GTFOBins / GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
☆10,628Updated 3 weeks ago
Related projects: ⓘ
- PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)☆15,744Updated this week
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆6,938Updated last year
- Monitor linux processes without root permissions☆4,854Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆13,291Updated 2 weeks ago
- Fast web fuzzer written in Go☆12,270Updated 2 months ago
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆6,921Updated this week
- Directory/File, DNS and VHost busting tool written in Go☆9,580Updated last week
- Linux privilege escalation auditing tool☆5,558Updated 7 months ago
- Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and n…☆8,776Updated this week
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆5,340Updated last week
- Linux enumeration tool for pentesting and CTFs with verbosity levels☆3,380Updated 8 months ago
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆8,959Updated 2 weeks ago
- Adversary Emulation Framework☆8,239Updated this week
- The ultimate WinRM shell for hacking/pentesting☆4,412Updated 2 months ago
- AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.☆5,080Updated 3 months ago
- In-depth attack surface mapping and asset discovery☆11,798Updated this week
- A swiss army knife for pentesting networks☆8,355Updated 9 months ago
- Nishang - Offensive PowerShell for red team, penetration testing and offensive security.☆8,663Updated 4 months ago
- Fast subdomains enumeration tool for penetration testers☆9,679Updated last month
- Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…☆6,886Updated last week
- A list of public penetration test reports published by several consulting firms and academic security groups.☆8,364Updated 3 months ago
- Web application fuzzer☆5,866Updated last month
- Attack Surface Management Platform☆7,936Updated last month
- Gather and update all available and newest CVEs with their PoC.☆6,445Updated this week
- RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data☆5,515Updated last month
- Fast passive subdomain enumeration tool.☆9,963Updated this week
- A fast, simple, recursive content discovery tool written in Rust.☆5,790Updated this week
- Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.☆4,184Updated last week
- Windows Exploit Suggester - Next Generation☆4,125Updated this week
- ☆2,182Updated last month