1418 Open source projects that are alternatives of or similar to Offensive-Reverse-Shell-Cheat-Sheet

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

Contained is all my reference material for my OSCP preparation. Designed to be a one stop shop for code, guides, command syntax, and high level strategy. One simple clone and you have access to some of the most popular tools used for pentesting.

Interactive cheat sheet for Tachyons 📝

List of Bluetooth BR/EDR/LE security resources

MITRE Shield website

Search Google and download specific file types

d(ockerp)wn - a docker pwn tool manager

Stamp your code with a trackable digital copyright

Python 3 Reverse Shell

Advanced search in search engines, enables analysis provided to exploit GET / POST capturing emails & urls, with an internal custom validation junction for each target / url found.

Cheatsheet to exploit and learn SQL Injection.

OpenCTI connectors

This powershell script has got to run in remote hacked windows host, even for pivoting

🥀 Search Engine Tookit，URL采集、Favicon哈希值查找真实IP、子域名查找

brute force SSH public-key authentication

WARF is a Web Application Reconnaissance Framework that helps to gather information about the target.

PassLock is a medium-security password manager that encrypts passwords using Advanced Encryption Standards (AES)

Slickに関するサンプルやドキュメントを提供します。

Information Security Library

script hack fb

transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV

A Security Tool for Enumerating WebSockets

You didn't think I'd go and leave the blue team out, right?

Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.

网络信息安全从业者面试指南

TLS Redirection

Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.

Syntax, terminologies, selectors, and common properties of CSS

Simple DLL that add a user to the local Administrators group

Fast website scraper and wordlist generator

Malware Sample Sources

Scripts usados en mi formación de Offensive Security por medio de la suscripción Learn Unlimited

Host Header Injection Checker

Bypassing FILTER_SANITIZE_EMAIL & FILTER_VALIDATE_EMAIL filters in filter_var for SQL Injection ( xD )

Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)

Who and what to follow in the world of cyber security

This tool provides commandline access for https://www.hackthebox.eu, https://tryhackme.com/ and https://www.vulnhub.com/ machines.

A multi-platform HTTP(S) Reverse Shell Server and Client in Python 3

All in One CRACKER911181's Tool. This Tool For Hacking and Pentesting. 🎭

ATT&CK Evaluations website (DEPRECATED)

A friendly Toolkit for Beginner CTF players

Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

BloodHound Docker Ready to Use

A cross-platform C2/teamserver supporting multiple transport protocols, written in Go.

Framework for rapid development and reusable of security tools

A multi-layered and multi-tiered Machine Learning security solution, it supports always on detection system, Django REST framework used, equipped with a web-browser extension that uses a REST API call.

NoneAge Blockchain Security Tutorial

VOIP Security Audit Framework

pure python remote adb scanner + nmap scan module

Python Program to obfuscate URLs to make Phishing attacks more difficult to detect. Uses Active open redirect list and other URL obfuscation techniques.

Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port this to 64 or implement a few other suggestions (sorry I lost ppc code version contributed) it will be orders of magnitude more difficult to spot, so I h…

A distributed peer to peer list of bad actor IP addresses and phone numbers collected via a SIP Honeypot.

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

A compact cheat sheet for writing documentation string for Sphinx, with focus on Python.

JSON RSA to HMAC and None Algorithm Vulnerability POC

Security program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.

Execute ELF files without dropping them on disk

Stop half-done API specifications! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by validating your API specifications.

Bluetooth reverse shell.