Knowledge Base
Battle-tested attack playbooks and methodologies — the offensive techniques that carry an engagement from the first packet to full domain dominance.
01 / RECON
Reconnaissance
Network footprinting, port scanning, OSINT, and web surface enumeration to map the target infrastructure.
Start the recon →
02 / WEB
Web Attacks
File upload vulnerabilities, injection flaws, and deep dives into web application exploitation techniques.
Exploit the web →
03 / CREDENTIALS
Credential Attacks
Password cracking, credential hunting, Pass-the-Hash, Pass-the-Ticket, and dumping hashes from SAM/NTDS.
Crack the hashes →
04 / ACTIVE DIRECTORY
Active Directory
The complete AD pentesting playbook: LLMNR poisoning, Kerberoasting, ADCS escalation, and Golden Tickets.
Own the domain →
05 / FRAMEWORKS
Exploitation Frameworks
Mastering Metasploit, managing payloads with MSFVenom, handling sessions, and writing custom modules.
Load the modules →
06 / TOOLS
Tool Guides
Deep dives into pivoting, tunneling, and utility tools like Ligolo-ng, Proxychains, and SSH forwarding.
Master the tools →
How every writeup is structured
Each playbook follows a consistent flow so you always know where to look:
- Reconnaissance — Port scanning, service and protocol enumeration
- Foothold — Initial access and exploitation
- Privilege Escalation — Escalating toward Domain Admin
- Key Takeaways — Detection, mitigation, and lessons learned