Educational Linux privilege escalation script for CTFs/OSCP. Explains WHAT/WHY/HOW for every vulnerability found. Highlights critical findings with red alerts. Extended mode default: cloud metadata, databases, web apps, CI/CD secrets, CTF flags. Teaches privilege escalation patterns, not just commands.
☆62Oct 12, 2025Updated 8 months ago
Alternatives and similar repositories for LearnPeas
Users that are interested in LearnPeas are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SLAM - Simple Local Area Monitor is a lightweight tool for continuous local network monitoring and device discovery.☆18Jul 9, 2025Updated 11 months ago
- A multi-platform CI/CD vulnerability detection and attack automation tool for identifying security weaknesses in pipeline configurations.☆158Jun 8, 2026Updated last week
- Misery Loader to bypass modern EDR solutions☆19Dec 20, 2024Updated last year
- Token impersonation in PowerShell to execute under the context of another user.☆25Oct 14, 2025Updated 8 months ago
- OSEP - Offsec Expert Professional☆21Jun 23, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Polymorphic PE rewriter for Windows x64 , rewrites binaries into semantically identical but byte-different variants☆184Jun 6, 2026Updated last week
- ☆22Apr 11, 2025Updated last year
- SNMP Bash Script to discover valid community strings, dump basic information, check for write permission and check for RCE.☆11Apr 27, 2024Updated 2 years ago
- ☆19Sep 1, 2025Updated 9 months ago
- A Bloodhound alternative. BloodBash will ingest the same files bloodhound does but no server is required to use this tool. It's great for…☆209May 22, 2026Updated 3 weeks ago
- Enumerate active EDR's on the system☆153Sep 23, 2025Updated 8 months ago
- PolyEngine is an evasive PE packer designed for CTF challenges and low-level Windows security education. It focuses on bypassing EDR and …☆138Jun 6, 2026Updated last week
- A tool to easily perform GitHub Device Code Phishing on red team engagements☆97Feb 9, 2026Updated 4 months ago
- A brookshear virtual machine written in Go☆10Sep 5, 2019Updated 6 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Two C# RunPE's capable of x86 and x64 injections☆11Dec 2, 2018Updated 7 years ago
- Process Hollowing Packer☆29Sep 5, 2017Updated 8 years ago
- ☆46Mar 30, 2026Updated 2 months ago
- Open Source Implementation of Cobalt Strike's Malleable C2☆100Jan 27, 2026Updated 4 months ago
- A Proof-of-Concept using Cache Smuggling + Exif data to passively download a second stage payload☆50Oct 28, 2025Updated 7 months ago
- tlsplayback is a set of Proof of Concepts (PoC) showing real-world replay attacks against TLS 1.3 libraries and browsers by exploiting 0-…☆16Aug 11, 2018Updated 7 years ago
- ☆12Nov 15, 2017Updated 8 years ago
- Backport of SliverStager to work with DotNetToJScript for vba☆19Aug 9, 2024Updated last year
- Proof of concept for Kerberos Armoring abuse.☆84Dec 12, 2025Updated 6 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A Small Collection of Very Basic Bash Scripts That I Use Regularly. 🪙💲💰☆58Apr 1, 2026Updated 2 months ago
- EU focused compliance MCP server☆20Updated this week
- AV/EDR processes termination by exploiting a vulnerable driver (BYOVD)☆286Jan 21, 2026Updated 4 months ago
- A Dockerized build pipeline for custom Windows x64 shellcode☆55Dec 12, 2025Updated 6 months ago
- Evasion kit for Cobalt Strike☆462Jun 5, 2026Updated last week
- Various Crypter Project☆10Feb 26, 2014Updated 12 years ago
- A service container for interacting with SRA's VECTR☆18Apr 9, 2025Updated last year
- ☆110Feb 14, 2026Updated 4 months ago
- Cobalt Strike BOF used to perform privilege escalation by exploiting the SeImpersonate privilege. Based on the original GodPotato PoC by …☆259Apr 16, 2026Updated last month
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Mass malicious script dump/Malware src dump☆16Nov 25, 2016Updated 9 years ago
- Sh3ller is a lightweight C2 framework in its simplest form.☆33Sep 5, 2025Updated 9 months ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆19Aug 3, 2023Updated 2 years ago
- XSSRecon automates the process of testing URL parameters for reflection of a test payload rix4uni and further checks how special characte…☆54Jan 16, 2026Updated 4 months ago
- Evasive shellcode loader with indirect syscalls, Thread name-calling allocation, PoolParty injection☆10Feb 26, 2025Updated last year
- A framework and build automation tool to process exploits/payloads to evade antivirus and endpoint detection response products using reus…☆11Jan 16, 2024Updated 2 years ago
- A in-the-wild V8 type confusion bug.☆30Aug 8, 2025Updated 10 months ago