⚡ SheetCheater
Security cheatsheets for bug bounty hunters and pentesters. Copy-paste ready. No bullshit.
amass
Attack surface mapping and asset discovery. OWASP project.
arjun
HTTP parameter discovery tool.
assetfinder
Fast subdomain discovery using passive sources. Simple and effective.
commix
Automated command injection exploitation tool.
dalfox
Fast XSS scanner and parameter analyzer. Go-based.
dirsearch
Web path scanner with recursive brute forcing and smart features.
dnsrecon
DNS enumeration script with multiple techniques.
dnsx
Fast DNS toolkit for queries, resolution, and wildcard detection. ProjectDiscovery.
Docker
Container runtime for packaging and running applications. Essential for pentest lab environments.
feroxbuster
Fast recursive content discovery tool written in Rust.
ffuf
Fast web fuzzer for content discovery, parameter fuzzing, and vhost enumeration. Use only on authorized targets.
gobuster
Directory/file brute force and DNS/vhost enumeration tool.
Google Dorks
Advanced Google search operators for OSINT and reconnaissance. Always scope to authorized targets.
Hashcat
GPU-accelerated password cracker for offline hash recovery. Use only on hashes you're authorized to test.
httpx
Fast HTTP prober for identifying live hosts, tech stack, and grabbing responses. ProjectDiscovery.
Hydra
Fast network login cracker supporting 50+ protocols. Use only on authorized targets.
interactsh
Out-of-band (OOB) interaction server for detecting blind vulnerabilities. ProjectDiscovery.
jwt_tool
JWT (JSON Web Token) toolkit for testing and exploitation.
katana
Fast web crawler for collecting URLs and endpoints. ProjectDiscovery.
linkfinder
JavaScript endpoint extractor.
masscan
Internet-scale port scanner. Extremely fast.
massdns
High-performance DNS stub resolver for bulk lookups.
Meterpreter
Advanced Metasploit payload for post-exploitation. Use only on authorized targets.
naabu
Fast port scanner with SYN/CONNECT scanning. ProjectDiscovery.
netexec
Network execution tool for pentesting (CrackMapExec successor).
Nmap
Network scanner for host discovery, port scanning, service detection, and scripted enumeration. Use only on authorized targets.
nuclei
Template-based vulnerability scanner. Fast, customizable, and community-driven. ProjectDiscovery.
responder
LLMNR/NBT-NS/mDNS poisoner for credential capture.
rustscan
Fast port scanner that pipes to nmap for service detection.
secretfinder
Find secrets (API keys, tokens) in JavaScript files.
smbclient
FTP-like client for SMB/CIFS shares. Use only on authorized targets.
smbmap
SMB share enumeration and access tool. Use only on authorized targets.
sqlmap
Automatic SQL injection detection and exploitation tool.
ssrfmap
SSRF exploitation framework with modules.
subfinder
Fast subdomain discovery tool using passive sources. ProjectDiscovery.
tshark
Terminal-based Wireshark for packet capture and analysis. Use only on authorized networks.
uncover
Search engine query tool for finding exposed assets. Shodan, Censys, Fofa, and more. ProjectDiscovery.
wafw00f
Web Application Firewall (WAF) detection tool.
whatweb
Web technology fingerprinting tool. Identifies CMS, frameworks, and server software.
xsstrike
Advanced XSS detection suite with fuzzing engine.