232 Open source projects that are alternatives of or similar to Pwk Oscp Preparation Roadmap

🆕 The Multi-Tool Web Vulnerability Scanner.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Automated NoSQL database enumeration and web application exploitation tool.

Opening the door, one reverse shell at a time

Red Teaming Tactics and Techniques

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Don't let buffer overflows overflow your mind

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

This is my cheatsheet and scripts developed while taking the Offensive Security Penetration Testing with Kali Linux course.

How to prepare for OSCP complete guide

Get GTFOBins info about a given exploit from the command line

Script will enumerate domain name using horizontal enumeration, reverse lookup. Each horziontal domain will then be vertically enumerated using Sublist3r.

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

A curated list of awesome OSCP resources

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Red Teaming Tactics and Techniques

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

A collection of resources I'm using while working toward the OSCP

My own OSCP guide

A high performance offensive security tool for reconnaissance and vulnerability scanning

PHP shells that work on Linux OS, macOS, and Windows OS.

Everything needed for doing CTFs

Notes for taking the OSCP in 2097. Read in book form on GitBook

Modified template for the OSCP Exam and Labs. Used during my passing attempt

bug bounty hunters starter notes

The Collective. A repo for a collection of red-team projects found mostly on Github.

Cross Origin Resource Sharing MisConfiguration Scanner

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

My OSCP notes

Single Page Cheatsheet for common MSF Venom One Liners

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Everyone's favorite SMB/SAMBA/CIFS enumeration tool ported over to Python.

Our OSCP repo: from popping shells to mental health.

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Linux enumeration tool for pentesting and CTFs with verbosity levels

Work in progress...

Windows shellcode development in Rust

unix SSH post-exploitation 1337 tool

oscp-ctf is a small collection of basic Bash scripts that make life easier and save time whether you are in the OSCP labs, HackThebox or playing around with CTFs.

☠️ The Pathwar Project ☠️

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

⛔️ offsec batteries included

my oscp prep collection

My OSCP journey

Simple Server Side Request Forgery services enumeration tool.

A place where I can create, collect and share tooling, resources and knowledge about information security.

Username enumeration and password spraying tool aimed at Microsoft O365.

GUI based offensive penetration testing tool (Open Source)

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

This repository contains a class that allows the enumeration of video and audio devices in order to get the device IDs that are required to create a VideoCapture object inside OpenCV (in Windows).

Security Tool to Look For Interesting Files in S3 Buckets

Collection of resources for my preparation to take the OSEE certification.

This tool aims at automating the identification of potential service running behind ports identified manually either through manual scan or services running locally. The tool is useful when nmap or any scanning tool is not available and in the situation during which you did a manual port scanning and then want to identify the services running behind the identified ports.

无状态子域名爆破工具

A fast, simple, recursive content discovery tool written in Rust.

A shell script that automatically performs a series of *NIX enumeration tasks.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A fast web directory/file enumeration tool written in Rust