{"title":"Cyber Security Study Guides","description":"","products":[{"product_id":"antivirus-evasion-bypass-study-notes","title":"AntiVirus Evasion \u0026 Bypass Study Notes","description":"\u003cp\u003eAntiVirus Evasion \u0026amp; Bypass Study Notes is a study guide on Antivirus (AV) evasion techniques, covering methods to bypass security measures used by modern AVs and Endpoint Detection \u0026amp; Response (EDR) systems. It includes detailed techniques on obfuscation, encryption, process injection, shellcode generation, and various AV evasion tactics using tools like Metasploit, C#, PowerShell, and VBA.\u003cb\u003e\u003cu\u003e\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eAV Detection Methods\u003c\/li\u003e\n\u003cli\u003eBypassing Signature-Based Detection\u003c\/li\u003e\n\u003cli\u003eBypassing AV with Metasploit\u003c\/li\u003e\n\u003cli\u003eBypassing AV with C#\u003c\/li\u003e\n\u003cli\u003eC# Injection into Trusted Processes\u003c\/li\u003e\n\u003cli\u003eUsing Non-Emulated APIs\u003c\/li\u003e\n\u003cli\u003eAV Evasion Using Office Macros\u003c\/li\u003e\n\u003cli\u003eAV Evasion with Mimikatz\u003c\/li\u003e\n\u003cli\u003eAdvanced VBA Techniques\u003c\/li\u003e\n\u003cli\u003eProcess Hollowing\u003c\/li\u003e\n\u003cli\u003eObfuscation Techniques and Principles\u003c\/li\u003e\n\u003cli\u003eEvasion Techniques\u003c\/li\u003e\n\u003cli\u003eRuntime Evasion\u003c\/li\u003e\n\u003cli\u003eApplication Whitelisting \u0026amp; Credentials\u003c\/li\u003e\n\u003cli\u003eAdvanced AppLocker and PowerShell Security Bypass\u003c\/li\u003e\n\u003cli\u003eTechniques\u003c\/li\u003e\n\u003cli\u003eIPS\/IDS Evasion\u003c\/li\u003e\n\u003cli\u003eBypassing Network Filters\u003c\/li\u003e\n\u003cli\u003eWindows Backdoors\u003c\/li\u003e\n\u003cli\u003eMS Office Backdoors\u003c\/li\u003e\n\u003cli\u003eLinux Rootkits\u003c\/li\u003e\n\u003cli\u003eDLL Backdoors\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003ePage Count:\u003c\/u\u003e\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e144\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eFormat:\u003c\/u\u003e\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003ePDF\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eNote\u003c\/b\u003e\u003c\/u\u003e:\u003cspan\u003e \u003c\/span\u003e\u003cu\u003eThis product is not eligible for a refund\u003c\/u\u003e.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact\u003cspan\u003e \u003c\/span\u003e\u003cb\u003econsultation@motasem-notes.net\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003eand clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eFAQ\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eWhat topics are covered in the notes?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThe 144-page PDF includes:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eAV detection methods\u003c\/li\u003e\n\u003cli\u003eBypassing signature-based detection\u003c\/li\u003e\n\u003cli\u003eAV evasion using Metasploit, C#, PowerShell, and VBA\u003c\/li\u003e\n\u003cli\u003eProcess injection techniques (e.g., DLL injection, process hollowing)\u003c\/li\u003e\n\u003cli\u003eObfuscation and encryption strategies\u003c\/li\u003e\n\u003cli\u003eRuntime and fileless malware evasion\u003c\/li\u003e\n\u003cli\u003eApplication whitelisting bypass\u003c\/li\u003e\n\u003cli\u003eAdvanced AppLocker and PowerShell security bypass\u003c\/li\u003e\n\u003cli\u003eIPS\/IDS evasion and network filter bypass\u003c\/li\u003e\n\u003cli\u003eBackdoor techniques for Windows, MS Office, Linux, and DLLs\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eWho is the intended audience for these notes?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThe notes are tailored for:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eEthical hackers and penetration testers\u003c\/li\u003e\n\u003cli\u003eRed team operators\u003c\/li\u003e\n\u003cli\u003eSecurity researchers\u003c\/li\u003e\n\u003cli\u003eBlue team members aiming to understand attacker methodologies\u003c\/li\u003e\n\u003cli\u003eCybersecurity students and enthusiasts\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eIs there any free training available on AV evasion?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eYes. Motasem Hamdan offers a free AV Evasion Training playlist on his YouTube channel. This resource provides practical demonstrations and explanations of various evasion techniques.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/374671\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"122\" height=\"122\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501762842907,"sku":null,"price":10.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/coverpng_746efbd0-9ef8-43e1-8849-51a6fcf4b3f9.jpg?v=1752862408"},{"product_id":"active-directory-study-notes-security-auditing","title":"Active Directory Study Notes | Security \u0026 Auditing","description":"\u003cp\u003eThe guide meticulously explains the foundational aspects of Active Directory (AD), from domains, trees, and forests to trusts, permissions, and security controls. It emphasizes best practices for hardening AD environments against common threats like reconnaissance, privilege escalation, and credential theft. Strategies such as disabling legacy protocols (LLMNR, NTLM), implementing Privileged Access Management (PAM), and using object ACLs for fine-grained permissions are explored in depth. Advanced topics include AD Recycle Bin, system state backup, and snapshot management for disaster recovery. The document serves both as a learning resource and a practical handbook for securing AD infrastructure effectively.\u003cb\u003e\u003cu\u003e\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e- AD Basics\u003c\/p\u003e\n\u003cp\u003e- AD Security\u003c\/p\u003e\n\u003cp\u003e- Securing Domain Controllers\u003c\/p\u003e\n\u003cp\u003e- Active Directory Audit and Monitoring\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003ePage Count:\u003c\/u\u003e\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e226\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eFormat:\u003c\/u\u003e\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003ePDF\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eNote\u003c\/b\u003e\u003c\/u\u003e:\u003cspan\u003e \u003c\/span\u003e\u003cu\u003eThis product is not eligible for a refund\u003c\/u\u003e.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact\u003cspan\u003e \u003c\/span\u003e\u003cb\u003econsultation@motasem-notes.net\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003eand clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eFrequently Asked Questions (FAQ)\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eWhat topics are covered in these notes?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThe guide encompasses a wide range of topics, including:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eWindows Domain and Active Directory fundamentals\u003c\/li\u003e\n\u003cli\u003eDomain Controllers and their roles\u003c\/li\u003e\n\u003cli\u003eAD structures like Trees, Forests, and Trusts\u003c\/li\u003e\n\u003cli\u003eSecurity Groups vs Organizational Units (OUs)\u003c\/li\u003e\n\u003cli\u003eGroup Policy management\u003c\/li\u003e\n\u003cli\u003eAuthentication protocols in AD\u003c\/li\u003e\n\u003cli\u003eSecuring Domain Controllers\u003c\/li\u003e\n\u003cli\u003eActive Directory auditing and monitoring techniques\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eIs this resource suitable for beginners?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eYes, the notes are designed for both IT professionals and aspiring learners who are looking to understand and implementWindowsActive Directory security best practices.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eAre there any free resources available from the author?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eYes, Motasem Hamdan offers various free articles and tutorials on his website. For instance, his article onWindows Active Directory Hardening and Securityprovides insights into hardening techniques for AD environments.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eCan I find practical examples or tutorials related to these topics?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eAbsolutely. Motasem Hamdan has produced video tutorials and walkthroughs on platforms like YouTube, covering topics such as Active Directory penetration testing and security auditing techniques. These resources complement the notes and provide hands-on demonstrations.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eAre there other related resources or study guides available from the author?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eYes, Motasem Hamdan offers a range of study notes and guides on various cybersecurity topics, including:\u003c\/p\u003e\n\u003cp\u003eBlue Team \u0026amp; SOC Analyst Study Notes\u003c\/p\u003e\n\u003cp\u003eSnort IDS Study Notes\u003c\/p\u003e\n\u003cp\u003eSplunk SIEM Study Notes\u003c\/p\u003e\n\u003cp\u003eNetwork Traffic Analysis Study Notes\u003c\/p\u003e\n\u003cp\u003eWazuh SIEM Study Notes\u003c\/p\u003e\n\u003cp\u003eWireshark Study Notes\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/350685\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"115\" height=\"115\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501824774427,"sku":null,"price":10.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Cover-jpg.png?v=1752864803"},{"product_id":"active-directory-study-notes-security-auditing-1","title":"Active Directory Study Notes | Engineering, Design \u0026 Security","description":"\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e- AD Basics\u003c\/p\u003e\n\u003cp\u003e- AD Engineering\u003c\/p\u003e\n\u003cp\u003e- Object Management in Active Directory\u003c\/p\u003e\n\u003cp\u003e- Managing Users, Groups, and Devices\u003c\/p\u003e\n\u003cp\u003e- AD Certificate Services\u003c\/p\u003e\n\u003cp\u003e- Active Directory Federation Services\u003c\/p\u003e\n\u003cp\u003e- Active Directory Backup and Recovery\u003c\/p\u003e\n\u003cp\u003e- AD Replication with Powershell\u003c\/p\u003e\n\u003cp\u003e- AD Security\u003c\/p\u003e\n\u003cp\u003e- Securing Domain Controllers\u003c\/p\u003e\n\u003cp\u003e- Active Directory Audit and Monitoring\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003ePage Count:\u003c\/u\u003e\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e476\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eFormat:\u003c\/u\u003e\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003ePDF\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eNote\u003c\/b\u003e\u003c\/u\u003e:\u003cspan\u003e \u003c\/span\u003e\u003cu\u003eThis product is not eligible for a refund\u003c\/u\u003e.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact\u003cspan\u003e \u003c\/span\u003e\u003cb\u003econsultation@motasem-notes.net\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003eand clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/350678\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"118\" width=\"118\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501830443291,"sku":null,"price":10.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/cover-jpg_ba06f96d-7592-430c-a16d-9c0b68d30b19.jpg?v=1752864877"},{"product_id":"malware-analysis-study-notes","title":"Malware Analysis Study Notes","description":"\u003cp\u003eMalware analysis study notes teaches malware analysis from basic propagation techniques to advanced reverse engineering with tools like Ghidra and Capa. It emphasizes setting up isolated environments for safe analysis, identifying malware behaviors via PE headers and API calls, and understanding document-based attacks (e.g., PDF\/Word macros).\u003c\/p\u003e\n\u003cp\u003eDynamic tools like Process Monitor, API Logger, and online sandboxes are explored to monitor real-time activity.\u003c\/p\u003e\n\u003cp\u003eEvasion techniques like packing, sleep calls, and VM detection are discussed, and a variety of strategies for detection and remediation on Windows and Linux systems are provided. Ultimately, the text serves as a comprehensive toolkit for malware analysts aiming to detect, dissect, and defend against threats.\u003cb\u003e\u003cu\u003e\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho is this book for?\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThis e-book is intended to be used as quick reference to facts and information on the subject of malware analysis. Additionally, it can also be used to study malware analysis.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eTable of Contents\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduction\u003c\/li\u003e\n\u003cli\u003eAbout The Authors\u003c\/li\u003e\n\u003cli\u003eMalware Analysis\u003c\/li\u003e\n\u003cli\u003eStatic Analysis\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cul\u003e\n\u003cli\u003eAdvanced Static Analysis with Ghidra\u003c\/li\u003e\n\u003cli\u003eDynamic Analysis\u003c\/li\u003e\n\u003cli\u003eMalware analysis evasion techniques\u003c\/li\u003e\n\u003cli\u003eAnalysis with Online Tools\u003c\/li\u003e\n\u003cli\u003eMalware Removal\u003c\/li\u003e\n\u003cli\u003eMalware Detection\u003c\/li\u003e\n\u003cli\u003eHunting Malwares with Yara\u003c\/li\u003e\n\u003cli\u003eMalware Analysis with Online Sandboxes\u003c\/li\u003e\n\u003cli\u003eHoneypots\u003c\/li\u003e\n\u003cli\u003eFileless Malware Analysis\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003ePage Count\u003c\/b\u003e: 165\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eFormat\u003c\/b\u003e: PDF\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eNote:\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e\u003cu\u003eThis product is not eligible for a refund.\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact\u003cspan\u003e \u003c\/span\u003e\u003cb\u003econsultation@motasem-notes.net\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003eand clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/294383\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"144\" height=\"144\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501838340379,"sku":null,"price":15.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Coverpng_a62c1497-8df5-4376-a295-79cf93af7b0c.png?v=1752865228"},{"product_id":"information-security-101-study-notes","title":"Information Security 101 | Study Notes","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eWho is this book for?\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eThis E-book is intended to introduce you to the world\u003c\/p\u003e\n\u003cdiv\u003eof information security by providing brief introduction of key information security concepts \u0026amp; definitions for the purpose of equipping you with the basics if you\n\u003cdiv\u003ewish to take this knowledge further and learn more advanced and more specialised knowledge in the domain of information security.\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003eInformatin security study notes \u0026amp; guide provides a deep dive into information security principles, offering guidance on protecting data confidentiality, integrity, and availability through layered defenses. It highlights key strategies like access control, authentication protocols, and risk mitigation frameworks (e.g., NIST, ISO 27001).\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003eIt concludes by underlining the importance of aligning cybersecurity practices with governance and compliance, equipping organizations with tools to resist modern threats, assess vulnerabilities, and manage data responsibly.\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/div\u003e\n\u003cdiv\u003e- Introduction\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e- Information Security Basics\u003c\/div\u003e\n\u003cdiv\u003e-CIA Triad\u003c\/div\u003e\n\u003cdiv\u003e-Confidentiality\u003c\/div\u003e\n\u003cdiv\u003e-Integrity\u003c\/div\u003e\n\u003cdiv\u003e-Availability\u003c\/div\u003e\n\u003cdiv\u003e-DAD, Over-protection, Authenticity,Non-repudiation, and AAA Services\u003c\/div\u003e\n\u003cdiv\u003e-Access Control\u003c\/div\u003e\n\u003cdiv\u003e-Authentication\u003c\/div\u003e\n\u003cdiv\u003e-Due Diligence \u0026amp; Due Care\u003c\/div\u003e\n\u003cdiv\u003e-Defense in Depth\u003c\/div\u003e\n\u003cdiv\u003e-Understanding What is A Security Policy\u003c\/div\u003e\n\u003cdiv\u003e-Understanding Security Standards,\u003c\/div\u003e\n\u003cdiv\u003e-Baselines, Guidelines and Procedures\u003c\/div\u003e\n\u003cdiv\u003e-Types of Security Controls\u003c\/div\u003e\n\u003cdiv\u003e-Applicable Types of Security Controls\u003c\/div\u003e\n\u003cdiv\u003e-Types of Data and Data Classifications\u003c\/div\u003e\n\u003cdiv\u003e-Social Engineering\u003c\/div\u003e\n\u003cdiv\u003e-Implementing Information Security Programs\u003c\/div\u003e\n\u003cdiv\u003e-Implementing an Incident Response Program\u003c\/div\u003e\n\u003cdiv\u003e-Data Governance\u003c\/div\u003e\n\u003cdiv\u003e-Risk Management\u003c\/div\u003e\n\u003cdiv\u003e-Vulnerability Management\u003c\/div\u003e\n\u003cdiv\u003e-Business Continuity\u003c\/div\u003e\n\u003cdiv\u003e-Information Security Regulations\u003c\/div\u003e\n\u003cdiv\u003e-Information Security Frameworks\u003c\/div\u003e\n\u003cdiv\u003e-Conclusion\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cb\u003ePage Count\u003c\/b\u003e: 112\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cb\u003eFormat\u003c\/b\u003e: PDF \u0026amp; markup\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cb\u003eNote:\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e\u003cu\u003eThis product is not eligible for a refund\u003c\/u\u003e.\u003c\/div\u003e\n\u003cdiv\u003eIf you have concerns regarding the product, kindly contact\u003cspan\u003e \u003c\/span\u003e\u003cb\u003econsultation@motasem-notes.net\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003eand clarify your issue and explain your concerns.\u003c\/div\u003e\n\u003cdiv\u003e\u003c\/div\u003e\n\u003cdiv\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/290985\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"115\" height=\"115\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv id=\"paymentContainer\" class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\"\u003e\n\u003cdiv class=\"flex flex-wrap items-center gap-4\"\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003ca href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/290985\" class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501844173083,"sku":null,"price":0.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/BookCovers.png?v=1752865342"},{"product_id":"web-hacking-pentesting-study-notes","title":"Web Hacking \u0026 Pentesting Study Notes","description":"\u003cp\u003eWeb Hacking \u0026amp; Pentesting Study Notes provides a structured approach to identifying, exploiting, and mitigating vulnerabilities in web applications. It starts with foundational tools like interception proxies and fuzzers, then walks through detailed enumeration strategies and common web application attacks such as SQL\/NoSQL injections, XSS, CSRF, IDOR, and others. Each topic is supplemented with hands-on examples, such as using sqlmap to extract data or spawn shells.\u003c\/p\u003e\n\u003cp\u003eAdvanced sections include Server-Side Template Injection, JWT manipulation, and insecure deserialization. Overall, it's both a quick reference and a deep-dive tutorial for effective web penetration testing.\u003cb\u003e\u003cu\u003e\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho are these study notes for?\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eProfessionals working in the web application penetration testing area and looking to have a reference for quick access to commands and information.\u003c\/li\u003e\n\u003cli\u003eLearners who want practical notes on web application penetration testing.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eBasic Definitions \u0026amp; Methodology\u003c\/li\u003e\n\u003cli\u003eContent Enumeration\u003c\/li\u003e\n\u003cli\u003eEnumerating Web Application Directories\u003c\/li\u003e\n\u003cli\u003eCommon Web Applications Attacks\u003c\/li\u003e\n\u003cli\u003eSQL Injection\u003c\/li\u003e\n\u003cli\u003eNoSQL Injection\u003c\/li\u003e\n\u003cli\u003eIDOR\u003c\/li\u003e\n\u003cli\u003eXML Attacks\u003c\/li\u003e\n\u003cli\u003eDirectory Traversal\u003c\/li\u003e\n\u003cli\u003eCSRF\u003c\/li\u003e\n\u003cli\u003eHTML Injection\u003c\/li\u003e\n\u003cli\u003eIframe Injection\u003c\/li\u003e\n\u003cli\u003eFile Upload Vulnerabilities\u003c\/li\u003e\n\u003cli\u003eXSS\u003c\/li\u003e\n\u003cli\u003eJson Web Token's (JWTs) Attacks\u003c\/li\u003e\n\u003cli\u003eSSRF Attacks\u003c\/li\u003e\n\u003cli\u003eCommand Injection\u003c\/li\u003e\n\u003cli\u003eFile Inclusion\u003c\/li\u003e\n\u003cli\u003eServer Side Template Injection Attacks\u003c\/li\u003e\n\u003cli\u003eOther Common Web Attacks and Exploits\u003c\/li\u003e\n\u003cli\u003eExploiting Authentication Vulnerabilities\u003c\/li\u003e\n\u003cli\u003eAutomated web application scanners\u003c\/li\u003e\n\u003cli\u003eOnline Accounts\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003ePage Count\u003c\/b\u003e: 240\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eFormat\u003c\/b\u003e: PDF\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003eNote\u003c\/u\u003e:\u003cspan\u003e \u003c\/span\u003e\u003cb\u003eThis product is not eligible for a refund.\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact\u003cspan\u003e \u003c\/span\u003e\u003cb\u003econsultation@motasem-notes.net\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003eand clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/280732\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"146\" height=\"146\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501918687515,"sku":null,"price":20.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/CoverPNGV2_9842e065-b05b-4ca2-b919-09c62f253975.png?v=1752867217"},{"product_id":"windows-active-directory-penetration-testing-study-notes","title":"Windows Active Directory Penetration Testing Study Notes","description":"\u003cp\u003eWindows Active Directory Penetration Testing Study Notes is an extensive study guide and command reference for Windows Active Directory (AD) Penetration Testing. It is structured into four core parts:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cb\u003eAD Basics\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e– foundational concepts such as Domains, Domain Controllers, Forests, Trees, Organizational Units (OUs), Trusts, Global Catalog, and AD Server Roles.\u003c\/li\u003e\n\u003cli\u003e\n\u003cb\u003eEnumeration Techniques\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e– tools and commands for discovering users, groups, policies, services, and defenses across an AD environment.