885 Open source projects that are alternatives of or similar to Awesome Pentest Cheat Sheets

How do I test this with UI Testing?

Don't let buffer overflows overflow your mind

JavaScript and Node.js cheatsheets

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics.

Burp Bounty profiles compilation, feel free to contribute!

Sparty - MS Sharepoint and Frontpage Auditing Tool [Unofficial]

Linux Privilege Escalation Tool By WazeHell

Study Notes For Web Hacking / Web安全学习笔记

机器学习备忘录

Password wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.

Git Cheats - Interactive Cheatsheet For Git Commands

☠️ The Pathwar Project ☠️

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

cheatsheat-tcpdump

A Phishing Dropper designed to Pentest.

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

✌️ Just the basics to get you up and running with Vim

This is Kubernetes Cheatsheet based on Kubernetes API 1.19 version.

Advanced vulnerability scanning with Nmap NSE

CMD - Command Cheat Sheat ✅

A Tools Session Hijacking And Stealer Local Passcode Telegram Windows

Software design patterns cheatsheet.

Search Exploitable Software on Linux

SSRF (Server Side Request Forgery) testing resources

The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

List of Data Science Cheatsheets to rule the world

A portable console aimed at making pentesting with PowerShell a little easier.

Awesome Vulnerable Applications

Discover Your Attack Surface!

The Definitive Kubectl Sheetcheat. ⭐ Give it a star if you like it. Work (always) in progress !

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Tool Information Gathering & social engineering Write By [Python,JS,PHP]

Ladon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

A collection of personal scripts used in hacking excercises.

Automated Penetration Testing Framework

The ONLY hacker friendly proxy for webapp pentests.

LLVM, clang, ninja, dyld and others.

List of some useful blogs, books, courses, papers etc. 📚

📖 Docker CheatSheets In A4

🚩 Riot at a glance

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

The ultimate WinRM shell for hacking/pentesting

Educational notes,Hands on problems w/ solutions for hadoop ecosystem

A quick reference cheat sheet for common, high level topics in Swift.

Code from Blackhat Python book

ODAT: Oracle Database Attacking Tool

Unofficial PICO-8 API with a lovely design ! ::

The infamous Pan Docs historical document: the single, most comprehensive Game Boy technical reference.

[unmaintained] Post-exploitation tool

A simple tool for interacting with OWASP ZAP from the commandline.

List of 256 color codes for Xterm including an example of the color, Xterm Name, Xterm Number, HEX, RGB and HSL code.

GraphQL Shorthand Notation Cheat Sheet

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

Open source all-in-one CLI tool to semi-automate pentesting.

Infection vector that bypasses AV, IDS, and IPS. (For now...)

Automatically spawn a reverse shell fully interactive for Linux or Windows victim