TCM Security Academy Notes - by syselement

Home Blog GitHub Buy Me a Book

Home Blog GitHub Buy Me a Book

TCM Security Academy Notes
Courses
🏠syselement's Blog Home

Powered by GitBook

On this page

Was this helpful?

Courses

TCM - Practical Ethical Hacking

PEH References

Practical Ethical Hacking - The Complete Course
TCM Course Resources - Github
- Practical-Ethical-Hacking-Resources
PNPT Certification
Course and FAQs - Discord

Introduction

Why You Shouldn't Be an Ethical Hacker

Note Keeping

Notetaking Apps Ranked (Alex Olsen)
Notion
Joplin
GitBook
Obsidian
FlameShot - Screenshot tool
ShareX - Screenshot tool
GreenShot - Screenshot tool

Networking

Professor Messer - Seven Second Subnetting - Youtube
Subnet Guide - TCM
Networking Fundalmentals - Practical Networking Youtube
Subnetting Mastery - Practical Networking Youtube
Network Fundamentals - Network Direction Youtube
SMB University - Cisco Networking Fundamentals
guru99 - TCP 3-Way Handshake
guru99 - OSI Model Layers
OSI Cyber Attacks - byos.io
Subnet Calculator - mxtoolbox.com
CIDR to IPv4 Conversion

Lab Set Up

VMware Workstation Player
VMWare Workstation Pro (Free)
VirtualBox + VirtualBox Extension Pack
Kali Linux
- Kali VM Installation - VMware - syselement
- pimpmykali
ParrotOS
TCM Linux-101 - syselement
- chmod Calculator
- explainshell.com
What is a ping sweep (ICMP sweep)?

Python

Python Documentation
LearnPython.org
Python Tutorial - W3Schools
Python Cheatsheet
- Automate the Boring Stuff with Python - Book
Socket Programming in Python (Guide) - RealPython

The Ethical Hacker Methodology

Phases of Ethical Hacking - InfosecTrain
Bugcrowd

Information Gathering

Hunter.io
Phonebook.cz
Clearbit Connect
EmailHippo Email address verifiy
Email-checker
HaveIBeenPwned
breach-parse
DeHashed.com
Hashes.com
Sublist3r
crt.sh
amass
httprobe
BuiltWith.com
Wappalyzer.com
WhatWeb
Burp Suite
Google Search Syntax
Google Search Operators: The Complete List (44 Advanced Operators)
Open-Source Intelligence Fundamentals - TCM Security

Scanning & Enumeration

PEH Course VMs - TCM Security
- PEH Course Capstone VMs (updated) - TCM Security
VulnHub
nmap
HTTP response codes
Metasploit
- Vulnerability & Exploit Database - Rapid7
How to Enumerate SMB with Enum4linux & Smbclient - Null Byte
smbclient
exploit-db
- searchsploit

Vulnerability Scanning with Nessus

Nessus
Nessus Essentials - syselement

Exploitation Basics

Hacking with Netcat part 2: Bind and reverse shells
netcat
Metasploit Unleashed - OffSec
- Apache mod_ssl < 2.8.7 OpenSSL - Remote Buffer Overflow
Top 13 Vulnerable Web Applications and Websites for Ethical Hacking Practice | by ByteBusterX | Medium
Damn Vulnerable Web Application (DVWA)
Credential stuffing
Password spraying
CVE-2017-0144 - MS17-010
CrackStation - Online Password Hash Cracking
- hashcat
GitHub - pentestmonkey/php-reverse-shell
LinPEAS
WinPEAS
pspy
Reverse Shell Cheat Sheet | pentestmonkey
fcrackzip
GTFO Bins
Pure Groovy/Java Reverse Shell
Unquoted Service Paths | Red Team Notes
dnsrecon
Spawning a TTY Shell | SecWiki
Linux Privilege Escalation - SUDO and SUID | HackTricks
Linux Privilege Escalation | TCM Security
Windows Privilege Escalation for Beginners | TCM Security

Active Directory

Active Directory Domain Services
Introduction to Active Directory - HTB Academy
Compromising Active Directory module - TryHackMe
PimpmyADLab
Building a Windows AD lab
GrouppVM
How To Setup Red Team And Blue Team Lab 2024 - Part 2 - InfoSec Pat
LLMNR Poisoning and How to Prevent It - TCM Security
- LLMNR | Pentest Everything - viperone.gitbook.io
- Responder
SMB Relay Attacks and How to Prevent Them - TCM Security
- ntlmrelayx.py
mitm6 - compromising IPv4 networks via IPv6 - Fox-IT
- mitm6
How to Hack Through a Pass-Back Attack: MFP Hacking Guide+
ldapdomaindump
BloodHound
- PlumHound
PingCastle
Forest Druid
Purple Knight
crackmapexec
- CrackMapExec Cheat Sheet 2024 (Commands & Examples) - Stationx
netexec
secretsdump.py
Kerberoasting - CrowdStrike
Token Impersonation | Pentest Everything
- Fun with Incognito - Metasploit Unleashed

Post Exploitation

Web Application

Top 10 Web App Vulnerabilities

Wireless Penetration Testing

Legal Documents and Report Writing

Previous8. Legal Documentation & Report Writing

Last updated 3 months ago

Was this helpful?

🌐

Introduction
Note Keeping
Networking
Lab Set Up
Python
The Ethical Hacker Methodology
Information Gathering
Scanning & Enumeration
Vulnerability Scanning with Nessus
Exploitation Basics
Active Directory
Post Exploitation
Web Application
Top 10 Web App Vulnerabilities
Wireless Penetration Testing
Legal Documents and Report Writing