885 Open source projects that are alternatives of or similar to Awesome Pentest Cheat Sheets

SSH man-in-the-middle tool

Collection of cheat sheets(HTML, CSS, JS, Git, Gulp, etc.,) for your frontend development needs & reference

scan for NTLM directories

A web front-end for password cracking and analytics

A fast web directory/file enumeration tool written in Rust

windows-kernel-exploits Windows平台提权漏洞集合

Framework RapidPayload - Metasploit Payload Generator | Crypter FUD AntiVirus Evasion

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

A collection of manifests that will create pods with elevated privileges.

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Open source all-in-one CLI tool to semi-automate pentesting.

Infection vector that bypasses AV, IDS, and IPS. (For now...)

📟 My personal vim cheatsheet

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

📚 My cheat sheet for vue.js most basic stuff https://boussadjra.github.io/vue-cheat-sheet/

Automate Pentest Tool

📗 A visualization of key structures in abstract algebra.

Automated Red Team Infrastructure deployement using Docker

cve-2019-0604 SharePoint RCE exploit

Automatically spawn a reverse shell fully interactive for Linux or Windows victim

Work in progress...

This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.

A distributed nmap / masscan scanning framework complete with an API client for automation workflows

Awesome Node.js Security resources

VIP cheatsheets for Stanford's CS 230 Deep Learning

🌟 All the cheat-sheets mentioned on my blog in pdf format

挙動や仕様が曖昧なユーザインタフェースチートシート

git and git flow cheat sheet

Cheat Sheets 🐭🤖👀

OSINT Tool: Generate username lists for companies on LinkedIn

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]

Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.

The best and easiest way to decode and repack AWVS scripts. AWVS 最好、最简单、最新的解码/再打包方法，仅15行代码！

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

Kali Linux Cheat Sheet for Penetration Testers

How to improve NGINX performance, security, and other important things.

☑️ [Cheatsheet] Tips and tricks for Android Development

Pop shells like a master.

Docker images for infosec tools

Fast directory scanning and scraping tool

Introduction to "globbing" or glob matching, a programming concept that allows "filepath expansion" and matching using wildcards.

Attack Surface Management Platform | Sn1perSecurity LLC

Useful CTF Tools

Useful tools and scripts during Penetration Testing engagements

The Collective. A repo for a collection of red-team projects found mostly on Github.

📝 Impressive Linux commands cheat sheet (Python).

Find exploits in local and online databases instantly

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

A list to discover work of red team tooling and methodology for penetration testing and security assessment

Generate Payloads and Control Remote Machines. [Discontinued]

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

备考 OSCP 的各种干货资料/渗透测试干货资料

Hooks in to interesting functions and helps reverse the web app faster.

This repository consist of cheatsheets of JS Framworks & Libraries.

A printable one-page cheatsheet for TailwindCSS.

A Cloudflare resolver that works