Home Resources
Resources
Cancel

Resources

You’ll find a curated list of essential resources for CTF and Pentesting, including articles, cheatsheets, and tools.

Quick Access:


Web

NameLinkType
Pentest Web Methodologyhttps://book.hacktricks.xyz/network-services-pentesting/Guide
PayloadAllTheThingshttps://github.com/swisskyrepo/PayloadsAllTheThingsRepository
Understanding IDORshttps://abrictosecurity.com/understanding-idor-attacks/Article
Blind NoSQL Injectionhttps://www.dailysecurity.fr/nosql-injections-classique-blind/Article
XSS Filter Bypasshttps://www.invicti.com/blog/web-security/xss-filter-evasion/Article
LFI CheatSheethttps://highon.coffee/blog/lfi-cheat-sheet/CheatSheet
Insecure JWThttps://www.thehacker.recipes/web/inputs/jwtArticle
JWT Debuggerhttps://jwt.io/Tool
XXE Injectionhttps://portswigger.net/web-security/xxeArticle
Server Side Template Injectionhttps://nahco3.fr/2021/11/ssti_1/Article
GraphQL Pentestinghttps://exploit-notes.hdks.org/exploit/web/api/graphql-penArticle
ZAP Proxyhttps://www.zaproxy.org/Software
CSS Injectionhttps://github.com/ariary/cssrfTool
CSP Bypasshttps://bugbase.ai/blog/csp-bypass-common-techniquesArticle
File Uploadhttps://www.prplbx.com/resources/blog/file-upload/Article
Web-Check (Analyze URL)https://web-check.xyz/Tool
Wappalyzerhttps://www.wappalyzer.com/Tool
FoxyProxyhttps://getfoxyproxy.org/Tool
Cookie Editorhttps://cookie-editor.com/Tool
BurpSuitehttps://portswigger.net/burpTool
RequestBinhttps://pipedream.com/requestbinTool
GitDumper.shhttps://github.com/internetwache/GitToolsTool
PHP Magic Hasheshttps://github.com/spaze/hashesRepository
PHP Insecure Deserializationhttps://www.synacktiv.com/publications/finding-a-pop-chainArticle

Crypto

NameLinkType
CryptoBookhttps://cryptohack.gitbook.io/cryptobookGuide
CyberChefhttps://gchq.github.io/CyberChef/Tool
CrackStationhttps://crackstation.net/Tool
RsaCtfToolhttps://github.com/RsaCtfTool/RsaCtfToolTool
Factordbhttp://factordb.com/Database
Alpertron (Integer factorization)https://www.alpertron.com.ar/ECM.HTMTool
XOR Calculatorhttps://xor.pw/Tool
Cryptiihttps://cryptii.com/Tool
Hash Identifierhttps://hashes.com/en/tools/hash_identifierTool
ROT Decoderhttps://theblob.org/rot.cgiTool
Dagger’s Alphabethttps://www.dcode.fr/daggers-alphabetTool
Caesar Cipherhttps://www.dcode.fr/caesar-cipherTool
Vigenere Cipherhttps://www.dcode.fr/chiffre-vigenereTool
Quipqiup (Substitution solver)https://quipqiup.com/Tool

Steganography

NameLinkType
Aperi’Solvehttps://www.aperisolve.com/Tool
StegOnlinehttps://georgeom.net/StegOnline/uploadTool
View Metadata Onlinehttps://www.metadata2go.com/view-metadataTool
Extract Stringshttps://www.fileformat.info/tool/strings.htmTool
Binwalkhttps://github.com/ReFirmLabs/binwalkTool
Steghidehttps://github.com/StefanoDeVuono/steghideTool
Sonic Visualiserhttps://www.sonicvisualiser.org/Software
GIMP (Image manipulation)https://www.gimp.org/downloads/Software
Steg in HTML tagshttps://www.researchgate.net/figure/Stego-Html-sourceArticle

OSINT

NameLinkType
Bellingcat Toolkithttps://bellingcat.gitbook.io/toolkitToolkit
Tools & Resources Databasehttps://start.me/p/7k6gwv/osint-toolsDatabase
Epioshttps://epieos.com/Tool
Have I Been Pwnedhttps://haveibeenpwned.com/Tool
Holele (Email to Registered Accounts)https://github.com/megadose/holeheTool
Whatsmyname (Search by username)https://whatsmyname.app/Tool
Phoneinfogahttps://github.com/sundowndev/phoneinfogaTool
PimEyes (Face Recognition)https://pimeyes.com/enTool
Lullar (People search)https://com.lullar.com/Tool
Lenso (AI Reverse image search)https://lenso.ai/enTool
Guide to Online Anonymityhttps://anonymousplanet.org/guide.htmlArticle
Dehashedhttps://www.dehashed.com/Tool
Ransom DBhttps://www.ransom-db.com/Database
Ransom Wikihttps://ransom.wiki/Wiki
LeakIXhttps://leakix.net/Tool
Yandex (Reverse Image Lookup)https://yandex.com/images/Tool
SunCalchttps://www.suncalc.org/Tool
Mountain Explorerhttps://peakvisor.com/panorama.htmlTool
Server status maphttps://airspy.com/directory/Tool
Google Earth Prohttps://www.google.com/earth/about/Software
Stolen Camera Finderhttps://www.stolencamerafinder.com/Tool
Depix (Recover text from pixelized img)https://github.com/spipm/DepixTool