\u003c\/li\u003e\n\u003cli\u003e\n\u003cb\u003eExploitation \u0026amp; Privilege Escalation\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e– attack methods including DCSync, BloodHound analysis, ACL abuse, token impersonation, SPN exploitation, and Group Policy misconfigurations.\u003c\/li\u003e\n\u003cli\u003e\n\u003cb\u003ePost-Exploitation \u0026amp; Persistence\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e– methods to harvest credentials, establish persistence, and move laterally using techniques like Pass-the-Hash, Kerberos attacks, and privilege escalation exploits.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eTable of Contents\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cdiv\u003e\u003cb\u003eAD Basics\u003c\/b\u003e\u003c\/div\u003e\n\u003cul\u003e\n\u003cli\u003eWindows Domain\u003c\/li\u003e\n\u003cli\u003eActive Directory\u003c\/li\u003e\n\u003cli\u003eDomain Controller\u003c\/li\u003e\n\u003cli\u003eTrees\u003c\/li\u003e\n\u003cli\u003eForests\u003c\/li\u003e\n\u003cli\u003eAD Trust\u003c\/li\u003e\n\u003cli\u003eSecurity Groups vs OUs\u003c\/li\u003e\n\u003cli\u003eGroup Policy\u003c\/li\u003e\n\u003cli\u003eAuthentication Protocols in AD\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cdiv\u003e\u003cb\u003eEnumeration\u003c\/b\u003e\u003c\/div\u003e\n\u003cul\u003e\n\u003cli\u003eUsers, Groups and Machines Enumeration\u003c\/li\u003e\n\u003cli\u003eEnumerating Defences and SecuritySettings\u003c\/li\u003e\n\u003cli\u003eEnumeration with Automated Scripts\u003c\/li\u003e\n\u003cli\u003eEnumeration with Powerview.ps1\u003c\/li\u003e\n\u003cli\u003eEnumeration with Metasploit andPowerspolit\u003c\/li\u003e\n\u003cli\u003eAD Enumeration with DSquery\u003c\/li\u003e\n\u003cli\u003eEnumerating Services and Processes\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eExploitation and Privilege Escalation\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eBloodHound\u003c\/li\u003e\n\u003cli\u003eData Interpretation in BloodHound\u003c\/li\u003e\n\u003cli\u003eExploiting ACEs and PermissionDelegations\u003c\/li\u003e\n\u003cli\u003eExploiting Active Directory using DCOMwith Macro-Enabled MS Excel\u003c\/li\u003e\n\u003cli\u003ePerforming DCSync Attack\u003c\/li\u003e\n\u003cli\u003eExploiting SeBackupPrivilege\u003c\/li\u003e\n\u003cli\u003eUsing the Diskshadow method andPowershell\u003c\/li\u003e\n\u003cli\u003eBy copying the SAM and SYSTEM\u003c\/li\u003e\n\u003cli\u003eRegistry hives\u003c\/li\u003e\n\u003cli\u003eExploiting PAC in Kerebros\u003c\/li\u003e\n\u003cli\u003eExploiting Server Operators Group\u003c\/li\u003e\n\u003cli\u003eExploiting DNS Admin Group\u003c\/li\u003e\n\u003cli\u003eExploiting Group Policy Preferences\u003c\/li\u003e\n\u003cli\u003eManual Methods\u003c\/li\u003e\n\u003cli\u003eExploitation with Powersploit\u003c\/li\u003e\n\u003cli\u003eToken Impersonation\u003c\/li\u003e\n\u003cli\u003eKerberos Delegation Exploitation\u003c\/li\u003e\n\u003cli\u003eExploiting Delegation With Powerview.ps1\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eCredential Harvesting \u0026amp; Persistence Attacks\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eKerberos Attacks\u003c\/li\u003e\n\u003cli\u003ePassword Spraying Attack\u003c\/li\u003e\n\u003cli\u003eASREP ROASTING\u003c\/li\u003e\n\u003cli\u003eBrute forcing usernames and passwords with Kereberos\u003c\/li\u003e\n\u003cli\u003eKeberosting using cracked credentials\u003c\/li\u003e\n\u003cli\u003eBrute forcing a user hash given a list of users and hashes by performing TGTs retrieval\u003c\/li\u003e\n\u003cli\u003eKerberos Golden and Silver Tickets\u003c\/li\u003e\n\u003cli\u003eCracking ntds.dit and registry file system\u003c\/li\u003e\n\u003cli\u003eLDAP Pass-back attack\u003c\/li\u003e\n\u003cli\u003eHarvesting Credentials from Config Files\u003c\/li\u003e\n\u003cli\u003eHarvesting Credentials From SAM\u003c\/li\u003e\n\u003cli\u003eHarvesting From Credential Manager\u003c\/li\u003e\n\u003cli\u003eHarvesting using Local Administrator\u003c\/li\u003e\n\u003cli\u003ePassword Solution (LAPS)\u003c\/li\u003e\n\u003cli\u003ePersistence through SID History\u003c\/li\u003e\n\u003cli\u003ePersistence Through Group Policy\u003c\/li\u003e\n\u003cli\u003ePersistence through Nested Groups\u003c\/li\u003e\n\u003cli\u003ePersistence Through Logon Script\u003c\/li\u003e\n\u003cli\u003eDeployment\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003ePost Exploitation\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCredential Harvesting\u003c\/li\u003e\n\u003cli\u003eDumping certificates from target machine with powershell and Mimikatz in memory\u003c\/li\u003e\n\u003cli\u003eInfecting other domain joined machines using WMI method from Powerview\u003c\/li\u003e\n\u003cli\u003eDownloading and executing a powershell script in memory ( Mimikatz.ps1 ) to harvest admin password on the targeted domain controller.\u003c\/li\u003e\n\u003cli\u003ePowershell script that Downloads Mimikatz and executes it on multiple defined machines using WMI.\u003c\/li\u003e\n\u003cli\u003eCredential Harvesting Using LDAP Queries\u003c\/li\u003e\n\u003cli\u003eAccessing the netlogon share on DC\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eLateral Movement\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eDefinition\u003c\/li\u003e\n\u003cli\u003eWith PsExec\u003c\/li\u003e\n\u003cli\u003eWith WINRM\u003c\/li\u003e\n\u003cli\u003eWith Service Management Tools SC\u003c\/li\u003e\n\u003cli\u003eWith Scheduled Tasks\u003c\/li\u003e\n\u003cli\u003eWith WMI\u003c\/li\u003e\n\u003cli\u003eUsing PassTheHash\u003c\/li\u003e\n\u003cli\u003eUsing Pass The Ticket\u003c\/li\u003e\n\u003cli\u003eUsing Overpass-the-hash \/ Pass-the-Key\u003c\/li\u003e\n\u003cli\u003eUsing Port Forwarding\u003c\/li\u003e\n\u003cli\u003eSSH Tunneling\u003c\/li\u003e\n\u003cli\u003eWith Socat\u003c\/li\u003e\n\u003cli\u003eDynamic Forwarding with SOCKS\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho is this study guide for?\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003ePenetration Testers\u003c\/li\u003e\n\u003cli\u003eAspiring learners who are looking to learn Windows Active Directory Penetration Testing\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eFormat:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003ePDF\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003ePage count:\u003c\/u\u003e\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e152\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003eNote:\u003c\/u\u003e\u003cspan\u003e \u003c\/span\u003eThis product is not eligible for a refund.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact\u003cspan\u003e \u003c\/span\u003e\u003cb\u003e\u003cu\u003econsultation@motasem-notes.net\u003c\/u\u003e\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003eand clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/267507\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"136\" height=\"136\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501925601563,"sku":null,"price":20.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/CoverV2png.png?v=1752867351"},{"product_id":"open-source-intelligence-osint-study-notes","title":"Open Source Intelligence (OSINT) Study Notes","description":"\u003cp\u003eOSINT Study notes \u0026amp; guide is a comprehensive manual for conducting Open Source Intelligence (OSINT) investigations, covering a full cycle from planning to dissemination. It includes detailed instructions, tools, and examples for different OSINT domains such as social media, email, IP addresses, domains, and blockchain.\u003c\/p\u003e\n\u003cp\u003eOSINT is a structured intelligence process utilizing publicly available data to investigate individuals, systems, or organizations. The cycle begins with planning, followed by data collection, processing, analysis, and ends with distribution.\u003c\/p\u003e\n\u003cp\u003eEach stage emphasizes ethical and secure practices, like avoiding personal accounts and using virtual machines. Social media, DNS records, emails, metadata, leaks, and blockchain transactions are among the various intelligence sources.\u003c\/p\u003e\n\u003cp\u003eA key takeaway is the layered approach: starting broad, then narrowing down based on relevance. Tools like Maltego, Photon, Spiderpig, and Sherlock enhance investigation depth. The guide warns against unethical use and promotes legal, ethical applications.\u003cb\u003e\u003cu\u003e\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eDefinition of OSINT\u003c\/li\u003e\n\u003cli\u003eOSINT Stages\u003c\/li\u003e\n\u003cli\u003ePlanning\u003c\/li\u003e\n\u003cli\u003eData Collection\u003c\/li\u003e\n\u003cli\u003eData Processing\u003c\/li\u003e\n\u003cli\u003eData Analysis\u003c\/li\u003e\n\u003cli\u003eDissemination and Distribution\u003c\/li\u003e\n\u003cli\u003eDomain OSINT\u003c\/li\u003e\n\u003cli\u003eEmail \u0026amp; Username OSINT\u003c\/li\u003e\n\u003cli\u003eIP OSINT\u003c\/li\u003e\n\u003cli\u003eImage OSINT\u003c\/li\u003e\n\u003cli\u003eVideo OSINT\u003c\/li\u003e\n\u003cli\u003eDocuments OSINT\u003c\/li\u003e\n\u003cli\u003eLeaks and Dumps\u003c\/li\u003e\n\u003cli\u003eSocial Media OSINT\u003c\/li\u003e\n\u003cli\u003eOSINT with Google\u003c\/li\u003e\n\u003cli\u003eBlockchain OSINT\u003c\/li\u003e\n\u003cli\u003ePhone Number OSINT \u0026amp; People Search\u003c\/li\u003e\n\u003cli\u003eCompanies OSINT\u003c\/li\u003e\n\u003cli\u003eLeaks OSINT\u003c\/li\u003e\n\u003cli\u003eOSINT with GeoMaps\u003c\/li\u003e\n\u003cli\u003eOSINT with Google Hacking Database\u003c\/li\u003e\n\u003cli\u003eOSINT with Shodan\u003c\/li\u003e\n\u003cli\u003eOSINT with Maltego\u003c\/li\u003e\n\u003cli\u003eOSINT Suites, Frameworks \u0026amp; Other Tools\u003c\/li\u003e\n\u003cli\u003eOSINT Resources \u0026amp; Websites\u003c\/li\u003e\n\u003cli\u003eCase Studies\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho is this guide for?\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThis study book is for investigative analysts, journalists, researches and even students who want to understand OSINT and have a ready playbook to conduct investigations\u003c\/p\u003e\n\u003cp\u003e \u003c\/p\u003e\n\u003cp\u003e\u003cb\u003ePage Count\u003c\/b\u003e: 204\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eFormat:\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003ePDF\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eNote: This product is not eligible for a refund.\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/258542\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"137\" height=\"137\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501933105435,"sku":null,"price":18.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/OSINTNotesCoverpngv2.png?v=1752867599"},{"product_id":"wazuh-siem-study-notes","title":"Wazuh SIEM Study Notes","description":"\u003cp\u003eWazuh SIEM Study Notes \u0026amp; Guide meticulously explains Wazuh's architecture, setup, and integrations. Wazuh operates in a manager-agent model, offering monitoring, log collection, alerting, and integration capabilities.\u003c\/p\u003e\n\u003cp\u003eIt includes deep guidance on installing Wazuh components (manager, indexer, dashboard), configuring agents across OSes, performance optimization (e.g., heap size, caching, threading), and extending detection with custom rules and decoders. The book emphasizes integrating Wazuh with major security tools (Suricata, VirusTotal, TheHive, MISP, Fortinet, OPNsense) for real-time correlation and threat intelligence.\u003c\/p\u003e\n\u003cp\u003eCase studies add practical insights into deploying Wazuh in industries like finance, healthcare, and retail. The final sections cover policy compliance, EDR configuration, file integrity monitoring, and vulnerability management, making it a rich, hands-on reference for cybersecurity professionals.\u003cb\u003e\u003cu\u003e\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho Are These Notes For?\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eProfessionals who are actively working in the field and need a set of ready and concise Wazuh notes.\u003c\/li\u003e\n\u003cli\u003eSavvy learners who want to quickly master Wazuh without having to read hunderds of pages.\n\u003cdiv\u003e\u003cb\u003e\u003cu\u003eTable of contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/div\u003e\n\u003cul\u003e\n\u003cli\u003eImportant Note\u003c\/li\u003e\n\u003cli\u003eDefinition\u003c\/li\u003e\n\u003cli\u003eHow it works\u003c\/li\u003e\n\u003cli\u003eWazuh Components\u003c\/li\u003e\n\u003cli\u003eWazuh Installation\u003c\/li\u003e\n\u003cli\u003eInstalling agents\u003c\/li\u003e\n\u003cli\u003eOptimizing Wazuh Performance\u003c\/li\u003e\n\u003cli\u003eConfiguring Logs Rotation\u003c\/li\u003e\n\u003cli\u003eUnderstanding Wazuh Rules\u003c\/li\u003e\n\u003cli\u003eThe goal of Wazuh Rules\u003c\/li\u003e\n\u003cli\u003eWazuh Rule Elements\u003c\/li\u003e\n\u003cli\u003eOrder of Processing Rules\u003c\/li\u003e\n\u003cli\u003eTesting Wazuh Rules\u003c\/li\u003e\n\u003cli\u003eCreating Custom Rules\u003c\/li\u003e\n\u003cli\u003eWazuh Decoders\u003c\/li\u003e\n\u003cli\u003eTesting Decoders\u003c\/li\u003e\n\u003cli\u003eIntegrating Wazuh with Suricata IDS\u003c\/li\u003e\n\u003cli\u003eIntegrating Wazuh with VirusTotal\u003c\/li\u003e\n\u003cli\u003eIntegrating Wazuh with TheHive\u003c\/li\u003e\n\u003cli\u003eIntegrating Wazuh with MISP\u003c\/li\u003e\n\u003cli\u003eIntegration with Fortinet Firewall\u003c\/li\u003e\n\u003cli\u003eIntegration with OPNsense Firewall\u003c\/li\u003e\n\u003cli\u003eVulnerability scanning\u003c\/li\u003e\n\u003cli\u003eAuditing against cyber security framework\u003c\/li\u003e\n\u003cli\u003ePolicy compliance and auditing events\u003c\/li\u003e\n\u003cli\u003eGathering windows event logs and forwarding to Wazuh with Sysmon\u003c\/li\u003e\n\u003cli\u003eMonitoring Linux workstations\u003c\/li\u003e\n\u003cli\u003eConfiguring Wazuh as an EDR\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cb\u003eFormat\u003c\/b\u003e: PDF\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cb\u003ePage Count\u003c\/b\u003e: 104\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003eWhen you buy this booklet, you will be entitled to receive content updates for 3 months on it with the same original price that you paid for.\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cu\u003e\u003cb\u003eNote\u003c\/b\u003e\u003c\/u\u003e: This product is not eligible for a refund.If you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/div\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/248022\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"126\" height=\"126\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501953388827,"sku":null,"price":13.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/coverpngv2_efbbe25e-2e5a-4705-abb4-dc4690e1ddc5.png?v=1752868686"},{"product_id":"burp-suite-practical-notes","title":"Burp Suite Practical Notes","description":"\u003cp\u003e\u003cb\u003eBurp Suite Study Notes\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003eprovides a comprehensive guide to Burp Suite, a popular Java-based web application penetration testing framework. It covers definitions, functionalities, installation steps, configuration with browsers, and detailed usage of its primary modules like Proxy, Intruder, Repeater, Decoder, Comparer, Sequencer, and Scanner. Practical scenarios like XSS, credential stuffing, SQL Injection, CSRF attacks, API and mobile device testing are also illustrated for real-world application.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003e\u003c\/u\u003e\u003c\/b\u003e- Introduction; Definition \u0026amp; Functionality of BurpSuite\u003c\/p\u003e\n\u003cp\u003e- Downloading and Installing\u003c\/p\u003e\n\u003cp\u003e- Burp Proxy\u003c\/p\u003e\n\u003cp\u003e- Burp Intruder\u003c\/p\u003e\n\u003cp\u003e- Burp Repeater\u003c\/p\u003e\n\u003cp\u003e- BurpComparer\u003c\/p\u003e\n\u003cp\u003e- Burp Sequencer\u003c\/p\u003e\n\u003cp\u003e- Burp Encoder\/Decoder\u003c\/p\u003e\n\u003cp\u003e- Burp Infiltrator\u003c\/p\u003e\n\u003cp\u003e- Burp Vulnerability Scanner\u003c\/p\u003e\n\u003cp\u003e- Other BurpSuite components such as BurpSuite Organizer, Burp Extensions and Burp Macros\u003c\/p\u003e\n\u003cp\u003e- Practical Scenarios:\u003cspan\u003e \u003c\/span\u003e\u003cu\u003e\u003cb\u003e7 scenarios\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cbr\u003ePages:\u003cspan\u003e \u003c\/span\u003e\u003cb\u003e55\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eFormat:\u003cspan\u003e \u003c\/span\u003e\u003cb\u003ePDF\u003c\/b\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eNote: This product is not eligible for a refund.\u003c\/b\u003e\u003cb\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/b\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eFAQ\u003c\/u\u003e\u003c\/b\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eWhat is the Burp Suite Practical Study Notes?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThis is a 53-page PDF guide designed to help cybersecurity professionals and students effectively use Burp Suite during web application penetration testing. It covers topics such as Burp Suite tools, practical scenarios, and more.\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eWho is the author?\u003c\/b\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThe guide is authored by Motasem Hamdan, a cybersecurity content creator known for producing practical notes, tutorials, and courses on penetration testing, ethical hacking, and digital forensics.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eIs the guide suitable for beginners?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eYes. The guide is structured to benefit cybersecurity students preparing for certifications, professionals seeking a quick reference, and learners aiming to master Burp Suite efficiently.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eAre there any discounts?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eYes. Members of the Full Access | Study Notes Membership receive a significant discount, reducing the price substantially.\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eIs there a refund policy?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThe product is not eligible for a refund. If you have concerns regarding the product, you can contact the author at consultation@motasem-notes.net to discuss your issue.\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eAre there related courses or materials available?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eYes. Motasem Hamdan offers a comprehensive course titled “The Complete Practical Web Application Penetration Testing Course,” which delves deeper into the topics covered in the guide.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/234031\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"141\" height=\"141\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501958631707,"sku":null,"price":8.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/BurpSuiteNotesCoverV2.png?v=1752868882"},{"product_id":"network-traffic-analysis-study-notes","title":"Network Traffic Analysis Study Notes","description":"\u003cp\u003eNetwork Traffic Analysis Study Notes offer a structured approach to mastering packet analysis tools. It begins with foundational concepts in network security and gradually builds up to advanced packet dissection and traffic analysis using tools like Wireshark and Zeek. Users learn how to perform live captures, apply filters, and conduct forensic analysis of PCAP files. Notably, it explores scripting in Zeek for creating custom detections and introduces Brim for analytics.\u003c\/p\u003e\n\u003cp\u003eThe notes include practical examples, signature creation, decryption techniques, and real-world case studies. Together, the content provides a powerful toolkit for threat hunting, anomaly detection, and network troubleshooting.\u003cb\u003e\u003cu\u003e\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho Are These Notes For?\u003c\/u\u003e\u003c\/b\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eCybersecurity students preparing for certification exams such as COMPTIA CySA+ analyst.\u003c\/p\u003e\n\u003cp\u003eProfessionals who are actively working in the field and need a set of ready and concise notes on using Wireshark, TCPdump and other packet analyzer tools.\u003c\/p\u003e\n\u003cp\u003eSavvy learners who want to quickly master Network traffic analysis tools without having to read hundreds of pages.\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eTable of Contents\u003c\/b\u003e:\u003c\/p\u003e\n\u003cp\u003e- Basics of packet analysis \u0026amp; network security\u003c\/p\u003e\n\u003cp\u003e- Packet analysis with Wireshark\u003c\/p\u003e\n\u003cp\u003e- Packet analysis with TCPdump\u003c\/p\u003e\n\u003cp\u003e- Packet analysis with Tshark\u003c\/p\u003e\n\u003cp\u003e- Packet analysis with Brim\u003c\/p\u003e\n\u003cp\u003e- Packet analysis with Zeek\u003c\/p\u003e\n\u003cp\u003e- Packet analysis with Network Miner\u003c\/p\u003e\n\u003cp\u003e- Case Studies\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003ePages\u003c\/b\u003e: 147\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eFormat:\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003ePDF\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eNote:\u003cspan\u003e \u003c\/span\u003e\u003c\/b\u003e\u003c\/u\u003eThis product is not eligible for a refund.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/209283\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"123\" height=\"123\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501967151387,"sku":null,"price":15.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/PacketAnalysisToolsCoverV2.png?v=1752869031"},{"product_id":"metasploit-study-notes","title":"Metasploit Study Notes","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eMetasploit study notes is an extensive pentester’s reference for leveraging Metasploit. It starts with module fundamentals and progresses through payload crafting with msfvenom, enumeration, brute-force, and vulnerability exploits like MS17_010 (EternalBlue) and ShellShock.\u003c\/p\u003e\n\u003cp\u003ePost-exploitation tactics are deeply explored, from token impersonation and hash dumping to lateral movement and network pivoting. The book ends with C2 infrastructure guidance, anti-virus evasion, and building stealthy backdoors using Office macros and encoded scripts. It is both a reference and a lab manual, emphasizing legal and ethical hacking boundaries.