☆27Apr 9, 2022Updated 4 years ago
Alternatives and similar repositories for pentest-cheatsheet
Users that are interested in pentest-cheatsheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- OSWE Preparation☆38May 28, 2019Updated 7 years ago
- A tool to generate OpenXML XXE Payloads written in Python3.☆16Aug 21, 2019Updated 6 years ago
- This repository is a collection of Awesome XSS Payloads in 1 txt file☆11Dec 23, 2019Updated 6 years ago
- Automation of KNOXSS extension.☆11Apr 12, 2019Updated 7 years ago
- Archive of pentestmonkey.net cheat sheets in case the site goes away permanently☆13Oct 28, 2019Updated 6 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Wireless Pentesting Device☆24Aug 14, 2020Updated 5 years ago
- Repo for all the Recon and enum techniques, Exploitation, Priv-escalation (Linux and Windows), post exploitation☆16Sep 8, 2025Updated 10 months ago
- Exploit for win10 SMB3.1☆17Apr 5, 2020Updated 6 years ago
- Collection of python3 exploits written by me to practice exploit development. Also is good preparation for OSED-301 course released by of…☆27Mar 11, 2021Updated 5 years ago
- Awesome Mobile Application Penetration Testing Cheat Sheet☆20May 29, 2021Updated 5 years ago
- C# exfiltration tool☆13Sep 24, 2021Updated 4 years ago
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆11May 25, 2019Updated 7 years ago
- Modular Buffer Overflow Fuzzer and Exploitation Tool☆10Aug 28, 2019Updated 6 years ago
- My thoughts from going through the OSEP materials.☆20Jan 8, 2021Updated 5 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Sleep obfuscation for shellcode implants and their reflective shit☆55Sep 19, 2023Updated 2 years ago
- This tool will scan all the URL's in the file and will provide Content-Length, Status-Code, Server and more.☆36Dec 22, 2021Updated 4 years ago
- Exploit of the way update plugins works in Webmin, used to gain access to whatever Webmin is being run as (normally root). Written by mem…☆12Nov 15, 2019Updated 6 years ago
- CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…☆14Dec 30, 2023Updated 2 years ago
- ☆28Jun 27, 2020Updated 6 years ago
- Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities☆48Jan 11, 2023Updated 3 years ago
- This repo hosts multiple codes, content, checklists etc which can help a penetration tester in a web application auditing.☆21Sep 14, 2023Updated 2 years ago
- Run Cobalt Strike BOFs in Brute Ratel C4!☆89Apr 15, 2025Updated last year
- CosmicSting (CVE-2024-34102)☆48Sep 5, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A Cobalt Strike beacon implemented in Nim.☆27Jul 16, 2025Updated 11 months ago
- Exfiltrate data with DNS queries. Based on CertUtil and NSLookup.☆24Dec 30, 2023Updated 2 years ago
- A list of notes that I've compiled over time to help with CTF's and the OSCP exam.☆10Dec 29, 2020Updated 5 years ago
- PredictionIO Recommendation Engine Template (Scala-based parallelized engine)☆14Jul 18, 2019Updated 6 years ago
- ☆10Dec 3, 2021Updated 4 years ago
- Windows internals and exploitation tricks☆119Mar 28, 2026Updated 3 months ago
- Havoc C2 BOF port of the KslD.sys BYOVD technique. Credential extraction from lsass via physical memory — no OpenProcess, no auditable AP…☆136Apr 22, 2026Updated 2 months ago
- Spring-Boot app for demonstrating security vulnaribilities☆13Aug 21, 2019Updated 6 years ago
- A color scheme that mimics the standard scheme found in the EditPlus text editor☆11Oct 21, 2012Updated 13 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A framework that allows to use SignalR easy, following the strict contracts out of box.☆10Jun 25, 2025Updated last year
- Web Recon & Exploitation Tool.☆56Mar 8, 2020Updated 6 years ago
- ☆11Jun 17, 2015Updated 11 years ago
- scrapy website Article and link ...☆15Dec 13, 2020Updated 5 years ago
- scoreserver web application for CTF(Capture The Flag)☆24Aug 3, 2022Updated 3 years ago
- Exploits made practicing for OSCE☆23Dec 3, 2020Updated 5 years ago
- Rust crate to parse user-mode minidump files generated on Windows☆19Nov 17, 2025Updated 7 months ago