A living document for penetration testing and offensive security.
☆314Jun 20, 2024Updated last year
Alternatives and similar repositories for handbook
Users that are interested in handbook are comparing it to the libraries listed below
Sorting:
- A learning and testing environment for web application hacking and pentesting.☆27Jan 2, 2021Updated 5 years ago
- A Python native library containing lots of useful functions to write efficient scripts to hack stuff.☆42Nov 10, 2025Updated 3 months ago
- WebSocket Connection Smuggler☆47Sep 30, 2022Updated 3 years ago
- ☆1,931Feb 25, 2026Updated last week
- RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.☆1,900Oct 29, 2025Updated 4 months ago
- JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)☆827Dec 15, 2025Updated 2 months ago
- A collection of CTF write-ups, pentesting topics, guides and notes. Notes compiled from multiple sources and my own lab research. Topics …☆598Sep 24, 2025Updated 5 months ago
- ☆12Feb 18, 2022Updated 4 years ago
- A Python implementation of dafthack's MSOLSpray. A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if …☆95Jun 6, 2024Updated last year
- Wireless Pentesting Device☆24Aug 14, 2020Updated 5 years ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆34Feb 12, 2022Updated 4 years ago
- A Huge Learning Resources with Labs For Offensive Security Players☆1,110Dec 9, 2025Updated 2 months ago
- A command based package for simple display of statistics☆25Dec 2, 2024Updated last year
- eLearnSecurity Junior Penetration Tester Certificate (eJPT) PTS Notes☆150Jun 12, 2021Updated 4 years ago
- This contains common OSCP local exploits and enumeration scripts☆12Sep 18, 2015Updated 10 years ago
- A compact guide to network pivoting for penetration testings / CTF challenges.☆227Jul 19, 2024Updated last year
- the most basic DLL ever to pop a cmd.☆24Jul 11, 2020Updated 5 years ago
- Sandman is a NTP based backdoor for hardened networks.☆815Mar 31, 2024Updated last year
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆6,511Jan 18, 2026Updated last month
- Bug Bounty ~ Awesomes | Books | Cheatsheets | Checklists | Tools | Wordlists | More☆518Oct 27, 2025Updated 4 months ago
- xss development frameworks, with the goal of making payload writing easier.☆153Aug 7, 2024Updated last year
- Automate the scanning and enumeration of machines externally while maintaining complete control over scans shot to the target. Comfortabl…☆165Aug 18, 2025Updated 6 months ago
- ☆16May 20, 2022Updated 3 years ago
- A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automat…☆2,371Updated this week
- OSINT tools and more but without API key☆1,484Feb 15, 2026Updated 2 weeks ago
- My Offensive Security OSWA certification experience and my personal opinion what helps in preparation for the exam☆43Jul 13, 2023Updated 2 years ago
- Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and n…☆11,001Updated this week
- OSWE, OSEP, OSED, OSEE☆3,770Jan 2, 2026Updated 2 months ago
- web application pentesting tools for docker☆17Aug 9, 2022Updated 3 years ago
- Vagrant VirtualBox environment for conducting an internal network penetration test☆959Jun 5, 2023Updated 2 years ago
- Python library and CLI for the Bug Bounty Recon API☆230Jun 5, 2021Updated 4 years ago
- A robust Red Team proxy written in Go.☆164Dec 26, 2021Updated 4 years ago
- ☆129Jun 15, 2020Updated 5 years ago
- Rockyou for web fuzzing☆3,028Feb 11, 2026Updated 3 weeks ago
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆2,695Jul 6, 2025Updated 8 months ago
- A simple tool that aims to efficiently and quickly parse the outputs of web scraping tools like gau☆12Jun 28, 2021Updated 4 years ago
- This page should help you with the recon for security issues.☆20Oct 14, 2022Updated 3 years ago
- Tracking my journey towards earning my OSCP. This includes the process of everything that I learn along the way.☆47Nov 23, 2021Updated 4 years ago
- A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.☆1,977Sep 5, 2021Updated 4 years ago