List of awesome penetration testing resources, tools and other shiny things
☆342Jun 19, 2018Updated 7 years ago
Alternatives and similar repositories for Penetration-Testing
Users that are interested in Penetration-Testing are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Security-Toolkit☆77Oct 20, 2018Updated 7 years ago
- Collection of commands, tips and tricks and references I found useful during preparation for OSCP exam.☆439May 10, 2026Updated 3 weeks ago
- Collection of quality safety articles. Awesome articles.☆2,109Sep 26, 2024Updated last year
- Attack and defend active directory using modern post exploitation adversary tradecraft activity☆4,832Jul 29, 2025Updated 10 months ago
- Burpsuite HTTP 插件,主要用于内网测试,可定制Content-Type和Response Content☆24Jul 2, 2018Updated 7 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Collection of scripts and templates to generate Office documents embedded with the DDE, macro-less command execution technique.☆638Jul 16, 2023Updated 2 years ago
- Tricks for penetration testing��☆587Apr 22, 2026Updated last month
- 常用系统服务默认端口列表☆13Apr 25, 2017Updated 9 years ago
- Collection of the cheat sheets useful for pentesting☆4,331Feb 16, 2024Updated 2 years ago
- List of Awesome Red Teaming Resources☆7,927Dec 28, 2023Updated 2 years ago
- Automate SSH communication with firewalls, switches, etc.☆28Mar 29, 2018Updated 8 years ago
- IDS Bypass tricks☆122Jan 11, 2019Updated 7 years ago
- Tool made to automate tasks of pentesting.☆165May 20, 2026Updated 3 weeks ago
- DarthSidious 中文版☆413Dec 22, 2018Updated 7 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- \ PowerAvails Powershell /☆10Jun 30, 2018Updated 7 years ago
- Powershell-based Windows Security Auditing Toolbox☆574Jan 9, 2019Updated 7 years ago
- Various public documents, whitepapers and articles about APT campaigns☆3,654Jan 1, 2024Updated 2 years ago
- a parser + crawler for .DS_Store files exposed publically☆56Jun 6, 2023Updated 3 years ago
- Wiki to collect Red Team infrastructure hardening resources☆4,488Oct 1, 2025Updated 8 months ago
- A fully functional DanderSpritz lab in 2 commands☆450May 16, 2019Updated 7 years ago
- Active Directory Assessment and Privilege Escalation Script☆1,127Dec 7, 2022Updated 3 years ago
- ph0neutria is a malware zoo builder that sources samples straight from the wild. Everything is stored in Viper for ease of access and man…☆301Apr 24, 2020Updated 6 years ago
- Extract stored credentials from Internet Explorer and Edge☆325Sep 15, 2020Updated 5 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- ☆350Mar 19, 2021Updated 5 years ago
- A collection of curated Java Deserialization Exploits☆593May 16, 2021Updated 5 years ago
- A collection of scripts I've written to help red and blue teams with malware persistence techniques.☆128May 30, 2018Updated 8 years ago
- Abusing Exchange via EWS☆153Sep 14, 2020Updated 5 years ago
- Robber is open source tool for finding executables prone to DLL hijacking☆793Apr 29, 2026Updated last month
- ☆43Aug 30, 2018Updated 7 years ago
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆10,368May 7, 2026Updated last month
- The exploit samples database is a repository for **RCE** (remote code execution) exploits and Proof-of-Concepts for **WINDOWS**, the samp…☆748Dec 11, 2023Updated 2 years ago
- Test Blue Team detections without running any attack.☆272May 2, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Small CTF challenges running on Docker☆158Jul 26, 2018Updated 7 years ago
- ☆99May 3, 2018Updated 8 years ago
- Various PowerShell scripts that may be useful during red team exercise☆964Apr 28, 2022Updated 4 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testing☆73Aug 31, 2020Updated 5 years ago
- Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.☆400May 20, 2020Updated 6 years ago
- Red Team Tool Kit☆1,132Dec 8, 2022Updated 3 years ago
- Web Security Technology & Vulnerability Analysis Whitepapers☆550Jan 1, 2019Updated 7 years ago