A
Guide
FEATURED
1.8 MB
Kali Linux Tools Quick Reference
A fast reference for common Kali workflows, because nobody remembers every flag and pretending otherwise is exhausting.
4.8 rating
2,156 extractions
Updated 4/14/2026

The "I know what I am doing" card you keep next to your terminal

This cheat sheet summarizes common tooling patterns for recon, collection, validation, and analysis.

Expect to find

  • Scanner basics for mapping services and infrastructure.
  • Web and metadata tooling for squeezing clues out of public assets.
  • Session management notes for when you accidentally create twelve terminals and emotionally bond with none of them.
  • Safety reminders to keep lab work in the lab.

Core command families

Recon

  • Use nmap to identify hosts, services, and version clues.
  • Use masscan when speed matters and scope is well understood.
  • Use theHarvester and similar tools to collect public domain intelligence.

Web analysis

  • Use whatweb to fingerprint stack indicators.
  • Use dirb or equivalent for content discovery.
  • Use browser dev tools or intercepting proxies when the page is more JavaScript than website.

Traffic and artifact review

  • Use wireshark when you need protocol detail.
  • Use tcpdump when you want fast capture without a GUI eating your soul.
  • Use strings, binwalk, and hash tools for quick artifact triage.

Operator habits

  1. Save commands you run.
  2. Save outputs separately from notes.
  3. Label what matters while you still remember why it mattered.
  4. Do not trust your memory after hour three. Your memory is freelancing by then.

Useful philosophy

The right command is rarely the longest command. Start small, confirm assumptions, then escalate carefully. Your future self will appreciate fewer mystery scans and fewer mystery consequences.