Awesome

<h1 align="center">:skull: Awesome note-taking apps for hackers !</h1> <p align="center"> A collection of awesome note-taking <b>apps, plugins and techiques</b> for pentest report generation, bug-bounty hunting & building a knowledge base <a href="https://twitter.com/intent/tweet?text=A%20collection%20of%20awesome%20note-taking%20apps%2C%20plugins%20and%20techiques%20for%20hackers%20and%20pentesters%20-%20by%20%40nil0x42%0A%23hacking%20%23pentest%20%23awesome%20%23BugBounty&url=https://github.com/nil0x42/awesome-hacker-note-taking"> <img src="https://img.shields.io/twitter/url?label=tweet&logo=twitter&style=social&url=http%3A%2F%2F0" alt="tweet"> </a> </4> <br> <p align="center"> <a href="https://awesome.re/"> <img src="https://awesome.re/badge-flat2.svg"> </a> <a href="https://github.com/nil0x42/awesome-hacker-note-taking"> <img src="https://img.shields.io/github/stars/nil0x42/awesome-hacker-note-taking?style=flat-square&logo=github"> </a> <a href="https://twitter.com/intent/follow?screen_name=nil0x42" target="_blank"> <img src="https://img.shields.io/twitter/follow/nil0x42.svg?style=flat-square&logo=twitter"> </a> </p> <div align="center"> <sub> Created by <a href="https://twitter.com/nil0x42">nil0x42</a> and <a href="https://github.com/nil0x42/awesome-hacker-note-taking/graphs/contributors">contributors</a> </sub> </div> <br>

<h2> <a href="https://github.com/zadam/trilium"> zadam/trilium <img height=16 src="https://badgen.net/github/stars/zadam/trilium?icon=github&style=flat"> </a> </h2> <b> Trilium Notes is a hierarchical note taking application with focus on building large personal knowledge bases. </b> <details> <summary><i>click for details..</i></summary> <img width="30%" src="https://raw.githubusercontent.com/wiki/zadam/trilium/images/screenshot.png"> <img width="30%" src="https://raw.githubusercontent.com/wiki/zadam/trilium/images/link-map.png"> <img width="30%" src="https://raw.githubusercontent.com/nil0x42/singlefile2trilium/master/img/small-demo.png">

:heavy_check_mark: Pros (for hackers)

supports relation maps
handles massive amount of notes
easily scriptable (js)
sync accross devices is possible (server mode)
notes can have multiple parents
main dev (@zadam) is very active & addresses issues quickly

:x: Cons (for hackers)

heavy app (electronjs)
no command-line interface

:electric_plug: Useful plugins/extensions (for hackers)

zadam/trilium-web-clipper
- web browser extension which allows user to clip text, screenshots, whole pages and short notes and save them directly to Trilium Notes.
nil0x42/singlefile2trilium
- Save faithful copy of a web page in Trilium notes with SingleFile web extension

</details>  <h2> <a href="https://github.com/giuspen/cherrytree"> giuspen/cherrytree <img height=16 src="https://badgen.net/github/stars/giuspen/cherrytree?icon=github&style=flat"> </a> </h2> <b> A hierarchical note taking application, featuring rich text and syntax highlighting </b> <details> <summary><i>click for details..</i></summary> <img width="30%" src="https://www.debugpoint.com/blog/wp-content/uploads/2015/02/Cherrytree-Running-in-Fedora.png"> <img width="30%" src="https://techstat.net/wp-content/uploads/2017/11/img_5a0774354110d.png"> <img width="30%" src="https://i.imgur.com/6R3npOW.png">

