HACKERS MANIFEST

Field-tested methodologies, interactive tools, and cheatsheets for offensive security practitioners & defenders.

Start a Web Pentest Explore all domains

Pick your path.

From first lab to full adversary simulation.

01 · LEARN

Build the lab. Break things safely.

Stand up an isolated home lab, then walk a guided path from your first nmap scan to your first authorized web finding.

Start the lab path
02 · ENGAGE

Run a real pentest.

Pre-engagement wizard, RoE template, MITRE-tagged playbooks, exploitation references, and report builders — kickoff to deliverable.

Open the pentest path
03 · OPERATE

Adversary simulation.

Objectives, infrastructure, initial access, C2, evasion, AD attack paths, and post-ex tradecraft — for mature programs simulating real threat actors.

Open red team ops

Defender? Jump to secure architecture, DFIR, or threat intel.

Tools that do the work.

MODELING

STRIDE Modeler

Drag-and-drop threat modeling with ATT&CK + OWASP mappings and PDF export.

MODELING

Attack Tree Builder

Compose adversary objectives with weighted leaves, severity scoring, and JSON export.

BUILDER

Nmap Builder

Compose stealthy or aggressive scans visually; copies a single shell-ready command.

REPORTING

Findings Library

Reusable finding catalog with CVSS scoring, severity, and remediation snippets.

SPECIALIZED

Azure Baseline Explorer

Search and filter Microsoft Cloud Security Benchmark controls across core Azure services.
Browse all tools →

End-to-end engagement guides.

PHASES · 8 PTES · OWASP WSTG v4.2

Web Penetration Test

Pre-engagement, recon, scanning, enumeration, vuln analysis, exploitation, labs, and reporting. The default starting point for most engagements.

Open guide
PHASES · 7 AD · post-ex

Internal Penetration Test

Network discovery, AD enumeration, Kerberos attacks, lateral movement, persistence, and domain dominance — with BloodHound paths and OPSEC notes throughout.

Open guide
PHASES · 6 MITRE ATT&CK

Red Team Operations

Adversary simulation: objectives, infrastructure, initial access, C2, evasion, and reporting. For mature programs simulating real threat actors.

Open guide

Browse by domain.

Application & API

Web, API, source code, and crypto attacks aligned to OWASP WSTG v4.2.
Web PentestOWASP Top 10, recon → reporting. API SecurityREST, GraphQL, gRPC. Source Code ReviewSAST and secure code analysis. Cryptography AttacksWeak crypto and protocol flaws.

Infrastructure & Cloud

Network, AD, containers, CI/CD, AWS, Azure, GCP.
Network SecurityOSI, TCP/IP, subnetting. AD SecurityKerberos and domain dominance. Internal PentestLateral movement, post-ex. Container SecurityDocker and Kubernetes attacks. CI/CD SecurityActions, Jenkins, supply chain. Cloud SecurityAWS, Azure, GCP, containers. Azure BaselinesMCSB patterns by service.

Hardware & Wireless

IoT, OT, automotive, drone, WiFi, physical, counter-surveillance.
WirelessWiFi attacks and WPA cracking. IoTFirmware and protocol attacks. OT/ICSSCADA, PLCs, industrial systems. AutomotiveCAN bus and vehicle hacking. DroneUAV hacking and RF. PhysicalSocial engineering, lock picking. Counter-SurveillanceAnti-tracking, biometrics defense.

Offensive Research

Low-level offense and emerging-AI tradecraft.
Binary ExploitationBOFs, ROP, heap. Reverse EngineeringBinary analysis, decompilation. Malware AnalysisStatic and dynamic. Offensive AIAI-powered pentesting and agents.

Defense, Intel & Architecture

For blue, purple, and architecture-side readers.
OSINTOpen source intelligence. Threat IntelligenceAPTs, TTPs, IOCs. DFIRForensics and IR. Secure ArchitectureThreat modeling and design. Threat & RiskFAIR and TRA frameworks. BlockchainSmart contract and DeFi. MobileAndroid and iOS assessment.

Process & Standards

The operational half of professional security testing.
Legal & ComplianceStandards, RoE, authorization. ReportingExec and technical templates. RemediationFix recommendations for devs.

Tool cheatsheets for fast reference.

nmap Discovery & port scanning Burp Suite Web proxy quick ops Active Directory Enum & abuse paths Windows Privesc Tokens, services, paths Impacket Suite quick reference BloodHound Cypher cheats sqlmap SQLi automation ffuf / gobuster Fuzzing flags CrackMapExec SMB/WinRM ops Encryption Algorithms & modes + 7 more →
“This is our world now… the world of the electron and the switch, the beauty of the baud.”

— The Mentor, The Hacker Manifesto, 1986

Read the manifesto About the project