List of awesome penetration testing resources, tools and other shiny things
☆343Jun 19, 2018Updated 7 years ago
Alternatives and similar repositories for Penetration-Testing
Users that are interested in Penetration-Testing are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Security-Toolkit☆77Oct 20, 2018Updated 7 years ago
- Collection of commands, tips and tricks and references I found useful during preparation for OSCP exam.☆439May 10, 2026Updated last week
- Collection of quality safety articles. Awesome articles.☆2,104Sep 26, 2024Updated last year
- Attack and defend active directory using modern post exploitation adversary tradecraft activity☆4,823Jul 29, 2025Updated 9 months ago
- Burpsuite HTTP 插件,主要用于内网测试,可定制Content-Type和Response Content☆24Jul 2, 2018Updated 7 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Collection of scripts and templates to generate Office documents embedded with the DDE, macro-less command execution technique.☆638Jul 16, 2023Updated 2 years ago
- Tricks for penetration testing☆587Apr 22, 2026Updated 3 weeks ago
- 常用系统服务默认端口列表☆13Apr 25, 2017Updated 9 years ago
- Collection of the cheat sheets useful for pentesting☆4,317Feb 16, 2024Updated 2 years ago
- List of Awesome Red Teaming Resources☆7,916Dec 28, 2023Updated 2 years ago
- Automate SSH communication with firewalls, switches, etc.☆28Mar 29, 2018Updated 8 years ago
- IDS Bypass tricks☆122Jan 11, 2019Updated 7 years ago
- Tool made to automate tasks of pentesting.☆165Oct 26, 2019Updated 6 years ago
- DarthSidious 中文版☆415Dec 22, 2018Updated 7 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- \ PowerAvails Powershell /☆10Jun 30, 2018Updated 7 years ago
- 一个包含php,java,python,C#等各种语言版本的XXE漏洞Demo☆816Nov 28, 2022Updated 3 years ago
- Powershell-based Windows Security Auditing Toolbox☆574Jan 9, 2019Updated 7 years ago
- Ephemera and other documentation associated with the 1337list project.☆396Jun 14, 2018Updated 7 years ago
- Various public documents, whitepapers and articles about APT campaigns☆3,654Jan 1, 2024Updated 2 years ago
- a parser + crawler for .DS_Store files exposed publically☆56Jun 6, 2023Updated 2 years ago
- Wiki to collect Red Team infrastructure hardening resources☆4,480Oct 1, 2025Updated 7 months ago
- A fully functional DanderSpritz lab in 2 commands☆450May 16, 2019Updated 7 years ago
- Active Directory Assessment and Privilege Escalation Script☆1,128Dec 7, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ph0neutria is a malware zoo builder that sources samples straight from the wild. Everything is stored in Viper for ease of access and man…☆302Apr 24, 2020Updated 6 years ago
- Extract stored credentials from Internet Explorer and Edge☆325Sep 15, 2020Updated 5 years ago
- ☆350Mar 19, 2021Updated 5 years ago
- A collection of curated Java Deserialization Exploits☆592May 16, 2021Updated 5 years ago
- A collection of scripts I've written to help red and blue teams with malware persistence techniques.☆127May 30, 2018Updated 7 years ago
- Abusing Exchange via EWS☆153Sep 14, 2020Updated 5 years ago
- Robber is open source tool for finding executables prone to DLL hijacking☆794Apr 29, 2026Updated 3 weeks ago
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆10,322May 7, 2026Updated last week
- ☆43Aug 30, 2018Updated 7 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- The exploit samples database is a repository for **RCE** (remote code execution) exploits and Proof-of-Concepts for **WINDOWS**, the samp…☆748Dec 11, 2023Updated 2 years ago
- Test Blue Team detections without running any attack.☆272May 2, 2024Updated 2 years ago
- Small CTF challenges running on Docker☆158Jul 26, 2018Updated 7 years ago
- ☆99May 3, 2018Updated 8 years ago
- Various PowerShell scripts that may be useful during red team exercise☆964Apr 28, 2022Updated 4 years ago
- Reverse Engineering Tutorials☆528Sep 2, 2018Updated 7 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testing☆72Aug 31, 2020Updated 5 years ago