:heavy_check_mark: Pros (for hackers)

beautiful rich-text
very used among pentesters

:x: Cons (for hackers)

monolythic hierarchical system
no note-tagging system

:electric_plug: Useful plugins/extensions (for hackers)

https://github.com/sergiodmn/cherrymap
- Import Nmap scans to Cherrytree
https://github.com/gpalo/cherrypy-report
- Create a PDF from your pentesting cherrytree notes (with the OSCP exam in mind).
https://github.com/mikaelkall/massrecon
- recon tool for OSCP engagements. Exports to cherrytree format
https://github.com/rewardone/OSCPRepo/tree/master/CherryTrees
- templates for OSCP
https://github.com/DriftSec/AutoRecon-OSCP
- Modified version of AutoRecon with a cherrytree helper script to import autorecon scan into cherrytree.
https://github.com/CoolDadHacking/OSCP_Template
- CherryTree OSCP methodology templatte

</details>  <h2> <a href="https://github.com/pwndoc/pwndoc"> pwndoc/pwndoc <img height=16 src="https://badgen.net/github/stars/pwndoc/pwndoc?icon=github&style=flat"> </a> </h2> <b> A pentest reporting application making it simple and easy to write your findings and generate a customizable Docx report. </b> <details> <summary><i>click for details..</i></summary> <img width="30%" src="https://raw.githubusercontent.com/pwndoc/pwndoc/master/demos/shared_audit_demo.gif"> <img width="30%" src="https://raw.githubusercontent.com/pwndoc/pwndoc/master/demos/audit_finding_demo.gif"> <img width="30%" src="https://raw.githubusercontent.com/pwndoc/pwndoc/master/demos/create_and_update_finding.gif">

:heavy_check_mark: Pros (for hackers)

Manage reusable Audit and Vulnerability Data
Multi-User reporting
Docx Report Generation
Docx Template customization

:x: Cons (for hackers)

not a knowledge base, focused on generating pentest reports

</details>  <h2> <a href="https://github.com/ehrishirajsharma/SwiftnessX"> ehrishirajsharma/SwiftnessX <img height=16 src="https://badgen.net/github/stars/ehrishirajsharma/SwiftnessX?icon=github&style=flat"> </a> </h2> <b> A cross-platform note-taking & target-tracking app for penetration testers built on ElectronJS. </b> <details> <summary><i>click for details..</i></summary> <img width="30%" src="https://raw.githubusercontent.com/ehrishirajsharma/swiftness-static/master/Assets/main-view.png"> <img width="30%" src="https://miro.medium.com/max/1050/1*7V-0LAqgsOvt2HUIL9paTw.png"> <img width="30%" src="https://preview.redd.it/3z0m9cwvvpg41.png?width=1916&format=png&auto=webp&s=f12683559d441725cf7f7ca6688ec93cdf4bca1f">

:heavy_check_mark: Pros (for hackers)

Focused on target-tracking (good for bug-bounty hunting)
importable hacking checklists

:x: Cons (for hackers)

heavy app (electronjs)
Last commit is from Jul 19, 2019

:electric_plug: Useful plugins/extensions (for hackers)

https://github.com/ehrishirajsharma/swiftness-static/raw/master/Checklist/OWASP-Testing-Checklist.json
- OWASP-Testing-Checklist from @Ice3man543

</details>  <h2> <a href="https://github.com/obheda12/JupyterPen"> obheda12/JupyterPen <img height=16 src="https://badgen.net/github/stars/obheda12/JupyterPen?icon=github&style=flat"> </a> </h2> <b> Create modular and automated penetration testing frameworks utilizing Jupyter Notebooks. </b> <details> <summary><i>click for details..</i></summary> <img width="30%" src="https://pbs.twimg.com/media/EnW_CTrWEAI9ETm?format=jpg&name=medium"> <img width="30%" src="https://pbs.twimg.com/media/EnW_CTkXEAgOKiy?format=jpg&name=medium"> <img width="30%" src="https://pbs.twimg.com/media/EnW_F5vW8AcCdo1?format=jpg&name=medium">

:heavy_check_mark: Pros (for hackers)

Focused on OSINT
in-notes executable scripts for result insertions
Automate / parse recon to excel

:x: Cons (for hackers)

Recent (small community)

:electric_plug: Resources

https://youtu.be/LTNKMA65BtI?t=653
- BSIDES presentation by @obheda12

</details>