aa3

Google Dorking

https://www.sans.org/security-resources/GoogleCheatSheet.pdf

More powershell commands

https://book.hacktricks.xyz/windows/basic-powershell-for-pentesters/powerview

INFOSEC Infographics

https://medium.com/malware-buddy/security-infographics-9c4d3bd891ef#18dd

THC Cheat Sheet (Hacking Tricks and Tips)

https://github.com/hackerschoice/thc-tips-tricks-hacks-cheat-sheet

About

All of my cheatsheets for pentest/ctf/infosec

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages