Skip to content

CompassSecurity/Hacking_Tools_Cheat_Sheet

Repository files navigation

Hacking Tools Cheat Sheet

Blog

See our blog post for more information:
https://blog.compass-security.com/2019/10/hacking-tools-cheat-sheet/

The cheat sheet contains:

  • Basic Linux Networking Tools (ip, dig)
  • Information Gathering (whois, CT logs, subdomain enumeration)
  • TCP Tools (ncat)
  • TLS Tools (openssl, ncat, sslyze, socat)
  • HTTP Tools (python webserver, curl, nikto, gobuster)
  • Sniffing (ARP spoofing, tcpdump, Wireshark, …)
  • Network Scanning (nmap, masscan)
  • Shells (Bind/reverse shells)
  • Vulnerability DBs and Exploits (searchsploit and some links)
  • Cracking (ncrack, hashcat, John the Ripper)
  • Metasploit Framework (Use exploits, generate shells, shell listeners, meterpreter, pivoting, SOCKS proxying)
  • Linux Privilege Escalation (LinEnum, lynis, GTFOBins)
  • Windows Privilege Escalation (PowerSploit, smbmap)
  • Windows Credentials Gathering (mimikatz, lsadump)
  • Passh-The-Hash (Lots of impacket tools)
  • NTLM Relay (ntlmrelayx, SOCKS proxying)
  • Active Directory (BloodHound & PingCastle)
  • Online References

Download

PDF

Download: hacking_tools_cheat_sheet_v2.0.pdf

Images

Page 1:

Hacking Tools Cheat Sheet Page 1

Page 2:

Hacking Tools Cheat Sheet Page 2

Page 3:

Hacking Tools Cheat Sheet Page 2