\u003c\/p\u003e\n\u003ch3 data-path-to-node=\"4\"\u003e\u003cb data-index-in-node=\"0\" data-path-to-node=\"4\"\u003eFrom The Notes: Master Payload Generation \u0026amp; msfvenom\u003c\/b\u003e\u003c\/h3\u003e\n\u003cp id=\"p-rc_d6fdb294945c47e1-40\" data-path-to-node=\"5\"\u003e\u003cspan data-path-to-node=\"5,0\"\u003eThe key to a successful exploit is the payload, and this guide ensures you can generate one for any target. \u003c\/span\u003e\u003c\/p\u003e\n\u003cp data-path-to-node=\"5\"\u003e\u003cspan data-path-to-node=\"5,1\"\u003e\u003cspan class=\"citation-108\"\u003e\u003c\/span\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"5,2\"\u003e\u003cspan class=\"citation-108\"\u003eIt provides a no-fail cheat sheet for \u003c\/span\u003e\u003cb data-index-in-node=\"40\" data-path-to-node=\"5,2\"\u003e\u003cspan class=\"citation-108\"\u003emsfvenom\u003c\/span\u003e\u003c\/b\u003e\u003cspan class=\"citation-108\"\u003e, covering everything from standard Windows executables (\u003c\/span\u003e\u003ccode data-index-in-node=\"105\" data-path-to-node=\"5,2\"\u003e\u003cspan class=\"citation-108\"\u003e-f exe\u003c\/span\u003e\u003c\/code\u003e\u003cspan class=\"citation-108\"\u003e) and Linux ELFs (\u003c\/span\u003e\u003ccode data-index-in-node=\"129\" data-path-to-node=\"5,2\"\u003e\u003cspan class=\"citation-108\"\u003e-f elf\u003c\/span\u003e\u003c\/code\u003e\u003cspan class=\"citation-108\"\u003e) to more exotic formats like \u003c\/span\u003e\u003cb data-index-in-node=\"165\" data-path-to-node=\"5,2\"\u003e\u003cspan class=\"citation-108\"\u003eVBA macros\u003c\/span\u003e\u003c\/b\u003e\u003cspan class=\"citation-108\"\u003e for Office documents and \u003c\/span\u003e\u003cb data-index-in-node=\"201\" data-path-to-node=\"5,2\"\u003e\u003cspan class=\"citation-108\"\u003eWAR files\u003c\/span\u003e\u003c\/b\u003e\u003cspan class=\"citation-108\"\u003e for Tomcat exploitation\u003c\/span\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"5,3\"\u003e\u003cspan class=\"citation-108 citation-end-108\"\u003e\u003csup data-turn-source-index=\"2\" class=\"superscript\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup data-turn-source-index=\"2\" class=\"superscript\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup data-turn-source-index=\"2\" class=\"superscript\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup data-turn-source-index=\"2\" class=\"superscript\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup data-turn-source-index=\"2\" class=\"superscript\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup data-turn-source-index=\"2\" class=\"superscript\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup data-turn-source-index=\"2\" class=\"superscript\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup data-turn-source-index=\"2\" class=\"superscript\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup data-turn-source-index=\"2\" class=\"superscript\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003c\/span\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"5,4\"\u003e. \u003c\/span\u003e\u003c\/p\u003e\n\u003cp data-path-to-node=\"5\"\u003e\u003cspan data-path-to-node=\"5,5\"\u003e\u003cspan class=\"citation-107\"\u003e\u003c\/span\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"5,6\"\u003e\u003cspan class=\"citation-107\"\u003eYou will learn how to inject shellcode into legitimate binaries (like \u003c\/span\u003e\u003ccode data-index-in-node=\"70\" data-path-to-node=\"5,6\"\u003e\u003cspan class=\"citation-107\"\u003eplink.exe\u003c\/span\u003e\u003c\/code\u003e\u003cspan class=\"citation-107\"\u003e) to hide in plain sight and how to use encoders like \u003c\/span\u003e\u003ccode data-index-in-node=\"133\" data-path-to-node=\"5,6\"\u003e\u003cspan class=\"citation-107\"\u003eshikata_ga_nai\u003c\/span\u003e\u003c\/code\u003e\u003cspan class=\"citation-107\"\u003e with multiple iterations to evade rudimentary antivirus signatures\u003c\/span\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"5,7\"\u003e\u003cspan class=\"citation-107 citation-end-107\"\u003e\u003csup data-turn-source-index=\"3\" class=\"superscript\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup data-turn-source-index=\"3\" class=\"superscript\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup data-turn-source-index=\"3\" class=\"superscript\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup data-turn-source-index=\"3\" class=\"superscript\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003c\/span\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"5,8\"\u003e. \u003c\/span\u003e\u003c\/p\u003e\n\u003cp data-path-to-node=\"5\"\u003e\u003cspan data-path-to-node=\"5,9\"\u003e\u003cspan class=\"citation-106\"\u003e\u003c\/span\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"5,10\"\u003e\u003cspan class=\"citation-106\"\u003eThe notes also detail how to generate \u003c\/span\u003e\u003cb data-index-in-node=\"38\" data-path-to-node=\"5,10\"\u003e\u003cspan class=\"citation-106\"\u003ePowerShell payloads\u003c\/span\u003e\u003c\/b\u003e\u003cspan class=\"citation-106\"\u003e that execute entirely in memory, a critical technique for modern fileless attacks.\u003c\/span\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"5,11\"\u003e\u003cspan class=\"citation-106 citation-end-106\"\u003e\u003csup data-turn-source-index=\"4\" class=\"superscript\"\u003e\u003c\/sup\u003e\u003c\/span\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003ch3 data-path-to-node=\"4\"\u003e\n\u003cb data-index-in-node=\"0\" data-path-to-node=\"4\"\u003eFrom The Notes: \u003c\/b\u003e\u003cb data-path-to-node=\"10\" data-index-in-node=\"0\"\u003eExploitation Workflows\u003c\/b\u003e\n\u003c\/h3\u003e\n\u003cp data-path-to-node=\"11\" id=\"p-rc_d6fdb294945c47e1-43\"\u003e\u003cspan data-path-to-node=\"11,0\"\u003eThe guide includes practical kill chains for common vulnerabilities, ensuring you know exactly which module to use when. \u003c\/span\u003e\u003c\/p\u003e\n\u003cp data-path-to-node=\"11\"\u003e\u003cspan data-path-to-node=\"11,1\"\u003e\u003cspan class=\"citation-100\"\u003e\u003c\/span\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"11,2\"\u003e\u003cspan class=\"citation-100\"\u003eIt covers the classic \u003c\/span\u003e\u003cb data-path-to-node=\"11,2\" data-index-in-node=\"22\"\u003e\u003cspan class=\"citation-100\"\u003eEternalBlue (MS17-010)\u003c\/span\u003e\u003c\/b\u003e\u003cspan class=\"citation-100\"\u003e for easy SMB wins, \u003c\/span\u003e\u003cb data-path-to-node=\"11,2\" data-index-in-node=\"64\"\u003e\u003cspan class=\"citation-100\"\u003eShellshock\u003c\/span\u003e\u003c\/b\u003e\u003cspan class=\"citation-100\"\u003e for CGI script exploitation, and \u003c\/span\u003e\u003cb data-path-to-node=\"11,2\" data-index-in-node=\"108\"\u003e\u003cspan class=\"citation-100\"\u003eTomcat Manager\u003c\/span\u003e\u003c\/b\u003e\u003cspan class=\"citation-100\"\u003e uploads for web application compromise\u003c\/span\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"11,3\"\u003e\u003cspan class=\"citation-100 citation-end-100\"\u003e\u003csup class=\"superscript\" data-turn-source-index=\"10\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup class=\"superscript\" data-turn-source-index=\"10\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup class=\"superscript\" data-turn-source-index=\"10\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup class=\"superscript\" data-turn-source-index=\"10\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup class=\"superscript\" data-turn-source-index=\"10\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup class=\"superscript\" data-turn-source-index=\"10\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup class=\"superscript\" data-turn-source-index=\"10\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup class=\"superscript\" data-turn-source-index=\"10\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup class=\"superscript\" data-turn-source-index=\"10\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003c\/span\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"11,4\"\u003e.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp data-path-to-node=\"11\"\u003e\u003cspan data-path-to-node=\"11,5\"\u003e\u003cspan class=\"citation-99\"\u003e\u003c\/span\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"11,6\"\u003e\u003cspan class=\"citation-99\"\u003eIt also dives into privilege escalation, providing both automated methods (using \u003c\/span\u003e\u003ccode data-path-to-node=\"11,6\" data-index-in-node=\"81\"\u003e\u003cspan class=\"citation-99\"\u003elocal_exploit_suggester\u003c\/span\u003e\u003c\/code\u003e\u003cspan class=\"citation-99\"\u003e) and manual techniques like the \u003c\/span\u003e\u003cb data-path-to-node=\"11,6\" data-index-in-node=\"137\"\u003e\u003cspan class=\"citation-99\"\u003eRotten Potato\u003c\/span\u003e\u003c\/b\u003e\u003cspan class=\"citation-99\"\u003e exploit to elevate from a service account to \u003c\/span\u003e\u003ccode data-path-to-node=\"11,6\" data-index-in-node=\"196\"\u003e\u003cspan class=\"citation-99\"\u003eNT AUTHORITY\\SYSTEM\u003c\/span\u003e\u003c\/code\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"11,7\"\u003e\u003cspan class=\"citation-99 citation-end-99\"\u003e\u003csup class=\"superscript\" data-turn-source-index=\"11\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup class=\"superscript\" data-turn-source-index=\"11\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup class=\"superscript\" data-turn-source-index=\"11\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003csup class=\"superscript\" data-turn-source-index=\"11\"\u003e\u003c!----\u003e\u003c\/sup\u003e\u003c\/span\u003e\u003c\/span\u003e\u003cspan data-path-to-node=\"11,8\"\u003e.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho Are These Notes For?\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCybersecurity students preparing for security certification exams that include the use of Metasploit.\u003c\/li\u003e\n\u003cli\u003eProfessionals who are actively working in the field and need a set of ready and concise Metasploit notes.\u003c\/li\u003e\n\u003cli\u003eSavvy learners who want to quickly master Metasploit without having to read hunderds of pages.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e- Metasploit modules basics\u003c\/p\u003e\n\u003cp\u003e- Payload Generation\u003c\/p\u003e\n\u003cp\u003e- Meterpreter\u003c\/p\u003e\n\u003cp\u003e- Scanning and Enumeration with Metasploit\u003c\/p\u003e\n\u003cp\u003e- Exploitation with Metasploit (Including practical scenarios on CVEs)\u003c\/p\u003e\n\u003cp\u003e- Privilege Escalation\u003c\/p\u003e\n\u003cp\u003e- Post Exploitation and Data Exfiltration\u003c\/p\u003e\n\u003cp\u003e- Persistence\u003c\/p\u003e\n\u003cp\u003e- Network Pivoting\u003c\/p\u003e\n\u003cp\u003e- Configuring Metasploit to be full-fledgedC2 server with aRedirector\u003c\/p\u003e\n\u003cp\u003e- Lateral Movement and Pivoting\u003c\/p\u003e\n\u003cp\u003e- Creating Backdoors\u003c\/p\u003e\n\u003cp\u003e- AntiVirus Evasion\u003c\/p\u003e\n\u003cp\u003e\u003cbr\u003e\u003cb\u003ePage count: 56\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eFormat: PDF\u003c\/b\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eNote: This product is not eligible for a refund.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003cu\u003eFAQ\u003c\/u\u003e\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003eIs the guide suitable for beginners?\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eYes. The guide is structured to benefit cybersecurity students preparing for certifications, professionals seeking a quick reference, and learners aiming to master Metasploit efficiently.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003eAre there any discounts?\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eYes. Members of the Full Access | Study Notes Membership receive a 98% discount, reducing the price to approximately $0.16.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003eIs there a refund policy?\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eThe product is not eligible for a refund. If you have concerns regarding the product, you can contact the author at consultation@motasem-notes.net to discuss your issue.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003eAre there related courses or materials available?\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eYes. Motasem Hamdan offers a comprehensive course titled “The Complete Practical Metasploit Framework Course,” which delves deeper into the topics covered in the guide. This course is available on his Buy Me a Coffee page\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/178848\"\u003e\u003cb\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"147\" width=\"147\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/b\u003e\u003c\/a\u003e\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501972525339,"sku":null,"price":10.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/MetasploitNotesCoverv2.png?v=1752869170"},{"product_id":"shells-study-notes","title":"Shells Study Notes","description":"\u003cp\u003eThe “Shells Study Notes” provide an in-depth look into shell exploitation techniques crucial for penetration testing. Techniques range from escaping restricted environments using awk, python, and SSH to advanced credential harvesting with Mimikatz. Various reverse and bind shell methods are illustrated using Netcat, Bash, Python, PowerShell, PHP, and even ICMP and Jenkins. Additionally, enumeration scripts for Active Directory enhance post-exploitation capabilities. The document emphasizes ethical hacking and legality, ensuring readers understand the responsible use of this knowledge. Advanced sections include firewall evasion, data exfiltration, and pivoting shells using socat. This resource serves as an essential manual for cybersecurity professionals.\u003c\/p\u003e\n\u003cp\u003eThe content is technical, providing detailed commands and scripts for bypassing security restrictions and maintaining access to compromised systems.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eKey Topics Covered:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduction to Shells: Explains the role of shells in cybersecurity, including reverse and bind shells.\u003c\/li\u003e\n\u003cli\u003ePost-Exploitation Shells: Techniques for escaping restricted shells using methods like awk, find, SSH, Python, and Perl.\u003c\/li\u003e\n\u003cli\u003eCredential Harvesting: Using Mimikatz for extracting credentials from multiple domain-joined machines.\u003c\/li\u003e\n\u003cli\u003eCrashing Systems: Fork bombs and system overload attacks.\u003c\/li\u003e\n\u003cli\u003ePre-Compromise Shells: Various reverse shell techniques in languages like Bash, Python, PHP, PowerShell, and Java.\u003c\/li\u003e\n\u003cli\u003eEnumeration and Pivoting: Methods for scanning networks, enumerating Active Directory users, and moving laterally across systems.\u003c\/li\u003e\n\u003cli\u003eFirewall Evasion: Techniques for bypassing security controls using Python and encrypted tunnels.\u003c\/li\u003e\n\u003cli\u003eMalicious Payloads: Creating and using web shells, HTA shells, Microsoft Office macro shells, and privilege escalation exploits.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eFormat\u003c\/b\u003e: PDF \u003c\/p\u003e\n\u003cp\u003e\u003cb\u003ePages\u003c\/b\u003e: 123\u003c\/p\u003e\n\u003cp\u003e\u003cbr\u003e\u003cu\u003eWhen you buy this booklet, you will be entitled to receive content updates for 3 months on it with the same original price that you paid for.\u003c\/u\u003e\u003cu\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003eNote:\u003c\/u\u003e\u003cspan\u003e \u003c\/span\u003eThis product is not eligible for a refund.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eFAQ\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eWho is the author of this resource?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThe notes are compiled by Motasem Hamdan, a cybersecurity content creator known for producing educational materials on topics like reverse shells, privilege escalation, and red team tactics.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eWhat topics are covered in these notes?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThe guide encompasses a wide range of topics, including:\u003c\/p\u003e\n\u003cp\u003eReverse shell techniques in various programming languages\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eRed team scripting methodologies\u003c\/li\u003e\n\u003cli\u003ePost-exploitation strategies\u003c\/li\u003e\n\u003cli\u003ePrivilege escalation methods\u003c\/li\u003e\n\u003cli\u003eDefense evasion tactics\u003c\/li\u003e\n\u003cli\u003eCommand references for tools like Netcat, Metasploit, and PowerShell\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eIs this resource suitable for beginners?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eWhile the notes are comprehensive and detailed, they are primarily geared towards individuals with a foundational understanding of cybersecurity concepts. Beginners may find it beneficial as a supplementary resource alongside other introductory materials.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/163032\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"143\" height=\"143\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501979504923,"sku":null,"price":13.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Coverv2.png?v=1752869273"},{"product_id":"the-art-of-anonymity-invisibility","title":"The Art of Anonymity \u0026 Invisibility","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eThe document provides a detailed roadmap for anyone, journalists, activists, or concerned users, seeking to protect their privacy online. Key takeaways include the necessity of creating separate digital identities, using specialized OS like Tails and Whonix, leveraging layered encryption (VPNs + TOR), and anonymizing payments through Bitcoin mixing.\u003c\/p\u003e\n\u003cp\u003ePGP encryption remains essential for secure communication, and users are urged to adopt strong passphrases and secure operating behaviors to avoid linkages to their real identities. The guide also discusses recognizing law enforcement behaviors on the dark web and how government surveillance might operate via TOR exit nodes.\u003c\/p\u003e\n\u003cp\u003eLastly, it introduces alternatives for secure messaging and VOIP, emphasizing proactive digital hygiene and rigorous compartmentalization.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho Are These Notes For?\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eJournalists and freedom fighters who want to learn the art of staying anonymous and keeping their tracks hidden.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e12th Golden Rules\u003c\/p\u003e\n\u003cp\u003eAnonymity For Non Blackhat Hackers (Journalists and freedom fighters)\u003c\/p\u003e\n\u003cp\u003eOperating Systems for anonymity\u003c\/p\u003e\n\u003cp\u003eDisk and Network Encryption\u003c\/p\u003e\n\u003cp\u003eTOR\u003c\/p\u003e\n\u003cp\u003eBlocking Trackers\u003c\/p\u003e\n\u003cp\u003eEmail Encryption\u003c\/p\u003e\n\u003cp\u003eDisk Wiping\u003c\/p\u003e\n\u003cp\u003eAnonymous Payments (How to pay on the internet without leaving traces).\u003c\/p\u003e\n\u003cp\u003eAnonymity For Blackhat Hackers ( Things to do before starting to hack).\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eFormat: PDF\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eWhen you buy this booklet, you will be entitled to receive content updates for 3 months on it with the same original price that you paid for.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eNote:\u003c\/b\u003e\u003c\/u\u003e\u003cspan\u003e \u003c\/span\u003eThis product is not eligible for a refund.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/160118\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"140\" height=\"140\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501984157979,"sku":null,"price":10.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/coverv2_4dabb29d-4661-469a-9c9f-0c7350354a95.png?v=1752869374"},{"product_id":"binary-exploitation-buffer-overflow-study-notes","title":"Binary Exploitation \u0026 Buffer Overflow Study Notes","description":"\u003cp\u003eThis study guide comprehensively covers binary exploitation techniques, starting from assembly basics to advanced exploitation methods like Return-Oriented Programming (ROP) and ret2libc. It provides hands-on examples of exploiting stack and heap overflows, bypassing security protections (NX, ASLR, PIE), and using tools like GDB, pwndbg, and Ghidra.\u003cbr\u003e\u003cbr\u003e\u003cu\u003e\u003cb\u003eTable of Contents\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eImportant Note\u003c\/li\u003e\n\u003cli\u003eAssembly Basics\u003c\/li\u003e\n\u003cli\u003eRegisters\u003c\/li\u003e\n\u003cli\u003eThe Stack in Computer Architecture\u003c\/li\u003e\n\u003cli\u003eCalling Conventions\u003c\/li\u003e\n\u003cli\u003eGlobal Offset Table (GOT)\u003c\/li\u003e\n\u003cli\u003eReturn-Oriented Programming (ROP)\u003c\/li\u003e\n\u003cli\u003eC Programming\u003c\/li\u003e\n\u003cli\u003eDisassemblers\u003c\/li\u003e\n\u003cli\u003eDebugging\u003c\/li\u003e\n\u003cli\u003eDecompilers\u003c\/li\u003e\n\u003cli\u003eBuffer Overflow\u003c\/li\u003e\n\u003cli\u003eBOF Exploitation\u003c\/li\u003e\n\u003cli\u003eCommon Binary Protections against BOF\u003c\/li\u003e\n\u003cli\u003eCommon Definitions Before You GetStarted\u003c\/li\u003e\n\u003cli\u003eCommon Tips For BOF Exploitation\u003c\/li\u003e\n\u003cli\u003eTools and their installation\u003c\/li\u003e\n\u003cli\u003eExploiting Buffer overflow when NX isenabled using Ret2libc\u003c\/li\u003e\n\u003cli\u003eExploiting Buffer overflow when NX isenabled using ret2dlresolveWith gdb+peda\u003c\/li\u003e\n\u003cli\u003eExploiting BOF | NX Enabled | UsingGadgets and ROP Chains\u003c\/li\u003e\n\u003cli\u003eExploiting BOF with NX and PIE enabledusing ret2libc and stack pivoting.\u003c\/li\u003e\n\u003cli\u003eExploiting BOF without ASLR and binaryprotections.\u003c\/li\u003e\n\u003cli\u003eRET2GOT: BOF when NX and ASLRprotections are enabled. [ldd]\u003c\/li\u003e\n\u003cli\u003eRET2GOT: BOF when NX and ASLRprotections are enabled. [Radare2]\u003c\/li\u003e\n\u003cli\u003eExploiting BOF When PIE is enabled\u003c\/li\u003e\n\u003cli\u003eExploiting SUID Bit Binaries[s]\u003c\/li\u003e\n\u003cli\u003eBuffer Overflow on Double FreeVulnerabilities\u003c\/li\u003e\n\u003cli\u003eTCACHE poisoning\u003c\/li\u003e\n\u003cli\u003eUnsorted Bin chunk\u003c\/li\u003e\n\u003cli\u003eHeap feng shui\u003c\/li\u003e\n\u003cli\u003eUsing BOF to control global variables in aprogram\u003c\/li\u003e\n\u003cli\u003eFormat String Vulnerability\u003c\/li\u003e\n\u003cli\u003eResources\u003c\/li\u003e\n\u003cli\u003eProcess Injection\u003c\/li\u003e\n\u003cli\u003eProcess Hollowing\u003c\/li\u003e\n\u003cli\u003eDLL Injection\u003c\/li\u003e\n\u003cli\u003eHacking Binaries with Frida\u003c\/li\u003e\n\u003cli\u003eBinary Security\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003ePage Count: 150\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eFormat: PDF\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eWhen you buy this book, you will be entitled to receive content updates for 3 months on it with the same original price that you paid for.