848 Open source projects that are alternatives of or similar to Suid3num

A curated list of awesome privilege escalation

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

A curated list of awesome OSCP resources

Automation for internal Windows Penetrationtest / AD-Security

Linux enumeration tool for pentesting and CTFs with verbosity levels

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Notes for taking the OSCP in 2097. Read in book form on GitBook

Sifter aims to be a fully loaded Op Centre for Pentesters

Suggests programs to run against services found during the enumeration phase of a Pentest

This is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder

Penetration Testing notes, resources and scripts

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Extract subdomains from SSL certificates in HTTPS sites.

Set of tools to audit SIP based VoIP Systems

SSRF (Server Side Request Forgery) testing resources

A Cloudflare resolver that works

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

A tool to test security of json web token

The ultimate WinRM shell for hacking/pentesting

备考 OSCP 的各种干货资料/渗透测试干货资料

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Next generation web scanner

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

Red Teaming Tactics and Techniques

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Phishing Tool & Information Collector

Passwords Recovery Tool

A wrapper for Nmap to quickly run network scans

🔐 Docker Container for Penetration Testing & Security

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

A fast DOM based XSS vulnerability scanner with simplicity.

File upload vulnerability scanner and exploitation tool.

Intelligence and Reconnaissance Package/Bundle installer.

fully automated pentesting tool

my oscp prep collection

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Automated All-in-One OS Command Injection Exploitation Tool.

Linux and Windows shellcode enrichment utility

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

A curated list of awesome Windows frameworks, libraries, software and resources for Red Teams

Python AV Evasion Tools

A collection of useful links for Pentesters

My notebook for OSCP Lab

A very loud but fast recon scan and pentest template creator for use in CTF's/OSCP/Hackthebox...

🌒 Shell command obfuscation to avoid detection systems

Offensive Reverse Shell (Cheat Sheet)

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

Web Recon & Exploitation Tool.

Create a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.