This Obsidian project is a collection of my detailed notes, cheat sheets, and references, all focused on penetration testing and related cybersecurity concepts.
This list Contains my complete cheat sheet gathered from THM, HTB and various other resources
My notes were originally written in HackMD where i ported them to Obsidian. There may be some porting errors
Note
Windows Defender might mark this as a virus since it contains examples of malicious commands (i.e. reverse shells), so you might have to exclude this project from your AV's scope.
I made this repository to document my journey and provide useful information I could come back to anytime. It's meant to:
- Serve as my knowledge base.
- Possibly help others learn and understand some concepts.
- Notes I can come back to when in need, without having to open specific sites.
-
Clone the repository using the following command:
git clone https://github.com/Kewemit/pentest.git -
Open Obsidian and press on
manage vaultsfrom the bottom left:
-
Then on that menu press on
Open folder as vault:
] -
Navigate to the downloaded folder and select it.
- Cheatsheets/TLDR: Quick, handy commands and tools for various stages of penetration testing.
- Thorough Notes: In-depth explanations of methodologies, tools, and attack techniques.
- Code Snippets: Scripts and commands.
- Recon & Enumeration ♻️
- Exploitation Techniques ♻️
- Post-Exploitation ♻️
- Shellcode Basics ❌
- Using PowerShell & Windows API ♻️
- Evading Defenders & Bypassing AV ♻️
- Network Penetration Testing ♻️
- Web Application Security Testing ♻️
- Reverse Engineering Basics ♻️
- OSINT♻️
- Server-Side Attacks ✅
- Login Brute Forcing (Hydra, Medusa)♻️
- Broken Authentication♻️
- Web Attacks♻️
- File Inclusion❌
- Session Security❌
- Web Service & API Attacks❌
- WordPress Hacking❌
- Azure♻️
- AWS♻️
- Docker♻️
- HTML♻️
- C#❌
- Python❌
- Network(ing)♻️ (not yet uploaded to github)
- Cheat Engine (Game Hacking) ♻️
♻️ = W.I.P ✅ = Completed ❌ = Not Started Yet
Here are some external resources you may find helpful:
- OWASP
- Hack The Box
- TryHackMe
- Cisco NetAcad CTF: CTFlearn - CTF PicoCTF - CTF VulnHub - Vulnerable Machines Root-Me - CTF Ringzer0 - CTF CTF101 - CTF Battleh4ck - PvP & PvE CTF For more see: CTFSites
- Current est. for porting the base layer of all the notes:
11/2025 - GitHub Page
- Make GitHub friendly notes
This repository is intended for educational purposes only. The techniques and tools discussed here should only be used in ethical hacking scenarios with proper authorization. Misuse of this knowledge can lead to severe consequences. Always practice responsible and ethical behaviour.