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eFAQ\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eWhat topics are covered in the guide?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThe guide delves into various aspects of buffer overflow exploitation, including:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIdentifying and analyzing buffer overflow vulnerabilities.\u003c\/li\u003e\n\u003cli\u003eCrafting payloads to exploit these vulnerabilities.\u003c\/li\u003e\n\u003cli\u003eBypassing common security mechanisms like NX (No eXecute) and ASLR (Address Space Layout Randomization).\u003c\/li\u003e\n\u003cli\u003eUtilizing tools such as GDB and Radare2 for debugging and analysis.\u003c\/li\u003e\n\u003cli\u003eImplementing Return-Oriented Programming (ROP) chains\u003c\/li\u003e\n\u003cli\u003eAdditionally, the guide references practical exercises and challenges, such as those from HackTheBox, to reinforce the concepts discussed.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eDoes the guide include practical examples?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eAbsolutely. The guide incorporates real-world examples and walkthroughs, including exercises from platforms like HackTheBox. These practical scenarios help readers understand how to apply buffer overflow techniques in controlled environments, reinforcing the theoretical knowledge presented.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eWhat prerequisites are recommended before using this guide?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eTo fully benefit from the guide, readers should have:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eA basic understanding of programming concepts, particularly in C or C++.\u003c\/li\u003e\n\u003cli\u003eFamiliarity with Linux command-line operations.\u003c\/li\u003e\n\u003cli\u003eAn introductory knowledge of assembly language and system architecture.\u003c\/li\u003e\n\u003cli\u003eExperience with debugging tools like GDB or Radare2 is advantageous but not mandatory.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eDoes the guide address modern security protections?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eYes, the guide discusses techniques to bypass or mitigate modern security mechanisms, including:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eNX (No eXecute) bit protections.\u003c\/li\u003e\n\u003cli\u003eASLR (Address Space Layout Randomization).\u003c\/li\u003e\n\u003cli\u003eStack canaries and other compiler-level protections.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eIt provides insights into how these protections work and strategies to circumvent them during exploitation.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eWhat tools are recommended for following along with the guide?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThe guide suggests using tools such as:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eGDB (GNU Debugger) for analyzing and debugging binaries.\u003c\/li\u003e\n\u003cli\u003eRadare2 for reverse engineering and binary analysis.\u003c\/li\u003e\n\u003cli\u003ePython for scripting and automating exploit development.\u003c\/li\u003e\n\u003cli\u003eObsidian for organizing notes and markup files provided with the guide\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eThese tools are integral to practicing the techniques discussed and are commonly used in the cybersecurity community.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/157262\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"114\" height=\"114\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501990842651,"sku":null,"price":15.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/BOFCovernotescoverv2.png?v=1752869508"},{"product_id":"blue-team-cyber-security-soc-analyst-study-notes","title":"Blue Team Cyber Security \u0026 SOC Analyst Study Notes","description":"\u003cp\u003eThe guide provides an end-to-end reference for setting up, managing, and operating a SOC with detailed procedures for monitoring, detection, response, threat intelligence, and security improvements. It emphasizes structured processes, role definitions, tool deployment, and continuous training. The document also addresses vulnerability management frameworks, regulatory standards like PCI-DSS and FISMA, and methods for alarm analysis and threat hunting. A significant focus is placed on proactive security through playbooks, automation, and integrating multiple security tools and intelligence feeds.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eTable of Contents:\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e- SOC \u0026amp; Blue Teaming Concepts\u003c\/p\u003e\n\u003cp\u003e- Cyber Incident Response\u003c\/p\u003e\n\u003cp\u003e- Logs Investigation\u003c\/p\u003e\n\u003cp\u003e- Packet \u0026amp; Traffic Analysis\u003c\/p\u003e\n\u003cp\u003e- Cyber Threat Intelligence\u003c\/p\u003e\n\u003cp\u003e- Threat Intelligence Platforms\u003c\/p\u003e\n\u003cp\u003e- Secure Coding Principles\u003c\/p\u003e\n\u003cp\u003e- Linux Security\u003c\/p\u003e\n\u003cp\u003e- Windows Security\u003c\/p\u003e\n\u003cp\u003e- Windows Active Directory Security \u0026amp; Engineering\u003c\/p\u003e\n\u003cp\u003e- Splunk SIEM\u003c\/p\u003e\n\u003cp\u003e- Snort IDS\u003c\/p\u003e\n\u003cp\u003e- Wazuh IDS\u003c\/p\u003e\n\u003cp\u003e- The Elastic Stack\u003c\/p\u003e\n\u003cp\u003e- Sigma Rules\u003c\/p\u003e\n\u003cp\u003e- Osquery\u003c\/p\u003e\n\u003cp\u003e- Sysmon\u003c\/p\u003e\n\u003cp\u003e- Yara Rules\u003c\/p\u003e\n\u003cp\u003e- Reverse Engineering\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003ePage Count:\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e1432\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eFormat:\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003ePDF\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eNote:\u003c\/b\u003e\u003c\/u\u003e\u003cspan\u003e \u003c\/span\u003eThis product is not eligible for a refund.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eFAQ\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eWhat is included in the Blue Team Study Notes PDF?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThe PDF is a 1,432-page comprehensive guide covering various areas such as cyber threat intelligence, incident response operational notes, secure coding, Linux security, Wireshark, and notes on different IDS products and tools like Snort and Wazuh. It includes commands, illustrations, and concepts focused on blue teaming and SOC operations.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eIs there a refund policy?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThis product is not eligible for a refund. If you have concerns regarding the product, you can contact consultation@motasem-notes.net to clarify your issue.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eAre there other related study materials available?\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eYes, Motasem Hamdan offers a range of study notes and practice tests for various certifications, including:The MasterMinds Notes | Motasem Hamdan\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCOMPTIA Cyber Security Analyst (CySA+) Study Notes\u003c\/li\u003e\n\u003cli\u003eMicrosoft Cyber Security Analyst SC-900\u003c\/li\u003e\n\u003cli\u003eCertified Cyber Defender (CCD) Study Notes\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eThese materials are designed to complement the Blue Team study notes and provide comprehensive coverage for various cybersecurity certifications.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/142868\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" style=\"display: block; margin-left: auto; margin-right: auto;\" width=\"156\" height=\"156\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50501997887771,"sku":null,"price":37.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/blue_team_notes_cover_V2.png?v=1752869632"},{"product_id":"snort-ids-study-notes","title":"Snort IDS Study Notes","description":"\u003cp\u003eSnort IDS Study Notes \u0026amp; Guide is a comprehensive guide to Snort, an open-source, rule-based Network Intrusion Detection and Prevention System (NIDS\/NIPS). It explains foundational IDS\/IPS concepts, operating modes, configuration, command usage, log reading, rule creation, and provides dozens of detailed examples for detecting attacks and vulnerabilities using Snort rules.\u003c\/p\u003e\n\u003cp\u003eSnort serves as a powerful tool for both detecting and preventing network intrusions through its versatile modes, sniffer, packet logger, IDS, and IPS. It uses a rules-based approach to flag or block malicious traffic by matching known patterns or behaviors.\u003c\/p\u003e\n\u003cp\u003eIts strength lies in extensive customization through configuration files and rules that can detect everything from brute force attacks and SQL injections to advanced persistent threats and malware.\u003c\/p\u003e\n\u003cp\u003eProper configuration and regular rule updates are vital to maximize its effectiveness, and knowledge of network behavior (via baselining or machine learning) can enhance detection accuracy. Understanding Snort's log handling and operating modes ensures optimal deployment whether for passive monitoring or active defense.\u003cb\u003e\u003cu\u003e\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho Are These Notes For?\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCybersecurity students preparing for Snort certification exam.\u003c\/li\u003e\n\u003cli\u003eProfessionals who are actively working in the field and need a set of ready and concise Snort IDS notes.\u003c\/li\u003e\n\u003cli\u003eSavvy learners who want to quickly master Snort IDS without having to read hunderds of pages.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003e- Introduction to IPS \u0026amp; IDS\u003c\/li\u003e\n\u003cli\u003e- Definitions and Snort Operating Modes\u003c\/li\u003e\n\u003cli\u003e- Basic Commands\u003c\/li\u003e\n\u003cli\u003e- Configuring Snort in Sniffer, Packer Logger or IDS\/IPS mode.\u003c\/li\u003e\n\u003cli\u003e- Creating Snort Rules\u003c\/li\u003e\n\u003cli\u003e- Practical examples to investigate network traffic and cyber incidents with Snort\u003c\/li\u003e\n\u003cli\u003e- Case Study: Ransomware Detection\u003c\/li\u003e\n\u003cli\u003e- Snort Integration with Wazuh\u003c\/li\u003e\n\u003cli\u003e- Snort Integration with ELK\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eFormat: PDF\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003ePages: 117\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eWhen you buy this booklet, you will be entitled to receive content updates for 3 months on it with the same original price that you paid for.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eNote:\u003cspan\u003e \u003c\/span\u003e\u003c\/b\u003e\u003c\/u\u003eThis product is not eligible for a refund.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/142847\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"136\" height=\"136\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50502004834587,"sku":null,"price":12.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/SnortNotesCoverv2.png?v=1752869776"},{"product_id":"splunk-siem-study-notes","title":"Splunk SIEM Study Notes","description":"\u003cp\u003eThe Splunk SIEM Study Notes \u0026amp; Guide presents a complete breakdown of Splunk as both a platform and a security tool. It starts with the basics of SIEM, including log collection, normalization, correlation, and alerting, before diving into Splunk’s various tools: Enterprise, Security Essentials, Enterprise Security, SOAR, Phantom, UBA, and more.\u003c\/p\u003e\n\u003cp\u003eReaders are taught how to install Splunk on Linux\/Windows, configure forwarders, parse logs, and build dashboards. Key use cases like threat detection, insider threats, ransomware response, and cloud integrations (AWS, Azure, Wazuh) are detailed alongside search commands and best practices. The manual culminates in advanced techniques like using HEC, field extraction with regex, and leveraging threat intelligence feeds.\u003cb\u003e\u003cu\u003e\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho Are These Notes For?\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCybersecurity students preparing for Splunk SIEM certification exam.\u003c\/li\u003e\n\u003cli\u003eProfessionals who are actively working in the field and need a set of ready and concise Splunk SIEM notes.\u003c\/li\u003e\n\u003cli\u003eSavvy learners who want to quickly master Splunk SIEM without having to read hunderds of pages.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eTable of contents:\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003e- Introduction to SIEM (Security Information and EventManagement)\u003c\/li\u003e\n\u003cli\u003e- SIEM Deployment Checklist\u003c\/li\u003e\n\u003cli\u003e- Introduction to IPS \u0026amp; IDS\u003c\/li\u003e\n\u003cli\u003e- Splunk Security Solutions\u003c\/li\u003e\n\u003cli\u003e- Splunk – Security Use Cases and Solutions\u003c\/li\u003e\n\u003cli\u003e- Definitions in Splunk \u0026amp; Its Components\u003c\/li\u003e\n\u003cli\u003e- Splunk Search Processing Language\u003c\/li\u003e\n\u003cli\u003e- Best Practices for Crafting Efficient Splunk Searches\u003c\/li\u003e\n\u003cli\u003e- Splunk Event Dispositions \u0026amp; Assignment Guidelines\u003c\/li\u003e\n\u003cli\u003e- Log Monitoring\u003c\/li\u003e\n\u003cli\u003e- Common Splunk Sourcetypes for On-Premises andCloud-Based Deployments\u003c\/li\u003e\n\u003cli\u003e- Splunk Installation on Windows \u0026amp; Linux\u003c\/li\u003e\n\u003cli\u003e- Collecting Logs from Windows \u0026amp; Linux\u003c\/li\u003e\n\u003cli\u003e- Collecting Logs\u003c\/li\u003e\n\u003cli\u003e- Operational Notes\u003c\/li\u003e\n\u003cli\u003e- Five Key Stages of Investigation According to Splunk\u003c\/li\u003e\n\u003cli\u003e- Using Splunk For Incident Response\u003c\/li\u003e\n\u003cli\u003e- Parsing Sysmon events\u003c\/li\u003e\n\u003cli\u003e- USB attacks\u003c\/li\u003e\n\u003cli\u003e- FTP events\u003c\/li\u003e\n\u003cli\u003e- Detecting common vulnerabilities\u003c\/li\u003e\n\u003cli\u003e- Threat Intelligence with Splunk\u003c\/li\u003e\n\u003cli\u003e- Creating Alerts\u003c\/li\u003e\n\u003cli\u003e- Using Splunk for Data Analytics and Statistical Operations\u003c\/li\u003e\n\u003cli\u003e- Creating Dashboards and Reports\u003c\/li\u003e\n\u003cli\u003e- Splunk Threat Intelligence Management (TIM) Overviewand Extended Insights\u003c\/li\u003e\n\u003cli\u003e- Case Studies\u003c\/li\u003e\n\u003cli\u003e- Splunk Config and Troubleshooting\u003c\/li\u003e\n\u003cli\u003e- Evaluating Data Sources with Splunk Security Essentialsand Splunk Enterprise Security\u003c\/li\u003e\n\u003cli\u003e- Appendix\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eFormat: PDF\u003c\/p\u003e\n\u003cp\u003ePages: 195\u003c\/p\u003e\n\u003cp\u003eWhen you buy this booklet, you will be entitled to receive content updates for 3 months on it with the same original price that you paid for.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eNote:\u003c\/b\u003e\u003c\/u\u003e\u003cspan\u003e \u003c\/span\u003eThis product is not eligible for a refund.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp style=\"text-align: center;\"\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/142844\"\u003e\u003cimg height=\"179\" width=\"179\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50502010536219,"sku":null,"price":16.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/splunknotescoverv2.png?v=1752869929"},{"product_id":"computer-forensics-study-notes","title":"Computer Forensics Study Notes","description":"\u003cp\u003eComputer forensics study notes \u0026amp; guide serves as a go-to manual for both beginners and experienced professionals in digital forensics. It thoroughly addresses the procedures for collecting, analyzing, and preserving evidence from digital systems, including volatile memory, hard disks, and network logs.\u003c\/p\u003e\n\u003cp\u003eKey insights include the correct order of volatility, chain of custody maintenance, advanced disk imaging, metadata and file signature analysis, and practical use of tools like FTK Imager, Autopsy, Volatility, and Scalpel. The guide balances legal considerations with hands-on technical methods, ensuring forensic integrity. In the end, it emphasizes pre-imaging data preservation, artifact correlation, and system-level insights, making it a definitive source for forensics learning and practice.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eTable of contents:\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e- Computer \u0026amp; Digital Forensics Procedure\u003c\/p\u003e\n\u003cp\u003e- Disk Forensics\u003c\/p\u003e\n\u003cp\u003e- Memory Forensics\u003c\/p\u003e\n\u003cp\u003e- Network Forensics\u003c\/p\u003e\n\u003cp\u003e- Windows Registry Forensics\u003c\/p\u003e\n\u003cp\u003e- Malware Detection \u0026amp; Analysis\u003c\/p\u003e\n\u003cp\u003e- Digital Forensics Tools \u0026amp; Platforms\u003c\/p\u003e\n\u003cp\u003e- Steganography\u003c\/p\u003e\n\u003cp\u003e\u003cbr\u003e\u003cb\u003ePage Count:323\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eFormat\u003c\/b\u003e: PDF\u003c\/p\u003e\n\u003cp\u003eWhen you buy this booklet, you will be entitled to receive content updates for 3 months on it with the same original price that you paid for.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eNote:\u003c\/b\u003e\u003c\/u\u003e\u003cspan\u003e \u003c\/span\u003eThis product is not eligible for a refund.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/142831\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"149\" width=\"149\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":50502019318043,"sku":null,"price":27.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/cover.png?v=1752869995"},{"product_id":"nmap-cheat-sheet-v1-the-ultimate-quick-reference-guide-for-network-reconnaissance","title":"Nmap Cheat Sheet V1 | The Ultimate Quick-Reference Guide for Network Reconnaissance","description":"\u003cp\u003eSupercharge your recon game with this professionally designed Nmap Cheat Sheet, your go-to referencefor mastering one of the most powerful network scanning tools in cybersecurity.\u003c\/p\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003eWhether you're a penetration tester, ethical hacker, SOC analyst, or a student preparing for certifications like OSCP or Security+, this cheat sheet will help you quickly recall essential Nmap commands, switches, and advanced scanning techniques.\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003e\u003cb\u003e\u003cu\u003e📘 What's Inside:\u003c\/u\u003e\u003c\/b\u003e\u003c\/div\u003e\n\u003cdiv\u003eEssential Nmap syntax and scanning types\u003c\/div\u003e\n\u003cdiv\u003ePowerful options for stealth and evasion\u003c\/div\u003e\n\u003cdiv\u003ePort scanning strategies and service detection\u003c\/div\u003e\n\u003cdiv\u003eVersion and OS detection techniques\u003c\/div\u003e\n\u003cdiv\u003eTiming templates and performance tuning\u003c\/div\u003e\n\u003cdiv\u003eScripting Engine (NSE) examples\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003e💡 Why You Need This:\u003c\/div\u003e\n\u003cdiv\u003e✅ Save hours by avoiding manual lookups\u003c\/div\u003e\n\u003cdiv\u003e✅ Perfect for on-the-job use and red team ops\u003c\/div\u003e\n\u003cdiv\u003e✅ Complements your training and certifications\u003c\/div\u003e\n\u003cdiv\u003e✅ Designed for quick-glance clarity with syntax you can copy and deploy instantly\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003e\u003cb\u003ePage Count : 11\u003c\/b\u003e\u003c\/div\u003e\n\u003cdiv\u003eFormat: PDF \u0026amp; Markdown\u003c\/div\u003e\n\u003cdiv\u003e\u003c\/div\u003e\n\u003cdiv\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/439566\" target=\"_blank\" rel=\"noopener\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"385\" height=\"385\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/div\u003e","brand":"Cyber Security \u0026 Certification Notes | Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51194022363419,"sku":null,"price":0.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Coverpng_fa2c3d8c-fbc3-4781-b3c6-802db3ba5013.png?v=1760694225"},{"product_id":"mimikatz-cheat-sheet-v1-master-windows-credential-attacks-persistence","title":"Mimikatz Cheat Sheet V1 | Master Windows Credential Attacks \u0026 Persistence","description":"\u003cp\u003eStep into the world of post-exploitation mastery with the Mimikatz Cheat Sheet V1 , a field-ready, expertly structured cheat sheet for red teamers, penetration testers, and cybersecurity professionals who want to unlock the full power of Mimikatz.\u003c\/p\u003e\n\u003cp\u003eWhether you’re in a lab environment or live engagement, this cheat sheet arms you with the exact syntax, commands, and usage context for the most critical Mimikatz modules.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWhat You’ll Get:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e✅ Essential commands for every Mimikatz module (crypto, sekurlsa, kerberos, lsadump, dpapi, net, and more)\u003c\/p\u003e\n\u003cp\u003e✅ Pass-the-Hash, Over-Pass-the-Hash, and Golden Ticket attack syntax\u003c\/p\u003e\n\u003cp\u003e✅ Credential dumping, SID history manipulation, service injection, and session hijacking\u003c\/p\u003e\n\u003cp\u003e✅ Examples for lateral movement, persistence, and privilege escalation\u003c\/p\u003e\n\u003cp\u003e✅ In-memory execution with PowerShell and PsExec\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWhy This Cheat Sheet?