{"id":51121144,"url":"https://github.com/botnetbuddies/cheats","last_synced_at":"2026-06-25T02:30:50.012Z","repository":{"id":357581256,"uuid":"1237012817","full_name":"botnetbuddies/cheats","owner":"botnetbuddies","description":"Offensive CheatMD Cheatsheets","archived":false,"fork":false,"pushed_at":"2026-06-06T16:32:04.000Z","size":889,"stargazers_count":14,"open_issues_count":0,"forks_count":1,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-06-06T18:11:27.381Z","etag":null,"topics":["cheatmd","cheatsheets","hacking","hackthebox","htb","markdown","pentesting","productivity"],"latest_commit_sha":null,"homepage":"https://cheatmd.dev","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"unlicense","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/botnetbuddies.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-05-12T19:42:53.000Z","updated_at":"2026-06-06T16:32:04.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/botnetbuddies/cheats","commit_stats":null,"previous_names":["botnetbuddies/cheats"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/botnetbuddies/cheats","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/botnetbuddies%2Fcheats","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/botnetbuddies%2Fcheats/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/botnetbuddies%2Fcheats/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/botnetbuddies%2Fcheats/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/botnetbuddies","download_url":"https://codeload.github.com/botnetbuddies/cheats/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/botnetbuddies%2Fcheats/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":34757353,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-25T02:00:05.521Z","response_time":101,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cheatmd","cheatsheets","hacking","hackthebox","htb","markdown","pentesting","productivity"],"created_at":"2026-06-25T02:30:49.340Z","updated_at":"2026-06-25T02:30:50.000Z","avatar_url":"https://github.com/botnetbuddies.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"# cheats\n\nA minimal, repo-local collection of [CheatMD](https://github.com/Gubarz/cheatmd) markdown cheat sheets for common offensive/ops tasks.\n\n## What this is\n\n* Markdown `.md` files consumbed by `CheatMD`.\n* Fuzzy-searchable snippets with code blocks and metadata.\n* Variables are prompted at use time; shared variables can be imported across cheats.\n\n## Requirements\n\n* CheatMD installed and on `PATH`.\n* Bash or Zsh.\n\n## Variable Standards\n\n### Identity \u0026 Access\n\n| Variable | Description |\n|----------|-------------|\n| `$user` | The \"Actor.\" The credential you are currently using to authenticate or execute commands. |\n| `$target_user` | The \"Subject.\" The account being modified, attacked, created, or audited. |\n| `$actor_user` | (Rare) Used in impersonation/delegation scenarios when you need a third user identity. |\n| `$pass` | The cleartext password for `$user`. |\n| `$hash` | The NTLM/MD4/MD5 credential for `$user`. |\n| `$target_pass` | The cleartext password for `$target_user`. |\n| `$target_hash` | The NTLM/MD4/MD5 credential for `$target_user`. |\n| `$domain` | The Active Directory or DNS domain context (FQDN). |\n\n### Networking\n\n| Variable | Description |\n|----------|-------------|\n| `$rhost_ip` | The Remote Host IP address. (Use for tools that struggle with DNS resolution). |\n| `$rhost_name` | The Remote Hostname or FQDN. (Use for Kerberos-based attacks). |\n| `$lhost` | Your local listener IP (for shells or file serving). |\n| `$rport` | Remote port. |\n| `$lport` | Local port. |\n\n### AWS\n\n| Variable | Description |\n|----------|-------------|\n| `$aws_profile` | AWS CLI profile name used for authenticated AWS API calls. |\n| `$aws_profile_file` | File containing AWS profile names, one per line. |\n| `$aws_account_id` | AWS account ID. |\n| `$aws_account_ids` | Multiple AWS account IDs, formatted