{"id":26141000,"url":"https://github.com/satunix/methodology","last_synced_at":"2026-03-09T17:43:58.948Z","repository":{"id":281629193,"uuid":"945872506","full_name":"SATUNIX/Methodology","owner":"SATUNIX","description":null,"archived":false,"fork":false,"pushed_at":"2025-08-19T04:16:55.000Z","size":219,"stargazers_count":0,"open_issues_count":1,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-08-19T06:18:47.298Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/SATUNIX.png","metadata":{"files":{"readme":"README.md","changelog":"NewsReports/placeholder","contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-03-10T09:04:25.000Z","updated_at":"2025-07-23T13:02:42.000Z","dependencies_parsed_at":"2025-03-10T10:26:33.441Z","dependency_job_id":"06685c9f-5b36-41bf-afa6-a1a1f03fedbf","html_url":"https://github.com/SATUNIX/Methodology","commit_stats":null,"previous_names":["satunix/methodology"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/SATUNIX/Methodology","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SATUNIX%2FMethodology","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SATUNIX%2FMethodology/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SATUNIX%2FMethodology/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SATUNIX%2FMethodology/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/SATUNIX","download_url":"https://codeload.github.com/SATUNIX/Methodology/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SATUNIX%2FMethodology/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":30305215,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-09T17:35:44.120Z","status":"ssl_error","status_checked_at":"2026-03-09T17:35:43.707Z","response_time":61,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-03-11T02:58:57.078Z","updated_at":"2026-03-09T17:43:58.939Z","avatar_url":"https://github.com/SATUNIX.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# **Pentesting Methodology and Notation**\n\nDocumented my notes, process, and techniques used previously. \nFeel free to follow my process, take my tips, make sure not to use tools listed just because i said so. Dont be a skid. \nUnderstand, develop, test, be ethical. Use the listing documents especially just as a process guide to assist and backtrack if you become stuck in tests. \n\n--- \n\n\n## **Overview**\nThis repository contains **methodologies** for penetration testing, CTFs HTBs etc across various domains, including **Active Directory, Web Applications, Networks, and more**. The structure of this library ensures that methodologies are organized, and easy to follow.\nThis is broken down into the methods I have used in past for testing and provide an overview to help structure your planning and playbooks. \nEach methodology consists of:\n- **Overview \u0026 Preliminary Basics** – General knowledge, prerequisites, and example commands.\n- **Detailed Methodology Listings** – Step-by-step approaches.\n- **External Resources** – Links to manuals, official documentation, and advanced reading materials. (use the main resources.md)\n\n---\n\n## **🛠 How to Use This Library**\n1. Start with the **overview.md** file to understand **general pentesting concepts \u0026 common commands**.\n2. Navigate to the relevant **category directory** for a specific methodology.\n3. Each category contains **detailed methodology documents**, overview for basics and initial tests, and then listings for everything i could think of, just doesnt have example syntax. \n4. Refer to the **resources.md** for further reading, including official documentation, whitepapers, and detailed guides.\n\n---\n\n## **📚 External Resources \u0026 References**\nFor each methodology, consult the following references:\n- **MITRE ATT\u0026CK** – Adversarial tactics, techniques, and procedures ([attack.mitre.org](https://attack.mitre.org/))\n- **HackTricks** – Practical penetration testing methodologies ([book.hacktricks.xyz](https://book.hacktricks.xyz/))\n- **OWASP Web Security Testing Guide** – Best practices for web application testing ([owasp.org](https://owasp.org/www-project-web-security-testing-guide/))\n- **PayloadsAllTheThings** – Comprehensive payload repository ([github.com/swisskyrepo/PayloadsAllTheThings](https://github.com/swisskyrepo/PayloadsAllTheThings))\n- **Offensive Security PWK Labs** – OSCP methodology ([help.offensive-security.com](https://help.offensive-security.com/))\n\n---\n\nI strongly recommend you develop your own methodologies, you will otherwise find yourself stuck. Beyond technical understanding there is the the knowledge of the what and when. (Beyond the 'how'). \nOnly this will develop the best tester out of someone. There is no use in knowing 'how' to do everything if you dont know when and where to do it. \n(Skids be gone)\n\n---\n\n\n\u003e \"Those who know, don't tell; Those who tell, don't know.\"\n\n\n\u003e \"True knowledge or enlightenment is beyond the capacity of words to fully express, and those who truly understand it are aware of its ineffability.\"\n\n---\n\nWhile tools are an essential part of penetration testing, they should never be relied upon blindly. Understanding how the underlying technology works is critical, as tools evolve, become obsolete, or may not function as expected in real-world scenarios. To stay ahead, you must continuously learn, experiment, and practice—developing your own scripts and techniques rather than depending solely on automation. Throughout this guide, various tools may be listed as examples, but they may not be accurate or relevant at the time of reading. \n\nIt is also encouraged not to just blindly use these command examples on step by step as these examples are just that, an example. The commands and tools listed provide an idea of what the step and objective is, understand the method, the tecnique, and how it intertwines with following methods and steps. Take notes and practice. \n\nInstead of relying on predefined tools, focus on understanding the documentation, read the PTES, and NIST guides on pentesting, understand the technology and how it can be used, understand the technical details, and step-by-step methods and techniques behind them. Adapt your approach based on the objectives required, ensuring you are not just a tool user but a true security practitioner capable of thinking critically and adapting to new challenges.\n\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsatunix%2Fmethodology","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsatunix%2Fmethodology","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsatunix%2Fmethodology/lists"}