Ultimate Command Cheat Sheets
Your comprehensive resource for command-line tools, cybersecurity utilities, and development frameworks.
1,800+Tool Cheat Sheets
100+In-Depth Guides
100+External Resources
Featured Categories
Section titled “Featured Categories”Cybersecurity
Penetration testing, network security, digital forensics, and security automation tools.
Browse →Development
Programming languages, frameworks, IDEs, and development workflow tools.
Browse →Cloud & DevOps
AWS, Azure, GCP, Kubernetes, Docker, and infrastructure automation tools.
Browse →System Administration
Linux, Windows, networking, monitoring, and system management utilities.
Browse →Latest Cheat Sheets
KubescapeOpen-source Kubernetes security platform for posture management, compliance scanning, vulnerability detection, and misconfiguration remediationBruno CommandsComprehensive Bruno Git-native API client commands and workflows for API testing, development, and team collaboration.Grafana Alloy CommandsComprehensive Grafana Alloy commands and workflows for unified telemetry collection, OpenTelemetry pipelines, and observability.Snyk CommandsComprehensive Snyk security scanning commands and workflows for finding and fixing vulnerabilities in code, dependencies, containers, and IaC.Terra Security CommandsComprehensive Terra Security agentic penetration testing platform commands and workflows for AI-driven security testing.Brutus CommandsComprehensive Brutus multi-protocol credential testing tool commands for penetration testing and security assessments.Caido CommandsComprehensive Caido web security testing proxy commands and workflows for penetration testing and bug bounty hunting.Pompelmi CommandsComprehensive Pompelmi file upload security scanning commands for Node.js application protection.
Latest Blog Posts
Document Parsing for RAG in 2026: Why Ingestion Decides Retrieval QualityEvery RAG system is only as good as the documents it ingested. This guide covers the 2026 document-parsing and chunking stack — Docling, Marker, Unstructured, and chunking toolkits — and why getting ingestion right matters more than your choice of vector database.eBPF Runtime Security in 2026: Falco vs Tetragon vs TraceeUserspace security agents are giving way to eBPF, which watches the kernel itself with under 1% overhead. A deep comparison of the three open-source eBPF runtime security tools — Falco, Tetragon, and Tracee — covering detection, enforcement, forensics, and how to choose.LLM Observability in 2026: Tracing, Evaluation, and the OpenTelemetry ShiftYou cannot improve an LLM app you cannot see. This guide covers the observability stack that ships in 2026 — distributed tracing for agents, LLM-as-judge evaluation, and why OpenTelemetry became the connective standard, with Phoenix, Langfuse, and MLflow as worked examples.Modern Network Diagnostics from the Terminal: Trippy, doggo, and the New CLI ToolkitThe classic network toolkit — ping, traceroute, dig — still works, but a generation of Rust and Go tools makes diagnosing latency, routing, and DNS dramatically faster. A practical guide to the modern terminal network toolkit and the workflows that actually find problems.Behavioral Supply Chain Security in 2026: Catching Malicious Packages Before They RunCVE scanners tell you about yesterday's known bugs; they say nothing about the malicious package published an hour ago. A guide to behavioral supply chain security in 2026 — how tools like Socket, Syft, Grype, and Sigstore fit together to defend the open-source dependency tree.Production RAG in 2026: Hybrid Search, Reranking, and GraphRAGThe naive embed-and-retrieve RAG of 2023 quietly failed in production. This guide covers the architecture that actually ships in 2026 — hybrid search, cross-encoder reranking, GraphRAG, and the evaluation discipline that holds it all together.AI-Powered Offensive Security in 2026: The MCP Tool-Server BoomIn eighteen months the offensive-security world went from a handful of AI experiments to seventy-plus tools, and the Model Context Protocol is the connective tissue. A look at how MCP tool-servers like pentest-ai and HexStrike are reshaping pentesting — and what defenders should take from it.Reinforcement Fine-Tuning for Agents in 2026: GRPO with ART, verl, and OpenRLHFSupervised fine-tuning teaches an agent what good answers look like; reinforcement learning teaches it to get good outcomes. A practical guide to training multi-step LLM agents with GRPO using ART, verl, and OpenRLHF — architectures, reward design, and when to use each.