as the target tool expects. |\n| `$aws_role_name` | IAM role name. |\n| `$aws_role_names` | Multiple IAM role names, formatted as the target tool expects. |\n| `$aws_role_arn` | Full IAM role ARN. |\n| `$aws_mfa_serial_arn` | MFA device serial ARN for AWS role assumption. |\n| `$aws_mfa_token_code` | MFA token code for AWS role assumption. |\n| `$aws_region` | AWS region. |\n| `$aws_region_one` | First AWS region when a command compares or combines regions. |\n| `$aws_region_two` | Second AWS region when a command compares or combines regions. |\n| `$aws_region_list` | Multiple AWS regions, formatted as the target tool expects. |\n| `$aws_access_key_id` | AWS access key ID. |\n| `$aws_secret_access_key` | AWS secret access key. |\n| `$aws_session_token` | AWS temporary session token. |\n| `$aws_iam_action` | Single IAM action name. |\n| `$aws_iam_action_query` | IAM action search pattern or list, formatted as the target tool expects. |\n| `$s3_bucket` | S3 bucket name. |\n| `$s3_bucket_names` | Multiple S3 bucket names, formatted as the target tool expects. |\n| `$s3_bucket_file` | File containing S3 bucket names, one per line. |\n| `$s3_object_key` | S3 object key inside a bucket. |\n| `$aws_instance_id` | EC2 instance ID. |\n| `$aws_source_ip` | Source IP or CIDR to allow, whitelist, or probe from during AWS testing. |\n| `$aws_principal_arn` | AWS principal ARN used in trust, permission, or backdoor testing. |\n| `$aws_sns_topic_arn` | SNS topic ARN. |\n| `$aws_sns_email` | Email address used for SNS subscription testing. |\n| `$aws_callback_url` | Operator-controlled callback URL for approved AWS testing. |\n| `$aws_userdata_script_file` | Local script file used as EC2 user data during approved AWS testing. |\n| `$aws_policy_folder` | Folder containing exported IAM policy JSON for offline analysis. |\n\n### Kubernetes\n\n| Variable | Description |\n|----------|-------------|\n| `$kube_context` | Kubernetes kubeconfig context name. |\n| `$kubeconfig_file` | Explicit kubeconfig file path. |\n| `$kube_cluster_name` | Kubernetes cluster name. |\n| `$kube_results_json` | Kubernetes result export JSON file. |\n\n\n## Validation\n\nRaw strict lint is currently inherited baseline debt: `cheatmd --lint --strict cheats` reports the same warning count on this branch and on `origin/main`. Until the repo-wide cleanup is done, use the baseline-delta gate to prevent regressions without rewriting copied cheat commands:\n\n```sh\nscripts/cheatmd-strict-lint-delta.sh\n```\n\nThe script compares current strict-lint findings with `origin/main` and fails only when the current branch adds findings. Optional overrides:\n\n```sh\nBASE_REF=origin/main CHEATS_PATH=cheats CHEATMD_BIN=cheatmd scripts/cheatmd-strict-lint-delta.sh\n```\n\n## Style Guide\n\n* Use lowercase variable names: `$user`, `$rhost_ip`.\n* Follow the variable standards above for Identity, Networking, AWS, and Kubernetes variables.\n* Keep commands copy-pastable and shell-safe; quote values that can contain spaces.\n* Provide short descriptions; avoid tool theory here.\n* Avoid destructive defaults. Gate destructive commands behind explicit confirmation.\n* Use `import` for common variables instead of redefining them.\n\n## Adding a New Cheat\n\n1. Create `toolname.md` in the repo root.\n2. Group commands under `## category` sections.\n3. Add commands in fenced code blocks with `sh title:\"description\"`.\n4. Add metadata in `\u003c!-- cheat --\u003e` blocks below each code block.\n5. Import common modules (`users`, `domain_ip`, `passwords`) where applicable.\n\n## Credits\n\n* https://lolbas-project.github.io/\n* https://gtfobins.org\n* https://hacktricks.wiki/en/index.html\n* Botnet Buddies\n\n## Licensing\n\n* See `LICENSE` for terms.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbotnetbuddies%2Fcheats","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbotnetbuddies%2Fcheats","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbotnetbuddies%2Fcheats/lists"}