# CPTS

- [Getting Started](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/getting-started.md)
- [General](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/getting-started/general.md)
- [Tmux](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/getting-started/tmux.md)
- [Vim](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/getting-started/vim.md)
- [Service Scanning](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/getting-started/service-scanning.md)
- [Questões](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/getting-started/service-scanning/questoes.md)
- [Web Enumeration](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/getting-started/web-enumeration.md)
- [Questões](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/getting-started/web-enumeration/questoes.md)
- [Public Exploits](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/getting-started/public-exploits.md)
- [Questões](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/getting-started/public-exploits/questoes.md)
- [Using Shells](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/getting-started/using-shells.md)
- [Privilege Escalation](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/getting-started/privilege-escalation.md)
- [Transferring Files](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/getting-started/transferring-files.md)
- [Network Enumeration with Nmap](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap.md)
- [Host Discovery](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/host-discovery.md)
- [Host and Port Scanning](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/host-and-port-scanning.md)
- [Saving the Results](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/saving-the-results.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/saving-the-results/question.md)
- [Service Enumeration](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/service-enumeration.md)
- [Nmap Scripting Engine](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/nmap-scripting-engine.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/nmap-scripting-engine/question.md)
- [Performance](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/performance.md)
- [Bypass Security Measures](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/bypass-security-measures.md)
- [Firewall and IDS/IPS Evasion](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/bypass-security-measures/firewall-and-ids-ips-evasion.md)
- [Firewall and IDS/IPS Evasion - Easy Lab](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/bypass-security-measures/firewall-and-ids-ips-evasion-easy-lab.md)
- [Firewall and IDS/IPS Evasion - Hard Lab](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/bypass-security-measures/firewall-and-ids-ips-evasion-hard-lab.md)
- [Cheat Sheet - Nmap](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/cheat-sheet-nmap.md)
- [Scanning Options](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/cheat-sheet-nmap/scanning-options.md)
- [Output Options](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/cheat-sheet-nmap/output-options.md)
- [Performance Options](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/network-enumeration-with-nmap/cheat-sheet-nmap/performance-options.md)
- [Footprinting](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting.md)
- [Infrastructure-based Enumeration](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/infrastructure-based-enumeration.md)
- [FTP](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/ftp.md)
- [SMB](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/smb.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/smb/question.md)
- [NFS](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/nfs.md)
- [DNS](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/dns.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/dns/question.md)
- [SMTP](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/smtp.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/smtp/question.md)
- [IMAP / POP3](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/imap-pop3.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/imap-pop3/question.md)
- [SNMP](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/snmp.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/snmp/question.md)
- [MySQL](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/mysql.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/mysql/question.md)
- [MSSQL](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/mssql.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/mssql/question.md)
- [Oracle TNS - 1521](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/oracle-tns-1521.md)
- [IPMI](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/ipmi.md)
- [Linux Remote Management Protocols](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/linux-remote-management-protocols.md)
- [Windows Remote Management Protocols](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/footprinting/windows-remote-management-protocols.md)
- [Attacking Common Services](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/attacking-common-services.md)
- [FTP](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/attacking-common-services/ftp.md)
- [SMB](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/attacking-common-services/smb.md)
- [Questions](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/attacking-common-services/smb/questions.md)
- [SQL Databases](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/attacking-common-services/sql-databases.md)
- [Questions](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/attacking-common-services/sql-databases/questions.md)
- [RDP](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/attacking-common-services/rdp.md)
- [DNS](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/attacking-common-services/dns.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/attacking-common-services/dns/question.md)
