What is BookJMP?
BookJMP is a personal knowledge base built around offensive security techniques. It covers real-world attack paths, from initial enumeration to privilege escalation, organized as quick-reference cheat sheets you can use during engagements or CTF challenges. No fluff. Commands that work. Context where it matters.What’s Inside
General
15 port/service cheat sheets, brute-force tools (Hashcat, Hydra, John, wordlists), Metasploit payload generation.
Network
Nmap, Masscan, DNS/SNMP enumeration, traffic analysis with Wireshark/tcpdump, MITM attacks, and 8 pivoting tools.
Privilege Escalation
26 Windows and 21 Linux privesc techniques — from kernel exploits to credential harvesting, with checklists and automation.
Active Directory
44 pages covering enumeration, Kerberos attacks, lateral movement, persistence, ADCS, trust attacks, and BloodHound.
Wi-Fi
Full wireless attack methodology — setup, tools, WPA2/WPA3/Enterprise attacks, evil twin, and captive portal.
Mobile
Android and iOS app security — ADB, reverse engineering, Frida, Objection, and MobSF.
Web
Web application attacks — injection, authentication bypass, client-side exploits, and API abuse.
Pwn
Binary exploitation — buffer overflow, ROP chains, heap exploitation, and mitigation bypasses.
Who This Is For
- Pentesters looking for fast command references mid-engagement
- CTF players working through Windows and AD challenges
- Security students building their offensive methodology
How to Use
Each page is a self-contained cheat sheet. No prerequisites assumed per page, commands include the full context needed to run them. Use the sidebar to navigate by technique or target. When in doubt, start with the enumeration pages before moving to attacks.This knowledge base documents techniques for use in authorized environments only. CTF platforms, lab machines, and systems you have explicit permission to test.