\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eDesigned for quick-glance utility during live operations\u003c\/p\u003e\n\u003cp\u003ePerfect for OSCP, CRTP, CRTE, and red team prep\u003c\/p\u003e\n\u003cp\u003eSaves hours of trial-and-error and manual documentation\u003c\/p\u003e\n\u003cp\u003eBeginner-friendly while still supporting advanced tactics\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003ePage Count : 11\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eFormat: PDF + Markdown\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eBy Purchasing This Product, You Are Agreeing To The Terms of Service Below\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/motasem-notes.net\/tos\" rel=\"noopener noreferrer nofollow\" target=\"_blank\"\u003ehttps:\/\/motasem-notes.net\/tos\u003c\/a\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/439742\" target=\"_blank\" rel=\"noopener\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"159\" height=\"159\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51194027278619,"sku":null,"price":4.5,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Coverv2.jpg?v=1760694871"},{"product_id":"osquery-cheat-sheet","title":"Osquery Cheat Sheet","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eOsquery Cheat Sheet is a powerful, all-in-one guide for mastering Osquery, an open-source, endpoint visibility tool that turns your operating system into a relational database. Written for blue teamers, system administrators, and security enthusiasts, this cheat sheet-styled book provides hands-on knowledge and tactical walkthroughs using real-world scenarios, forensic techniques, and advanced configurations.\u003c\/p\u003e\n\u003cp\u003eFrom installation to threat detection and malware analysis, you'll learn how to harness the full potential of Osquery using SQL queries and log-based investigations. Whether you're conducting incident response or building an automated detection pipeline, this guide offers actionable insights for defenders at all levels.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduction to Osquery\u003c\/li\u003e\n\u003cli\u003eWhat is Osquery?\u003c\/li\u003e\n\u003cli\u003eSQL Syntax Basics\u003c\/li\u003e\n\u003cli\u003eAgent Modes: osqueryi vs osqueryd\u003c\/li\u003e\n\u003cli\u003eInstallation \u0026amp; Configuration\u003c\/li\u003e\n\u003cli\u003eInstalling on Ubuntu and Alibaba Cloud\u003c\/li\u003e\n\u003cli\u003eCreating Config and Flag Files\u003c\/li\u003e\n\u003cli\u003eEnabling System Logs with Rsyslog\u003c\/li\u003e\n\u003cli\u003eQuery Examples: Processes, Users, Cron Jobs, etc.\u003c\/li\u003e\n\u003cli\u003eUsing Packs: IT Compliance, Incident Response, FIM\u003c\/li\u003e\n\u003cli\u003eFile Integrity Monitoring (FIM)\u003c\/li\u003e\n\u003cli\u003eSecurity Use Cases \u0026amp; Threat Detection\u003c\/li\u003e\n\u003cli\u003eDetecting Malicious Binaries\u003c\/li\u003e\n\u003cli\u003eInvestigating Running Processes\u003c\/li\u003e\n\u003cli\u003eDetecting SUID Binaries \u0026amp; Suspicious Ports\u003c\/li\u003e\n\u003cli\u003ePowerShell Events Analysis\u003c\/li\u003e\n\u003cli\u003eNTFS Forensics \u0026amp; Timestomping\u003c\/li\u003e\n\u003cli\u003eUnderstanding $SI and $FN Attributes\u003c\/li\u003e\n\u003cli\u003eIdentifying Timestamp Inconsistencies\u003c\/li\u003e\n\u003cli\u003eLog Path Overview\u003c\/li\u003e\n\u003cli\u003eThreat Hunting with osquery\u003c\/li\u003e\n\u003cli\u003eDetecting IOCs\u003c\/li\u003e\n\u003cli\u003eInvestigating Network Connections\u003c\/li\u003e\n\u003cli\u003ePersistence Detection: Services, Tasks, Registry\u003c\/li\u003e\n\u003cli\u003eOsquery Cloud Deployment\u003c\/li\u003e\n\u003cli\u003eRunning on Alibaba Cloud ECS\u003c\/li\u003e\n\u003cli\u003eDetecting Malicious Downloads (Case Study)\u003c\/li\u003e\n\u003cli\u003eUsing osquery + rsyslog + Kafka + VirusTotal + Slack\u003c\/li\u003e\n\u003cli\u003eSecurity Packs Breakdown\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003ePage Count: 34\u003c\/p\u003e\n\u003cp\u003eFormat : PDF\u003c\/p\u003e\n\u003cp\u003eBy Purchasing This Product, You Are Agreeing To The Terms of Service Below\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/motasem-notes.net\/tos\" rel=\"noopener noreferrer nofollow\" target=\"_blank\"\u003ehttps:\/\/motasem-notes.net\/tos\u003c\/a\u003e\u003c\/p\u003e\n\u003cp\u003eNote: This product is not eligible for a refund.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv id=\"paymentContainer\" class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\" class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/439742\" target=\"_blank\" rel=\"noopener\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"159\" height=\"159\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51194029244699,"sku":null,"price":7.9,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Cover_39cebc49-a570-4656-b8a6-927e4a4c2011.png?v=1760695147"},{"product_id":"cobalt-strike-cheat-sheets","title":"Cobalt Strike Cheat Sheets","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eCobalt Strike stands at the center of this evolution. Originally developed as a legitimate red-team platform, it was designed to give security professionals the tools to simulate real-world cyberattacks with precision, stealth, and depth. Unfortunately, its effectiveness has also made it a favorite among advanced threat actors , turning a professional testing framework into a weapon frequently seen in real intrusions.\u003c\/p\u003e\n\u003cp\u003eThis book is a technical companion for professionals who need to understand how Cobalt Strike works in practice. It doesn’t just show you the buttons to click , it takes you under the hood: from Malleable C2 profiles to advanced Beacon operations, post-exploitation, privilege escalation, evasion tactics, and lateral movement strategies.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho This Book Is For\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThis book is intended for security professionals who need deep operational awareness of Cobalt Strike, including:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eRed Teamers \u0026amp; Penetration Testers : who want to master Cobalt Strike’s offensive capabilities for realistic engagements and simulations.\u003c\/li\u003e\n\u003cli\u003eBlue Teamers \u0026amp; Incident Responders : who must understand attacker behaviors to build effective detections, forensics, and incident response strategies.\u003c\/li\u003e\n\u003cli\u003eSecurity Engineers \u0026amp; Threat Hunters : looking to integrate Cobalt Strike activity into SIEM and threat hunting pipelines.\u003c\/li\u003e\n\u003cli\u003eSecurity Students \u0026amp; Researchers : seeking to gain hands-on knowledge of modern C2 frameworks and their operational patterns.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eA basic understanding of Windows internals, networking, and offensive security concepts is helpful , but not strictly required. The book escalates logically from core principles to advanced tradecraft.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduction\u003c\/li\u003e\n\u003cli\u003eHow C2, C3, and Cobalt Strike Relate\u003c\/li\u003e\n\u003cli\u003eInstallation\u003c\/li\u003e\n\u003cli\u003eMalleable C2 Profiles\u003c\/li\u003e\n\u003cli\u003eCobalt Strike Beacon\u003c\/li\u003e\n\u003cli\u003eCommon Commands\u003c\/li\u003e\n\u003cli\u003eFile System Operations\u003c\/li\u003e\n\u003cli\u003eSession Prepping\u003c\/li\u003e\n\u003cli\u003eHost and Network Reconnaissance\u003c\/li\u003e\n\u003cli\u003eCredential Theft\u003c\/li\u003e\n\u003cli\u003ePowerShell Integration\u003c\/li\u003e\n\u003cli\u003eSession Passing and Management\u003c\/li\u003e\n\u003cli\u003eSpawning and Injection\u003c\/li\u003e\n\u003cli\u003eToken Management\u003c\/li\u003e\n\u003cli\u003ePivoting and Lateral Movement\u003c\/li\u003e\n\u003cli\u003eListeners\u003c\/li\u003e\n\u003cli\u003eListener Configuration\u003c\/li\u003e\n\u003cli\u003eCommon Beacon Commands\u003c\/li\u003e\n\u003cli\u003ePayload Generation \u0026amp; Hosting\u003c\/li\u003e\n\u003cli\u003eExploitation\u003c\/li\u003e\n\u003cli\u003ePost-Exploitation \u0026amp; Lateral Movement\u003c\/li\u003e\n\u003cli\u003ePrivilege Escalation \u0026amp; Credential Access\u003c\/li\u003e\n\u003cli\u003eMetasploit Framework Interoperability\u003c\/li\u003e\n\u003cli\u003eNetwork Pivoting \u0026amp; Exfiltration\u003c\/li\u003e\n\u003cli\u003eOperational Notes \u0026amp; OPSEC\u003c\/li\u003e\n\u003cli\u003eEvasion Techniques\u003c\/li\u003e\n\u003cli\u003ePractical Scenarios\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003ePage count: 51\u003c\/p\u003e\n\u003cp\u003eFormat: PDF\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\" id=\"paymentContainer\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\" href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/470789\" target=\"_blank\" rel=\"noopener\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"159\" width=\"159\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51228515074331,"sku":null,"price":8.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Coverv2_4741eee2-e5af-48e7-a60c-341c2962216a.jpg?v=1761637278"},{"product_id":"blockchain-hacking-development-and-security-study-notes","title":"Blockchain Hacking, Development and Security Study Notes","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eDive deep into the world of decentralized technology with \"Blockchain Hacking, Development and Security\".\u003c\/p\u003e\n\u003cp\u003eThis comprehensive guide serves as your ultimate resource for understanding the new form of digital money that operates on the revolutionary technology called blockchain. The book demystifies the core concepts, explaining how cryptocurrencies move beyond traditional financial systems controlled by middlemen to a peer-to-peer network that enables faster, cheaper, and more secure transactions.\u003c\/p\u003e\n\u003cp\u003eStarting with the foundational principles, you'll explore the evolution of money and learn the core benefits of crypto, such as reducing corruption, user control over funds, and financial inclusion for the unbanked. The guide then transitions into the practical, technical aspects of the technology. You will gain a thorough understanding of blockchain's inner workings, from the structure of blocks linked by cryptography to the consensus algorithms like Proof of Work (PoW) and Proof of Stake (PoS) that secure the network.\u003c\/p\u003e\n\u003cp\u003eThis book is packed with hands-on knowledge for developers. It features an extensive section on Solidity programming, the high-level language for creating smart contracts on the Ethereum Virtual Machine (EVM). You'll master everything from basic syntax, data types, and functions to advanced concepts like inheritance, polymorphism, and error handling. With detailed walkthroughs and case studies, you will learn to use essential development toolchains like Foundry, Truffle, and the Remix IDE to compile, test, and deploy your own smart contracts.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003eTable of Contents\u003c\/u\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eFoundations of Cryptocurrencies\u003c\/li\u003e\n\u003cli\u003eFoundational Concepts in Blockchain Technology\u003c\/li\u003e\n\u003cli\u003eFoundry\u003c\/li\u003e\n\u003cli\u003eSolidity Programming\u003c\/li\u003e\n\u003cli\u003eBitcoin Fundamentals\u003c\/li\u003e\n\u003cli\u003eEthereum Architecture\u003c\/li\u003e\n\u003cli\u003eHyperledger\u003c\/li\u003e\n\u003cli\u003eBlackChain Hacking \u0026amp; Security\u003c\/li\u003e\n\u003cli\u003eCase Studies\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eWho This Book Is For\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThis book is designed for a wide range of readers, from beginners to seasoned professionals, who are looking to build a deep and practical understanding of blockchain and cryptocurrency. It's perfect for:\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eAspiring Blockchain Developers\u003c\/b\u003e: If you're new to the space, the step-by-step guides on setting up a local development environment, writing your first \"Hello World\" smart contract, and using tools like Truffle and Ganache provide a perfect entry point.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eSoftware Engineers \u0026amp; Programmers\u003c\/b\u003e: Developers experienced in other languages will find the detailed sections on Solidity programming invaluable for transitioning their skills to the blockchain, covering everything from fundamentals to advanced design patterns.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eCybersecurity Professionals\u003c\/b\u003e: The dedicated chapters on \"BlackChain Hacking \u0026amp; Security\" offer a deep dive into vulnerabilities, attack methodologies, and defensive tools like Slither-Mutate, making it an essential resource for those tasked with securing decentralized systems.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eStudents and Academics\u003c\/b\u003e: The book's clear structure, which builds from foundational concepts to complex technical implementations, makes it an excellent study guide or reference for academic courses in computer science, finance, and information technology.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eCrypto Enthusiasts \u0026amp; Investors\u003c\/b\u003e: For those who want to go beyond the surface-level hype, this guide provides a solid understanding of the technology behind the assets, covering how wallets, exchanges, and transactions actually work.\u003c\/p\u003e\n\u003cp\u003ePage count: 276\u003c\/p\u003e\n\u003cp\u003eFormat: PDF\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\" id=\"paymentContainer\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\" href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/466421\" target=\"_blank\" rel=\"noopener\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"159\" width=\"159\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51228530934043,"sku":null,"price":15.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/cover2.jpg?v=1761637497"},{"product_id":"windows-hacking-study-notes-cheat-sheets","title":"Windows Hacking Study Notes \u0026 Cheat Sheets","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eThe Windows operating system lies at the heart of most corporate networks, making it one of the most targeted and studied platforms in cybersecurity. Windows Hacking is a field guide for ethical hackers, penetration testers, and red teamers who aim to understand, exploit, and defend the Windows ecosystem from a technical perspective.\u003c\/p\u003e\n\u003cp\u003eThis book takes a practical, command-driven approach, walking you through how attackers enumerate systems, abuse privileges, escalate access, and maintain persistence inside Windows environments. From token manipulation and access control lists to privilege escalation, credential harvesting, and lateral movement, you’ll find every major offensive technique explained through real-world commands and exploitation steps.\u003c\/p\u003e\n\u003cp\u003eIt also dives into modern Command and Control (C2) frameworks such as Cobalt Strike and Mythic, showing how professional red teams conduct post-exploitation operations while staying stealthy and avoiding detection.\u003c\/p\u003e\n\u003cp\u003eWhether you’re learning for certification, preparing for a red team engagement, or building defenses against these attacks, this book provides a hands-on, raw technical foundation you can directly apply in the field.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eBasics\u003c\/li\u003e\n\u003cli\u003eWindows Access Tokens\u003c\/li\u003e\n\u003cli\u003eToken Inspection and UAC\u003c\/li\u003e\n\u003cli\u003eCreating Logon Sessions\u003c\/li\u003e\n\u003cli\u003eTypes of Tokens and Impersonation\u003c\/li\u003e\n\u003cli\u003eAccess Control List (ACL)\u003c\/li\u003e\n\u003cli\u003eWindows Integrity Levels\u003c\/li\u003e\n\u003cli\u003eWindows Security Controls\u003c\/li\u003e\n\u003cli\u003eAppLocker and Policy Enumeration\u003c\/li\u003e\n\u003cli\u003eWindows Credentials Storage\u003c\/li\u003e\n\u003cli\u003eEncrypted File System (EFS)\u003c\/li\u003e\n\u003cli\u003eGroup Managed Service Accounts (gMSA)\u003c\/li\u003e\n\u003cli\u003eLocal Administrator Password Solution (LAPS)\u003c\/li\u003e\n\u003cli\u003ePowerShell Constrained Language Mode\u003c\/li\u003e\n\u003cli\u003eWindows Authentication Handshake\u003c\/li\u003e\n\u003cli\u003eUser Account Control (UAC) and Enumeration\u003c\/li\u003e\n\u003cli\u003eSystem Enumeration and Reconnaissance\u003c\/li\u003e\n\u003cli\u003eManual Privilege Escalation Techniques\u003c\/li\u003e\n\u003cli\u003eAbusing Windows Groups and User Privileges\u003c\/li\u003e\n\u003cli\u003eExploitation of Services and Scheduled Tasks\u003c\/li\u003e\n\u003cli\u003eCredential Hunting and Password Recovery\u003c\/li\u003e\n\u003cli\u003ePass the Hash \/ Pass the Ticket Attacks\u003c\/li\u003e\n\u003cli\u003eDLL Hijacking and Injection\u003c\/li\u003e\n\u003cli\u003eAlways Install Elevated Exploitation\u003c\/li\u003e\n\u003cli\u003eAutomated Privilege Escalation Tools\u003c\/li\u003e\n\u003cli\u003eWindows Post-Exploitation\u003c\/li\u003e\n\u003cli\u003eData Exfiltration Techniques\u003c\/li\u003e\n\u003cli\u003eLateral Movement (RPC, WinRM, RDP, Socat, etc.)\u003c\/li\u003e\n\u003cli\u003eHacking Windows with Cobalt Strike\u003c\/li\u003e\n\u003cli\u003eHacking Windows with Mythic (Apollo Agent)\u003c\/li\u003e\n\u003cli\u003eProfile \u0026amp; Configuration Hardening\u003c\/li\u003e\n\u003cli\u003eIn-Memory Evasion and Hook Bypassing\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eWho This Book Is For\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThis book is designed for cybersecurity professionals who want to master Windows exploitation and post-exploitation at a technical depth rarely covered in traditional training material. It’s suitable for:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003ePenetration Testers \u0026amp; Red Teamers: looking for real-world privilege escalation and lateral movement playbooks.\u003c\/li\u003e\n\u003cli\u003eBlue Teamers \u0026amp; SOC Analysts: who want to understand attacker TTPs to better detect, contain, and mitigate intrusions.\u003c\/li\u003e\n\u003cli\u003eStudents \u0026amp; Certification Candidates: preparing for OSCP, CRTP, CRTE, or other advanced cybersecurity exams.\u003c\/li\u003e\n\u003cli\u003eSystem Administrators \u0026amp; Security Engineers: aiming to harden their Windows environments by understanding exploitation from an attacker’s lens.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eNo prior red teaming experience is required , only a working knowledge of Windows command-line operations and a curiosity for how attackers think.\u003c\/p\u003e\n\u003cp\u003ePage count: 157\u003c\/p\u003e\n\u003cp\u003eFormat: PDF\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv id=\"paymentContainer\" class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\" class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/464667\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"159\" height=\"159\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51228536799515,"sku":null,"price":15.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Coverv2_c631e7f2-1334-4244-8b6b-45767913a838.jpg?v=1761637667"},{"product_id":"kubernetes-penetration-testing-study-notes","title":"Kubernetes Penetration Testing Study Notes","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eKubernetes has rapidly become the backbone of modern cloud-native infrastructures. With its ability to orchestrate containers, scale applications, and manage workloads seamlessly, it has also introduced new layers of complexity and security risks. As organizations migrate critical workloads to Kubernetes, attackers see it as an attractive target, making Kubernetes penetration testing a crucial skill for both red and blue teams.\u003c\/p\u003e\n\u003cp\u003eThis book, Kubernetes Pentesting Notes, serves as a practical guide for security professionals who want to understand, test, and secure Kubernetes environments. It bridges the gap between Kubernetes fundamentals and advanced offensive security techniques. Whether you are a pentester trying to uncover misconfigurations, a DevOps engineer wanting to validate security controls, or a security analyst tasked with protecting cloud workloads, these notes provide actionable insights, tools, and real-world attack paths.\u003c\/p\u003e\n\u003cp\u003eYou’ll find coverage of Kubernetes architecture, RBAC exploitation, service exposure, container escapes, privilege escalation, cloud pivoting, and runtime hardening, all presented in a clear and practical format. This is not just theory: the techniques and examples are designed to be tested in real-world labs and enterprise environments.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eBasics\u003c\/li\u003e\n\u003cli\u003eKubernetes RBAC\u003c\/li\u003e\n\u003cli\u003eExposing Kubernetes Services\u003c\/li\u003e\n\u003cli\u003eFinding Exposed Pods \u0026amp; Cluster Services\u003c\/li\u003e\n\u003cli\u003eUsing OSINT\u003c\/li\u003e\n\u003cli\u003ePort Scanning \u0026amp; API Interactions\u003c\/li\u003e\n\u003cli\u003eEnumeration\u003c\/li\u003e\n\u003cli\u003eLocating Kubernetes Authentication Tokens\u003c\/li\u003e\n\u003cli\u003eSecuring the Kubelet API\u003c\/li\u003e\n\u003cli\u003eAbusing Roles \u0026amp; ClusterRoles\u003c\/li\u003e\n\u003cli\u003eKubernetes Breakout (Escape Techniques)\u003c\/li\u003e\n\u003cli\u003ePod Breakout \u0026amp; Node Post-Exploitation\u003c\/li\u003e\n\u003cli\u003eControl Plane Compromise\u003c\/li\u003e\n\u003cli\u003ePersistence and Other Techniques\u003c\/li\u003e\n\u003cli\u003eCloud Pivoting (GCP \u0026amp; AWS)\u003c\/li\u003e\n\u003cli\u003eKubernetes Network Attacks\u003c\/li\u003e\n\u003cli\u003eKubernetes Security \u0026amp; Hardening\u003c\/li\u003e\n\u003cli\u003eRuntime Hardening \u0026amp; Security Observability\u003c\/li\u003e\n\u003cli\u003eOpen Policy Agent (OPA) Gatekeeper\u003c\/li\u003e\n\u003cli\u003eKubernetes Kyverno\u003c\/li\u003e\n\u003cli\u003eValidatingWebhookConfiguration\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho Is This Book For?\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThis book is designed for:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003ePenetration Testers \u0026amp; Red Teamers\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eLooking to develop hands-on expertise in exploiting Kubernetes clusters, from misconfigured RBAC roles to container escape scenarios.\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity Analysts \u0026amp; Blue Teamers\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eWho need to understand common attack paths in order to detect, defend, and audit Kubernetes environments effectively.\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eDevOps \u0026amp; Platform Engineers\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eSeeking to validate the resilience of their Kubernetes deployments and identify weaknesses before attackers do.\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCloud Security Professionals\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eFocused on GCP, AWS, and other managed Kubernetes services, who want to learn how attackers pivot between Kubernetes and cloud infrastructure.\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eLearners \u0026amp; Students of Cybersecurity\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eWho want a structured yet practical resource that blends Kubernetes fundamentals with advanced exploitation techniques.