Skip to content

Navigation Menu

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

TheGetch / Penetration-Testing-Methodology Public

forked from tjnull/TJ-JPT

Notifications You must be signed in to change notification settings
Fork 7
Star 22

Code
Pull requests
Actions
Projects
Wiki
Security
Insights

Additional navigation options

Code
Pull requests
Actions
Projects
Wiki
Security
Insights

Target _1

Jump to bottom

TheGetch edited this page May 14, 2021 · 3 revisions

Target #1

Fill in results or other information about your target here:

Toggle table of contents Pages 148

Home
12. PostgreSQL Enumeration
Ad hoc netcat port scanner
Adding Users
Apache headers Test
BloodHound
Burp Intruder Match_Replace
Bypass Windows Amsi
Bypassing AV
C2 Frameworks
Check HTTP Status of a list of URLs
CIDR to IP Script
Clear bash
Common Meterpreter Commands
Cracking WEP_WPA_WPA 2 PSK Authetication
crackmapexec
CSRF Tokens as Cookie Note
Curl For Blind RCE or Code Injections
Deserialization Basics
Deserialization_ .NET
Deserialization_ Java General
Deserialization_ Java RichFaces
Digitally Sign Files (PowerShell Example)
Directory Fuzzing
DNS Enumeration Tools
DNS Reverse Lookup Brute Force
Dumping Hashes
Editable Service
Enable RDP Windows
Enumeration General Notes
Excel Injection
Exploitation General Notes
File Transfers
Find Command_ Filter out permission denied errors
FTP Enumeration Tools
gcc & wine
Gcc Compile Windows Executable in Linux
Generating IP list from CIDR
Hashcat
HTTP General Notes
Hydra
Identifying Hash Types
IDOR Testing
Impacket
Impacket General Notes
Impacket Kerberoasting
Impacket Scripts Error
John The Ripper
Kerberos_ Get KDC name and DNS name
LDAP Enumeration Tools
Masscan
Medusa
Memcache Enumeration Tools
Metasploit Meterpreter Migrate Process
Mimikatz
MS SQL and MySQL Enumeration Tools
Msfvenom
Nbtscan
Netcat Tips
NetDiscover (ARP Scanning)
Nmap Port Scanning
Nmap Port Scanning_ Aggressive
Nmap Port Scanning_ Slow_Steathly
Notes
Once a list of hosts that are alive on the network
Oneliners
OS Enumeration Ping
OSCP Report Template
Out of band exploitation
Pass the Hash
Password List Generate quick list
Passwords General Notes
Ping Sweep fping
Ping Sweep_ Bash Method
Ping Sweep_ Nmap method
Ping Sweep_ PowerShell Method
Ping Sweep_ Python Method
Ping Sweep_ Windows Method
Pivoting_Tunneling
POP3 Enumeration Tools
Post Exploitation General Notes
Powershell Empire Quick Start Cheatsheet
Powershell tidbits
PrivX Guides
psexec.py
Python Convert .py to .exe
Python Proxy to Burp
RDP Enumeration Tools
Recon General Notes
Redis Enumeration Tools
Redis Remote Code Exeuction Offline Copy
Reserve Shell Cheat Sheet
Responder
Rubeus
Scheduled Jobs Tasks General Notes
SCP Commands
Search for ssh key quickly
sed & awk_ set root password in etc_shadow
Server Side Template Injection (SSTI) Help
Skipfish
SMB Enumeration Tools
SMTP Enumeration Tools
SNMP Enumeration Tools
Spawning TTY Shell
SQL Injection Enumeration Basics
SQL Injection General Notes
SQLi DB2 (IBM)
SQLi MSSQL
SQLi Oracle
SSH Enumeration Tools
SSH_ Generate OpenSSL RSA Key Pair from the Comman
Subdomain Enumeration
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your target here:
Target _1
- Fill in results or other information about your targets here:
Tips for Writing a Report
unicornscan
Veil Simple Usage
VMWare Port Forwarding
WebFOCUS
Windows Trial VMs
Winrm Enumeration Tools
Wordlists
XSS Cheatsheet
XSS Client side redirects
XXE Cheatsheet

_Sidebar

Home

1. Recon

Ping Sweep

Ping Sweep: Windows Method
Ping Sweep: Bash Method
NetDiscover (ARP Scanning
Nbtscan
Ping Sweep: Python Method
Ping Sweep: PowerShell Method
Ping Sweep: Nmap method

CIDR to IP

Generating IP list from CIDR
CIDR to IP Script

2. Enumeration

Enumeration General Notes

Responder
Impacket General Notes
Impacket Kerberoasting

Host/Port Scanning

Port Scanning Tools

Services

01. FTP (21)

02. SSH (22)

03. SMTP (25)

04. DNS (53)

05. HTTP (80,443,8080,8443,etc.)

HTTP General Notes
Cross-Site Scripting (XSS)
- XSS Cheatsheet
- XSS Client side redirects
SQL Injection (SQLi)
Deserialization
Directory Fuzzing
IDOR Testing
Intigriti Bug Bounty Tips
Out of band exploitation
Server-Side Template Injection (SSTI) Help
Subdomain Enumeration
WebFOCUS
XXE Cheatsheet

06. POP3 (110)

07. SMB (139,445)

08. SNMP (161,162)

09. LDAP (389)

10. MS-SQL or MySQL (1433,3306)

11. RDP (3389)

12. Winrm (5985)

13. Memcache (11221)

3. Exploitation

Exploitation General Notes

Bypass Windows Amsi
Bypassing AV
Msfvenom
Netcat Tips

4. Post Exploiation

Post Exploitation General Notes

C2 Frameworks
BloodHound
Powershell Empire Quick Start Cheatsheet
Pivoting/Tunneling
Impacket
Rubeus
Mimikatz

Editable Service

Privilege Escalation

Scheduled Jobs/Tasks

5. High Value Information

Hashes

Identifying Hash Types
Dumping Hashes
- 1. Cracking Hashes Offline
- 1. Cracking Hashes Online
  - Medusa
  - Hydra

6. Reporting

OSCP Report Template
Tips for Writing a Report

7. Random Notes/Useful Tidbits

Clone this wiki locally

Footer

© 2025 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.