Skip to content

📕 The Red Book

Select theme

📕 The Red Book
Introduction
🦳 Stages of Ethical Hacking
- 1️⃣ Information Gathering
  - Overview
  - Active Information Gathering
    
    Overview
    DNS Zone Transfers
    NMAP
    netdiscover
    sqlMap
    Nikto
    Shodan
    RustScan
    Amass
    fping
  - Passive Information Gathering
    
    Overview
    Website Recon & Footprinting
    Whois Enumeration
    Netcraft
    ⭐ DNS
    Identify if site is protected by firewall or proxy - wafw00f
    Subdomain Enumeration - Sublist3r
    ❌ theHarvester (borked)
    Email gathering
    Leaked Password Databases
    Certificates
- 2️⃣ Enumeration
  - Overview
  - SMB
    
    Overview
    Windows discover & Mount
    NMAP Scripts
    SMBMap
    Samba with Linux
    Dictionary Attack
  - FTP
  - SSH
  - HTTP
    
    Overview
    Subdomain
    IIS
    Apache
  - SQL
- 3️⃣ Vulnerability Assessment
  - Overview
  - Nessus
💾 System/Host Based Attacks
- 🪟 Windows
  - Overview
  - Frequently exploited Windows Services
- 🐧 Linux
🥽 Dorks
- Google
- Extra
🎣 Phishing
🔎 OSINT
- Temporary links
👾 Data exfiltration
- Temporary links
🐝 OWASP
- Top10
📙 Cheat Sheet

Select theme

On this page

Overview
Useful links
Dorks builder

On this page

Overview
Useful links
Dorks builder

Init

Useful links

Section titled “Useful links”

Exploit-DB
Cheat sheet
https://github.com/opsdisk/pagodo
https://github.com/BullsEye0/google_dork_list
https://github.com/BullsEye0/dorks-eye

Dorks builder

Section titled “Dorks builder”

****

Section titled “”

Previous
🐧 Linux Next
Cheatsheet