463 Open source projects that are alternatives of or similar to HackingAllTheThings

This is a walkthrough about understanding the #BoF machine present in the #OSCP exam.

my oscp prep collection

AV-evading Pythonic Reverse Shell with Dynamic Adaption Capabilities

渗透测试方法论

Exploits developed by me.

A Ruby micro-framework for writing and running exploits

A command-line tool for exploiting stack-based buffer overflow vulnerabilities.

Vulnerable software and exploits used for OSCP/OSCE preparation

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging features for exploit developers & reverse engineers ☢

Reverse shell generator

Basic tool to automate backdooring PE files

Opening the door, one reverse shell at a time

Collection of things made during my OSCP journey

Exploiting challenges in Linux and Windows

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

Red-team tool to hook libc read syscall with a buffer overflow vulnerability.

a mindmap on pentest #pentestmindmap #oscp #lpt #ecsa #ceh #bugbounty

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.

Suggests programs to run against services found during the enumeration phase of a Pentest

Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation

Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.

A simple PHP application to learn SQL Injection detection and exploitation techniques.

An overlay attack example

Advanced Web Browser Fingerprinting

Experiments on C/C++ Exploits

A very loud but fast recon scan and pentest template creator for use in CTF's/OSCP/Hackthebox...

This powershell script has got to run in remote hacked windows host, even for pivoting

Rage allows you to execute any file in a Microsoft Office document.

Black Hat Python workshop for Disobey 2019

Mac and hostname random changer

HatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.

One-click installer for Frida and Burp certs for SSL Pinning bypass

Authentication bypass for outdated WoW emulation authentication servers

Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution

Malicious use of macho, such as dump-runtime-macho, function-hook.

Network based protocol fuzzer

Port of windbglib to x64dbgpy, in an effort to support mona.py in x64dbg.

ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit

Designed to scan and exploit vulnerabilities within Tor hidden services. TORhunter allows most tools to work as normal while resolving .onion

CamRaptor is a tool that exploits several vulnerabilities in popular DVR cameras to obtain network camera credentials.

Collection of bash scripts I wrote to make my life easier or test myself that you may find useful.

图形化漏洞利用集成工具

A Collection of Various Discord Bugs, Exploits, Un-Documented Parts of the Discord API, and Other Discord Related Miscellaneous Stuff.

A collection of resources I'm using while working toward the OSCP

This script will you help to find the information about the website and to help in penetrating testing

Misc. Public Reports of Penetration Testing and Security Audits.

Offensive Reverse Shell (Cheat Sheet)

block game military grade radar

CTF中Pwn的快速利用模板（包含awd pwn）

An IDA_Wrapper for linux, shipped with an Function Identifier. It works well with Driller on static linked binaries.

Contained is all my reference material for my OSCP preparation. Designed to be a one stop shop for code, guides, command syntax, and high level strategy. One simple clone and you have access to some of the most popular tools used for pentesting.

Blazing fast, advanced Padding Oracle exploit

Framework for rapid development and reusable of security tools

Very simple script(s) to hasten binary exploit creation

Simple program for detecting if host(s) are vulnerable to SMB exploit(MS17-010)

A collection of useful links for Pentesters