These are the commonly used Tools and Commands for Brute-Forcing Passwords using Hydra for exploiting FTP, SSH, RDP, WordPress, POP3, SMTP, Samba and Reverse Shell using NetCat on bot Windows and Linux.
Visit - https://gtfobins.github.io/ which contains list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems.