RTFD
All the documentation
Misc Commands
Dir/File Search
gobuster dir -u <url> -w <wordlist.txt> -x <file_extensions>DNS/Subdomain Search
gobuster dns -d <domain> -w <wordlist.txt> -i --wildcardVHOST Search
gobuster vhost -u <url> -w <wordlist.txt> -ad somedomain.com -o <output_file.txt>S3 Search
gobuster s3 -w <wordlist.txt>ffuf
ffuf -c -u "http://guardian.htb" -H "HOST: FUZZ.guardian.htb" -w ~/wordlists/seclists/Discovery/DNS/subdomains-top1million-110000.txt -t 100 -fc 301
hydra
hydra -l jose -P passwords.txt lookup.thm http-post-form "/login.php:username=^USER^&password=^PASS^:Wrong" -V
Useful gobuster flags
-e : completes printing the URL from enumerated directories
-n : will print results without the status code
-k : skip SSL verification
-t : assign the number of threads that will be used during enumeration
-r : allows redirection from one HTTP request to another
-p : allows proxy URLs to be used for requests on port 1080. This port can be changed in the URL.
-timeout : allows a timeout parameter to be set
-U username -P password : define a username and password for basic HTTP authentication mechanisms
Checklist - Linux Privilege Escalation
https://book.hacktricks.wiki/en/linux-hardening/linux-privilege-escalation-checklist.html