\u003c\/p\u003e\n\u003cp\u003eIf you are responsible for securing applications, managing cloud-native workloads, or testing infrastructure resilience, this book will equip you with both the mindset and the tools to approach Kubernetes from an attacker’s perspective.\u003c\/p\u003e\n\u003cp\u003ePage Count: 127\u003c\/p\u003e\n\u003cp\u003eFormat: PDF\u003c\/p\u003e\n\u003cp\u003eBy Purchasing This Product, You Are Agreeing To The Terms of Service Below\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/motasem-notes.net\/tos\" rel=\"noopener noreferrer nofollow\" target=\"_blank\"\u003ehttps:\/\/motasem-notes.net\/tos\u003c\/a\u003e\u003c\/p\u003e\n\u003cp\u003eNote: This product is not eligible for a refund.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv id=\"paymentContainer\" class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\" class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/462329\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"159\" height=\"159\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51228542664987,"sku":null,"price":14.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/cover-2.jpg?v=1761637817"},{"product_id":"google-cloud-penetration-testing-study-notes","title":"Google Cloud Penetration Testing Study Notes","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eGoogle Cloud Penetration Testing Study Notes is a specialized guide designed for cybersecurity students, professionals, and enthusiasts who want to master penetration testing within Google Cloud Platform (GCP).\u003c\/p\u003e\n\u003cp\u003eThis book translates complex cloud security concepts into practical, actionable study notes, making it an indispensable reference for exam preparation, red teaming, and real-world security assessments.\u003c\/p\u003e\n\u003cp\u003eInside, you’ll find a structured deep dive into Google Cloud fundamentals, common misconfigurations, privilege escalation techniques, IAM role exploitation, service-specific attack surfaces, and the latest methodologies used by professional pentesters. The notes are concise yet comprehensive, providing both the theoretical foundations and hands-on commands for testing GCP environments.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eGCP Fundamentals\u003c\/li\u003e\n\u003cli\u003eUnderstanding Google Cloud’s Resource Hierarchy\u003c\/li\u003e\n\u003cli\u003ePreparing for a GCP Penetration Test\u003c\/li\u003e\n\u003cli\u003ePermissions for Common Assessment Tools\u003c\/li\u003e\n\u003cli\u003ePrivilege Escalation\u003c\/li\u003e\n\u003cli\u003eAPI Keys and Phishing in Google Cloud \u0026amp; Google Workspace\u003c\/li\u003e\n\u003cli\u003eAppEngine\u003c\/li\u003e\n\u003cli\u003eCloud Shell\u003c\/li\u003e\n\u003cli\u003eCloud SQL\u003c\/li\u003e\n\u003cli\u003eGoogle Cloud Artifact Registry\u003c\/li\u003e\n\u003cli\u003eGoogle Cloud Batch Service\u003c\/li\u003e\n\u003cli\u003eGoogle Cloud BigQuery\u003c\/li\u003e\n\u003cli\u003eCloud Functions\u003c\/li\u003e\n\u003cli\u003eCloud Identity \u0026amp; IAM\u003c\/li\u003e\n\u003cli\u003eCloud Scheduler \/ Cloud Tasks\u003c\/li\u003e\n\u003cli\u003eGCP Compute (VMs, Networking, Firewalls)\u003c\/li\u003e\n\u003cli\u003eKubernetes \u0026amp; Containers\u003c\/li\u003e\n\u003cli\u003eCloud Logging \u0026amp; Monitoring\u003c\/li\u003e\n\u003cli\u003eSecrets Management \u0026amp; Key Management (KMS)\u003c\/li\u003e\n\u003cli\u003eSecurity Command Center \u0026amp; Monitoring Exploitation\u003c\/li\u003e\n\u003cli\u003eWorkflows, Source Repositories \u0026amp; Artifact Abuse\u003c\/li\u003e\n\u003cli\u003ePhishing in Google Workspace (Docs, Chat, Calendar, App Scripts)\u003c\/li\u003e\n\u003cli\u003eEnumeration Techniques Across Services\u003c\/li\u003e\n\u003cli\u003ePost-Exploitation \u0026amp; Persistence in GCP\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho Is This Book For?\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThis book is tailored for:\u003c\/p\u003e\n\u003cp\u003e\u003cbr\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCybersecurity Students \u0026amp; Learners\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eThose preparing for cloud security certifications or courses (e.g., Security+, OSCP, cloud security exams) will find these notes a structured, digestible companion.\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003ePenetration Testers \u0026amp; Red Teamers\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eProfessionals looking to expand their skillset into Google Cloud environments will gain practical techniques, command references, and escalation pathways.\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCloud Security Engineers \u0026amp; DevSecOps\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eEngineers responsible for securing GCP infrastructure can use this book to understand common attack vectors and to harden their systems against real-world threats.\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIT \u0026amp; System Administrators\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eAdmins who manage GCP deployments will learn how attackers think, helping them proactively apply least privilege, enforce stronger IAM, and monitor high-risk services.\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity Researchers \u0026amp; Ethical Hackers\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eAnyone passionate about cloud security research will find ready-to-use methodologies, exploitation techniques, and enumeration commands for GCP.\u003c\/p\u003e\n\u003cp\u003ePage Count: 250\u003c\/p\u003e\n\u003cp\u003eFormat: PDF\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\" id=\"paymentContainer\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\" href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/455528\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"159\" width=\"159\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51228548628763,"sku":null,"price":15.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Coverjpgv1.jpg?v=1761637903"},{"product_id":"aws-pentesting-study-notes","title":"AWS Pentesting Study Notes","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eMaster the art of penetration testing in Amazon Web Services (AWS) with this hands-on, field-tested guide.\u003c\/p\u003e\n\u003cp\u003eWhether you’re a cloud security professional, ethical hacker, or IT administrator,\u003cspan\u003e \u003c\/span\u003e\u003cb\u003ethese study notes\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003ewalk you through real-world attack scenarios, defensive strategies, and automated tools that matter in today’s cloud-first environments.\u003c\/p\u003e\n\u003cp\u003eFrom S3 misconfigurations and IAM privilege escalations to serverless exploitation and GuardDuty bypasses, this resource blends clear explanations with actionable steps. You’ll learn how to responsibly simulate attacks, uncover vulnerabilities, and harden AWS environments without guesswork.\u003c\/p\u003e\n\u003cp\u003ePractical, thorough, and built for modern workflows ,\u003cspan\u003e \u003c\/span\u003e\u003cb\u003ethese study notes\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003eare your companion for both learning and operational success in AWS pentesting.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduction to AWS Pentesting\u003c\/li\u003e\n\u003cli\u003eSetting up Your AWS Lab and CLI Tools\u003c\/li\u003e\n\u003cli\u003eMethodology\u003c\/li\u003e\n\u003cli\u003eS3 Enumeration and Exploitation\u003c\/li\u003e\n\u003cli\u003eReconnaissance and OSINT in AWS\u003c\/li\u003e\n\u003cli\u003ePassword and Credential Testing\u003c\/li\u003e\n\u003cli\u003eIAM Hygiene and Privilege Escalation\u003c\/li\u003e\n\u003cli\u003ePost-Compromise Analysis\u003c\/li\u003e\n\u003cli\u003eEC2 and Storage\u003c\/li\u003e\n\u003cli\u003eConfiguring Instances, Storage, and Snapshots\u003c\/li\u003e\n\u003cli\u003eEBS Encryption and Security\u003c\/li\u003e\n\u003cli\u003eAutomated Tools\u003c\/li\u003e\n\u003cli\u003eProwler, Pacu, Cred Scanner, CloudFrunt, and Redboto\u003c\/li\u003e\n\u003cli\u003eService Exploitation\u003c\/li\u003e\n\u003cli\u003eS3 Buckets, IAM Policies, and Roles\u003c\/li\u003e\n\u003cli\u003eLambda, EKS, ECR, and Messaging Systems\u003c\/li\u003e\n\u003cli\u003eCloudFormation and Infrastructure as Code\u003c\/li\u003e\n\u003cli\u003eLogging and Monitoring\u003c\/li\u003e\n\u003cli\u003eCloudTrail and CloudWatch Auditing\u003c\/li\u003e\n\u003cli\u003eGuardDuty Detection and Bypass\u003c\/li\u003e\n\u003cli\u003eAdvanced Exploitation\u003c\/li\u003e\n\u003cli\u003ePersistence Mechanisms\u003c\/li\u003e\n\u003cli\u003eReal-World Attack Scenarios and Compliance Audits\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho Is It For\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThe study notes are designed for:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003ePenetration Testers \u0026amp; Ethical Hackers – Looking to expand into cloud security.\u003c\/li\u003e\n\u003cli\u003eCloud Engineers \u0026amp; DevOps Teams – Who need to understand how attackers think and operate.\u003c\/li\u003e\n\u003cli\u003eSecurity Analysts \u0026amp; SOC Teams – Interested in incident detection and response in AWS.\u003c\/li\u003e\n\u003cli\u003eStudents \u0026amp; Learners – Preparing for certifications or careers in cloud security and ethical hacking.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003ePage Count\u003c\/u\u003e\u003c\/b\u003e: 350\u003c\/p\u003e\n\u003cp\u003eFormat : PDF\u003c\/p\u003e\n\u003cp\u003eBy Purchasing This Product, You Are Agreeing To The Terms of Service Below\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/motasem-notes.net\/tos\" rel=\"noopener noreferrer nofollow\" target=\"_blank\"\u003ehttps:\/\/motasem-notes.net\/tos\u003c\/a\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv id=\"paymentContainer\" class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\" class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/452430\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"159\" height=\"159\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51228552429851,"sku":null,"price":18.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Cover2_6fd64aa6-a03b-46ef-8f59-78464463c3a5.jpg?v=1761637996"},{"product_id":"lateral-movement-and-pivoting-in-cyber-security-cheat-sheets","title":"Lateral Movement and Pivoting in Cyber Security Cheat Sheets","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eThis comprehensive cheat sheet provides an in-depth look into the techniques attackers use to move through a network after gaining initial access.\u003c\/p\u003e\n\u003cp\u003eThe document covers a wide range of topics, from understanding the attacker's perspective and the lateral movement lifecycle to detailed, hands-on examples of remote process execution, authentication attacks, and port forwarding.\u003c\/p\u003e\n\u003cp\u003eThe guide is structured to walk you through the process, from abusing built-in administrative tools and exploiting credential-based vulnerabilities like Pass-the-Hash and Pass-the-Ticket, to leveraging network misconfigurations through SSH and socat tunneling.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eWhat is Lateral Movement?\u003c\/li\u003e\n\u003cli\u003eRemote Process Execution\u003c\/li\u003e\n\u003cli\u003eRemote Process Creation via WinRM\u003c\/li\u003e\n\u003cli\u003eCreating Scheduled Tasks Remotely\u003c\/li\u003e\n\u003cli\u003eUsing WMI for Lateral Movement\u003c\/li\u003e\n\u003cli\u003eNTLM Authentication\u003c\/li\u003e\n\u003cli\u003ePass-the-Hash (PtH)\u003c\/li\u003e\n\u003cli\u003eExtracting NTLM Hashes\u003c\/li\u003e\n\u003cli\u003eUsing Pass-the-Hash with Mimikatz\u003c\/li\u003e\n\u003cli\u003eKerberos Authentication\u003c\/li\u003e\n\u003cli\u003ePass-the-Ticket (PtT)\u003c\/li\u003e\n\u003cli\u003eOverpass-the-Hash \/ Pass-the-Key\u003c\/li\u003e\n\u003cli\u003eOverpass-the-Hash (OPtH) Variant\u003c\/li\u003e\n\u003cli\u003eAbusing Writable Shares\u003c\/li\u003e\n\u003cli\u003eRDP Hijacking\u003c\/li\u003e\n\u003cli\u003ePort Forwarding for Lateral Movement\u003c\/li\u003e\n\u003cli\u003eSSH Tunneling\u003c\/li\u003e\n\u003cli\u003eSSH Remote Port Forwarding\u003c\/li\u003e\n\u003cli\u003eSSH Local Port Forwarding\u003c\/li\u003e\n\u003cli\u003ePort Forwarding withsocat\u003c\/li\u003e\n\u003cli\u003eDynamic Port Forwarding and SOCKS\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003ePage Count\u003c\/u\u003e\u003c\/b\u003e: 37\u003c\/p\u003e\n\u003cp\u003eFormat : PDF\u003c\/p\u003e\n\u003cp\u003eBy Purchasing This Product, You Are Agreeing To The Terms of Service Below\u003c\/p\u003e\n\u003cp\u003e\u003ca rel=\"noopener noreferrer nofollow\" href=\"https:\/\/motasem-notes.net\/tos\" target=\"_blank\"\u003ehttps:\/\/motasem-notes.net\/tos\u003c\/a\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\" id=\"paymentContainer\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\" href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/451033\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"159\" width=\"159\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51228558754075,"sku":null,"price":6.5,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/cover2_fea570b6-32ec-4dee-9ad1-e13d947ccf9c.jpg?v=1761638105"},{"product_id":"bloodhound-cheat-sheet-v1","title":"BloodHound Cheat Sheet | V1","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eBloodHound Cheat Sheets is a practical field guide for penetration testers, red teamers, and security engineers who want to master Active Directory and Azure attack path analysis.\u003c\/p\u003e\n\u003cp\u003eThis book condenses BloodHound’s most powerful features into actionable notes, queries, and step-by-step usage examples. Whether you’re testing an enterprise network or defending one, you’ll learn how to enumerate, visualize, and shut down attack paths before adversaries can exploit them.\u003c\/p\u003e\n\u003cp\u003eWith coverage of SharpHound, AzureHound, exploitable permissions, ACL abuse, and built-in queries, this cheat sheet takes you from installation to advanced privilege escalation paths , all in a concise, easy-to-reference format.\u003c\/p\u003e\n\u003cp\u003ePerfect for both red teams who want to move stealthily and blue teams who need to detect and remediate misconfigurations.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eInstallation\u003c\/li\u003e\n\u003cli\u003eExploring the BloodHound Interface\u003c\/li\u003e\n\u003cli\u003eData Collection\u003c\/li\u003e\n\u003cli\u003eAbusable Permissions using BloodHound\u003c\/li\u003e\n\u003cli\u003eData Interpretation in BloodHound\u003c\/li\u003e\n\u003cli\u003eRunning Queries in BloodHound AD\u003c\/li\u003e\n\u003cli\u003eIdentifying Local Administrators\u003c\/li\u003e\n\u003cli\u003eIdentifying Active Sessions\u003c\/li\u003e\n\u003cli\u003eViewing ACLs\u003c\/li\u003e\n\u003cli\u003eUnconstrained Delegation\u003c\/li\u003e\n\u003cli\u003eShortest Path to Domain Admins\u003c\/li\u003e\n\u003cli\u003eAttack Paths\u003c\/li\u003e\n\u003cli\u003eExploiting ACEs and Permission Delegations\u003c\/li\u003e\n\u003cli\u003eAuditing ACLs\u003c\/li\u003e\n\u003cli\u003eExploiting Azure AD with BloodHound\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWhat’s Inside\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eStep-by-step installation guides for BloodHound and AzureHound.\u003c\/li\u003e\n\u003cli\u003eCollection techniques with SharpHound (EXE, PS1, AzureHound) and OpSec considerations.\u003c\/li\u003e\n\u003cli\u003eExplained queries to identify local admins, active sessions, dangerous ACLs, and unconstrained delegation.\u003c\/li\u003e\n\u003cli\u003eReal-world attack paths like ForceChangePassword, AddMember, and WriteDACL, illustrated with escalation chains.\u003c\/li\u003e\n\u003cli\u003eDeep dives into ACL abuse, including misconfigured ACEs, WriteOwner, WriteDACL, and AddMembers exploitation.\u003c\/li\u003e\n\u003cli\u003eAzure tenant analysis with refresh token authentication, JSON uploads, and Global Admin role auditing.\u003c\/li\u003e\n\u003cli\u003ePrivilege escalation examples showing how attackers can move from a regular user to Global Admin, and extend control over subscriptions.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e👉 This book is designed as a quick reference and study companion, making complex BloodHound concepts accessible and practical for security testing and defense.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003ePage Count\u003c\/u\u003e\u003c\/b\u003e: 38\u003c\/p\u003e\n\u003cp\u003eFormat : PDF\u003c\/p\u003e\n\u003cp\u003eBy Purchasing This Product, You Are Agreeing To The Terms of Service Below\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/motasem-notes.net\/tos\" rel=\"noopener noreferrer nofollow\" target=\"_blank\"\u003ehttps:\/\/motasem-notes.net\/tos\u003c\/a\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv id=\"paymentContainer\" class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\" class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/447985\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"159\" height=\"159\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51228569010459,"sku":null,"price":6.5,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/coverjpg_69d5e3bd-4e9f-4206-b655-d18b2df41cde.jpg?v=1761638184"},{"product_id":"hashing-cheat-sheets-v1","title":"Hashing Cheat Sheets | V1","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eHashing Cheat Sheets is your quick-access guide to mastering cryptographic hash functions and their practical applications in modern cybersecurity. Designed for students, ethical hackers, penetration testers, and developers, this book distills complex hashing concepts into concise, actionable notes that you can reference anytime.\u003c\/p\u003e\n\u003cp\u003eFrom the fundamentals of MD5, SHA, and BLAKE2, to advanced topics like collision resistance, length extension attacks, and modern password hashing algorithms (Argon2, scrypt, bcrypt, PBKDF2), you’ll learn exactly how these mechanisms work, when to use them, and how to configure them for maximum security.\u003c\/p\u003e\n\u003cp\u003ePacked with command-line examples, configuration best practices, and attack\/defense scenarios, this cheat sheet is an indispensable tool whether you’re preparing for certifications, building secure applications, or conducting security audits.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eUse this guide to:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eLaunch effective reflected, stored, and DOM-based XSS attacks\u003c\/li\u003e\n\u003cli\u003eBypass WAF filters with polyglots and HTML5 tricks\u003c\/li\u003e\n\u003cli\u003eSteal cookies, log keystrokes, inject persistent scripts\u003c\/li\u003e\n\u003cli\u003eTest XSS with tools like XSStrike, XSSHunter, or crafted payloads\u003c\/li\u003e\n\u003cli\u003eCraft powerful phishing payloads and test browser behaviors\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduction to Hashing\u003c\/li\u003e\n\u003cli\u003eCommon Hashing Functions\u003c\/li\u003e\n\u003cli\u003eHMAC (Hash-based Message Authentication Code)\u003c\/li\u003e\n\u003cli\u003eBLAKE2 \u0026amp; BLAKE2b\u003c\/li\u003e\n\u003cli\u003eHash Collisions \u0026amp; Collision Resistance\u003c\/li\u003e\n\u003cli\u003eHash Length Extension Attacks\u003c\/li\u003e\n\u003cli\u003eModern Password Hashing Algorithms\u003c\/li\u003e\n\u003cli\u003eSummary Tables \u0026amp; Quick Reference\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWhat’s Inside\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eClear Explanations : Understand the purpose, design, and limitations of each hashing algorithm.\u003c\/li\u003e\n\u003cli\u003eReal-World Examples : Practical CLI commands for generating and verifying hashes.\u003c\/li\u003e\n\u003cli\u003eSecurity Insights : Learn how attackers exploit weaknesses like collisions and length extension attacks.\u003c\/li\u003e\n\u003cli\u003eConfiguration Best Practices : Secure parameter choices for modern password hashing algorithms.\u003c\/li\u003e\n\u003cli\u003eQuick Reference Tables : Compare algorithms by speed, security level, compliance readiness, and resource usage.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eWhether you’re studying for a certification, improving application security, or auditing systems, this book gives you the essential hashing knowledge in a format you can use instantly.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003ePage Count\u003c\/u\u003e\u003c\/b\u003e: 14\u003c\/p\u003e\n\u003cp\u003eFormat : PDF\u003c\/p\u003e\n\u003cp\u003eBy Purchasing This Product, You Are Agreeing To The Terms of Service Below\u003c\/p\u003e\n\u003cp\u003e\u003ca rel=\"noopener noreferrer nofollow\" href=\"https:\/\/motasem-notes.net\/tos\" target=\"_blank\"\u003ehttps:\/\/motasem-notes.net\/tos\u003c\/a\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\" id=\"paymentContainer\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\" href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/446370\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"159\" width=\"159\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51228572451099,"sku":null,"price":4.5,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Cover2_393fc2ce-57e1-4d85-95ab-9e2842bcc634.jpg?v=1761638300"},{"product_id":"suricata-ids-study-notes","title":"Suricata IDS Study Notes","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eThis in-depth guide is your all-in-one resource for study notes mastering Suricata, the open-source, high-performance network security engine. Designed for cybersecurity students, SOC analysts, penetration testers, and network defenders, this book combines theory with practical hands-on steps to help you deploy, configure, and fine-tune Suricata for Intrusion Detection (IDS), Intrusion Prevention (IPS), and Network Security Monitoring (NSM).\u003c\/p\u003e\n\u003cp\u003eInside, you’ll learn how to install Suricata on various systems, configure rules and signatures, detect and respond to advanced network threats, and integrate with powerful SIEM platforms such as Wazuh, ELK Stack, Splunk, and MikroTik routers. The guide includes detection rules for popular CVEs, tuning methods to reduce false positives, and operational tips for real-world SOC environments.\u003c\/p\u003e\n\u003cp\u003eWhether you are setting up Suricata for the first time or enhancing an enterprise-level deployment, this book provides step-by-step workflows, ready-to-use detection signatures, and integration blueprints to help you monitor, detect, and defend your networks effectively.