Cybersecurity References 🛡️🔒

Welcome to my personal cybersecurity toolkit.

Table of Contents

• Guides
  • Internal Pentesting
    • Playbooks
    • Topics
  • Web Applications
  • Tools

Guides

My personal hacking notes are in the Guides directory, which also has a power commands subdir that covers PowerShell, scanning, and web applications.

I have a Useful Repositories document where I link to the offensive and defensive tools I either use or really like in theory.

Beginners should start with a guide by Maderas.

Internal Pentesting

I find the Active Directory Playbook and Pentest Playbook to be my favorite resources.

Playbooks

• Penetration Test Playbook
• Active Directory Playbook

Topics

• Networking
• Scanning and Enumeration
  • External Reconnaissance
  • Subverting Intrusion Detection Systems w/ Nmap
• Gaining Access & Persistence
  • Evasion & Data Exfiltration
    • Encrypted Powershell
    • Abusing WinDef Exclusions to Evade Detection
  • Initial Foothold
    • LDAP
    • MSFVenom Payload Generation
    • Cloudflare to Bypass Cloudflare
  • Post Compromise
    • Kerberoasting
      • Golden, Diamond, & Sapphire Attacks
      • Service Principal Name (SPN) Discovery
    • OS Enumeration
  • Windows Persistence
    • DLL Hijacking
      • DLL Hijacking Overview
      • DLL Hijacking Pentest Cheatsheet
    • New User Account
    • Registry Persistence

Web Applications

Documents regarding common web application vulnerabilities, including the OWASP Top Ten. Each note has code examples or injection payloads. XSS, SSRF, and CORS are just a few examples. The WebApp Exploit Checklist is a great visual reference.

See that directory's README for more information.

Tools

A collection of my scripts I've found repeated use for in multiple scenarios.

directory_visualizer.py: CLI tool that creates a hierarchical visualization of a directory's nested contents.

extract_video_audio.py: CLI tool that creates an MP3 audio file from a MP4 file, or files in a directory.

firewall_rules.py: CLI tool that optionally accepts a URL as an argument to download a CSV list of known problematic IP addresses and create block rules for Windows Firewall or iptables for Linux.

The default URL downloads the "Botnet C2 Indicators of Compromise (IOCs)" from FEODOtracker, which contains "information on tracked botnet c2s but also IP addresses that were acting as a botnet C2 within the past 30 days."

hashfile_validator.py: A Windows-exclusive CLI tool that automatically detects and validates cryptographic hash checksums against files. It supports MD5, SHA1, SHA256, SHA384, and SHA512, with optional JSON output and additional file information. The tool uses Windows' built-in Certutil for hash calculation.

regex_generator.py: Generates regex patterns to detect keyword variations, including obfuscated and evasive text, for precise matching.

repository_visualizer.py: A Python script that automatically generates an interactive HTML navigation interface for a GitHub repository's directory structure. Adaptable for any repository. Requires GitHub token.

Reset-DockerWslIntergration.ps1: PowerShell script that stops Docker Desktop, Stops WSL, and Unregisters the Docker Destop data.

sumrecon.sh: CLI tool by that performs comprehensive reconnaissance using assetfinder, amass, certspotter, sublist3r, httprobe, waybackurls, whatweb, nmap, and eyewitness(optional). When I originally added this, I had no idea it's just Grimmie's sumrecon script.

How to Contribute

Please feel encouraged to contribute your own Guide, automation scripts, or useful repository link(s).

See the CONTRIBUTING.md file for guidelines on how to contribute.

📜 License

Distributed under the MIT License. See LICENSE for more information.