Approved Research (7)
C2 Frameworks Overview
A practical cybersecurity guide on C2 Frameworks Overview with real-world red teaming concepts.
Intro to Red Team Operations
A practical cybersecurity guide on Intro to Red Team Operations with real-world red teaming concepts.
Privilege Escalation in Linux
A practical cybersecurity guide on Privilege Escalation in Linux with real-world red teaming concepts.
Bypassing Antivirus & EDR
A practical cybersecurity guide on Bypassing Antivirus & EDR with real-world red teaming concepts.
Cross-Site Scripting (XSS) Deep Dive
A practical cybersecurity guide on Cross-Site Scripting (XSS) Deep Dive with real-world red teaming concepts.
Practical Guide to Active Directory Threat Hunting
A practical cybersecurity guide on Practical Guide to Active Directory Threat Hunting with real-world red teaming concepts.
Advanced Web Application Penetration Testing
A practical cybersecurity guide on Advanced Web Application Penetration Testing with real-world red teaming concepts.
Security Toolkits (9)
Wireshark
Network protocol analyzer
reconNmap
Nmap (Network Mapper) is a powerful open-source tool used for network discovery and security auditing. ## 🔧 Installation ### Linux: sudo apt update && sudo apt install nmap ### Mac: brew install nmap ### Windows: Download from https://nmap.org/download.html ## ▶️ Basic Usage ### Scan a single target: nmap 192.168.1.1 ### Scan multiple ports: nmap -p 1-1000 target.com ### Service & version detection: nmap -sV target.com ### OS detection: nmap -O target.com ## ⚡ Advanced Usage - Aggressive scan: nmap -A target.com - Scan with scripts: nmap --script vuln target.com ## 🎯 Use Cases - Network reconnaissance - Port scanning - Vulnerability detection - Service enumeration ## 🧠 Pro Tip Use Nmap with -A only when needed, as it is noisy and detectable.
reconAmass
Amass is a reconnaissance tool used for in-depth subdomain enumeration. ## 🔧 Installation ### Linux: sudo apt install amass ## ▶️ Usage ### Passive scan: amass enum -passive -d example.com ### Active scan: amass enum -active -d example.com ### Save output: amass enum -d example.com -o output.txt ## 🎯 Use Cases - Subdomain discovery - Attack surface mapping - Recon phase ## 🧠 Pro Tip Combine Amass with other tools like Subfinder.
webSQLMap
SQLMap is an automated SQL injection tool used to detect and exploit database vulnerabilities. ## 🔧 Installation git clone https://github.com/sqlmapproject/sqlmap.git cd sqlmap ## ▶️ Usage ### Basic scan: python sqlmap.py -u "http://site.com/page?id=1" ### Enumerate DBs: --dbs ### Dump database: --dump ## ⚡ Advanced - Use cookies: --cookie="PHPSESSID=xyz" - POST request: --data="id=1" ## 🎯 Use Cases - SQL Injection testing - Database extraction - Vulnerability assessment ## 🧠 Pro Tip Use --risk and --level flags for deeper testing.
passwordHashcat
Advanced password recovery tool
adBloodHound
Active Directory attack path analysis
post-exploitationCrackMapExec
Post-exploitation tool
DefensiveKernelPatch
A lightweight bash utility and system configuration hardening script for Linux production servers that restricts access to sysctl parameters, kernel logs, and debug ports.
ReconnaissanceForgeScanner
A modular, high-speed parallel port scanner and service banner grabber with integrated vulnerability matching capabilities and custom protocol scripting.