search

πŸ“HTB Academy Example

hashtag
🎯 Overview

This folder contains a practical example of the professional notetaking structure from HTB Academy's Documentation & Reporting module. It demonstrates how to organize a real penetration test using Obsidian with the recommended folder structure and note categories.

hashtag
πŸ“‹ Structure Overview

Inlanefreight Penetration Test/
β”œβ”€β”€ Admin/                    # Administrative documents
β”œβ”€β”€ Deliverables/            # Final reports and presentations
β”œβ”€β”€ Evidence/
β”‚   β”œβ”€β”€ Findings/           # Individual vulnerability evidence
β”‚   β”œβ”€β”€ Scans/
β”‚   β”‚   β”œβ”€β”€ AD Enumeration/ # BloodHound, PowerView data
β”‚   β”‚   β”œβ”€β”€ Service/        # Nmap, service scans
β”‚   β”‚   β”œβ”€β”€ Vuln/          # Vulnerability scanner output
β”‚   β”‚   └── Web/           # Web application testing
β”‚   β”œβ”€β”€ Notes/              # Structured documentation
β”‚   β”œβ”€β”€ OSINT/             # Open source intelligence
β”‚   β”œβ”€β”€ Wireless/          # WiFi testing (if applicable)
β”‚   β”œβ”€β”€ Logging output/    # Tmux logs, tool output
β”‚   └── Misc Files/        # Payloads, scripts, tools
└── Retest/                # Post-remediation testing

hashtag
πŸ“ Obsidian Integration

hashtag
Key Features

  • Markdown-based notes for professional documentation

  • Linked references between findings and evidence

  • Local storage for client data security

  • Template consistency across assessments

  • Professional presentation ready

hashtag
Usage Instructions

  1. Open in Obsidian: Select "Open folder as vault"

  2. Explore structure: Navigate through folders and notes

  3. Review examples: See how findings are documented

  4. Practice workflow: Use as template for real assessments

hashtag
🎯 Example Content

hashtag
Sample Assessment: INLANEFREIGHT.LOCAL

  • Domain compromise via Active Directory attacks

  • Complete attack chain from LLMNR poisoning to DCSync

  • Professional findings with evidence and remediation

  • Organized evidence collection and presentation

hashtag
Learning Objectives

  • Practical notetaking structure implementation

  • Professional documentation standards

  • Evidence organization best practices

  • Client-ready presentation format

hashtag
πŸ’‘ Key Takeaways

This example demonstrates:

  1. Structured approach to penetration test documentation

  2. Professional organization for complex assessments

  3. Evidence management for comprehensive reporting

  4. Obsidian integration for efficient notetaking

  5. Real-world application of HTB Academy methodology

This practical example shows how professional penetration testing documentation should be organized for maximum efficiency and client value.

PreviousReporting Tips and TricksNextAttacking Enterprise Networks

Last updated