Forensic

NameLinkType
Volatility3https://github.com/volatilityfoundation/volatility3Tool
Network Minerhttps://www.netresec.com/?page=NetworkMinerSoftware
Forensic Guidehttp://trailofbits.github.io/ctf/forensics/Article
View Metadata Onlinehttps://www.metadata2go.com/view-metadataTool
Extract Stringshttps://www.fileformat.info/tool/strings.htmTool
Binwalkhttps://github.com/ReFirmLabs/binwalkTool
Audacityhttps://www.audacityteam.org/Software
Pdfinfohttps://linux.die.net/man/1/pdfinfoTool
Repair Broken JPGhttps://jpg.repair/Tool
Recover Lost Datahttps://www.cgsecurity.org/wiki/PhotoRecSoftware
Kpartxhttps://linux.die.net/man/8/kpartxTool
Recover Deleted Files with TestDiskhttps://www.tecmint.com/recover-deleted-files/Article

Network

NameLinkType
WireSharkhttps://www.wireshark.org/Software
Network Minerhttps://www.netresec.com/?page=NetworkMinerSoftware
PcapXrayhttps://github.com/Srinivas11789/PcapXrayTool
Nmaphttps://nmap.org/Tool
Angry IP Scannerhttps://angryip.org/Tool
Tcpdumphttps://www.tcpdump.org/Tool
Ettercaphttps://www.ettercap-project.org/Tool
Zenmaphttps://nmap.org/zenmap/Software
Fiddlerhttps://www.telerik.com/fiddlerSoftware
MTR (My Traceroute)https://www.bitwizard.nl/mtr/Tool
WiFi Pineapplehttps://shop.hak5.org/products/wifi-pineappleHardware
Aircrack-nghttps://www.aircrack-ng.org/Tool
Kismethttps://www.kismetwireless.net/Tool
Snorthttps://www.snort.org/Software
Zeek (Bro)https://zeek.org/Software
OpenVAShttps://www.openvas.org/Tool
Tsharkhttps://www.wireshark.org/docs/man-pages/tshark.htmlTool
Netcathttps://nc110.sourceforge.io/Tool

Active Directory

NameLinkType
InternalAllTheThingshttps://swisskyrepo.github.io/InternalAllTheThings/Toolkit
BloodHoundhttps://github.com/BloodHoundAD/BloodHoundTool
PowerViewhttps://github.com/PowerShellMafia/PowerSploit/tree/master/ReconScript
SharpHoundhttps://github.com/BloodHoundAD/SharpHound3Tool
ADReconhttps://github.com/sense-of-security/ADReconTool
PingCastlehttps://www.pingcastle.com/Tool
CrackMapExechttps://github.com/Porchetta-Industries/CrackMapExecTool
LDAPDomainDumphttps://github.com/dirkjanm/ldapdomaindumpTool
Rubeushttps://github.com/GhostPack/RubeusTool
Kerbrutehttps://github.com/ropnop/kerbruteTool
Grouper2https://github.com/l0ss/Grouper2Tool
ACLPwnhttps://github.com/fox-it/aclpwn.pyScript
NtdsAudithttps://github.com/ANSSI-FR/ntdsAuditTool
AD ACL Scannerhttps://github.com/canix1/ADACLScannerTool

Privilege Escalation

NameLinkType
GTFObinshttps://gtfobins.github.io/Tool
LinPeashttps://github.com/peass-ng/PEASS-ng/tree/master/linPEASScript
LinEnumhttps://github.com/rebootuser/LinEnumScript
Linux Exploit Suggesterhttps://github.com/mzet-/linux-exploit-suggesterTool
WinPEAShttps://github.com/peass-ng/PEASS-ng/tree/master/winPEASScript
Windows Exploit Suggesterhttps://github.com/AonCyberLabs/Windows-Exploit-SuggesterTool
PrivescCheckhttps://github.com/itm4n/PrivescCheckScript
PowerUphttps://github.com/PowerShellMafia/PowerSploit/tree/master/PrivescScript
BeRoothttps://github.com/AlessandroZ/BeRootScript
Watsonhttps://github.com/rasta-mouse/WatsonTool
Seatbelthttps://github.com/GhostPack/SeatbeltTool

Wordlist

NameLinkType
Rockyouhttps://github.com/brannondorsey/naive-hashcat/Passwords
SecListshttps://github.com/danielmiessler/SecListsCollection
FuzzDBhttps://github.com/fuzzdb-project/fuzzdbFuzzing & Enumeration
Dirbuster Wordlisthttps://github.com/daviddias/node-dirbusterDirectory Enumeration
Common Usernameshttps://github.com/danielmiessler/SecLists/blob/Usernames
Default Credentialshttps://github.com/danielmiessler/SecLists/blob/Default Credentials
PHP CGI Pathshttps://github.com/danielmiessler/SecLists/blob/Path Enumeration
API Endpointshttps://github.com/danielmiessler/SecLists/blob/API Enumeration
WordPress Pathshttps://github.com/wpscanteam/wpscan/tree/master/WordPress Enumeration
Subdomain Enumerationhttps://github.com/rbsec/dnscanSubdomains
PasswordsProhttps://github.com/berzerk0/Probable-WordlistsCommon Passwords
Custom Wordlists (Mentalist)https://github.com/sc0tfree/mentalistWordlist Generator
Probable Wordlistshttps://github.com/berzerk0/Probable-WordlistsSorted Passwords
Hashcat Password Exampleshttps://github.com/brannondorsey/naive-hashcatHashcat Compatible
IoT Default Passwordshttps://github.com/danielmiessler/SecLists/blob/Default Credentials