\u003c\/p\u003e\n\u003cp\u003e\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003e1. Introduction\u003c\/li\u003e\n\u003cli\u003e2. Installation \u0026amp; Setup\u003c\/li\u003e\n\u003cli\u003e3. Configuration\u003c\/li\u003e\n\u003cli\u003e4. Understanding Suricata Rules \u0026amp; Signatures\u003c\/li\u003e\n\u003cli\u003e5. Configuring Suricata as an IPS\u003c\/li\u003e\n\u003cli\u003e6. SOC Workflow Recommendations\u003c\/li\u003e\n\u003cli\u003e7. Network-Based Attack Detection\u003c\/li\u003e\n\u003cli\u003e8. Web-Based Attack Detection\u003c\/li\u003e\n\u003cli\u003e9. DDoS \u0026amp; Exploitation Detection\u003c\/li\u003e\n\u003cli\u003e10. Data Exfiltration \u0026amp; Backdoor Detection\u003c\/li\u003e\n\u003cli\u003e11. SIEM \u0026amp; Firewall Integration\u003c\/li\u003e\n\u003cli\u003e12. Suricata Rules for Popular Attacks \u0026amp; CVEs\u003c\/li\u003e\n\u003cli\u003eSQL Injection\u003c\/li\u003e\n\u003cli\u003eXSS\u003c\/li\u003e\n\u003cli\u003eCommand Injection\u003c\/li\u003e\n\u003cli\u003eFile Inclusion \u0026amp; Path Traversal\u003c\/li\u003e\n\u003cli\u003eSuspicious Upload Detection\u003c\/li\u003e\n\u003cli\u003eLog4Shell (CVE-2021-44228)\u003c\/li\u003e\n\u003cli\u003eShellshock (CVE-2014-6271)\u003c\/li\u003e\n\u003cli\u003eSpring4Shell (CVE-2022-22965)\u003c\/li\u003e\n\u003cli\u003eConfluence OGNL RCE (CVE-2022-26134)\u003c\/li\u003e\n\u003cli\u003eExchange ProxyShell (CVE-2021-34473)\u003c\/li\u003e\n\u003cli\u003eHeartbleed (CVE-2014-0160)\u003c\/li\u003e\n\u003cli\u003eEternalBlue (CVE-2017-0144)\u003c\/li\u003e\n\u003cli\u003e13. Advanced Threat \u0026amp; Malware Detection\u003c\/li\u003e\n\u003cli\u003eSuspicious TLS SNI \u0026amp; DGA Detection\u003c\/li\u003e\n\u003cli\u003e14. Tuning, Testing \u0026amp; Operational Tips\u003c\/li\u003e\n\u003cli\u003eReducing False Positives\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eQuick Test Ideas\u003c\/u\u003e\u003c\/b\u003e\u003cb\u003e\u003cu\u003e\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eCoverage Mapping \u0026amp; Rule Validation\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003ePage Count: 86\u003c\/p\u003e\n\u003cp\u003eFormat : PDF\u003c\/p\u003e\n\u003cp\u003eBy Purchasing This Product, You Are Agreeing To The Terms of Service Below\u003c\/p\u003e\n\u003cp\u003e\u003ca rel=\"noopener noreferrer nofollow\" href=\"https:\/\/motasem-notes.net\/tos\" target=\"_blank\"\u003ehttps:\/\/motasem-notes.net\/tos\u003c\/a\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv id=\"paymentContainer\" class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\" class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/445770\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"159\" height=\"159\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51228577464603,"sku":null,"price":8.9,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Coverpng2.jpg?v=1761638438"},{"product_id":"linux-hacking-notes-cheat-sheets-v1","title":"Linux Hacking Notes \u0026 Cheat Sheets | V1","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eLinux Hacking Notes \u0026amp; Cheat Sheets is your ultimate field guide to privilege escalation and post-exploitation in Linux environments. Whether you're studying for OSCP, preparing for red teaming engagements, or simply want to master Linux internals from a hacker’s perspective, this compact resource breaks down the most vital commands, techniques, and real-world attack paths.\u003c\/p\u003e\n\u003cp\u003eCovering everything from manual privilege escalation, SUID exploitation, NFS abuse, to kernel module backdoors, the book provides a blend of practical command snippets, methodology explanations, and automation tools to make you faster and more efficient in offensive operations.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003ePerfect for:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eRed Teamers\u003c\/li\u003e\n\u003cli\u003ePenetration Testers\u003c\/li\u003e\n\u003cli\u003eEthical Hackers\u003c\/li\u003e\n\u003cli\u003eCTF Players\u003c\/li\u003e\n\u003cli\u003eCybersecurity Students\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eLinux Basics \u0026amp; Enumeration\u003c\/li\u003e\n\u003cli\u003ePrivilege Escalation Fundamentals\u003c\/li\u003e\n\u003cli\u003eManual Privilege Escalation Techniques\u003c\/li\u003e\n\u003cli\u003eSUID, Capabilities \u0026amp; Misconfigured Binaries\u003c\/li\u003e\n\u003cli\u003eShared Object Injection \u0026amp; Dynamic Linking Attacks\u003c\/li\u003e\n\u003cli\u003eScheduled Tasks \u0026amp; Cron Job Exploits\u003c\/li\u003e\n\u003cli\u003eExploitation via Services: NFS, Apache, Logstash, etc.\u003c\/li\u003e\n\u003cli\u003eThird-Party Tools \u0026amp; Package Manager Abuses\u003c\/li\u003e\n\u003cli\u003eContainer Escape: Docker, LXC\/LXD\u003c\/li\u003e\n\u003cli\u003eAdvanced Local Enumeration Tools\u003c\/li\u003e\n\u003cli\u003ePost-Exploitation \u0026amp; Persistence\u003c\/li\u003e\n\u003cli\u003eLateral Movement \u0026amp; Network Pivoting\u003c\/li\u003e\n\u003cli\u003eData Exfiltration Techniques\u003c\/li\u003e\n\u003cli\u003eClearing Tracks \u0026amp; Anti-Forensics\u003c\/li\u003e\n\u003cli\u003eKernel Backdoors\u003c\/li\u003e\n\u003cli\u003eAppendix: C Code for Escalation\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003ePage Count: 82\u003c\/p\u003e\n\u003cp\u003eFormat : PDF\u003c\/p\u003e\n\u003cp\u003eBy Purchasing This Product, You Are Agreeing To The Terms of Service Below\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/motasem-notes.net\/tos\" rel=\"noopener noreferrer nofollow\" target=\"_blank\"\u003ehttps:\/\/motasem-notes.net\/tos\u003c\/a\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv id=\"paymentContainer\" class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\" class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/443261\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"159\" height=\"159\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51228589162779,"sku":null,"price":15.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Cover_81c0b7f4-512f-4157-8a07-f73125403671.png?v=1761638644"},{"product_id":"xss-cheat-sheets-v1","title":"XSS Cheat Sheets | V1","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eXSS: Cross-Site Scripting Cheat Sheets (V1) is a tactical and practical guide for ethical hackers, bug bounty hunters, and cybersecurity learners. It contains 12+ concise cheat sheets covering every essential angle of Cross-Site Scripting attacks—from classic payloads to DOM-based XSS, filter bypasses, blind XSS, and advanced techniques using modern tools like XSStrike.\u003c\/p\u003e\n\u003cp\u003eWhether you're studying for OSCP, preparing for a CTF, or testing web applications professionally, this book distills payloads, evasion tactics, tools, and real-world usage into bite-sized, actionable references.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eUse this guide to:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eLaunch effective reflected, stored, and DOM-based XSS attacks\u003c\/li\u003e\n\u003cli\u003eBypass WAF filters with polyglots and HTML5 tricks\u003c\/li\u003e\n\u003cli\u003eSteal cookies, log keystrokes, inject persistent scripts\u003c\/li\u003e\n\u003cli\u003eTest XSS with tools like XSStrike, XSSHunter, or crafted payloads\u003c\/li\u003e\n\u003cli\u003eCraft powerful phishing payloads and test browser behaviors\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduction to XSS \u0026amp; Attack Purposes\u003c\/li\u003e\n\u003cli\u003eBasic XSS Detection \u0026amp; Test Payloads\u003c\/li\u003e\n\u003cli\u003eReflected XSS Attacks\u003c\/li\u003e\n\u003cli\u003eStored XSS Attacks\u003c\/li\u003e\n\u003cli\u003eDOM-Based XSS\u003c\/li\u003e\n\u003cli\u003eBlind XSS\u003c\/li\u003e\n\u003cli\u003eFilter Bypass Techniques\u003c\/li\u003e\n\u003cli\u003eXSS Polyglots \u0026amp; Obfuscation\u003c\/li\u003e\n\u003cli\u003eAdvanced Payload Encoding (JavaScript\/Python Methods)\u003c\/li\u003e\n\u003cli\u003eReal-World Examples (Cookie Stealing, Keylogging)\u003c\/li\u003e\n\u003cli\u003eXSS Toolkits (XSStrike, XSSHunter, etc.)\u003c\/li\u003e\n\u003cli\u003eXSS Prevention Strategies (CSP, HttpOnly, Validation)\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003ePage Count: 12\u003c\/p\u003e\n\u003cp\u003eFormat : PDF\u003c\/p\u003e\n\u003cp\u003eBy Purchasing This Product, You Are Agreeing To The Terms of Service Below\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/motasem-notes.net\/tos\" rel=\"noopener noreferrer nofollow\" target=\"_blank\"\u003ehttps:\/\/motasem-notes.net\/tos\u003c\/a\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\" id=\"paymentContainer\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\" href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/443604\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"159\" width=\"159\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51228600697115,"sku":null,"price":7.9,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Cover_583b6725-73b6-4e5c-b930-f7f65eef5e40.png?v=1761638720"},{"product_id":"sql-injection-cheat-sheets-v1","title":"SQL Injection Cheat Sheets | V1","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eSQL Injection Cheat Sheets (V1) is a high-impact reference guide for cybersecurity learners, penetration testers, and bug bounty hunters who want to master SQL Injection, from basic exploitation to advanced techniques like second-order attacks, WAF bypass, and database takeover.\u003c\/p\u003e\n\u003cp\u003eWith 25+ focused cheat sheets, this resource delivers payloads, exploitation methodology, tool usage (like SQLmap), and real-world examples. It's a must-have for OSCP preparation, red team operations, or CTFs where speed and precision matter.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003eKey Features:\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eDiscover, exploit, and escalate SQLi vulnerabilities\u003c\/li\u003e\n\u003cli\u003eMaster search field, URL, login form, and blind SQLi\u003c\/li\u003e\n\u003cli\u003eLearn Boolean, Time-Based, and Error-Based SQLi\u003c\/li\u003e\n\u003cli\u003eAdvanced techniques: file writing, OS command execution, cron jobs\u003c\/li\u003e\n\u003cli\u003eBonus: SQLmap automation, tamper scripts, NoSQL Injection \u0026amp; defenses\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduction to SQL Injection\u003c\/li\u003e\n\u003cli\u003eGeneral Injection Methodology\u003c\/li\u003e\n\u003cli\u003eSQLi in Search Fields\u003c\/li\u003e\n\u003cli\u003eSQLi in URL Parameters\u003c\/li\u003e\n\u003cli\u003eBoolean-Based (Blind) SQLi\u003c\/li\u003e\n\u003cli\u003eTime-Based (Blind) SQLi\u003c\/li\u003e\n\u003cli\u003eSQLi in Login Forms\u003c\/li\u003e\n\u003cli\u003eSecond Order SQL Injection\u003c\/li\u003e\n\u003cli\u003eWriting Files to Disk with SQLi\u003c\/li\u003e\n\u003cli\u003eStacked Queries \u0026amp; Reverse Shells\u003c\/li\u003e\n\u003cli\u003eSQLi Filter Bypass (WAF Evasion)\u003c\/li\u003e\n\u003cli\u003eCommon SQL Syntax \u0026amp; Injection Summary\u003c\/li\u003e\n\u003cli\u003eSQL Injection with SQLmap\u003c\/li\u003e\n\u003cli\u003eSQLmap Features: File Write, Shells, SSH Keys\u003c\/li\u003e\n\u003cli\u003eSQLmap with Tamper Scripts\u003c\/li\u003e\n\u003cli\u003eSQLmap for Blind SQL Injection\u003c\/li\u003e\n\u003cli\u003eSQLi to Server Takeover\u003c\/li\u003e\n\u003cli\u003eMSSQL Exploitation (xp_cmdshell, file upload)\u003c\/li\u003e\n\u003cli\u003eMySQL Exploitation (LOAD_FILE, OUTFILE)\u003c\/li\u003e\n\u003cli\u003eSQL Injection Prevention Tips\u003c\/li\u003e\n\u003cli\u003eNoSQL Injection Overview\u003c\/li\u003e\n\u003cli\u003eSyntax Injection vs. Operator Injection\u003c\/li\u003e\n\u003cli\u003eNoSQL Login Bypass \u0026amp; User Enumeration\u003c\/li\u003e\n\u003cli\u003eOperator Injection to Extract Passwords\u003c\/li\u003e\n\u003cli\u003eRegex-Based Password Guessing\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003ePage Count: 25\u003c\/p\u003e\n\u003cp\u003eFormat : PDF\u003c\/p\u003e\n\u003cp\u003eBy Purchasing This Product, You Are Agreeing To The Terms of Service Below\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/motasem-notes.net\/tos\" rel=\"noopener noreferrer nofollow\" target=\"_blank\"\u003ehttps:\/\/motasem-notes.net\/tos\u003c\/a\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\" id=\"paymentContainer\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\" href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/443618\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"159\" width=\"159\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51228619276571,"sku":null,"price":7.9,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Cover_e1df6e7e-4aae-43a0-9614-0fab76408b1f.png?v=1761638839"},{"product_id":"soc-playbooks-for-soc-analysts","title":"SOC Playbooks For SOC Analysts","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eSOC Playbooks is a tactical field manual for security operations professionals who live in the trenches of cyber defense. Instead of rigid checklists or compliance-driven documentation, this book offers a dynamic framework for real-world decision-making under pressure.\u003c\/p\u003e\n\u003cp\u003eEach playbook in this 244-page collection walks through the core phases of incident response , from detection and triage to containment, eradication, and recovery , across dozens of realistic attack scenarios such as phishing, ransomware, data breaches, and unauthorized access.\u003c\/p\u003e\n\u003cp\u003eThe writing blends technical precision with battlefield clarity. It’s not just about what buttons to click , it’s about how to think like a senior analyst, anticipate attacker behavior, and lead effective containment actions when every second counts.\u003c\/p\u003e\n\u003cp\u003eThis is not an academic guide; it’s a mission-ready playbook collection, built from the lessons of real incident response.\u003c\/p\u003e\n\u003cp\u003e\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho This Book Is For\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eSOC Analysts \u0026amp; Incident Responders : who want to evolve from alert triage to confident threat hunting and crisis management.\u003c\/li\u003e\n\u003cli\u003eBlue Teamers \u0026amp; Threat Hunters : seeking repeatable yet flexible frameworks for handling complex attacks.\u003c\/li\u003e\n\u003cli\u003eSecurity Engineers \u0026amp; Detection Specialists : who build SIEM use cases or EDR playbooks.\u003c\/li\u003e\n\u003cli\u003eCISOs, SOC Managers \u0026amp; Team Leads : who need structured escalation and response procedures for operational resilience.\u003c\/li\u003e\n\u003cli\u003eCybersecurity Students \u0026amp; Researchers : who want to understand how professional responders think, act, and document investigations.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eTable of Contents\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eIntroduction\u003c\/p\u003e\n\u003cp\u003eThe Chaos of the Modern SOC\u003c\/p\u003e\n\u003cp\u003eWhat This Book Will Do for You\u003c\/p\u003e\n\u003cp\u003eCritical Incidents\u003c\/p\u003e\n\u003cp\u003eActivate Crisis Management Structure\u003c\/p\u003e\n\u003cp\u003eEstablish 24\/7 Operational Rhythm\u003c\/p\u003e\n\u003cp\u003eManage Operational Logistics\u003c\/p\u003e\n\u003cp\u003eCommunication and Reporting Plan\u003c\/p\u003e\n\u003cp\u003eActive Scanning\u003c\/p\u003e\n\u003cp\u003eScope and Objectives\u003c\/p\u003e\n\u003cp\u003eDetection, Analysis \u0026amp; Containment\u003c\/p\u003e\n\u003cp\u003eAccount Compromise\u003c\/p\u003e\n\u003cp\u003ePreparation\u003c\/p\u003e\n\u003cp\u003eDetection \u0026amp; Triage\u003c\/p\u003e\n\u003cp\u003eEradication and Recovery\u003c\/p\u003e\n\u003cp\u003eData Loss \/ Breach Response\u003c\/p\u003e\n\u003cp\u003eMalware Response\u003c\/p\u003e\n\u003cp\u003ePhishing Response\u003c\/p\u003e\n\u003cp\u003eRansomware \u0026amp; Extortion\u003c\/p\u003e\n\u003cp\u003eUnauthorized VPN\/VDI Access\u003c\/p\u003e\n\u003cp\u003eNetwork Sniffing \u0026amp; Credential Theft\u003c\/p\u003e\n\u003cp\u003eInsider Threat and USB Exfiltration\u003c\/p\u003e\n\u003cp\u003eWeb Session Cookie Theft (T1539)\u003c\/p\u003e\n\u003cp\u003eContainer and Cloud Compromise Response\u003c\/p\u003e\n\u003cp\u003eWebsite Defacement \u0026amp; Data Breach Notification\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eWhy It’s Useful\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eDecision-Oriented, Not Checklist-Oriented: Built for dynamic SOC environments where judgment matters more than procedure.\u003c\/li\u003e\n\u003cli\u003eBattle-Tested: Written from real-world incidents, it guides analysts through chaos with clarity and structure.\u003c\/li\u003e\n\u003cli\u003eMITRE ATT\u0026amp;CK-Aligned: Uses consistent terminology and attack mapping that integrates easily into SIEM\/SOAR workflows.\u003c\/li\u003e\n\u003cli\u003eScalable: Useful for solo analysts in small teams and enterprise-grade SOCs alike.\u003c\/li\u003e\n\u003cli\u003eBridges Skill Gaps: Transforms junior responders into confident investigators capable of leading incident response phases.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eIn short : it’s the book you want open when the next major alert hits.\u003c\/p\u003e\n\u003cp\u003eFormat: PDF\u003c\/p\u003e\n\u003cp\u003ePages: 245\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\" id=\"paymentContainer\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\" href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/443618\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"159\" width=\"159\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51291284504859,"sku":null,"price":10.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/cover2_34a14904-cfc4-4191-ae89-42a6b82b929d.jpg?v=1762539489"},{"product_id":"dockers-study-notes-basics-hacking-and-security","title":"Dockers Study Notes: Basics, Hacking and Security","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eA complete, hands-on guide designed for cybersecurity professionals, penetration testers, DevOps engineers, and anyone responsible for securing containerized environments.Gain elite-level mastery over Docker internals, container misconfigurations, exploitation vectors, escape techniques, hardening strategies, and real-world attack simulation , all distilled into a practical, field-tested guide.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eDocker Core Architecture \u0026amp; internals (containerd, runc, shims)\u003c\/p\u003e\n\u003cp\u003eDockers Security \u0026amp; Pentesting\u003c\/p\u003e\n\u003cp\u003eDocker Registry exploitation \u0026amp; image manipulation attacks\u003c\/p\u003e\n\u003cp\u003eDocker privileges, capabilities, and breakouts via namespaces\u003c\/p\u003e\n\u003cp\u003eEscape techniques via:\u003c\/p\u003e\n\u003cp\u003eAppArmor, Seccomp, SELinux container hardening in depth\u003c\/p\u003e\n\u003cp\u003eDocker Forensics: static \u0026amp; dynamic investigations\u003c\/p\u003e\n\u003cp\u003eCloud container exploitation (AWS ECR, build context abuse)\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho Is It For\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003ePenetration testers\u003c\/li\u003e\n\u003cli\u003eRed Team operators\u003c\/li\u003e\n\u003cli\u003eBlue Team \/ SOC analysts\u003c\/li\u003e\n\u003cli\u003eDevSecOps engineers\u003c\/li\u003e\n\u003cli\u003eCloud Security engineers\u003c\/li\u003e\n\u003cli\u003eCybersecurity students aiming for practical mastery\u003c\/li\u003e\n\u003cli\u003eAnyone working with containers in production\u003c\/li\u003e\n\u003cli\u003eIf your role touches containers, this book gives you a real competitive advantage.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003ePage Count: 103\u003c\/p\u003e\n\u003cp\u003eFormat: PDF\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWhat This Book Helps You Become\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThis isn’t a beginner’s Docker guide. This is a weaponized learning manual for professionals who want to:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eDetect \u0026amp; exploit Docker misconfigurations\u003c\/li\u003e\n\u003cli\u003ePerform container escape attacks\u003c\/li\u003e\n\u003cli\u003eAnalyze container images for secrets\u003c\/li\u003e\n\u003cli\u003eReverse engineer Docker layers\u003c\/li\u003e\n\u003cli\u003eAudit container runtimes (runc, containerd, Podman)\u003c\/li\u003e\n\u003cli\u003eBreak out of privileged containers\u003c\/li\u003e\n\u003cli\u003eAbuse Docker API misconfigurations\u003c\/li\u003e\n\u003cli\u003eConduct cloud-based container exploitation\u003c\/li\u003e\n\u003cli\u003eApply advanced hardening, AppArmor\/SELinux profiles\u003c\/li\u003e\n\u003cli\u003ePerform real-world Docker threat hunting and forensics\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eEvery topic is explained with practical methodology, commands, PoC exploitation steps, and screenshots . designed for efficient learning and operational use.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\" id=\"paymentContainer\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\" href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/443618\" target=\"_blank\" rel=\"noopener\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"159\" width=\"159\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51342451573019,"sku":null,"price":13.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/cover3.jpg?v=1763449007"},{"product_id":"the-soc-analyst-job-interview-templates","title":"The SOC Analyst Job Interview Templates","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eBreaking into cybersecurity is already challenging, but landing a SOC Analyst role is an entirely different battle. Companies aren’t just hiring people who know tools, they’re hiring people who can stay calm under pressure, think like an attacker, break down suspicious activity, and respond with the structured logic of a real incident responder.\u003c\/p\u003e\n\u003cp\u003eThis playbook gives you exactly that edge.\u003c\/p\u003e\n\u003cp\u003eIt walks you through real investigation templates, ready-to-use interview answers, breakdown models, and advanced attack scenarios that mirror the questions hiring managers ask during SOC, EDR, DFIR, and Incident Response interviews.\u003c\/p\u003e\n\u003cp\u003eInstead of memorizing theory, you’ll learn how to speak and think in the language recruiters expect: MITRE mapping, containment-first mindset, parent\/child process validation, and deep technical reasoning.\u003c\/p\u003e\n\u003cp\u003eYou’ll get real-world scenarios, decoded attack chains, structured responses, remediation logic, and a complete interview strategy that shows you how senior analysts reason during incidents.\u003c\/p\u003e\n\u003cp\u003eIf you're preparing for a SOC job interview, or leveling up as an analyst, this guide becomes your personal blueprint.