1403 Open source projects that are alternatives of or similar to Awesome Privilege Escalation

swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.

Optimal vagrant developer box for Magento2. Folders synced by nfs/rsync. This box includes Magento developer utilities.

Docker image for hacking

CVP "trick" for CTF challenges

A (partial) Python rewriting of PowerSploit's PowerView

A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.

A framework that help to create CTF Attack with Defense competition quickly

👻Impost3r -- A linux password thief

A collection of android Exploits and Hacks

Contained is all my reference material for my OSCP preparation. Designed to be a one stop shop for code, guides, command syntax, and high level strategy. One simple clone and you have access to some of the most popular tools used for pentesting.

A bash script for recon and DOS attacks

Security program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.

Burpsuite-Plugins-Usage

HashExpoit is Great Tool For Cracking Hash

Apache Tomcat auto WAR deployment & pwning penetration testing tool.

Web Exploitation Workflow for CTF Challenges

The goal is to provide an easy to use API to escalate privileges on Linux, Windows and Mac OS

A REST API security testing framework.

This program focuses on automating the download, installation and compilation of pentest tools from source

Common Web Managers Fuzz Wordlists

a fast domain brute tool

tcp connection hijacker, rust rewrite of shijack

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

渗透测试☞经验/思路/总结/想法/笔记

Perfect Blue's CTF Writeups

開源的正體中文 Web Hacking 學習資源 - 程式安全 2021 Fall

🥀 Search Engine Tookit，URL采集、Favicon哈希值查找真实IP、子域名查找

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

CTF🚩 AWD (Attack with Defense) 线下赛平台 / AWD platform - 欢迎 Star~ ✨

network reconnaissance toolkit

渗透步骤，web安全，CTF，业务安全，人工智能，区块链安全，安全开发，无线安全，社会工程学，二进制安全，移动安全，红蓝对抗，运维安全，风控安全，linux安全

NoneAge Blockchain Security Tutorial

A tool to enumerate network services

🎯 PHP / ASP - Shell Backdoor List 🎯

An automatic and lightweight web application scanning tool for CTF.

Get PROXY List that gets updated everyday

Imagine your SSH server only listens on an IPv6 address, and where the last 6 digits are changing every 30 seconds as a TOTP code...

AV-evading Pythonic Reverse Shell with Dynamic Adaption Capabilities

A proof of concept crypto virus to spread user awareness about attacks and implications of ransomwares. Phirautee is written purely using PowerShell and does not require any third-party libraries. This tool steals the information, holds an organisation’s data to hostage for payments or permanently encrypts/deletes the organisation data.

⬆️ ☠️ Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, polkit, docker socket

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.

No description or website provided.

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Exploit Development and Reverse Engineering with GDB Made Easy

Fully automated offensive security framework for reconnaissance and vulnerability scanning

👓 Yet another binary vulnerbilities checker. An automated vulnerability scanner for ELF based on symbolic execution.

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

Jam all wifi clients/routers.

AML/CTF/KYC/OFAC Search of global watchlist, sanctions, and politically exposed person (PEP)

[180+ scripts] There are a few genuine gems in there. And a lot of spaghetti code. Most of these scripts were for solving CTF's. If you googles something for a CTF and landed here look at the scripts they're all fairly malleable. Sorry for the shitty naming conventions (not really). If you are a recruiter stop. I wont be able to rewrite half thi…

Complete Listing and Usage of Tools used for Ethical Hacking

Terribad PrivEsc enumeration script for Windows systems

Kali Live Build Scripts

💖CTF pwn framework.

Robot Hacking Manual (RHM). From robotics to cybersecurity. Papers, notes and writeups from a journey into robot cybersecurity.

Tool for port forwarding & intranet proxy

CTF programs and writeups

瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf

Attempting to be an all in one repo for others' userful aggressor scripts as well as things we've found useful during Red Team Operations.

An automated approach to performing recon for bug bounty hunting and penetration testing.