This is a compiled cheatsheet from my experience of OSCP 2023 journey. Won't say it is all-rounded but a good starting point if you wanna start your OSCP study. It covered all the tools, common issues and tips that I have faced during my study. It is still being updated and feel free to comment if you want any improvements.
☆14Oct 17, 2024Updated last year
Alternatives and similar repositories for OSCP-cheatsheet
Users that are interested in OSCP-cheatsheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- HITCON 2023 x DEVCORE Wargame☆22Aug 24, 2023Updated 2 years ago
- Audit and pentest methodologies for Windows including internal enumeration, privesc, lateral movement, etc.☆18Aug 24, 2025Updated 7 months ago
- A terminal workspace with batteries included☆19Sep 21, 2025Updated 6 months ago
- Python Exploitation Framework☆38Mar 9, 2026Updated 2 weeks ago
- Multi-protocol credential validation tool with spray and no-spray modes for penetration testing.☆14Jan 4, 2026Updated 2 months ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Vulnerabilities exploitation examples, python☆23May 22, 2023Updated 2 years ago
- Recently, the OpenSSH maintainers released security updates to fix a critical vulnerability that could lead to unauthenticated remote cod…☆12Jul 2, 2024Updated last year
- Filezilla local admin port exploit☆13Sep 13, 2017Updated 8 years ago
- Various AD tools needed for penetration testing in one place.☆23Jul 13, 2023Updated 2 years ago
- Repository for tools used for the OSCP☆23Sep 18, 2025Updated 6 months ago
- Unofficial list of approved tools for OSCP☆28Apr 25, 2023Updated 2 years ago
- Hours of research on color theory and what hues stimulate the eyes, and hand-picked hacked icons☆14Mar 13, 2024Updated 2 years ago
- Lightweight, customizable enumeration script to aid in time-saving when participating in hacking labs or OSCP exam.☆31Feb 18, 2026Updated last month
- Pentest report framework without data send☆19Sep 23, 2025Updated 6 months ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Python3 implementation of ADRecon with support for NTLM and Kerberos authentication querying LDAP. Generates individual CSV files and a s…☆59Feb 23, 2026Updated last month
- HITCON 2024 x DEVCORE Wargame☆31Aug 30, 2024Updated last year
- Notes for red teamers - from cloud to Active Directory to many things in between.☆63Jan 7, 2026Updated 2 months ago
- ☆30Sep 20, 2023Updated 2 years ago
- Collection of notes and scripts I used during my OSCP exam preparation.☆42Dec 21, 2025Updated 3 months ago
- Awesome list of Living off the Land (LOL) methods, tools, and features commonly abused by attackers☆34Feb 28, 2026Updated 3 weeks ago
- A python3 and bash PoC for CVE-2021-4034 by Kim Schulz☆22Jan 27, 2022Updated 4 years ago
- A tool developed in Java for enumerating and scanning WordPress websites. It is completely free, open source and with no API rate limit.☆22Sep 17, 2025Updated 6 months ago
- ☆38Feb 26, 2019Updated 7 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- Scripts I created to pass the OSCP☆22Jul 23, 2021Updated 4 years ago
- Bash script to parse and convert linpeas\winpeas output files to readable HTML or PDF format☆36Apr 16, 2022Updated 3 years ago
- this repo is for windows privilege escalation technique☆53Aug 28, 2021Updated 4 years ago
- Execute commands across Windows and Linux systems using multiple RCE methods☆86Mar 2, 2026Updated 3 weeks ago
- ☆51May 18, 2022Updated 3 years ago
- useful stuff for pentesting☆51Mar 18, 2025Updated last year
- Quick scripts I developed to streamline OSCP tasks☆216Jun 14, 2025Updated 9 months ago
- Creation of multiple Malware tools consisting of evasion, enumeration and exploitation��☆98Mar 19, 2026Updated last week
- ☆11Jan 6, 2020Updated 6 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Specialized testing tool designed to identify vulnerabilities and bugs in OPC UA (Open Platform Communications Unified Architecture) impl…☆43Feb 4, 2026Updated last month
- 用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。☆11Apr 2, 2021Updated 4 years ago
- ☆20Jan 25, 2019Updated 7 years ago
- Simple Zeroconf/mDNS scanner written in Go with no external dependencies☆12Apr 20, 2021Updated 4 years ago
- 在线cms识别|旁站|c段|信息泄露|工控|系统|物联网安全|cms��漏洞扫描|nmap端口扫描|子域名获取|待续..☆10Apr 23, 2019Updated 6 years ago
- A collection of study notes and resources for the Offensive Security Certified Professional (OSCP) certification exam. Includes summaries…☆66Nov 15, 2025Updated 4 months ago
- A general purpose cheat sheet for pentesting and OSCP certification☆272Jan 16, 2026Updated 2 months ago