Exploit for aysec-cheatsheets

Name: Exploit for aysec-cheatsheets
Rating: 5 (3 reviews)
2026-06-29 | CVSS 0.0
## https://sploitus.com/exploit?id=18E8EBA0-DAE2-5124-87B6-9495E8F8AB35
# AYSEC Security Cheatsheets

> A free, practical collection of **cybersecurity cheatsheets** — web exploitation, privilege escalation, Active Directory, network analysis, forensics & reverse engineering. The exact commands you reach for during a pentest or CTF, with nothing you don't need.


  
  
  


**Read the rendered, searchable versions on [aysec.tech/cheatsheets](https://aysec.tech) — then practice on free CTF challenges, courses, and 1v1 duels.**

These are maintained as part of [**AYSEC**](https://aysec.tech), a free cybersecurity training platform: hands-on CTF challenges, guided courses, learning paths, and live duels. Every cheatsheet below has an interactive version on the site with copy buttons and links to challenges where you can use it for real.

> ⚠️ **For authorized testing and education only.** Use these techniques exclusively on systems you own or have explicit written permission to test.

---

## 🌐 Web Application

| Cheatsheet | What's inside |
|---|---|
| **[SQL Injection](sql-injection.md)** · [↗ read online](https://aysec.tech/cheatsheets/sql-injection) | Detection + exploitation payloads for MySQL, PostgreSQL, MSSQL, Oracle & SQLite |
| **[XSS — Cross-Site Scripting](xss.md)** · [↗ read online](https://aysec.tech/cheatsheets/xss) | Payloads, context breakouts, DOM sinks & WAF/filter bypass |
| **[Command Injection](command-injection.md)** · [↗ read online](https://aysec.tech/cheatsheets/command-injection) | Separators, blind/out-of-band techniques & filter bypass |
| **[Burp Suite](burp-suite.md)** · [↗ read online](https://aysec.tech/cheatsheets/burp-suite) | Proxy, Repeater, Intruder, Decoder & shortcuts for web testing |
| **[sqlmap](sqlmap.md)** · [↗ read online](https://aysec.tech/cheatsheets/sqlmap) | Automated SQL injection detection + exploitation flags |
| **[ffuf](ffuf.md)** · [↗ read online](https://aysec.tech/cheatsheets/ffuf) | Fast web fuzzing — directories, parameters, vhosts & filters |
| **[WPScan](wpscan.md)** · [↗ read online](https://aysec.tech/cheatsheets/wpscan) | WordPress enumeration — users, plugins, themes & known vulns |
| **[Nikto](nikto.md)** · [↗ read online](https://aysec.tech/cheatsheets/nikto) | Web server vulnerability & misconfiguration scanner |

## 🔭 Recon & Enumeration

| Cheatsheet | What's inside |
|---|---|
| **[Nmap](nmap.md)** · [↗ read online](https://aysec.tech/cheatsheets/nmap) | Host discovery, port scanning, service detection, NSE & evasion |
| **[Gobuster](gobuster.md)** · [↗ read online](https://aysec.tech/cheatsheets/gobuster) | Directory, DNS subdomain & vhost brute-forcing |
| **[enum4linux & smbclient](enum4linux.md)** · [↗ read online](https://aysec.tech/cheatsheets/enum4linux) | SMB/Samba enumeration — shares, users, groups & null sessions |

## 💥 Exploitation

| Cheatsheet | What's inside |
|---|---|
| **[Metasploit Framework](metasploit.md)** · [↗ read online](https://aysec.tech/cheatsheets/metasploit) | msfconsole workflow — search, use, set, exploit, sessions & meterpreter |
| **[msfvenom](msfvenom.md)** · [↗ read online](https://aysec.tech/cheatsheets/msfvenom) | Generate reverse shells & payloads for every platform and format |
| **[Reverse Shell](reverse-shell.md)** · [↗ read online](https://aysec.tech/cheatsheets/reverse-shell) | One-liners for bash, python, nc, php, PowerShell + TTY upgrade |
| **[Netcat](netcat.md)** · [↗ read online](https://aysec.tech/cheatsheets/netcat) | The TCP/IP swiss-army knife — listeners, shells, transfers & scans |
| **[Hydra](hydra.md)** · [↗ read online](https://aysec.tech/cheatsheets/hydra) | Online password brute-forcing for SSH, FTP, HTTP, RDP & more |
| **[searchsploit](searchsploit.md)** · [↗ read online](https://aysec.tech/cheatsheets/searchsploit) | Search & use Exploit-DB offline from the terminal |

