522 Open source projects that are alternatives of or similar to Linuxprivchecker

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

A curated list of awesome OSCP resources

oscp-ctf is a small collection of basic Bash scripts that make life easier and save time whether you are in the OSCP labs, HackThebox or playing around with CTFs.

Our OSCP repo: from popping shells to mental health.

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing

⚡️ Worlds fastest steghide cracker, chewing through millions of passwords per second ⚡️

A tool to test security of json web token

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

备考 OSCP 的各种干货资料/渗透测试干货资料

Notes for taking the OSCP in 2097. Read in book form on GitBook

Penetration Testing notes, resources and scripts

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Micro-framework for rapid development of reusable security tools

Scripts to control an "OSCP-like" lab environment.

Yet Another PHP Shell - The most complete PHP reverse shell

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Linux enumeration tool for pentesting and CTFs with verbosity levels

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

Red Teaming Tactics and Techniques

Everything needed for doing CTFs

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Steganography brute-force utility to uncover hidden data inside files

my oscp prep collection

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

This is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder

My own OSCP guide

A curated list of awesome privilege escalation

Windows Privilege Escalation Techniques and Scripts

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

OSINT Tool: Generate username lists for companies on LinkedIn

A swiss army knife for pentesting networks

Web path scanner

A web front-end for password cracking and analytics

👻Stowaway -- Multi-hop Proxy Tool for pentesters

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

mXtract - Memory Extractor & Analyzer

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Reverse proxies cheatsheet

A PowerShell script anti-virus evasion tool

🔨 A modern multiple reverse shell sessions manager wrote in go

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Advanced Web Shell

All MITM attacks in one place.

Directory/File, DNS and VHost busting tool written in Go

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

针对ctf线下赛流量抓取(php)、真实环境流量抓取分析的工具

Attack Surface Management Platform | Sn1perSecurity LLC

NetCat for Windows

A graph-based tool for visualizing effective access and resource relationships in AWS environments.

Useful tools and scripts during Penetration Testing engagements

Collection of things made during my OSCP journey

The Shadow Attack Framework

Ruby on Rails Phishing Framework