Educational Linux privilege escalation script for CTFs/OSCP. Explains WHAT/WHY/HOW for every vulnerability found. Highlights critical findings with red alerts. Extended mode default: cloud metadata, databases, web apps, CI/CD secrets, CTF flags. Teaches privilege escalation patterns, not just commands.
☆60Oct 12, 2025Updated 6 months ago
Alternatives and similar repositories for LearnPeas
Users that are interested in LearnPeas are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Static analysis & exploitation-triage toolkit for Windows kernel drivers. Discover IOCTLs, Symbolic Links, and check cert , and Downlaods…☆133Apr 27, 2026Updated last week
- A multi-platform CI/CD vulnerability detection and attack automation tool for identifying security weaknesses in pipeline configurations.☆140Apr 26, 2026Updated last week
- Token impersonation in PowerShell to execute under the context of another user.☆25Oct 14, 2025Updated 6 months ago
- OSEP - Offsec Expert Professional☆21Jun 23, 2024Updated last year
- ☆22Apr 11, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- SNMP Bash Script to discover valid community strings, dump basic information, check for write permission and check for RCE.☆11Apr 27, 2024Updated 2 years ago
- ☆19Sep 1, 2025Updated 8 months ago
- A Bloodhound alternative. BloodBash will ingest the same files bloodhound does but no server is required to use this tool. It's great for…☆198Mar 2, 2026Updated 2 months ago
- ☆28Aug 24, 2025Updated 8 months ago
- Enumerate active EDR's on the system☆154Sep 23, 2025Updated 7 months ago
- A tool to easily perform GitHub Device Code Phishing on red team engagements☆92Feb 9, 2026Updated 2 months ago
- A Proof-of-Concept using Cache Smuggling + Exif data to passively download a second stage payload☆51Oct 28, 2025Updated 6 months ago
- ☆44Mar 30, 2026Updated last month
- A brookshear virtual machine written in Go☆10Sep 5, 2019Updated 6 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Two C# RunPE's capable of x86 and x64 injections☆11Dec 2, 2018Updated 7 years ago
- Process Hollowing Packer☆29Sep 5, 2017Updated 8 years ago
- tlsplayback is a set of Proof of Concepts (PoC) showing real-world replay attacks against TLS 1.3 libraries and browsers by exploiting 0-…☆16Aug 11, 2018Updated 7 years ago
- Linux Shared Library to Shellcode Loader☆95Feb 15, 2026Updated 2 months ago
- ☆36Nov 30, 2023Updated 2 years ago
- Proof of concept for Kerberos Armoring abuse.☆83Dec 12, 2025Updated 4 months ago
- ☆12Nov 15, 2017Updated 8 years ago
- Backport of SliverStager to work with DotNetToJScript for vba☆18Aug 9, 2024Updated last year
- A Small Collection of Very Basic Bash Scripts That I Use Regularly. 🪙💲💰☆58Apr 1, 2026Updated last month
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- AV/EDR processes termination by exploiting a vulnerable driver (BYOVD)☆274Jan 21, 2026Updated 3 months ago
- A Dockerized build pipeline for custom Windows x64 shellcode☆54Dec 12, 2025Updated 4 months ago
- Cobalt Strike BOF used to perform privilege escalation by exploiting the SeImpersonate privilege. Based on the original GodPotato PoC by …☆222Apr 16, 2026Updated 2 weeks ago
- Evasion kit for Cobalt Strike☆442Apr 3, 2026Updated last month
- Various Crypter Project☆10Feb 26, 2014Updated 12 years ago
- ☆109Feb 14, 2026Updated 2 months ago
- A service container for interacting with SRA's VECTR☆17Apr 9, 2025Updated last year
- Mass malicious script dump/Malware src dump☆16Nov 25, 2016Updated 9 years ago
- Sh3ller is a lightweight C2 framework in its simplest form.☆33Sep 5, 2025Updated 8 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Proof-of-Concept to evade auditd by tampering via ptrace☆19Aug 3, 2023Updated 2 years ago
- Framework for Making Environmental Keyed Payloads☆13Nov 1, 2016Updated 9 years ago
- XSSRecon automates the process of testing URL parameters for reflection of a test payload rix4uni and further checks how special characte…☆53Jan 16, 2026Updated 3 months ago
- Evasive shellcode loader with indirect syscalls, Thread name-calling allocation, PoolParty injection☆10Feb 26, 2025Updated last year
- A framework and build automation tool to process exploits/payloads to evade antivirus and endpoint detection response products using reus…☆11Jan 16, 2024Updated 2 years ago
- A in-the-wild V8 type confusion bug.☆30Aug 8, 2025Updated 8 months ago
- RDE1 (Rusty Data Exfiltrator) is client and server tool allowing auditor to extract files from DNS and HTTPS protocols written in Rust. �…☆41Apr 4, 2025Updated last year