313 Open source projects that are alternatives of or similar to Bluelotus_xssreceiver

repo with challenge material for riceteacatpanda (2020)

Very vulnerable ARM/AARCH64 application (CTF style exploitation tutorial with 14 vulnerability techniques)

Free Labs to Train Your Pentest / CTF Skills

Snoop — инструмент разведки на основе открытых данных (OSINT world)

针对ctf线下赛流量抓取(php)、真实环境流量抓取分析的工具

A flag submitter service with distributed attackers for attack/defense CTF games.

Platform to host Capture the Flag competitions

✔️ CTF problems and solutions solved by Qwaz

Provide powerful tools for seccomp analysis

ctfcli is a tool to manage Capture The Flag events and challenges

Docker based Wargame Platform - To practice your CTF skills

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

oscp-ctf is a small collection of basic Bash scripts that make life easier and save time whether you are in the OSCP labs, HackThebox or playing around with CTFs.

Some of my CTF solutions

🌸 Interactive shellcoding environment to easily craft shellcodes

Micro-framework for rapid development of reusable security tools

CTF Training 经典赛题复现环境

won't maintain

国内各大CTF赛题及writeup整理

📚 VoidHack CTF write-ups

a project aim to collect CTF web practices .

AWD 自动化攻击框架

A Game of Hackers (CTF Scoreboard & Game Manager)

Library consisting of explanation and implementation of all the existing attacks on various Encryption Systems, Digital Signatures, Key Exchange, Authentication methods along with example challenges from CTFs

Writeup of security — CTFLearn Challenges.

👻Stowaway -- Multi-hop Proxy Tool for pentesters

China's first CTFTools framework.中国国内首个CTF工具框架,旨在帮助CTFer快速攻克难关

(mostly web related) web challenge writeups between 2011 and 2015

CTF write-ups by PDKT team with English and Indonesian language

DEFCON 2018 Qualification writeups

Learning Penetration Testing of Android Applications

For effective cheating detection in competitions. Utilizes Linux Kernel Module (LKM) for generating flags.

Writeups for HacktheBox 'boot2root' machines

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

Code-Audit-Challenges

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!

Good to know, easy to forget information about binaries and their exploitation!

Educational, CTF-styled labs for individuals interested in Memory Forensics

A sandbox to protect your pwn challenges being pwned in CTF AWD.

A curated list of CTF frameworks, libraries, resources and softwares

CTF writeups

Pentest environment deployer (kali linux + targets) using vagrant and chef.

CTF Field Guide

Automatic Exploit Generation (AEG) and remote flag capture for exploitable CTF problems

Backwards program slice stitching for automatic CTF problem solving.

🔨 A modern multiple reverse shell sessions manager wrote in go

Detect hidden files and text in images

🔗 Don't know what type of hash it is? Name That Hash will name that hash type! 🤖 Identify MD5, SHA256 and 3000+ other hashes ☄ Comes with a neat web app 🔥

CTF framework and exploit development library

CTF 工具集合

Riscure Hack Me embedded hardware CTF 2017-2018.

This tool aims at automating the identification of potential service running behind ports identified manually either through manual scan or services running locally. The tool is useful when nmap or any scanning tool is not available and in the situation during which you did a manual port scanning and then want to identify the services running behind the identified ports.

PwnableWeb is a suite of web applications for use in information security training.

Venom - A Multi-hop Proxy for Penetration Testers

A Discord bot that provides ctf tools for collaboration in Discord servers!

Build a database of libc offsets to simplify exploitation

A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me