/methodology
Penetration testing methodology and reference notes โ structured around the PEN-200 / OSCP syllabus.
32 topics covering the full attack lifecycle from reconnaissance to report writing.
๐ // Reconnaissance & Enumeration
01Introduction to Ethical Hacking
02Footprinting and Reconnaissance
03Scanning Networks
04Enumeration
05Vulnerability Analysis
๐ฅ // Exploitation
06System Hacking
13Hacking Web Servers
14Hacking Web Applications
15SQL Injection
22Client-Side Attacks
23Locating and Fixing Exploits
โฌ๏ธ // Post-Exploitation & Privilege Escalation
26Windows Privilege Escalation
27Linux Privilege Escalation
25Password Attacks
24Antivirus Evasion
28Port Redirection and Tunneling
29Metasploit Framework
๐ข // Active Directory
30Active Directory Enumeration
31Attacking AD Authentication
32AD Lateral Movement
๐ก // Specialized Attacks
07Malware Threats
08Sniffing
09Social Engineering
10Denial-of-Service
11Session Hijacking
12Evading IDS, Firewalls, and Honeypots
16Hacking Wireless Networks
17Hacking Mobile Platforms
18IoT and OT Hacking
๐ // Infrastructure & Reporting
19Cloud Computing
20Cryptography
21Report Writing