awesome-pentest-cheat-sheets

Collection of cheat sheets useful for pentesting

648

GitHub Stars

166

Curated Resources

Use this list with your AI agent

Add the Context Awesome MCP server to Claude, Cursor, or any MCP client, then ask:

"Show me enumeration resources from awesome-pentest-cheat-sheets"

0xdf - SMB EnumerationEnumeration
0xdf's SMB Enumeration Cheat Sheet.
AmassDiscovery
OWASP Network mapping of attack surfaces and external asset discovery using open source information.
Awesome Windows Post ExploitationPost-Exploitation
Collection of resources for Windows Post-Exploitation.
Basic Linux Privilege EscalationPrivilege Escalation
Linux Privilege Escalation by
CensysDiscovery
Similar to shodan, search engine for specific devices including IoT.
checksec.shPrivilege Escalation
Bash script to check the properties of executables (like PIE, RELRO, PaX, Canaries, ASLR, Fortify Source).

Active Directory Exploitation Cheat Sheet
Cheat sheet for Active Directory Exploitation.
GOAD
Vulnerable-by-Design Active Directory environment.
HackTricks - Active Directory Pentesting
HackTricks Collection of Active Directory Pentesting.
OSCP Active Directory Cheat Sheet
Cheat sheet for Active Directory Attacks used in OSCP.
Resource Collection #1
Collection of Active Directory Pentesting resources #1.
Resource Collection #2
Collection of Active Directory Pentesting resources #2.

AllAboutBugBounty
BugBounty notes gathered from various sources.
Awesome BugBounty Tools
A curated list of various bug bounty tools.
BBRE Podcast
Bug Bounty Reports Explained Podcast.
bug-bounty-platforms
Open-Sourced Collection of Bug Bounty Platforms.
Bug Bounty ReferenceWrite-Ups
Huge list of bug bounty write-up that is categorized by the bug type (SQLi, XSS, IDOR, etc.).
Bug-Bounty-Resources
Collection of Bug Bounty Resources #2.

AndroGoatAndroid
Android-Insecurebankv2Android
Android Pentest Checklist XmindAndroid
Xmind mindmap for Android Penetration Tests.
Android Pentesting Cheat sheetAndroid
Android Pentesting Resources #1.
Android Pentesting ChecklistAndroid
Case-by-case Checklist for Android Pentests.
Can i jailbreak?Apple
List of each jailbreak needed for each iOS version.

Awesome Azure PentestAzure
A curated list of useful tools and resources for penetration testing and securing Microsofts cloud platform Azure.
Awesome Kubernetes (K8s) SecurityKubernetes
Collection of Kubernetes security resources.
HackingKubernetesKubernetes
Collection of Kubernetes Pentesting Resources.
HackTricks - Azure PentestingAzure
HackTricks Collection of Kubernetes Pentesting.
HackTricks - Kubernetes PentestingKubernetes
HackTricks Collection of Kubernetes Pentesting.
KubePwnKubernetes
Another Collection of resources about Kubernetes security.

Awesome Security Talks
Curated list of Security Talks and Videos.
Confsec
List of Security Events 2024.
Cybersecurity Conference Directory
All Cybersecurity, InfoSec & IT Conferences and Events.
InfoCon
The Hacking Conference Archive.

Awesome Web Hacking
Collection of resources for Web Pentesting #1.
Awesome Web Security
Collection of resources for Web Pentesting #2.
Browser's-XSS-Filter-Bypass-Cheat-Sheet
Excellent List of working XSS bypasses running on the latest version of Chrome, Safari, Edge created by Masato Kinugawa.
Cross-Site-Scripting Cheat sheet
PortSwigger Cross-Site-Scripting (XSS) Cheat sheet.
Google CSP Evaluator
Google's CSP Evaluator
OWASP Web Security Testing Guide

Binary Exploitation Notes
Ir0nstone's Binary Exploitation Notes.
Binary Exploitation Red Team Notes
Ired.team notes for Binary Exploitation.
checksec.py
Cross-Platform CheckSec Tool for checking binary security properties.
GDB PEDA Cheat sheet
Cheat sheet for PEDA GDB plug-in.
HackTricks - Binary Exploitation
HackTricks Collection of Binary Exploitation.
Liveoverflow - Binary Exploitation
LiveOverflow's Binary Exploitation YouTube playlist.

Showing a sample of 166 resources. View the full list on GitHub →