Interactive Cheatsheets

Searchable command references for pentesting, CTF, and security research. Click any command to copy.

All exploitation (7) web-pentest (7) active-directory (6) recon (3) mobile-pentest (2) network-pentest (2) cloud-pentest (1) privesc (1) forensics (1)

theHarvester — OSINT Email & Domain Recon

theHarvester gathers emails, names, subdomains, IPs and URLs from multiple public sources.

Subfinder & Amass — Subdomain Enumeration

Passive and active subdomain enumeration with Subfinder and Amass.

GitLeaks & Source Code Recon — Secret Discovery

Gitleaks and other tools for finding secrets, credentials, and sensitive data in source code and git…