2171 Open source projects that are alternatives of or similar to tryhackme-ctf

A Tool that Finds, Enumerates, and Exploits Reolink Cameras.

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

Repository of my CTF writeups

Argus Advanced Remote & Local Keylogger For macOS and Windows

JerseyCTF 2021

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

Exploiting challenges in Linux and Windows

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

🦄🔒 Awesome list of secrets in environment variables 🖥️

My solutions to the 2020 NSA Codebreaker Challenge

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Bluefrost Exploitation Challenge 2019 - Exploit and Writeup

Yet Another PHP Shell - The most complete PHP reverse shell

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

A collection of useful links for Pentesters

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

An automated, modular cryptanalysis tool; i.e., a Weapon of Math Destruction

Next generation web scanner

Attack Surface Management Platform | Sn1perSecurity LLC

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

No description or website provided.

Capture the flag challenges

Writeups for CTF challenges.

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

Write-ups for FireEye's FLARE-On challenges

Resumão da massa sobre Capture the Flag.

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

🔑 Hash type identifier (CLI & lib)

Offensive Reverse Shell (Cheat Sheet)

澳門網絡安全暨奪旗競賽協會(Macau Cyber Security and Capture The Flag Association)MOCSCTF/MOCTF

🔐 Docker Container for Penetration Testing & Security

Some of my public exploits

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

Functions that can be used to gain Reverse Shells with PowerShell

A script to configure a TP-Link MR3040 running OpenWRT into a simple, yet powerful penetration-testing "dropbox".

Sifter aims to be a fully loaded Op Centre for Pentesters

The entire walkthrough of all my resolved TryHackMe rooms

This script will you help to find the information about the website and to help in penetrating testing

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

Collection of bash scripts I wrote to make my life easier or test myself that you may find useful.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

CVE-2019-1652 /CVE-2019-1653 Exploits For Dumping Cisco RV320 Configurations & Debugging Data AND Remote Root Exploit!

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

A collection of android Exploits and Hacks

AndroRAT | Remote Administrator Tool for Android OS Hacking

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

linux-kernel-exploits Linux平台提权漏洞集合

3389远程桌面代码执行漏洞CVE-2019-0708批量检测工具(Rdpscan Bluekeep Check)

Automated Mass Exploiter

An IDA Pro plugin to examine the glibc heap, focused on exploit development

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

windows-kernel-exploits Windows平台提权漏洞集合

Self contained htaccess shells and attacks

🌸 Interactive shellcoding environment to easily craft shellcodes

Remote exploitation framework written in Python

Writeup of CVE-2020-15906