GhnimiWael / OSEP_Prep
This repository serves as a curated resource for OffSec's OSEP (PEN-300) certification preparation, containing useful links, materials, and references to aid in advanced penetration testing studies.
☆14Updated 4 months ago
Alternatives and similar repositories for OSEP_Prep:
Users that are interested in OSEP_Prep are comparing it to the libraries listed below
- A repository of tools developed while studying for OSEP. The contents here are not part of courseware but some tools, i wrote as an exten…☆1Updated 9 months ago
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.☆40Updated 2 years ago
- Just some random small tools for dealing with asp.net Forms Authentication Cookies☆23Updated 3 years ago
- The purpose of this repo is to share my research☆14Updated last year
- cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…☆39Updated 2 years ago
- Crackmapexec custom scripts used in my internal pentests.☆25Updated last year
- POC FortiOS SSL-VPN buffer overflow vulnerability☆27Updated last year
- pdfkit <0.8.6 command injection shell. The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sa…☆20Updated 2 years ago
- CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD☆68Updated 3 years ago
- Open-Source Phishing Toolkit☆18Updated 3 years ago
- Tooling for the OffSec Experienced Pentester (OSEP) and OffSec Exploit Developer (OSED) course☆17Updated last year
- ☆33Updated 2 years ago
- ☆48Updated 2 years ago
- CVE-2024-27956 WordPress Automatic < 3.92.1 - Unauthenticated SQL Injection☆18Updated 10 months ago
- List of some AD tools I frequently use☆46Updated last month
- CVE-2023-20198 Exploit PoC☆44Updated last year
- Exploits targeting vBulletin.☆76Updated last year
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆67Updated 3 years ago
- Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …☆38Updated 3 years ago
- Pentester Academy notes and commands from the CRTP/CRTE/PACES courses☆14Updated 2 years ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆108Updated 2 years ago
- WEB API fuzzing☆24Updated last year
- Golden collection of weak passwords☆61Updated 3 months ago
- Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.☆56Updated last year
- Windows Privilege Escalation☆56Updated 2 years ago
- Zimbra Unauthenticated Remote Code Execution Exploit (CVE-2022-27925)☆56Updated 2 years ago
- Simple Python script to sort nuclei scans by severity and URL☆29Updated last year
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- ☆38Updated last month
- A tool to enumerate and exploit SQL Servers in AD☆34Updated last year