1187 Open source projects that are alternatives of or similar to Privilege Escalation

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

A curated list of awesome privilege escalation

This cheasheet is aimed at the CTF Players and Beginners to help them sort the CTF Challenges on the basis of Difficulties.

Repository of my CTF writeups

JerseyCTF 2021

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Write-ups for FireEye's FLARE-On challenges

A collection of hacking / penetration testing resources to make you better!

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

Writeups for vulnerable machines.

WeCTF 2020+ Source Code & Organizer's Writeup

Writeups for CTF challenges.

Single Page Cheatsheet for common MSF Venom One Liners

Opening the door, one reverse shell at a time

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

CTF Cheatsheet

my oscp prep collection

Resumão da massa sobre Capture the Flag.

中国科学技术大学第八届信息安全大赛的官方与非官方题解

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

My solutions to the 2020 NSA Codebreaker Challenge

This tool provides commandline access for https://www.hackthebox.eu, https://tryhackme.com/ and https://www.vulnhub.com/ machines.

WaniCTF'21-spring official writeup & source code

Capture the flag challenges

Linux enumeration tool for pentesting and CTFs with verbosity levels

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Search for Unix binaries that can be exploited to bypass system security restrictions.

EmpireCTF – write-ups, capture the flag, cybersecurity

☕ Bamboofox CTF training platform

CTF solutions from Osaka University CTF team Wani Hackase

Linux privilege escalation checks (systemd, dbus, socket fun, etc)

The iCTF Framework, presented by Shellphish!

Hacker101 CTF Writeup

Writeups for infosec Capture the Flag events by team Galaxians

dockerfile of CTF web practices

Everything needed for doing CTFs

CTF (Capture The Flag) writeups, code snippets, notes, scripts

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

My own OSCP guide

This cheasheet is aimed at the CTF Players and Beginners to help them sort Vulnhub Labs. This list contains all the writeups available on hackingarticles.

Proton Framework is a Windows post-exploitation framework similar to other Windows post-exploitation frameworks. The major difference is that the Proton Framework does most of its operations using Windows Script Host, with compatibility in the core to support a default installation of Windows 2000 with no service packs all the way through Windows 10.

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Don't let buffer overflows overflow your mind

This is my cheatsheet and scripts developed while taking the Offensive Security Penetration Testing with Kali Linux course.

BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p

My documentation and tools for learn ethical hacking.

Penetration Testing notes, resources and scripts

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

WADComs is an interactive cheat sheet, containing a curated list of Unix/Windows offensive tools and their respective commands.

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Collection of things made during my OSCP journey

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Homemade Pwnbox 🚀 / Rogue AP 📡 based on Raspberry Pi — WiFi Hacking Cheatsheets + MindMap 💡

🔗 Don't know what type of hash it is? Name That Hash will name that hash type! 🤖 Identify MD5, SHA256 and 3000+ other hashes ☄ Comes with a neat web app 🔥

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

Micro-framework for rapid development of reusable security tools

oscp-ctf is a small collection of basic Bash scripts that make life easier and save time whether you are in the OSCP labs, HackThebox or playing around with CTFs.