- [SMTP](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/attacking-common-services/smtp.md)
- [Questions](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/attacking-common-services/smtp/questions.md)
- [Attacking Common Services - Easy](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/attacking-common-services/attacking-common-services-easy.md)
- [Attacking Common Services - Medium](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/attacking-common-services/attacking-common-services-medium.md)
- [File Transfers](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/file-transfers.md)
- [Windows File Transfer Methods](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/file-transfers/windows-file-transfer-methods.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/file-transfers/windows-file-transfer-methods/question.md)
- [Linux File Transfer Methods](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/file-transfers/linux-file-transfer-methods.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/file-transfers/linux-file-transfer-methods/question.md)
- [Transferring Files with Code](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/file-transfers/transferring-files-with-code.md)
- [Miscellaneous File Transfer Methods](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/file-transfers/miscellaneous-file-transfer-methods.md)
- [Living off The Land](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/file-transfers/living-off-the-land.md)
- [Shells & Payloads](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/shells-and-payloads.md)
- [Bind Shells](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/shells-and-payloads/bind-shells.md)
- [Reverse Shells](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/shells-and-payloads/reverse-shells.md)
- [Automating Payloads & Delivery with Metasploit](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/shells-and-payloads/automating-payloads-and-delivery-with-metasploit.md)
- [Crafting Payloads with MSFvenom](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/shells-and-payloads/crafting-payloads-with-msfvenom.md)
- [Infiltrating Windows](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/shells-and-payloads/infiltrating-windows.md)
- [Spawning Interactive Shells](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/shells-and-payloads/spawning-interactive-shells.md)
- [Web Shells](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/shells-and-payloads/web-shells.md)
- [Using Metasploit Framework](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/using-metasploit-framework.md)
- [MSFconsole Commands](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/using-metasploit-framework/msfconsole-commands.md)
- [Meterpreter Commands](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/using-metasploit-framework/meterpreter-commands.md)
- [Mimikatz](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/using-metasploit-framework/meterpreter-commands/mimikatz.md)
- [Kiwi](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/using-metasploit-framework/meterpreter-commands/kiwi.md)
- [Encoders](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/using-metasploit-framework/encoders.md)
- [Databases](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/using-metasploit-framework/databases.md)
- [Introduction to MSFVenom](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/using-metasploit-framework/introduction-to-msfvenom.md)
- [Firewall and IDS/IPS Evasion](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/using-metasploit-framework/firewall-and-ids-ips-evasion.md)
- [Password Attacks](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks.md)
- [Connecting to Target](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/connecting-to-target.md)
- [Password Mutations & Custom Wordlists](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/password-mutations-and-custom-wordlists.md)
- [Remote Password Attacks](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/remote-password-attacks.md)
- [Questions](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/remote-password-attacks/questions.md)
- [Spraying, Stuffing, and Defaults](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/spraying-stuffing-and-defaults.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/spraying-stuffing-and-defaults/question.md)
- [Attacking SAM, SYSTEM, and SECURITY](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/attacking-sam-system-and-security.md)
- [Attacking LSASS](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/attacking-lsass.md)
- [Attacking Windows Credential Manager](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/attacking-windows-credential-manager.md)
- [Question](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/attacking-windows-credential-manager/question.md)
- [Credential Hunting in Linux](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/credential-hunting-in-linux.md)
- [Credential Hunting in Network Shares](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/credential-hunting-in-network-shares.md)
- [Questions](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/credential-hunting-in-network-shares/questions.md)
- [Pass the Hash (PtH)](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/pass-the-hash-pth.md)
- [Questions](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/pass-the-hash-pth/questions.md)
- [Pass the Ticket (PtT) from Windows](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/pass-the-ticket-ptt-from-windows.md)
- [Questions](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/pass-the-ticket-ptt-from-windows/questions.md)
- [Pass the Ticket (PtT) from Linux](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/password-attacks/pass-the-ticket-ptt-from-linux.md)
- [Pivoting, Tunneling, and Port Forwarding](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding.md)
- [The Networking Behind Pivoting](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/the-networking-behind-pivoting.md)
