602 Open source projects that are alternatives of or similar to OSCP-A-Step-Forward

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

🆕 The Multi-Tool Web Vulnerability Scanner.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

A collection of resources I'm using while working toward the OSCP

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Free Security and Hacking eBooks

Don't let buffer overflows overflow your mind

A curated list of awesome OSCP resources

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

network reconnaissance toolkit

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

Notes from OSCP, CTF, security adventures, etc...

Top 100 Hacking & Security E-Books (Free Download)

Web Penetration Testing with Kali Linux - Third Edition, published by Packt

Bash script that automates the enumeration of domains and DNS servers in the active information gathering.

🙃 Reverse Shell Cheat Sheet 🙃

Exploits and Security Tools Framework 2.0.1

Tool Information Gathering Write By Python.

Kali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Penetration Testing notes, resources and scripts

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Collection of tips, tools and tutorials around infosec

Everything needed for doing CTFs

Collection of penetration test reports and pentest report templates. Published by the the best security companies in the world.

Password wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.

Automation scripts in preparation for PWK/OSCP labs

Functions that can be used to gain Reverse Shells with PowerShell

A Docker container for remote penetration testing.

This script will you help to find the information about the website and to help in penetrating testing

Next generation web scanner

Information Security Library

Offensive Reverse Shell (Cheat Sheet)

This cheasheet is aimed at the CTF Players and Beginners to help them sort Vulnhub Labs. This list contains all the writeups available on hackingarticles.

my oscp prep collection

unix SSH post-exploitation 1337 tool

This is a walkthrough about understanding the #BoF machine present in the #OSCP exam.

A place where I can create, collect and share tooling, resources and knowledge about information security.

AV-evading Pythonic Reverse Shell with Dynamic Adaption Capabilities

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Red Teaming Tactics and Techniques

GitBook: OSCP RoadMap

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

GUI based offensive penetration testing tool (Open Source)

The Collective. A repo for a collection of red-team projects found mostly on Github.

Automated NoSQL database enumeration and web application exploitation tool.

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Framework RapidPayload - Metasploit Payload Generator | Crypter FUD AntiVirus Evasion

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Armor is a simple Bash script designed to create encrypted macOS payloads capable of evading antivirus scanners.

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Kali Live Build Scripts

Work in progress...