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduction\u003c\/li\u003e\n\u003cli\u003eSOC\/EDR Interview Answers Templates and Scenarios\u003c\/li\u003e\n\u003cli\u003eSOC\/DFIR\/IR Interview Answers Templates and Scenarios\u003c\/li\u003e\n\u003cli\u003eSOC\/DFIR Example Answers\u003c\/li\u003e\n\u003cli\u003eAdvanced Real-World Scenarios\u003c\/li\u003e\n\u003cli\u003eLive Interview-Style Questions With Perfect Answers\u003c\/li\u003e\n\u003cli\u003e30-Question SOC Analyst Interview Pack\u003c\/li\u003e\n\u003cli\u003eSOC Interview Strategy Cheat Sheet\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho Is It For\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e• SOC Analyst Candidates (Level 1–3)\u003c\/p\u003e\n\u003cp\u003eAnyone preparing for SOC interviews who wants ready-made templates, real-world scenarios, and structured answers that hiring managers immediately recognize as senior-level thinking.\u003c\/p\u003e\n\u003cp\u003e• Cybersecurity Beginners\u003c\/p\u003e\n\u003cp\u003eIf you know the basics but struggle to articulate your thoughts in interviews, this book bridges that gap with practical, repeatable frameworks.\u003c\/p\u003e\n\u003cp\u003e• DFIR, Blue Team \u0026amp; EDR Professionals\u003c\/p\u003e\n\u003cp\u003eAnalysts who want to sharpen triage speed, improve incident investigation workflows, and adopt proven IR logic.\u003c\/p\u003e\n\u003cp\u003e• Career Changers Entering Cybersecurity\u003c\/p\u003e\n\u003cp\u003eIf you're transitioning into security and need strong foundations, this book shows you exactly how to think like an analyst.\u003c\/p\u003e\n\u003cp\u003e• Anyone Building an IR \/ SOC Mindset\u003c\/p\u003e\n\u003cp\u003eSecurity students, certification candidates, and professionals seeking hands-on investigation reasoning and real attacker behavior analysis.\u003c\/p\u003e\n\u003cp\u003ePage Count: 38\u003c\/p\u003e\n\u003cp\u003eFormat: PDF\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eNote: This product is not eligible for a refund.\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\" id=\"paymentContainer\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\" href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/478537\" target=\"_blank\" rel=\"noopener\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"159\" width=\"159\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51342451835163,"sku":null,"price":8.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/cover_2.jpg?v=1763449176"},{"product_id":"the-soc-analyst-job-interview-templates-copy","title":"The Cloud SOC Analyst Manual (AWS-GCP-AZURE)","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eThe Cloud SOC Field Guide: Multi-Cloud Forensics \u0026amp; Threat Hunting is a tactical, boots-on-the-ground manual designed for the modern Security Operations Center analyst. Moving beyond high-level theory, this guide dives deep into the \"how-to\" of investigating security incidents across the three major public cloud providers: AWS, Azure, and Google Cloud Platform (GCP).\u003c\/p\u003e\n\u003cp\u003eStructured as a practical companion for daily operations, the book deconstructs the cloud investigation lifecycle from initial evidence collection and CLI-based forensics to complex log correlation and timeline reconstruction.\u003c\/p\u003e\n\u003cp\u003eIt equips analysts with the specific commands, queries, and frameworks needed to detect and respond to advanced threats like token replay attacks, IAM privilege escalation, and cross-platform lateral movement.\u003c\/p\u003e\n\u003cp\u003eWhether you are parsing JSON logs with jq, hunting for shadow admins in Azure, or analyzing Kubernetes audit logs for container escapes, this guide provides the precise syntax and logic required to close the case.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho Is This Book For?\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThis guide is written for technical security practitioners who need actionable skills to defend cloud environments. It is ideal for:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cb\u003eSOC Analysts (Tier 1-3):\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003eProfessionals transitioning from on-premise network security to cloud environments who need to understand cloud-native telemetry (CloudTrail, Azure Activity Logs, GCP Audit Logs).\u003c\/li\u003e\n\u003cli\u003e\n\u003cb\u003eIncident Responders:\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003eSpecialists who need a rapid reference for gathering volatile cloud evidence, analyzing S3 exfiltration, or performing forensic timeline reconstruction.\u003c\/li\u003e\n\u003cli\u003e\n\u003cb\u003eThreat Hunters:\u003cspan\u003e \u003c\/span\u003e\u003c\/b\u003eSecurity engineers looking for proven detection logic and queries (KQL, Splunk, Athena) to proactively identify advanced persistent threats in multi-cloud infrastructures.\u003c\/li\u003e\n\u003cli\u003e\n\u003cb\u003eSecurity Engineers \u0026amp; Architects\u003c\/b\u003e: Builders who want to understand how attackers exploit misconfigurations in IAM, Infrastructure-as-Code (IaC), and CI\/CD pipelines to design more resilient systems.\u003c\/li\u003e\n\u003cli\u003e\n\u003cb\u003eAspiring Cloud SOC Analysts:\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003ethose looking to learn cloud SOC skills\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cu\u003eA Companion Guide For Cloud Security Certifications\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eThe content in this guide closely aligns with the domains and technical depth required for the following industry certifications:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cb\u003eAWS Certified Security\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e: Specialty (SCS-C02): Deep coverage of IAM, CloudTrail, GuardDuty, and incident response automation.\u003c\/li\u003e\n\u003cli\u003eMicrosoft Certified: Security Operations Analyst Associate (SC-200): Directly supports skills in KQL querying, Microsoft Sentinel, and Defender for Cloud investigations.\u003c\/li\u003e\n\u003cli\u003e\n\u003cb\u003eMicrosoft Certified\u003c\/b\u003e: Azure Security Engineer Associate (AZ-500): Covers Azure network security, identity protection, and platform security.\u003c\/li\u003e\n\u003cli\u003e\n\u003cb\u003eGoogle Cloud Professional Cloud Security Engineer\u003c\/b\u003e: Aligns with sections on GCP IAM, VPC service controls, and Cloud Logging\/Audit analysis.\u003c\/li\u003e\n\u003cli\u003e\n\u003cb\u003eGIAC Cloud Forensics Responder (GCFR) \/ GIAC Cloud Security Automation (GCSA):\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003eThe guide’s focus on CLI forensics, log parsing, and evidence collection workflows supports these advanced SANS certifications.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eUnderstanding Cloud CLIs\u003c\/li\u003e\n\u003cli\u003eCloud SOC Investigation Frameworks\u003c\/li\u003e\n\u003cli\u003eCloud Evidence Collection Workflow\u003c\/li\u003e\n\u003cli\u003eCloud IOC Mapping Framework\u003c\/li\u003e\n\u003cli\u003eMulti-Cloud Timeline Reconstruction\u003c\/li\u003e\n\u003cli\u003eAWS Essentials for SOC Analysts\u003c\/li\u003e\n\u003cli\u003eAzure Essentials for SOC Analysts\u003c\/li\u003e\n\u003cli\u003eGCP Essentials for SOC Analysts\u003c\/li\u003e\n\u003cli\u003eIngesting Cloud Logs to SIEM\u003c\/li\u003e\n\u003cli\u003eCloud Attacks Case Studies\u003c\/li\u003e\n\u003cli\u003eSOC Detection Rules\u003c\/li\u003e\n\u003cli\u003eJQ For Cloud Log Analysis\u003c\/li\u003e\n\u003cli\u003eContainer \u0026amp; Serverless Incident Response\u003c\/li\u003e\n\u003cli\u003eThreat Hunting\u003c\/li\u003e\n\u003cli\u003eInfrastructure-as-Code (IaC) Security and CI\/CD Pipeline IR\u003c\/li\u003e\n\u003cli\u003eBonus Section [1]: Security in Azure\u003c\/li\u003e\n\u003cli\u003eBonus Section [2]: Most Common Cloud SOC Interview Questions\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003ePage Count: 307\u003c\/p\u003e\n\u003cp\u003eFormat: PDF\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eNote: This product is not eligible for a refund.\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\" id=\"paymentContainer\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\" href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca rel=\"noopener\" href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/487959\" target=\"_blank\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"159\" width=\"159\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51476037796123,"sku":null,"price":25.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/coverv2_ade7c7c1-10d9-4456-a157-7f072bfdd994.jpg?v=1765477162"},{"product_id":"the-ultimate-cve-timeline-2010-2026-cheat-sheet","title":"The Ultimate CVE Timeline (2010–2026) Cheat Sheet","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cdiv class=\"w-5\/12 xs:w-full flex items-start justify-start\"\u003e\n\u003cdiv id=\"paymentContainer\" class=\"pl-8 w-full xs:pl-0 border-l border-solid border-greyDD xs:border-0\"\u003e\n\u003cdiv class=\"flex xs:hidden items-center font-cr-regular text-sm gap-[2px] text-dark mt-2\"\u003e\n\u003cdiv\u003e\n\u003cp\u003eThis cheat sheet compresses 16 years of real-world exploitation history into a single, structured reference you can revisit again and again.\u003c\/p\u003e\n\u003cp\u003eIf you believe that understanding the past is the key to securing the future, then this Vulnerabilities Timeline is a mandatory history lesson for every serious cybersecurity professional.\u003c\/p\u003e\n\u003cp\u003eIt is a chronological archive of the most devastating exploits and vulnerabilities that have reshaped the internet, toppled infrastructure, and kept CISOs awake at night for over a decade.\u003c\/p\u003e\n\u003cp\u003eFrom the dawn of cyber warfare with Stuxnet in 2010 to the terrifyingly modern React2Shell CVE of 2026, this guide maps the evolution of the attack surface.\u003c\/p\u003e\n\u003cp\u003eThis timeline is essential for Red Teamers looking for inspiration, Blue Teamers needing to understand the anatomy of a disaster, and anyone obsessed with the \"how\" and \"why\" of the world's most impactful hacks.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eWho This Cheat Sheet Is For\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eThis cheat sheet is not for beginners who just learned what a CVE is.\u003c\/p\u003e\n\u003cp\u003eIt is for:\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eSOC Analysts \u0026amp; Blue Teamers\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eWho want historical context behind alerts, incidents, and “why this vulnerability matters.”\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eRed Teamers \u0026amp; Pentesters\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eWho need a mental map of what actually worked in the wild, not just lab exploits.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eSecurity Engineers \u0026amp; Architects\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eWho design systems and want to avoid repeating the same architectural mistakes of the past 15 years.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eCybersecurity Students \u0026amp; Career Switchers (Serious Ones)\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eWho want to think like practitioners, not memorize buzzwords.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eInterview Candidates\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eWho want to answer “Tell me about a major vulnerability and its impact” with confidence.If you’ve ever thought:“I know the name of this CVE, but I don’t really understand why it was such a big deal.” :)\u003c\/p\u003e\n\u003cp\u003eThis cheat sheet is for you.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eTable of Contents\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eStuxnet-era vulnerabilities\u003c\/li\u003e\n\u003cli\u003eClient-side exploits, PDFs, Java, Windows services\u003c\/li\u003e\n\u003cli\u003eThe rise of wormable flaws and exploit kits\u003c\/li\u003e\n\u003cli\u003eFramework-level failures (Struts, Rails)\u003c\/li\u003e\n\u003cli\u003eCryptographic disasters (Heartbleed, POODLE)\u003c\/li\u003e\n\u003cli\u003eLogic flaws vs memory corruption\u003c\/li\u003e\n\u003cli\u003eDeserialization chains and supply-chain abuse\u003c\/li\u003e\n\u003cli\u003eMobile exploitation (Stagefright, Pegasus)\u003c\/li\u003e\n\u003cli\u003eKernel and infrastructure-level compromises\u003c\/li\u003e\n\u003cli\u003eEternalBlue and global ransomware outbreaks\u003c\/li\u003e\n\u003cli\u003eWiFi, Office, and hardware exploitation\u003c\/li\u003e\n\u003cli\u003eWhen patching became existential\u003c\/li\u003e\n\u003cli\u003eCPU-level vulnerabilities (Meltdown \u0026amp; Spectre)\u003c\/li\u003e\n\u003cli\u003eKubernetes, containers, VPN gateways\u003c\/li\u003e\n\u003cli\u003eThe illusion of isolation\u003c\/li\u003e\n\u003cli\u003eActive Directory destruction (Zerologon)\u003c\/li\u003e\n\u003cli\u003eCertificate trust abuse (CurveBall)\u003c\/li\u003e\n\u003cli\u003eEdge-device compromise\u003c\/li\u003e\n\u003cli\u003eLog4Shell and universal RCE\u003c\/li\u003e\n\u003cli\u003eEmail servers, print spoolers, cloud agents\u003c\/li\u003e\n\u003cli\u003eWhy input became a threat everywhere\u003c\/li\u003e\n\u003cli\u003eDocument exploits, VPN chains, CI\/CD targets\u003c\/li\u003e\n\u003cli\u003eSupply-chain and SaaS-era vulnerabilities\u003c\/li\u003e\n\u003cli\u003ePatterns repeating under new names\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003ePage Count: 70\u003c\/p\u003e\n\u003cp\u003eFormat: PDF\u003c\/p\u003e\n\u003cp\u003eRemember this cheat sheet gets updated regularly due to the nature of the cyber security landscape so when you purchase this cheat sheet, you will get updates consistently delivered to your email.\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eNote: This product is not eligible for a refund.\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003ca href=\"https:\/\/studio.buymeacoffee.com\/extras\/edit\/442900\" class=\"tw-btn-bg relative cursor-pointer flex justify-center items-center font-cr-medium focus:outline-none font-cr-medium text-sm w-full h-12 xs:mb-8 flex items-center justify-center mt-3 text-dark tw-grey-line-border-rounded-full\"\u003e\u003c\/a\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003cp\u003e\u003ca rel=\"noopener\" href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/497760\" target=\"_blank\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"159\" height=\"159\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003c\/p\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51611723596059,"sku":null,"price":12.5,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/Cover2_4016a896-4d6e-42c2-9ec2-938ed07d0bb5.jpg?v=1768148275"},{"product_id":"the-ultimate-pentester-red-team-certification-lab-cheat-sheet-oscp-cpts-osep-oswe","title":"The Ultimate Pentester (Red Team) Certification Lab Cheat Sheet: OSCP\/CPTS\/OSEP\/OSWE","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eThe Pen Testing Lab Tracker and Cheat Sheet (whatever you wanna call it ) is my answer to that chaos. It’s an all-in-one, interactive dashboard pulling together over 300 carefully curated practice machines from HackTheBox, TryHackMe, VulnHub, and custom platforms mapped to the specific skill domains that the OSCP, CPTS, OSWE, and OSEP exams actually test.\u003c\/p\u003e\n\u003cp\u003eEvery machine in this tracker earns its place by being directly relevant to a certification outcome.\u003c\/p\u003e\n\u003cp\u003eIf you’re starting your OSCP journey from scratch, the tracker lets you filter exclusively to beginner-friendly “V1” machines and build a real progression not a random walk through difficulty tiers, but a deliberate curriculum that scales with you. As your skills develop and exam syllabi evolve, you escalate accordingly. The path is already laid out. You just have to walk it.\u003c\/p\u003e\n\u003cp\u003eI built it as a dynamic HTML page rather than a PDF for a deliberate reason , the moment you flatten it into a static document, you lose the search, filtering, and interactivity that make it useful in the first place. Don’t do that.\u003c\/p\u003e\n\u003cp\u003eDownload the ZIP archive directly and open the HTML file in your browser !\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eNote: This product is not eligible for a refund.\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/shop.motasem-notes.net\/products\/the-ultimate-pentester-lab-cheat-sheet-oscp-cpts-osep-oswe\" target=\"_blank\" rel=\"noopener\"\u003e\u003cimg style=\"display: block; margin-left: auto; margin-right: auto;\" height=\"158\" width=\"158\" alt=\"\" src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\"\u003e\u003c\/a\u003e\u003ca rel=\"noopener\" href=\"https:\/\/shop.motasem-notes.net\/products\/offensive-security-web-expert-oswe-study-notes-unofficial-burp-suite-guide\" target=\"_blank\"\u003e\u003c\/a\u003e\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51896905171227,"sku":null,"price":4.5,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/coverredteam.jpg?v=1773669693"},{"product_id":"the-ultimate-blue-team-certification-labs-cheat-sheet-btl1-btl2-htb-cdsa-thm-sal1-comptia-cysa","title":"The Ultimate Blue Team Certification Labs Cheat Sheet: BTL1\/BTL2\/HTB CDSA\/THM SAL1\/CompTIA cysa+","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003eThe Ultimate Blue Team Certification Labs Cheat Sheet (whatever you wanna call it ) is an all-in-one, interactive dashboard pulling together over carefully curated practice labs from HackTheBox, TryHackMe, Blue Team Labs and custom tools and tips mapped to the specific skill domains that the BTL1\/BTL2\/HTB CDSA\/THM SAL1\/CompTIA cysa+ exams actually test.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eInside:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003e- 6\u003cspan\u003e \u003c\/span\u003e\u003cb\u003ecertification tabs\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e(BTL1, HTB CDSA, CySA+, BTL2, CCDL2, THM SAL1) each with categorized cards showing THM rooms, HTB boxes, Blue Team Labs, Cyber Defenders, and study notes. Plus a full 138-tool arsenal tab with search, category filtering, and direct links.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e- Interactive features\u003c\/b\u003e\u003cspan\u003e \u003c\/span\u003e: every single item is toggleable with checkmarks. Progress tracks per category (mini bars), per tab, and globally via the ring + stats bar at the top. Badges flag retired labs, learning paths, and modules. The tools panel has live search and category filter buttons. All progress persists via localStorage.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003eUsage:\u003c\/u\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eI built it as a dynamic HTML page rather than a PDF for a deliberate reason , the moment you flatten it into a static document, you lose the search, filtering, and interactivity that make it useful in the first place. Don’t do that.\u003c\/p\u003e\n\u003cp\u003eDownload the ZIP archive directly and open the HTML file in your browser !\u003c\/p\u003e\n\u003cp\u003e\u003cu\u003e\u003cb\u003eNote: This product is not eligible for a refund.\u003c\/b\u003e\u003c\/u\u003e\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/520305\" target=\"_blank\" rel=\"noopener\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"158\" height=\"158\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003ca href=\"https:\/\/shop.motasem-notes.net\/products\/offensive-security-web-expert-oswe-study-notes-unofficial-burp-suite-guide\" rel=\"noopener\" target=\"_blank\"\u003e\u003c\/a\u003e\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51896936988955,"sku":null,"price":4.5,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/coverblueteam.jpg?v=1773669800"},{"product_id":"the-kali-linux-pentesting-cheat-sheet","title":"The Kali Linux Pentesting Cheat Sheet","description":"\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cdiv class=\"w-7\/12 xs:w-full pr-8\"\u003e\n\u003cdiv class=\"text-dark text-md font-cr-regular leading-6 mb-6 xs:mb-4 break-words colorTheLinks editorContent\"\u003e\n\u003cp\u003e83 pages of practitioner-grade penetration testing commands, annotated workflows, decision tables, and analyst notes built for real engagements, certifications, and CTF competitions.\u003c\/p\u003e\n\u003cp\u003eEvery engagement stalls when you can't recall the right flag, the right tool, or the right sequence. Context-switching to Google breaks flow and in a timed exam, it kills your score.\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003e✓\u003c\/u\u003e\u003c\/b\u003eEvery command has an inline explanation of why each flag matters, not just what it does\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003e✓\u003c\/u\u003e\u003c\/b\u003eAnalyst Notes throughout written from real pentest experience, not documentation rewrites\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003e✓\u003c\/u\u003e\u003c\/b\u003eDecision tables for scan types, hash identification, and enumeration priority\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003e✓\u003c\/u\u003e\u003c\/b\u003ePlatform-aware: Windows targets, Linux targets, and network equipment all covered\u003c\/p\u003e\n\u003cp\u003e\u003cb\u003e\u003cu\u003e✓\u003c\/u\u003e\u003c\/b\u003eOSCP-specific tips for full port scan strategy and time management\u003c\/p\u003e\n\u003cp\u003eFormat: PDF\u003c\/p\u003e\n\u003cp\u003eNote: This product is not eligible for a refund.\u003c\/p\u003e\n\u003cp\u003eIf you have concerns regarding the product, kindly contact consultation@motasem-notes.net and clarify your issue and explain why the eligibility for a refund.\u003c\/p\u003e\n\u003cp\u003e\u003ca href=\"https:\/\/buymeacoffee.com\/notescatalog\/e\/523928\" target=\"_blank\" rel=\"noopener\"\u003e\u003cimg src=\"https:\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/ChatGPT_Image_Jul_25_2025_02_36_17_PM.png?v=1753443393\" alt=\"\" width=\"158\" height=\"158\" style=\"display: block; margin-left: auto; margin-right: auto;\"\u003e\u003c\/a\u003e\u003ca href=\"https:\/\/shop.motasem-notes.net\/products\/offensive-security-web-expert-oswe-study-notes-unofficial-burp-suite-guide\" rel=\"noopener\" target=\"_blank\"\u003e\u003c\/a\u003e\u003c\/p\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e\n\u003c\/div\u003e","brand":"Motasem Hamdan","offers":[{"title":"Default Title","offer_id":51938906538267,"sku":null,"price":8.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0956\/4395\/9579\/files\/cover_8039b76f-55d8-4693-b662-2f89ad962308.jpg?v=1774615247"}],"url":"https:\/\/themastermindnotes.com\/collections\/cyber-security-study-guides.oembed?page=2","provider":"Cyber Security \u0026 Certification Notes | The Masterminds Notes","version":"1.0","type":"link"}