πŸ“HTB Academy Example

🎯 Overview

This folder contains a practical example of the professional notetaking structure from HTB Academy's Documentation & Reporting module. It demonstrates how to organize a real penetration test using Obsidian with the recommended folder structure and note categories.

πŸ“‹ Structure Overview

Inlanefreight Penetration Test/
β”œβ”€β”€ Admin/                    # Administrative documents
β”œβ”€β”€ Deliverables/            # Final reports and presentations
β”œβ”€β”€ Evidence/
β”‚   β”œβ”€β”€ Findings/           # Individual vulnerability evidence
β”‚   β”œβ”€β”€ Scans/
β”‚   β”‚   β”œβ”€β”€ AD Enumeration/ # BloodHound, PowerView data
β”‚   β”‚   β”œβ”€β”€ Service/        # Nmap, service scans
β”‚   β”‚   β”œβ”€β”€ Vuln/          # Vulnerability scanner output
β”‚   β”‚   └── Web/           # Web application testing
β”‚   β”œβ”€β”€ Notes/              # Structured documentation
β”‚   β”œβ”€β”€ OSINT/             # Open source intelligence
β”‚   β”œβ”€β”€ Wireless/          # WiFi testing (if applicable)
β”‚   β”œβ”€β”€ Logging output/    # Tmux logs, tool output
β”‚   └── Misc Files/        # Payloads, scripts, tools
└── Retest/                # Post-remediation testing

πŸ“ Obsidian Integration

Key Features

  • Markdown-based notes for professional documentation

  • Linked references between findings and evidence

  • Local storage for client data security

  • Template consistency across assessments

  • Professional presentation ready

Usage Instructions

  1. Open in Obsidian: Select "Open folder as vault"

  2. Explore structure: Navigate through folders and notes

  3. Review examples: See how findings are documented

  4. Practice workflow: Use as template for real assessments

🎯 Example Content

Sample Assessment: INLANEFREIGHT.LOCAL

  • Domain compromise via Active Directory attacks

  • Complete attack chain from LLMNR poisoning to DCSync

  • Professional findings with evidence and remediation

  • Organized evidence collection and presentation

Learning Objectives

  • Practical notetaking structure implementation

  • Professional documentation standards

  • Evidence organization best practices

  • Client-ready presentation format

πŸ’‘ Key Takeaways

This example demonstrates:

  1. Structured approach to penetration test documentation

  2. Professional organization for complex assessments

  3. Evidence management for comprehensive reporting

  4. Obsidian integration for efficient notetaking

  5. Real-world application of HTB Academy methodology

This practical example shows how professional penetration testing documentation should be organized for maximum efficiency and client value.

PreviousReporting Tips and TricksNextAttacking Enterprise Networks

Last updated