1187 Open source projects that are alternatives of or similar to Privilege Escalation

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Search for Unix binaries that can be exploited to bypass system security restrictions.

☕ Bamboofox CTF training platform

Useful CTF Tools

The iCTF Framework, presented by Shellphish!

This is a walkthrough about understanding the #BoF machine present in the #OSCP exam.

Linux privilege escalation checks (systemd, dbus, socket fun, etc)

Hacker101 CTF Writeup

Writeups for infosec Capture the Flag events by team Galaxians

repo for ctf

SolveMe - Jeopardy CTF Platform

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

Google CTF

Exploiting challenges in Linux and Windows

This cheasheet is aimed at the CTF Players and Beginners to help them sort Vulnhub Labs. This list contains all the writeups available on hackingarticles.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

CTF (Capture The Flag Writeups and Tools)

WADComs is an interactive cheat sheet, containing a curated list of Unix/Windows offensive tools and their respective commands.

My CTF writeups

Proton Framework is a Windows post-exploitation framework similar to other Windows post-exploitation frameworks. The major difference is that the Proton Framework does most of its operations using Windows Script Host, with compatibility in the core to support a default installation of Windows 2000 with no service packs all the way through Windows 10.

Bluefrost Exploitation Challenge 2019 - Exploit and Writeup

Web CTF CheatSheet 🐈

a mindmap on pentest #pentestmindmap #oscp #lpt #ecsa #ceh #bugbounty

[180+ scripts] There are a few genuine gems in there. And a lot of spaghetti code. Most of these scripts were for solving CTF's. If you googles something for a CTF and landed here look at the scripts they're all fairly malleable. Sorry for the shitty naming conventions (not really). If you are a recruiter stop. I wont be able to rewrite half thi…

CTF (Capture The Flag) writeups, code snippets, notes, scripts

This is my cheatsheet and scripts developed while taking the Offensive Security Penetration Testing with Kali Linux course.

Penetration Testing notes, resources and scripts

Kali Linux Cheat Sheet for Penetration Testers

Offensive Reverse Shell (Cheat Sheet)

备考 OSCP 的各种干货资料/渗透测试干货资料

dockerfile of CTF web practices

CTF solutions from Osaka University CTF team Wani Hackase

My documentation and tools for learn ethical hacking.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Everything needed for doing CTFs

Homemade Pwnbox 🚀 / Rogue AP 📡 based on Raspberry Pi — WiFi Hacking Cheatsheets + MindMap 💡

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

My own OSCP guide

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p

Micro-framework for rapid development of reusable security tools

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

澳門網絡安全暨奪旗競賽協會(Macau Cyber Security and Capture The Flag Association)MOCSCTF/MOCTF

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Collection of things made during my OSCP journey

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

🔗 Don't know what type of hash it is? Name That Hash will name that hash type! 🤖 Identify MD5, SHA256 and 3000+ other hashes ☄ Comes with a neat web app 🔥

oscp-ctf is a small collection of basic Bash scripts that make life easier and save time whether you are in the OSCP labs, HackThebox or playing around with CTFs.

Riscure Hack Me embedded hardware CTF 2017-2018.

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

🏴 🏴 🏴

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

✔️ CTF problems and solutions solved by Qwaz

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Transcribed video lessons of HackerOne to pdf's

An Offline cheat sheet and a quick reference command line tool for HTML, CSS and JS .

A rust based cross-platform ECU diagnostics and car hacking application, utilizing the passthru protocol