Skip to main content

Tactical glossary

Operational pentesting dictionary aimed at professional auditing and the OSCP exam. Not the Wikipedia definition: it is the X-ray of each concept under pressure. Each term has its own page — use Cmd/Ctrl + K to jump to any of them instantly.

How to read each term

Active Directory · Kerberos & NTLM

Web · OWASP Top 10

Linux · Privilege Escalation

Reconnaissance

Post-exploitation

  • Mimikatz — Windows post-exploit Swiss Army knife.
  • BloodHound — Active Directory relationship graphs.

WAF Evasion

  • JA3/JA4 Fingerprint — Your machine and the server negotiate the HTTPS connection with a handshake (Client Hello) including supported cipher suites and extensions.
  • Client Hints (sec-ch-ua) — Modern browsers (Chromium) send a sec-ch-ua-* header block describing brand, version, platform.
Last updated: 2026-06-11