Note Keeping / Reporting / Admin Stuff

Bypass Medium Paywall

https://freedium.cfd/https://medium.com/url

Free Ubuntu VPS

LogoGet a Free Ubuntu VPS for Your Projects with Superfast InternetMedium

Clone website - Local version

On ubuntu

Install httrack: http://www.httrack.com/page/2/

sudo apt install httrack

Download all website pages

httrack "https://0xss0rz.gitbook.io" -O "./my_gitbook_local"

Web server

cd my_gitbook_local
sudo python3 -m http.server 8000

When you get a 404 error, add .html at the end of the URL.

Start the web server from: ~/Desktop/my_gitbook_local/0xss0rz.gitbook.io

DocuSeal - Alternative to DocuSign

LogoDocuSeal | Open Source Document SigningDocuSeal

Perform various operations on PDF files - Locally hosted

LogoGitHub - Stirling-Tools/Stirling-PDF: #1 Locally hosted web application that allows you to perform various operations on PDF filesGitHub

Pentest Contracts

LogoGitHub - cure53/Contracts: A small collection of potentially useful contract templatesGitHub

Markedown Editors

LogoJoplin websitejoplinapp
LogoObsidian: A knowledge base that works on local Markdown files.obsdmd
🔮 Obsidian cheat sheet and some useful shortcut keysObsidian-Cheat-Sheet

Knowledge Management

LogoGitHub - siyuan-note/siyuan: A privacy-first, self-hosted, fully open source personal knowledge management software, written in typescript and golang.GitHub

Create Visuals

LogoNapkin AI - The visual AI for business storytellingNapkin AI

Image of Code

LogoCarboncarbon_app

Note Keeping - Example

External Penetration Test - <Client Name>

  • Scope (including in-scope IP addresses/ranges, URLs, any fragile hosts, testing timeframes, and any limitations or other relative information we need handy)

  • Client Points of Contact

  • Credentials

  • Discovery/Enumeration

    • Scans

    • Live hosts

  • Application Discovery

    • Scans

    • Interesting/Notable Hosts

  • Exploitation

    • <Hostname or IP>

    • <Hostname or IP>

  • Post-Exploitation

    • <Hostname or IP>

    • <<Hostname or IP>

Organizing your Recon

LogoHacker tools: BBRF - organizing your reconIntigriti

How to Write a Pentest Report

Templates of vulnerability reports

LogoGitHub - LuemmelSec/PwnDoc-VulnsGitHub
Logoxanhacks / Web Pentest Reports · GitLabGitLab
LogoGitHub - pdelteil/BugBountyReportTemplates: List of reporting templates I have used since I started doing BBH.GitHub

Vulnerability Rating taxonomy

LogoBugcrowd’s Vulnerability Rating Taxonomy - Bugcrowd
LogoType of attacks - web vulnerabilities

Red Team Templates

LogoRed Team Development and Operations
LogoRed Team Development and Operations

Anonymized Internal Pentest Report

https://super.underdefense.com/hubfs/[Anonymized]%20Internal%20Pentest%20Report%202023.pdf

SysReportor

LogoGitHub - Syslifters/HackTheBox-Reporting: Hack The Box CPTS, CBBH Exam and Lab Reporting / Note-Taking ToolGitHub

Docx Template

LogoDiscord - A New Way to Chat with Friends & CommunitiesDiscord

Pwndoc-ng

LogoGitHub - pwndoc-ng/pwndoc-ng: Pentest Report GeneratorGitHub

Faction

LogoGitHub - factionsecurity/faction: Pen Test Report Generation and Assessment CollaborationGitHub
LogoFaction Docs
LogoHow to Automate Pentest Reporting Using FactionMedium

PreviousCheatsheetsNextCloud VM

Last updated