609 Open source projects that are alternatives of or similar to Oscp

Framework for exploiting local vulnerabilities

User Provided Custom Modules for PhantomBot

Seismic station orientation tools

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port this to 64 or implement a few other suggestions (sorry I lost ppc code version contributed) it will be orders of magnitude more difficult to spot, so I h…

Ladon Moudle MS17010 Exploit for PowerShell

No description or website provided.

micropython scripts for MaixPy

Bypass UAC by abusing the Internet Explorer Add-on installer

HatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.

radare2 IO plugin for Linux and Android. Modifies files owned by other users via dirtycow Copy-On-Write cache vulnerability

OWASP Joomla Vulnerability Scanner Project

XSS HTTP Inject0r is a proof of concept tool that shows how XSS (Cross Site Scripting) flags can be exploited easily. It is written in HTML + Javascript + PHP and released under GPLv3.

ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit

Metasploit framework with steroids

Remote Command Execution as SYSTEM on Windows IoT Core (releases available for Python2.7 & Python3)

Hack The Printer

Offensive Reverse Shell (Cheat Sheet)

Wireguard helper scripts

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Very simple script(s) to hasten binary exploit creation

DoS PoC's for SAP products

Repository to train/learn memory corruption on the ARM platform.

💻 Bash scripts for doing installations in one go.

Experiments on C/C++ Exploits

Webshell Jumping Edition

hack tools

📄 Gives the list of scripts in the current scene with gameobject reference.

Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or events.

🛠️ Tool to bypass my school's security system to get sudo privileges on MacOS

Compromising the macOS Kernel through Safari by Chaining Six Vulnerabilities

Automation scripts in preparation for PWK/OSCP labs

Reconness Agents Script

Writeups for vulnerable machines.

ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication

🗼Extensible JavaScript toolbox management

Collection of useful scripts for Linux (git, docker, LUKS, Archlinux...)

Dotfiles for my NixOS system based on Dracula theme

Simple bash administration scripts for Linux to make your life easier.

Everything needed for doing CTFs

rclone4pi - Easy Install of rclone to Raspberry Pi Computer with automated folder sync demo

block game military grade radar

A tool to help you write binary exploits

Small but effective wordlist for brute-forcing and discovering hidden things.

Simple program for detecting if host(s) are vulnerable to SMB exploit(MS17-010)

Purelove is a lightweight penetration testing framework, in order to better security testers testing holes with use.

Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits

Reverse shell generator

Information about XboxDev and issue tracker for the entire XboxDev ecosystem

MacApp、PythonPackage、Scripts ..

Cloak can backdoor any python script with some tricks.

Windows MSI Installer LPE (CVE-2021-43883)

Windows 权限提升 BadPotato

Eternalblue written in CSharp. Contains version detection, vulnerability scanner and exploit of MS17-010

You can use setupTermuxArch.sh 📲 to install Arch Linux in Termux on Android and Chrome. This setup script will attempt to set Arch Linux up in your Termux environment.

Unrestricted Lua Execution

Demonstrative scripts

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

One of the few malware collection

Self contained htaccess shells and attacks