780 Open source projects that are alternatives of or similar to doubletap

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

A curated list of awesome privilege escalation

This tool provides commandline access for https://www.hackthebox.eu, https://tryhackme.com/ and https://www.vulnhub.com/ machines.

🔑 Hash type identifier (CLI & lib)

Writeups for vulnerable machines.

Offensive Reverse Shell (Cheat Sheet)

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

A (partial) Python rewriting of PowerSploit's PowerView

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

This cheasheet is aimed at the CTF Players and Beginners to help them sort the CTF Challenges on the basis of Difficulties.

[180+ scripts] There are a few genuine gems in there. And a lot of spaghetti code. Most of these scripts were for solving CTF's. If you googles something for a CTF and landed here look at the scripts they're all fairly malleable. Sorry for the shitty naming conventions (not really). If you are a recruiter stop. I wont be able to rewrite half thi…

Pentest: Subdomains enumeration tool for penetration testers.

🆕 The Multi-Tool Web Vulnerability Scanner.

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

A Tool for Domain Flyovers

A curated list of awesome OSCP resources

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

Hacker101 CTF Writeup

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

My notebook for OSCP Lab

Snoop — инструмент разведки на основе открытых данных (OSINT world)

oscp-ctf is a small collection of basic Bash scripts that make life easier and save time whether you are in the OSCP labs, HackThebox or playing around with CTFs.

备考 OSCP 的各种干货资料/渗透测试干货资料

Automatic SSRF fuzzer and exploitation tool

Advanced and easy to use penetration testing framework 💣🔎

A cli for cracking, testing vulnerabilities on Json Web Token(JWT)

Related subdomains finder

Linux enumeration tool for pentesting and CTFs with verbosity levels

Framework for rapid development and reusable of security tools

Web Recon & Exploitation Tool.

Password-protected writeups of HTB platform (challenges and boxes) https://cesena.github.io/

An automated approach to performing recon for bug bounty hunting and penetration testing.

python script allow red teaming , hackthebox Pwners , OSCP lovers to shorten their time by these useful shells

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Penetration Testing notes, resources and scripts

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

This is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder

Intelligence and Reconnaissance Package/Bundle installer.

Pentest Lab on OpenStack with Heat, Chef provisioning and Docker

A list of useful payloads for Web Application Security and Pentest/CTF

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!

Pentest environment deployer (kali linux + targets) using vagrant and chef.

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

A tool to test security of json web token

This cheasheet is aimed at the CTF Players and Beginners to help them sort Vulnhub Labs. This list contains all the writeups available on hackingarticles.

Get GTFOBins info about a given exploit from the command line

Suggests programs to run against services found during the enumeration phase of a Pentest

Exploits developed by me.

渗透测试☞经验/思路/总结/想法/笔记

Tasks from CTFZone 2017 quals

開源的正體中文 Web Hacking 學習資源 - 程式安全 2021 Fall

🥀 Search Engine Tookit，URL采集、Favicon哈希值查找真实IP、子域名查找

This powershell script has got to run in remote hacked windows host, even for pivoting

NoneAge Blockchain Security Tutorial

A tool to enumerate network services

One-click installer for Frida and Burp certs for SSL Pinning bypass