This is a compiled cheatsheet from my experience of OSCP 2023 journey. Won't say it is all-rounded but a good starting point if you wanna start your OSCP study. It covered all the tools, common issues and tips that I have faced during my study. It is still being updated and feel free to comment if you want any improvements.
☆14Oct 17, 2024Updated last year
Alternatives and similar repositories for OSCP-cheatsheet
Users that are interested in OSCP-cheatsheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- HITCON 2023 x DEVCORE Wargame☆22Aug 24, 2023Updated 2 years ago
- Audit and pentest methodologies for Windows including internal enumeration, privesc, lateral movement, etc.☆19Mar 31, 2026Updated last month
- A terminal workspace with batteries included☆19Sep 21, 2025Updated 7 months ago
- Multi-protocol credential validation tool with spray and no-spray modes for penetration testing.☆18Jan 4, 2026Updated 4 months ago
- Python Exploitation Framework☆43Apr 28, 2026Updated last week
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Vulnerabilities exploitation examples, python☆24May 22, 2023Updated 2 years ago
- Recently, the OpenSSH maintainers released security updates to fix a critical vulnerability that could lead to unauthenticated remote cod…☆13Jul 2, 2024Updated last year
- Filezilla local admin port exploit☆13Sep 13, 2017Updated 8 years ago
- Various AD tools needed for penetration testing in one place.☆24Jul 13, 2023Updated 2 years ago
- Unofficial list of approved tools for OSCP☆28Apr 25, 2023Updated 3 years ago
- Hours of research on color theory and what hues stimulate the eyes, and hand-picked hacked icons☆14Mar 13, 2024Updated 2 years ago
- Lightweight, customizable enumeration script to aid in time-saving when participating in hacking labs or OSCP exam.☆32Feb 18, 2026Updated 2 months ago
- Repository for tools used for the OSCP☆26Sep 18, 2025Updated 7 months ago
- Pentest report framework without data send☆19Sep 23, 2025Updated 7 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Python3 implementation of ADRecon with support for NTLM and Kerberos authentication querying LDAP. Generates individual CSV files and a s…☆61Feb 23, 2026Updated 2 months ago
- HITCON 2024 x DEVCORE Wargame☆31Aug 30, 2024Updated last year
- Notes for red teamers - from cloud to Active Directory to many things in between.☆64Jan 7, 2026Updated 3 months ago
- ☆30Sep 20, 2023Updated 2 years ago
- Collection of notes and scripts I used during my OSCP exam preparation.☆42Dec 21, 2025Updated 4 months ago
- Living off the Land (LOL) attack techniques, tools, and defender resources☆36Apr 3, 2026Updated last month
- A python3 and bash PoC for CVE-2021-4034 by Kim Schulz☆22Jan 27, 2022Updated 4 years ago
- A tool developed in Java for enumerating and scanning WordPress websites. It is completely free, open source and with no API rate limit.☆25Apr 13, 2026Updated 3 weeks ago
- ☆38Feb 26, 2019Updated 7 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Scripts I created to pass the OSCP☆22Jul 23, 2021Updated 4 years ago
- Bash script to parse and convert linpeas\winpeas output files to readable HTML or PDF format☆37Apr 16, 2022Updated 4 years ago
- this repo is for windows privilege escalation technique☆56Aug 28, 2021Updated 4 years ago
- ☆51May 18, 2022Updated 3 years ago
- Execute commands across Windows and Linux systems using multiple RCE methods☆92Mar 2, 2026Updated 2 months ago
- useful stuff for pentesting☆54Mar 18, 2025Updated last year
- Quick scripts I developed to streamline OSCP tasks☆220Jun 14, 2025Updated 10 months ago
- Creation of multiple Malware tools consisting of evasion, enumeration and exploitation☆101Updated this week
- ☆11Jan 6, 2020Updated 6 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- 用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。☆11Apr 2, 2021Updated 5 years ago
- Specialized testing tool designed to identify vulnerabilities and bugs in OPC UA (Open Platform Communications Unified Architecture) impl…☆43Feb 4, 2026Updated 3 months ago
- ☆20Jan 25, 2019Updated 7 years ago
- Simple Zeroconf/mDNS scanner written in Go with no external dependencies☆12Apr 20, 2021Updated 5 years ago
- 在线cms识别|旁站|c段|信息泄露|工控|系统|物联网安全|cms漏洞扫描|nmap端口扫描|子域名获取|待续..☆10Apr 23, 2019Updated 7 years ago
- A collection of study notes and resources for the Offensive Security Certified Professional (OSCP) certification exam. Includes summaries…☆67Nov 15, 2025Updated 5 months ago
- A general purpose cheat sheet for pentesting and OSCP certification☆280Jan 16, 2026Updated 3 months ago