1. Introduction
  5. Part I: Foundations
  6. Welcome to Trapdoor Security
  7. Building Your Lab
  8. The Hacker Mindset
  9. Networking for Hackers
  13. Part II: Reconnaissance
  14. Passive Information Gathering
  15. Active Reconnaissance & Port Scanning
  19. Part III: Service Exploitation
  20. HTTP/HTTPS (80, 443, 8080, 8443)
  21. SSH (22)
  22. FTP (20, 21)
  23. SMB (139, 445)
  24. Database Services
    1. MySQL (3306)
    2. PostgreSQL (5432)
    3. MSSQL (1433)
    4. MongoDB (27017)
    5. Redis (6379)
  25. DNS (53)
  26. Email Services
    1. SMTP (25, 587)
    2. POP3 (110, 995)
    3. IMAP (143, 993)
  27. SNMP (161, 162)
  28. RDP (3389)
  29. NFS (2049)
  30. LDAP (389, 636)
  31. Less Common Services
    1. VNC (5900)
    2. Telnet (23)
    3. TFTP (69)
    4. Rsync (873)
    5. Docker (2375, 2376)
    6. Kubernetes
    7. Jenkins (8080)
    8. Elasticsearch (9200)
  35. Part IV: Post-Exploitation
  36. Linux Privilege Escalation
  37. Windows Privilege Escalation
  38. Lateral Movement & Pivoting
  39. Persistence Mechanisms
  43. Part V: Specialized Topics
  44. Active Directory Deep Dive
  45. Cloud Security
    1. AWS Security
    2. Azure Security
    3. GCP Security
  46. Wireless & Physical Security
  47. Social Engineering
  51. Part VI: Professional Skills
  52. Writing Penetration Test Reports
  53. Your Path Forward
  57. Appendices
  58. Command Reference Cheat Sheet
  59. Tool Installation Guides
  60. Legal Frameworks & Resources
  61. Recommended Reading
  62. Community & Resources
  65. Contributing
  66. About the Author