A compilation of important commands, files, and tools used in Pentesting
☆55Jan 17, 2023Updated 3 years ago
Alternatives and similar repositories for Offensive-Security-Cheat-Sheet
Users that are interested in Offensive-Security-Cheat-Sheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Linux and windows privilege escalation cheatsheet☆11May 18, 2023Updated 2 years ago
- My Favorite Offensive Security Scripts☆89Apr 25, 2025Updated 11 months ago
- Offensive Security OSWE Prep 2022☆76Sep 10, 2022Updated 3 years ago
- Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…☆15Aug 15, 2022Updated 3 years ago
- Security Work and Manual Reviews facilitated by Open Source Technology Improvement Fund, aka OSTIF☆35Apr 8, 2026Updated last week
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆484Oct 7, 2022Updated 3 years ago
- Penetration Testing & Red Team tools & scripts☆12Sep 22, 2023Updated 2 years ago
- My journey and notes on learning Offensive Security from the ground up☆21Dec 22, 2025Updated 3 months ago
- Web Hacking and Red Teaming MindMap☆79Dec 24, 2025Updated 3 months ago
- rShellZ s a linux reverse-shell & exploitation assistance framework. With lots of payload and post exploitation modules.☆14Dec 13, 2023Updated 2 years ago
- List of payloads and wordlists that are specifically crafted to identify and exploit vulnerabilities in target web applications.☆436Mar 16, 2026Updated last month
- Scripts and piece of codes used for Active Directory configuration☆82Feb 14, 2023Updated 3 years ago
- An advanced scanner for exposed secrets in web pages, APIs, and source code.☆13Apr 22, 2025Updated 11 months ago
- Scanner for Log4j RCE CVE-2021-44228☆11Jul 6, 2022Updated 3 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- A PlayBook for OSWP & Wireless Pentest☆49Jul 28, 2024Updated last year
- A simple pentest container equipped with common python pentest tools.☆43Jan 30, 2026Updated 2 months ago
- ☆197Mar 11, 2024Updated 2 years ago
- Bypassing AV, EDR, Application Whitelisting and ASR Rules☆13Apr 18, 2023Updated 3 years ago
- This repository provides a comprehensive Digital Footprint Checklist to help individuals manage their online presence and enhance privacy…☆17Dec 25, 2024Updated last year
- A small guide on Unknown/Orphaned SIDs and some PowerShell tools to help you get rid of them.☆21Mar 28, 2022Updated 4 years ago
- offensive security scripts and documentation☆30Mar 9, 2026Updated last month
- Powershell Scripts for Blue Team members☆11Dec 1, 2023Updated 2 years ago
- QUESTER is a Web Pentesting & Bug Bounty Recon tool which queries URLs / Subdomains from the given list of URLs or subdomains.☆15Aug 2, 2021Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Repository with quick triggers to help during Pentest in an Active Directory environment.☆49Jul 28, 2025Updated 8 months ago
- ☆28Mar 31, 2023Updated 3 years ago
- Apache Superset Auth Bypass (CVE-2023-27524)☆11May 9, 2023Updated 2 years ago
- Distributed phishing framework designed to streamline offensive security phishing☆41Feb 16, 2023Updated 3 years ago
- A vSphere deployment of GOADv2 BETA Testing (v0.1)☆26Dec 22, 2023Updated 2 years ago
- Offensive Security OSCP+, OSEP, OSWP, OSWA, OSWE, OSED, OSMR, OSEE, OSDA, OSIR, OSTH Exam and Lab Reporting / Note-Taking Tool☆913Oct 6, 2025Updated 6 months ago
- Tools that can be useful for OSEP exam and PEN300 studies.☆88Mar 14, 2026Updated last month
- OSCP Preparation Guide | Courses, Tricks, Tutorials, Exercises, Machines☆1,085Mar 23, 2026Updated 3 weeks ago
- OSCP Methodology☆56Sep 6, 2023Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- ☆31Mar 21, 2023Updated 3 years ago
- Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.☆20Feb 2, 2024Updated 2 years ago
- Resilient Virtual Machine Monitor is a complete fault tolerance solution for type-I hypervisors adopting one of the most popular VMM arch…☆11Jul 30, 2020Updated 5 years ago
- MyBB 1.8.32 - Chained LFI Remote Code Execution (RCE) (Authenticated) python exploit script...☆14Oct 17, 2023Updated 2 years ago
- Commands used in Windows penetration tests☆54Jan 19, 2026Updated 2 months ago
- ☆12Apr 20, 2025Updated 11 months ago
- G3nius Tools Sploit is a penetration testing tool with a lot of plugins for advanced cybersecurity attacks. User-friendly, Easy and modul…☆63Apr 13, 2024Updated 2 years ago