- [Dynamic Port Forwarding with SSH and SOCKS Tunneling](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/dynamic-port-forwarding-with-ssh-and-socks-tunneling.md)
- [Remote/Reverse Port Forwarding with SSH](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/remote-reverse-port-forwarding-with-ssh.md)
- [Meterpreter Tunneling & Port Forwarding](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/meterpreter-tunneling-and-port-forwarding.md)
- [Socat Redirection with a Reverse Shell](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/socat-redirection-with-a-reverse-shell.md)
- [Socat Redirection with a Bind Shell](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/socat-redirection-with-a-bind-shell.md)
- [SSH Pivoting with Sshuttle](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/ssh-pivoting-with-sshuttle.md)
- [Web Server Pivoting with Rpivot](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/web-server-pivoting-with-rpivot.md)
- [Port Forwarding with Windows Netsh](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/port-forwarding-with-windows-netsh.md)
- [Dnscat2](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/dnscat2.md)
- [Chisel](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/chisel.md)
- [ICMP Tunneling with SOCKS](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/icmp-tunneling-with-socks.md)
- [RDP and SOCKS Tunneling with SocksOverRDP](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/rdp-and-socks-tunneling-with-socksoverrdp.md)
- [Ligolo-ng](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/pivoting-tunneling-and-port-forwarding/ligolo-ng.md)
- [Active Directory Enumeration & Attacks](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks.md)
- [Initial Enumeration of the Domain](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/initial-enumeration-of-the-domain.md)
- [LLMNR/NBT-NS Poisoning - from Linux](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/llmnr-nbt-ns-poisoning-from-linux.md)
- [LLMNR/NBT-NS Poisoning - from Windows](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/llmnr-nbt-ns-poisoning-from-windows.md)
- [Enumerating & Retrieving Password Policies](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/enumerating-and-retrieving-password-policies.md)
- [Password Spraying - Making a Target User List](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/password-spraying-making-a-target-user-list.md)
- [Internal Password Spraying - from Linux](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/internal-password-spraying-from-linux.md)
- [Internal Password Spraying - from Windows](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/internal-password-spraying-from-windows.md)
- [Enumerating Security Controls](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/enumerating-security-controls.md)
- [Credentialed Enumeration - from Linux](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/credentialed-enumeration-from-linux.md)
- [Credentialed Enumeration - from Windows](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/credentialed-enumeration-from-windows.md)
- [PowerView](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/credentialed-enumeration-from-windows/powerview.md)
- [Living Off the Land](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/living-off-the-land.md)
- [Kerberoasting - from Linux](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/kerberoasting-from-linux.md)
- [Kerberoasting - from Windows](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/kerberoasting-from-windows.md)
- [ACL Enumeration](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/acl-enumeration.md)
- [ACL Abuse Tactics](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/acl-abuse-tactics.md)
- [DCSync](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/dcsync.md)
- [Privileged Access](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/active-directory-enumeration-and-attacks/privileged-access.md)
- [Windows Privilege Escalation](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation.md)
- [Situational Awareness](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/situational-awareness.md)
- [Initial Enumeration](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/initial-enumeration.md)
- [Communication with Processes](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/communication-with-processes.md)
- [SeImpersonate and SeAssignPrimaryToken](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/seimpersonate-and-seassignprimarytoken.md)
- [SeeDebugPrivilege](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/seedebugprivilege.md)
- [SeTakeOwnershipPrivilege](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/setakeownershipprivilege.md)
- [Windows Built-in Groups](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/windows-built-in-groups.md)
- [Event Log Readers](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/event-log-readers.md)
- [DnsAdmins](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/dnsadmins.md)
- [Server Operators](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/server-operators.md)
- [User Account Control](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/user-account-control.md)
- [Weak Permissions](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/weak-permissions.md)
- [Vulnerable Services](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/vulnerable-services.md)
- [Credential Hunting](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/credential-hunting.md)
- [Other Files](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/other-files.md)
- [Further Credential Theft](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/further-credential-theft.md)
- [Miscellaneous Techniques](https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts/windows-privilege-escalation/miscellaneous-techniques.md)


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://savitar.gitbook.io/mynotes/certifications-and-notes/red-team/cpts.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.