153 Open source projects that are alternatives of or similar to Exploitation Course

A collection of awesome videos, articles, books and resources about ARM exploitation.

Notes for taking the OSCP in 2097. Read in book form on GitBook

Responsive Command and Control System

Automated Mass Exploiter

GUI tool to create ROP chains using the ropper API

Subaru StarLink persistent root code execution.

A documentation about how to hack Minecraft servers

A collection of pwn/CTF related utilities for Ghidra

This Repository contains the stuff related to windows Active directory environment exploitation

Sifter aims to be a fully loaded Op Centre for Pentesters

Blind Attacking Framework

This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack

A thorough library database to assist with binary exploitation tasks.

SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

Good to know, easy to forget information about binaries and their exploitation!

AndroRAT | Remote Administrator Tool for Android OS Hacking

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

Android Kernel Exploitation

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

CMS auto detect and exploit.

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

Writeup of CVE-2020-15906

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Web Recon & Exploitation Tool.

An automated, modular cryptanalysis tool; i.e., a Weapon of Math Destruction

r2 the Rhme3! The RHme (Riscure Hack me) is a low level hardware CTF that comes in the form of an Arduino board (AVR architecture). It involves a set of SW and HW challenges to test your skills in different areas such as side channel analysis, fault injection, reverse-engineering and software exploitation. In our talk we will briefly recap RHme2…

Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).

RAIR: RAdare In Rust

wide range mass audit toolkit

Automatic Exploit Generation Paper

Collection of resources for my preparation to take the OSEE certification.

Scripts, plugins, and information for working with Samsung's Shannon baseband.

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Solutions for ROP Emporium challenges (https://ropemporium.com/) in python.

Exploitation on ARM-based Systems (Troopers18)

Advanced Web Browser Fingerprinting

Advanced dork Search & Mass Exploit Scanner

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

HackSys Extreme Vulnerable Windows Driver

Collection of bash scripts I wrote to make my life easier or test myself that you may find useful.

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

A collection of useful links for Pentesters

MQTT-PWN intends to be a one-stop-shop for IoT Broker penetration-testing and security assessment operations.

NTPD remote DOS exploit and vulnerable container

Linux Binary Exploitation

dr.rer.oec.gadget IDAPython plugin for the Interactive Disassembler <ABANDONED PROJECT>

A collection of manifests that will create pods with elevated privileges.

Exploiting Linksys WRT54G using a vulnerability I found.

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

Exploiting challenges in Linux and Windows

A general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good performance

UNIX-like reverse engineering framework and command-line toolset.

A WIP "Vulnerable by Design" kext for iOS/macOS to play & learn *OS kernel exploitation

fully automated pentesting tool

Exploitation Framework for ATtiny85 Based HID Attacks

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

The Offensive Manual Web Application Penetration Testing Framework.

Attify OS - Distro for pentesting IoT devices