Pentest reference — 3744 pages across 37 sources

Built by vibe coding with Claude with tons of coffee ☕

Press Ctrl+K to search
Beta Notice — This platform is currently under active development. You may encounter rendering issues, missing content, or broken links. If you come across any problems, please report them on Discord: p3ta00. Your feedback is appreciated.
OSAI Research Notice — The OSAI Research content included on this platform is not Offensive Security course material. It has been reviewed and approved for public sharing by Offensive Security. This content is provided as supplementary community research only.
p3ta00/p3ta-tricks

p3ta-tricks is a fast, searchable pentest reference that aggregates attack techniques, tool syntax, and post-exploitation chains from BloodHound, HackTricks, PayloadsAllTheThings, GTFOBins, Impacket, Certipy, NetExec, and more — all in one place, with zero context switching.

Variables

Every code block uses <placeholders> like <target-ip>, <domain>, and <username>. Click Variables in the sidebar to fill them in — values persist across every page for your whole session so you never retype the same IP twice. Each code block also has its own variable icon next to the copy button — hover a block to reveal it, click to set only the variables used in that block without the noise of unrelated fields.

Distro Toggle — Kali / Exegol / Script

The sidebar Distro toggle changes how Impacket commands are rendered. Kali uses the impacket-secretsdump format installed via apt. Exegol uses the secretsdump.py Python script format native to the Exegol container. Script prefixes with python3.

Search

Press Ctrl+K from anywhere to search across all 3744 pages instantly. Use the funnel button next to the search bar to restrict results to specific sources. Results rank by relevance and show the source they came from.

Tools Toggle — Impacket / GoPacket

The sidebar Tools toggle switches between Python Impacket and its Go equivalent GoPacket. When GoPacket is selected, every impacket- / secretsdump.py reference is rewritten to the Go style automatically. Distro selection is ignored when GoPacket is active.

Standing on the Shoulders of Giants

p3ta-tricks would not exist without the incredible work of these researchers, developers, and community contributors. Every page on this platform traces back to their open-source projects, wikis, and years of shared knowledge. If this reference has ever saved you time during an engagement, the real thanks belongs to them — please take a moment to visit their repos and leave a ⭐ star. It costs nothing and means everything to open-source authors.

🩸
BloodHound
SpecterOps
 🍳
The Hacker Recipes
ShutdownRepo
 🤖
HackTricks
HackTricks-wiki / carlospolop
 ☁️
HackTricks Cloud
HackTricks-wiki
 🔧
NetExec Wiki
Pennyw0rth
 🐚
GTFOBins
GTFOBins
 🪟
LOLBAS
LOLBAS-Project
 🏴
WADComs
WADComs
 💥
PayloadsAllTheThings
swisskyrepo
 🔌
HardwareAllTheThings
swisskyrepo
 🏰
InternalAllTheThings
swisskyrepo
 📜
Certipy
ly4k
 🩸
bloodyAD
CravateRouge
 📦
Impacket
fortra
 🐹
GoPacket
mandiant
 🔀
Ligolo-ng
nicocha30
 🎟️
Rubeus
GhostPack
 🐱
Mimikatz
gentilkiwi
 🐍
Sliver C2
BishopFox
goexec
FalconOpsLLC
 💣
Metasploit / msfvenom
rapid7
 🐛
All About Bug Bounty
daffainfo
 💥
Exploit-DB
Offensive Security
 🎓
Cheat Sheets
HTB Academy
Church of Malware
0xXyc et al.

Note on images: p3ta-tricks-owned screenshots (Adaptix C2, etc.) are hosted locally and always available offline. Images from GitHub-hosted sources (HackTricks, Hacker Recipes, PATT, etc.) are served via GitHub's raw CDN and require internet access in online mode. Some images embedded directly in source documentation by their original authors point to third-party external domains (blog posts, external wikis, hosting services) and are outside p3ta-tricks' control — they may become unavailable if those domains go down.