A comprehensive cheatsheet designed to help CTF players and beginners understand privilege escalation fundamentals through practical examples. The resource focuses on providing structured guidance for privilege escalation techniques rather than basic enumeration commands. It compiles various methods and approaches for escalating privileges in different scenarios, presenting multiple ways to accomplish similar objectives. The cheatsheet is based on practical experience and aims to build foundational knowledge for security professionals learning privilege escalation concepts. It serves as a reference guide for understanding how privilege escalation works in practice, with examples that demonstrate real-world application of these techniques. The resource is maintained by Hacking Articles and is intended for educational purposes in cybersecurity training and CTF preparation.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A comprehensive guide to developing an incident response capability through intelligence-based threat hunting, covering theoretical concepts and real-life scenarios.
Free and open-source cybersecurity training classes with multi-class learning paths for high-skill, high-pay job skills.
A comprehensive guide to digital forensics and incident response, covering incident response frameworks, digital forensic techniques, and threat intelligence.
A comprehensive guide to investigating security incidents in popular cloud platforms, covering essential tools, logs, and techniques for cloud investigation and incident response.
A practical guide to developing a comprehensive security monitoring and incident response strategy, covering incident response fundamentals, threat analysis, and data analysis.
A practical guide to enhancing digital investigations with cutting-edge memory forensics techniques, covering fundamental concepts, tools, and techniques for memory forensics.
A comprehensive guide to understanding and responding to modern ransomware attacks, covering incident response, cyber threat intelligence, and forensic analysis.
A curated collection of companies that have publicly disclosed adversary tactics, techniques, and procedures following security breaches.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.