1440 Open source projects that are alternatives of or similar to Pwn_jenkins

CVE-2018-8120 Windows LPE exploit

🎯 XML External Entity (XXE) Injection Payload List

记录自己编写、修改的部分工具

A repository of one-off script console scripts for Jenkins.

Hershell is a simple TCP reverse shell written in Go.

Reversed code of GTA:SA executable (gta_sa.exe) 1.0 US

Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.

An exploit for Apache Struts CVE-2018-11776

HTML reports for Cucumber

Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits

Plug and play continuous integration with django and jenkins

CMS auto detect and exploit.

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.

A curated set of Helm charts brought to you by codecentric

Proves JVM cheats are viable on native games, and demonstrates the longevity against anti-cheat signature detection systems

A collection of various GitHub gists for hackers, pentesters and security researchers

Advanced Web Shell

Various kernel exploits

Tools, tips, tricks, and more for exploring ICS Security.

SS7 MAP (pen-)testing toolkit. DISCONTINUED REPO, please use: https://github.com/0xc0decafe/ss7MAPer/

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting

Apache Tomcat auto WAR deployment & pwning penetration testing tool.

A portable, simple zip library written in C

🎯 PHP / ASP - Shell Backdoor List 🎯

Ansible playbook collection that have been written for Ubuntu. Some of the playbooks are Elasticsearch, Mesos, AWS, MySql, Sensu, Nginx etc..

Meltdown Exploit / Proof-of-concept / checks whether system is affected by Variant 3: rogue data cache load (CVE-2017-5754), a.k.a MELTDOWN.

用于记录内网渗透(域渗透)学习 :-)

A curated list of awesome OSCP resources

Fully automated offensive security framework for reconnaissance and vulnerability scanning

HULK DoS tool ported to Go with some additional features.

Complete Listing and Usage of Tools used for Ethical Hacking

🎯 Advanced debugging skills used in the iOS project development process, involves the dynamic debugging, static analysis and decompile of third-party libraries. iOS 项目开发过程中用到的高级调试技巧，涉及三方库动态调试、静态分析和反编译等领域

The iCTF Framework, presented by Shellphish!

Our super sweet hacker management system, built for HackTCNJ 2017+ | Used by [email protected] 2018!

运维管理平台(阿里云)，自动同步阿里云配置信息，堡垒机（容器），批量运维，Kubernetes，Zabbix管理等功能

渗透测试人员专用精简化字典 Dictionary for penetration testers happy hacker

Kindle 5.6.5 exploitation tools.

A command line tool to run Jenkinsfile as a function

CVE-2017-11882 Exploit accepts over 17k bytes long command/code in maximum.

BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p

个人笔记汇总

OWASP WEB Directory Scanner

📓 Some security related notes

Flutter Engine构建产物归档

CloudBunny is a tool to capture the real IP of the server that uses a WAF as a proxy or protection. In this tool we used three search engines to search domain information: Shodan, Censys and Zoomeye.

Free Security and Hacking eBooks

Keylogger is 100% invisible keylogger not only for users, but also undetectable by antivirus software. Blackcat keylogger Monitors all keystokes, Mouse clicks. It has a seperate process which continues capture system screenshot and send to ftp server in given time.

My first Android app: Launch Fusée Gelée payloads from stock Android (CVE-2018-6242)

This is the repository with all the resources for the Jenkins training on Udemy

Crack password hashes without the fuss 🐈

Bypassing disabled exec functions in PHP (c) CRLF

C2/post-exploitation framework

A Golang implant that uses Slack as a command and control server

Jenkins X provides automated CI+CD for Kubernetes with Preview Environments on Pull Requests using Cloud Native pipelines from Tekton

💣 Impulse Denial-of-service ToolKit

⚠️ Stop saying "you forgot to …" in code review

An exploit for Apache Struts CVE-2017-5638

🔗 Don't know what type of hash it is? Name That Hash will name that hash type! 🤖 Identify MD5, SHA256 and 3000+ other hashes ☄ Comes with a neat web app 🔥

Idiomatic nmap library for go developers