This is a compiled cheatsheet from my experience of OSCP 2023 journey. Won't say it is all-rounded but a good starting point if you wanna start your OSCP study. It covered all the tools, common issues and tips that I have faced during my study. It is still being updated and feel free to comment if you want any improvements.
☆14Oct 17, 2024Updated last year
Alternatives and similar repositories for OSCP-cheatsheet
Users that are interested in OSCP-cheatsheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- HITCON 2023 x DEVCORE Wargame☆22Aug 24, 2023Updated 2 years ago
- Audit and pentest methodologies for Windows including internal enumeration, privesc, lateral movement, etc.☆19Mar 31, 2026Updated last month
- A terminal workspace with batteries included☆18Sep 21, 2025Updated 8 months ago
- Multi-protocol credential validation tool with spray and no-spray modes for penetration testing.☆27May 14, 2026Updated last week
- Python Exploitation Framework, V8 Engine Debugger, Proxy interceptor, marketplace, post-exploitation, backdoor generator,....☆48May 18, 2026Updated last week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Vulnerabilities exploitation examples, python☆24May 22, 2023Updated 3 years ago
- Recently, the OpenSSH maintainers released security updates to fix a critical vulnerability that could lead to unauthenticated remote cod…☆13Jul 2, 2024Updated last year
- Filezilla local admin port exploit☆13Sep 13, 2017Updated 8 years ago
- Various AD tools needed for penetration testing in one place.☆24Jul 13, 2023Updated 2 years ago
- Unofficial list of approved tools for OSCP☆28Apr 25, 2023Updated 3 years ago
- Hours of research on color theory and what hues stimulate the eyes, and hand-picked hacked icons☆14Mar 13, 2024Updated 2 years ago
- Lightweight, customizable enumeration script to aid in time-saving when participating in hacking labs or OSCP exam.☆32Feb 18, 2026Updated 3 months ago
- Repository for tools used for the OSCP☆26Sep 18, 2025Updated 8 months ago
- Pentest report framework without data send☆19Sep 23, 2025Updated 8 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Python3 implementation of ADRecon with support for NTLM and Kerberos authentication querying LDAP. Generates individual CSV files and a s…☆63Feb 23, 2026Updated 3 months ago
- Notes for red teamers - from cloud to Active Directory to many things in between.☆65Jan 7, 2026Updated 4 months ago
- HITCON 2024 x DEVCORE Wargame☆31Aug 30, 2024Updated last year
- ☆29Sep 20, 2023Updated 2 years ago
- Collection of notes and scripts I used during my OSCP exam preparation.☆42Dec 21, 2025Updated 5 months ago
- Living off the Land (LOL) attack techniques, tools, and defender resources☆37May 1, 2026Updated 3 weeks ago
- A python3 and bash PoC for CVE-2021-4034 by Kim Schulz☆22Jan 27, 2022Updated 4 years ago
- A tool developed in Java for enumerating and scanning WordPress websites. It is completely free, open source and with no API rate limit.☆26Apr 13, 2026Updated last month
- ☆40Feb 26, 2019Updated 7 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Scripts I created to pass the OSCP☆22Jul 23, 2021Updated 4 years ago
- Bash script to parse and convert linpeas\winpeas output files to readable HTML or PDF format☆37Apr 16, 2022Updated 4 years ago
- this repo is for windows privilege escalation technique☆58Aug 28, 2021Updated 4 years ago
- ☆51May 18, 2022Updated 4 years ago
- Execute commands across Windows and Linux systems using multiple RCE methods☆92Mar 2, 2026Updated 2 months ago
- useful stuff for pentesting☆55Mar 18, 2025Updated last year
- Creation of multiple Malware tools consisting of evasion, enumeration and exploitation☆102May 17, 2026Updated last week
- Quick scripts I developed to streamline OSCP tasks☆220Jun 14, 2025Updated 11 months ago
- ☆11Jan 6, 2020Updated 6 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- 用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。☆11Apr 2, 2021Updated 5 years ago
- Specialized testing tool designed to identify vulnerabilities and bugs in OPC UA (Open Platform Communications Unified Architecture) impl…☆43Feb 4, 2026Updated 3 months ago
- ☆20Jan 25, 2019Updated 7 years ago
- Simple Zeroconf/mDNS scanner written in Go with no external dependencies☆12Apr 20, 2021Updated 5 years ago
- 在线cms识别|旁站|c段|信息泄露|工控|系统|物联网安全|cms漏洞扫描|nmap端口扫描|子域名获取|待续..☆10Apr 23, 2019Updated 7 years ago
- A collection of study notes and resources for the Offensive Security Certified Professional (OSCP) certification exam. Includes summaries…☆68Nov 15, 2025Updated 6 months ago
- A general purpose cheat sheet for pentesting and OSCP certification☆291Jan 16, 2026Updated 4 months ago