## 🧗 Privilege Escalation

| Cheatsheet | What's inside |
|---|---|
| **[Linux Privilege Escalation](linux-privilege-escalation.md)** · [↗ read online](https://aysec.tech/cheatsheets/linux-privilege-escalation) | SUID, sudo, cron, capabilities, PATH & kernel — the full root checklist |
| **[Windows Privilege Escalation](windows-privilege-escalation.md)** · [↗ read online](https://aysec.tech/cheatsheets/windows-privilege-escalation) | Token abuse, service misconfigs, AlwaysInstallElevated & cred hunting |

## 🏰 Active Directory

| Cheatsheet | What's inside |
|---|---|
| **[Impacket](impacket.md)** · [↗ read online](https://aysec.tech/cheatsheets/impacket) | AD attack scripts — secretsdump, psexec, GetUserSPNs, ntlmrelayx |
| **[NetExec / CrackMapExec](netexec.md)** · [↗ read online](https://aysec.tech/cheatsheets/netexec) | Sweep SMB/WinRM/LDAP/MSSQL — creds, shares, dumps & modules |
| **[BloodHound](bloodhound.md)** · [↗ read online](https://aysec.tech/cheatsheets/bloodhound) | Map AD attack paths — SharpHound collection & Cypher queries |
| **[Mimikatz](mimikatz.md)** · [↗ read online](https://aysec.tech/cheatsheets/mimikatz) | Dump credentials, pass-the-hash, golden tickets & DCSync |
| **[Evil-WinRM](evil-winrm.md)** · [↗ read online](https://aysec.tech/cheatsheets/evil-winrm) | WinRM shell — login by password/hash, upload, download & load tools |

## 🔑 Passwords

| Cheatsheet | What's inside |
|---|---|
| **[Password Cracking](password-cracking.md)** · [↗ read online](https://aysec.tech/cheatsheets/password-cracking) | Hashcat & John modes, hash identification, rules, masks & *2john tools |

## 📡 Network & Wi-Fi

| Cheatsheet | What's inside |
|---|---|
| **[Wireshark Display Filters](wireshark.md)** · [↗ read online](https://aysec.tech/cheatsheets/wireshark) | The display filters you actually use — ip, tcp, http, dns, tls & follow stream |
| **[tcpdump](tcpdump.md)** · [↗ read online](https://aysec.tech/cheatsheets/tcpdump) | Capture & filter packets from the CLI — hosts, ports, flags & pcaps |
| **[Aircrack-ng](aircrack-ng.md)** · [↗ read online](https://aysec.tech/cheatsheets/aircrack-ng) | Wi-Fi auditing — monitor mode, handshake capture & WPA cracking |

## 🔬 Forensics & Reversing

| Cheatsheet | What's inside |
|---|---|
| **[Volatility](volatility.md)** · [↗ read online](https://aysec.tech/cheatsheets/volatility) | Memory forensics — process, network, injection & credential plugins |
| **[GDB + pwndbg](gdb-pwndbg.md)** · [↗ read online](https://aysec.tech/cheatsheets/gdb-pwndbg) | Debug & exploit binaries — breakpoints, memory exam, checksec & cyclic |
| **[Ghidra](ghidra.md)** · [↗ read online](https://aysec.tech/cheatsheets/ghidra) | Reverse engineering — decompiler, XREFs, shortcuts & headless analysis |

---

## ✍️ Writeups

Beginner-friendly, step-by-step walkthroughs:

- **[How to Solve Your First Web CTF Challenge](writeups/first-web-ctf.md)** — from "what is a flag" to capturing your first one, using only a browser. ([read online ↗](https://aysec.tech/community/post/4))
- **[LFI to RCE: Exploiting Local File Inclusion](writeups/lfi-to-rce.md)** — turn "I can read a file" into full remote code execution. ([read online ↗](https://aysec.tech/community/post/5))

---

## 🎯 About AYSEC

[**AYSEC**](https://aysec.tech) is a free platform to *learn cybersecurity by doing*:

- 🚩 **CTF challenges** across web, crypto, forensics, pwn, reverse engineering & more
- 📚 **Courses & learning paths** from fundamentals to OSCP-level skills
- ⚔️ **1v1 duels** — race another hacker to the flag
- 🧩 **Daily challenges**, XP, levels & leaderboards

👉 **[Start hacking at aysec.tech](https://aysec.tech)** — free to join.

## 🤝 Contributing

Spotted a missing technique, a better one-liner, or a typo? Open an issue or a pull request. Keep it accurate, concise, and authorized-use only.

## 📄 License

Content is licensed under [**Creative Commons Attribution 4.0 (CC BY 4.0)**](LICENSE) — use it, share it, build on it, just credit [aysec.tech](https://aysec.tech).

---

Made with 🖤 by AYSEC · Learn offensive security, hands-on.