Personal notes for the Practical Junior Penetration Tester (PJPT) certification from TCM Security.

Based on the Practical Ethical Hacking course.

• Note Taking - Tools and methodology
• Networking - IP, MAC, TCP/UDP, ports, OSI model, subnetting
• Kali Linux - Commands, navigation, services, scripting
• Python - Basics through sockets and file I/O

• Five Stages of Ethical Hacking

• Information Gathering
  • Passive recon, subdomains, website tech identification, Burp Suite

• Scanning and Enumeration
  • Website enumeration (dirb, ffuf, gobuster, nikto)
• Exploitation Basics
  • SMB/SSH enumeration, vulnerability research, password cracking, reverse shells

• AD Overview - Components, data store, logical structure
• Initial Attack Vectors
  • LLMNR poisoning, SMB relay attacks
• IPv6 Attacks
• Post-Compromise Enumeration
  • PowerView, BloodHound, ldapdomaindump
• Post-Compromise Attacks
  • Pass attacks, token impersonation, Kerberoasting, GPP/cPassword, Mimikatz, Golden Ticket

• Web Application Attacks
  • SQL injection, XSS, command injection, IDOR, file inclusion, XXE

• Post Exploitation
  • File transfers, pivoting, maintaining access, cleanup

• Report Writing
  • Legal documents, scope, report structure

• TCM Security Academy
• PJPT Certification

These are personal study notes. For comprehensive learning, take the official course.