🔗References

List of references classed by category.

Table of Content

Books

Name	Description
PayloadAllTheThings	A list of useful payloads and bypasses for Web Application Security.
HackTricks	Hacking trick/techniques
haax Cheatsheet	Hacking trick/techniques
The Hacker Recipes	Hacking trick/techniques
Pentesting Bible	Collection of pentest articles (PDF)
Exploit-Notes	Sticky notes for pentesting (pentest, bug bounty, CTF)
Public-pentesting-reports	Collection of public penetration test reports

Name

Description

PayloadAllTheThings

A list of useful payloads and bypasses for Web Application Security.

HackTricks

Hacking trick/techniques

haax Cheatsheet

Hacking trick/techniques

The Hacker Recipes

Hacking trick/techniques

Pentesting Bible

Collection of pentest articles (PDF)

Exploit-Notes

Sticky notes for pentesting (pentest, bug bounty, CTF)

Public-pentesting-reports

Collection of public penetration test reports

Cheatsheet

Name	Description
GTFOBins	List of Unix binaries that can be used to bypass local security restrictions in misconfigured systems.
WADComs	List of offensive security tools and their respective commands, to be used against Windows/AD environments.

Name

Description

GTFOBins

List of Unix binaries that can be used to bypass local security restrictions in misconfigured systems.

WADComs

List of offensive security tools and their respective commands, to be used against Windows/AD environments.

Payloads Creation

Name	Description
Revshells	Reverse shell creation.
Hacktools	Web extension facilitating your web application penetration tests (payloads, cheetsheet.
Webshells	Collection of various webshells.

Name

Description

Revshells

Reverse shell creation.

Hacktools

Web extension facilitating your web application penetration tests (payloads, cheetsheet.

Webshells

Collection of various webshells.

APIs

Name	Description
Beeceptor	Build mock APIs in seconds. Inspect & Intercept HTTP requests.

Name

Description

Beeceptor

Build mock APIs in seconds. Inspect & Intercept HTTP requests.

Wordlists

Name	Description
SecLists	Collection of multiple types of lists used during security assessments.

Name

Description

SecLists

Collection of multiple types of lists used during security assessments.

Binaries

Name	Description
Static-Binary	Bunch of statically-linked binaries of various tools.
Ghostpack-CompiledBinaries	Bunch of statically-linked binaries of various tools.
LOLBAS	Collection of Binaries, Scripts and Libraries.

Name

Description

Static-Binary

Bunch of statically-linked binaries of various tools.

Ghostpack-CompiledBinaries

Bunch of statically-linked binaries of various tools.

LOLBAS

Collection of Binaries, Scripts and Libraries.

Applications / scripts / VM

Name	Description
Mandiant Flare-VM	collection of software installations scripts for Windows (Reverse tools mainly)
Exegol	community-driven hacking environment
Meld	Useful tool for comparing files and directories

Name

Description

Mandiant Flare-VM

collection of software installations scripts for Windows (Reverse tools mainly)

Exegol

community-driven hacking environment

Meld

Useful tool for comparing files and directories

PreviousGlossary NextReconnaissance

Last updated 1 year ago