Guide
FEATURED
1.8 MB
Kali Linux Tools Quick Reference
A fast reference for common Kali workflows, because nobody remembers every flag and pretending otherwise is exhausting.
4.8 rating
2,156 extractions
Updated 4/14/2026
The "I know what I am doing" card you keep next to your terminal
This cheat sheet summarizes common tooling patterns for recon, collection, validation, and analysis.
Expect to find
- Scanner basics for mapping services and infrastructure.
- Web and metadata tooling for squeezing clues out of public assets.
- Session management notes for when you accidentally create twelve terminals and emotionally bond with none of them.
- Safety reminders to keep lab work in the lab.
Core command families
Recon
- Use
nmapto identify hosts, services, and version clues. - Use
masscanwhen speed matters and scope is well understood. - Use
theHarvesterand similar tools to collect public domain intelligence.
Web analysis
- Use
whatwebto fingerprint stack indicators. - Use
dirbor equivalent for content discovery. - Use browser dev tools or intercepting proxies when the page is more JavaScript than website.
Traffic and artifact review
- Use
wiresharkwhen you need protocol detail. - Use
tcpdumpwhen you want fast capture without a GUI eating your soul. - Use
strings,binwalk, and hash tools for quick artifact triage.
Operator habits
- Save commands you run.
- Save outputs separately from notes.
- Label what matters while you still remember why it mattered.
- Do not trust your memory after hour three. Your memory is freelancing by then.
Useful philosophy
The right command is rarely the longest command. Start small, confirm assumptions, then escalate carefully. Your future self will appreciate fewer mystery scans and fewer mystery consequences.