search
Page cover

Cheat Sheets & Resources

These are not intended to be definitive, but a resource to add to your cheat sheet tool kit.

A portion of these cheat sheets will only be relevant to the cybersecurity professionals that are specifically in a technical role. However, the key to being a good cybersecurity professional is to always be learning. You may not have to run SQL Injection tests in your career path, but you should understand the fundamental purpose of it.

hashtag
General Resources

Cyberstash arrow-up-rightis a wonderful resource created by a fellow Redditor. A curated directory of cybersecurity tools and resources for infosec professionals.

The DoD Cybersecurity Reference Guidearrow-up-right is a readily available references to support Security Cooperation across the USG, commercial sector, and U.S. allies and partners. Within this document, readers will find information regarding cybersecurity norms, best practices, policies, and standards written and adopted by the U.S. federal government, the U.S. Department of Defense, and recognized institutional standards.

hashtag
Cheat Sheets

Kali Linux: https://www.comparitech.com/net-admin/kali-linux-cheat-sheet/arrow-up-right

SQL Injection: https://portswigger.net/web-security/sql-injection/cheat-sheetarrow-up-right

nmap: https://www.stationx.net/nmap-cheat-sheet/arrow-up-right

OWASP's web security cheat sheets: https://cheatsheetseries.owasp.org/IndexTopTen.htmlarrow-up-right

Metasploit: https://github.com/security-cheatsheet/metasploit-cheat-sheetarrow-up-right

Wireshark: https://www.comparitech.com/net-admin/wireshark-cheat-sheet/arrow-up-right

tcpdump: https://packetlife.net/media/library/12/tcpdump.pdfarrow-up-right

vi: https://www.atmos.albany.edu/daes/atmclasses/atm350/vi_cheat_sheet.pdfarrow-up-right

Burp Suite: https://www.sans.org/posters/burp-suite-cheat-sheet/arrow-up-right

aircrack-ng: https://gist.github.com/dogrocker/86881d2403fee138487054da82d5dc2earrow-up-right

nessus: https://github.com/LimberDuck/nessus-cheat-sheet/blob/main/nessus-cheat-sheet.adocarrow-up-right

john the ripper: https://countuponsecurity.files.wordpress.com/2016/09/jtr-cheat-sheet.pdfarrow-up-right

hashcat: https://github.com/frizb/Hashcat-Cheatsheetarrow-up-right

sqlmap: https://gist.github.com/ingramali/af16d31eace1f90574147cbc94e9e965arrow-up-right

openSSH: https://gist.github.com/githubfoam/95b375f3770cf2a1d88d8592a8c92e2barrow-up-right

SANS Ultimate List Of Cheat Sheets https://www.sans.org/blog/the-ultimate-list-of-sans-cheat-sheets/arrow-up-right

hashtag
Certificate Specific

hashtag
CISSP

https://cdn.comparitech.com/wp-content/uploads/2020/01/CISSP-Cheat-Sheet-Domain-3.pdfarrow-up-right

hashtag
Security+

https://cheatography.com/sokoctopus/cheat-sheets/security-601-exam/arrow-up-right

hashtag
Offensive Security Certified Professional (there are no shortage of these):

https://gitlab.com/lagarian.smith/oscp-cheat-sheet/-/blob/master/OSCP_Notes.mdarrow-up-right

https://github.com/0xsyr0/OSCParrow-up-right

https://github.com/akenofu/OSCP-Cheat-Sheetarrow-up-right

hashtag
Offensive Security Experienced Professional

https://exploit-me.com/blog/osep-cheat-sheet/arrow-up-right

hashtag
Offensive Security Web Expert

https://jorgectf.gitbook.io/awae-oswe-preparation-resources/other-repositoriesarrow-up-right

hashtag
Offensive Security Exploit Developer

https://github.com/mrtouch93/OSED-Notesarrow-up-right

hashtag
Exploit and vulnerability resources

LogoOffSec’s Exploit Database Archivewww.exploit-db.comchevron-right
LogoRapid7 Vulnerability & Exploit Database | CVE InsightsRapid7chevron-right
LogoVulnerability & Exploit DatabasePentest-Tools.comchevron-right
LogoMITRE ATT&CK®attack.mitre.orgchevron-right
PreviousYouTube Channels & SubredditsNextNews

Last updated