# Grimoire

## Docs

- [ACL Abuse](https://notes.chaelsoo.me/active-directory/acl-abuse.md)
- [AD Certificate Services (ADCS)](https://notes.chaelsoo.me/active-directory/adcs.md)
- [AS-REP Roasting](https://notes.chaelsoo.me/active-directory/asrep-roasting.md)
- [Credential Dumping](https://notes.chaelsoo.me/active-directory/credential-dumping.md)
- [Kerberos Delegation](https://notes.chaelsoo.me/active-directory/delegation.md)
- [Active Directory Enumeration](https://notes.chaelsoo.me/active-directory/enumeration.md)
- [AD Groups](https://notes.chaelsoo.me/active-directory/groups.md)
- [Active Directory](https://notes.chaelsoo.me/active-directory/index.md)
- [Kerberoasting](https://notes.chaelsoo.me/active-directory/kerberoasting.md)
- [NTLM Disabled Environments](https://notes.chaelsoo.me/active-directory/ntlm-disabled.md)
- [Pass Attacks](https://notes.chaelsoo.me/active-directory/pass-attacks.md)
- [PowerShell / PowerView](https://notes.chaelsoo.me/active-directory/powerview.md)
- [Domain Trusts](https://notes.chaelsoo.me/active-directory/trusts.md)
- [File Transfers](https://notes.chaelsoo.me/file-transfers.md)
- [awk](https://notes.chaelsoo.me/linux/awk.md)
- [Linux](https://notes.chaelsoo.me/linux/index.md)
- [Linux Post Exploitation](https://notes.chaelsoo.me/linux/postex.md)
- [Linux Privilege Escalation](https://notes.chaelsoo.me/linux/privesc.md)
- [Methodology & Assessments](https://notes.chaelsoo.me/methodology/index.md)
- [Pentest Mindset](https://notes.chaelsoo.me/methodology/mindset.md)
- [Box Solving Workflow](https://notes.chaelsoo.me/methodology/workflow.md)
- [Chisel](https://notes.chaelsoo.me/pivoting/chisel.md)
- [Pivoting & Tunneling](https://notes.chaelsoo.me/pivoting/index.md)
- [Ligolo-ng](https://notes.chaelsoo.me/pivoting/ligolo.md)
- [Proxychains](https://notes.chaelsoo.me/pivoting/proxychains.md)
- [Recon & Enumeration](https://notes.chaelsoo.me/recon/index.md)
- [OSINT](https://notes.chaelsoo.me/recon/osint.md)
- [Port Scanning](https://notes.chaelsoo.me/recon/port-scanning.md)
- [Subdomain & DNS](https://notes.chaelsoo.me/recon/subdomain-dns.md)
- [Web Enumeration](https://notes.chaelsoo.me/recon/web-enum.md)
- [API Key Validation](https://notes.chaelsoo.me/tools/api-key-validation.md)
- [BloodHound](https://notes.chaelsoo.me/tools/bloodhound.md)
- [bloodyAD](https://notes.chaelsoo.me/tools/bloodyad.md)
- [Hashcat](https://notes.chaelsoo.me/tools/hashcat.md)
- [Impacket](https://notes.chaelsoo.me/tools/impacket.md)
- [Tools](https://notes.chaelsoo.me/tools/index.md)
- [John the Ripper & File Cracking](https://notes.chaelsoo.me/tools/john.md)
- [nmap](https://notes.chaelsoo.me/tools/nmap.md)
- [NetExec (nxc)](https://notes.chaelsoo.me/tools/nxc.md)
- [Sliver](https://notes.chaelsoo.me/tools/sliver.md)
- [Auth Bypass](https://notes.chaelsoo.me/web/auth-bypass.md)
- [Command Injection](https://notes.chaelsoo.me/web/cmdi.md)
- [ffuf](https://notes.chaelsoo.me/web/ffuf.md)
- [File Upload](https://notes.chaelsoo.me/web/file-upload.md)
- [Web Exploitation](https://notes.chaelsoo.me/web/index.md)
- [LFI / RFI](https://notes.chaelsoo.me/web/lfi-rfi.md)
- [SQL Injection](https://notes.chaelsoo.me/web/sqli.md)
- [SQLmap](https://notes.chaelsoo.me/web/sqlmap.md)
- [SSRF](https://notes.chaelsoo.me/web/ssrf.md)
- [XSS](https://notes.chaelsoo.me/web/xss.md)
- [Windows](https://notes.chaelsoo.me/windows/index.md)
- [Windows Post Exploitation](https://notes.chaelsoo.me/windows/postex/postex.md)
- [Windows Privilege Escalation](https://notes.chaelsoo.me/windows/privesc/privesc.md)