pentest-resources

Penetration Testing Resources
Repository & File Structure
General
Recon
- Passive Recon
  OSINT
  Google operators
- Active Recon
  Port Scanning
  Manual service enumeration
  Enumeration with system access
Vulnerability analysis
- Standard Ports & Common Services
  00 - Service unknown
  21 - FTP
  22 - SSH
  23 - Telnet
  25 - SMTP
  53 - DNS
  69 - TFTP
  80 - HTTP
  88 - Kerberos
  110 - POP3
  111 - RPCbind
  119 - NTP
  135 - MSRPC
  139 - SMB
  143 - IMAP
  161 - SNMP
  162 - SNMP
  199 - SMUX
  389 - LDAP
  443 - HTTPS
  445 - SMB
  554 - RTSP
  587 - Outgoing SMTP
  631 - CUPS
  636 - LDAP
  993 - IMAP (secure)
  993 - POP3
  1433 - MSSQL
  1521 - Oracle Database
  2049 - NFS
  3306 - MySQL
  3389 - RDP
  5432 - PostgreSQL
  5900 - VNC
- Finding vulnerabilities
Gaining access
Post Exploitation
Reporting
My methodology
- Example Pentest
- My Toolkit
  Software
  Hardware

Powered by GitBook

On this page

Was this helpful?

OSCP experience write-ups

PreviousGeneral guides NextPractice resources

Last updated 5 years ago

https://nandtech.co/2017/11/07/offensive-security-pwk-experience/
https://blog.mallardlabs.com/zero-to-oscp-in-292-days-or-how-i-accidentally-the-whole-thing-part-1/
https://medium.com/@hakluke/haklukes-ultimate-oscp-guide-part-1-is-oscp-for-you-b57cbcce7440
https://bitvijays.github.io/LFC-VulnerableMachines.html
https://scund00r.com/all/oscp/2018/02/25/passing-oscp.html
https://medium.com/@cosmin.ciobanu/the-only-oscp-advice-you-will-need-ae141060b87c
https://m101.github.io/binholic/2018/12/27/police_quest.html
https://www.reddit.com/r/oscp/comments/aagrpm/zero_to_oscp_in_four_months/
https://www.reddit.com/r/oscp/comments/a94z2p/update_from_10_to_pass_achieved_oscp/
https://www.reddit.com/r/oscp/comments/a9e2yv/from_0_to_oscp_in_90days/
https://github.com/ferreirasc/oscp

pentest/writeups at master · jivoi/pentestGitHub