HackTricks-wiki / hacktricksLinks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
☆10,566Updated this week
Alternatives and similar repositories for hacktricks
Users that are interested in hacktricks are comparing it to the libraries listed below
Sorting:
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆9,956Updated 2 months ago
- GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems☆12,353Updated 2 months ago
- AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.☆5,809Updated 2 weeks ago
- PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)☆18,861Updated this week
- A fast, simple, recursive content discovery tool written in Rust.☆7,246Updated this week
- Monitor linux processes without root permissions☆5,784Updated 2 years ago
- 📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.☆7,406Updated this week
- In-depth attack surface mapping and asset discovery☆13,833Updated this week
- Red Teaming Tactics and Techniques☆4,435Updated last year
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆6,398Updated 8 months ago
- One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️☆6,305Updated 3 weeks ago
- 🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List☆7,758Updated last year
- Collection of methodology and test case for various web vulnerabilities.☆6,872Updated 5 months ago
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆7,718Updated 2 years ago
- List of Awesome Red Teaming Resources☆7,605Updated last year
- A swiss army knife for pentesting networks☆8,987Updated last year
- Gather and update all available and newest CVEs with their PoC.☆7,408Updated this week
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆6,943Updated 3 weeks ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,746Updated 2 years ago
- Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)☆3,695Updated 5 months ago
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆8,152Updated 2 months ago
- A list of public penetration test reports published by several consulting firms and academic security groups.☆9,263Updated last week
- Linux privilege escalation auditing tool☆6,287Updated last year
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆71,909Updated 2 weeks ago
- Impacket is a collection of Python classes for working with network protocols.☆15,173Updated last week
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆6,212Updated 7 months ago
- The ultimate WinRM shell for hacking/pentesting☆5,134Updated 2 months ago
- Web application fuzzer☆6,353Updated last year
- Fast web fuzzer written in Go☆15,180Updated 7 months ago
- A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT S…☆2,850Updated 2 years ago