CTF Writeups
☆12Feb 25, 2023Updated 3 years ago
Alternatives and similar repositories for CTF
Users that are interested in CTF are comparing it to the libraries listed below
Sorting:
- AWS S3 Bucket Finder.☆14Oct 28, 2025Updated 4 months ago
- Customizable Security Scanner written in Go�☆16Jul 6, 2016Updated 9 years ago
- Deeplack is a python script designed for comparing images (screenshots) using DeepAI to detect changes on websites.☆14Jun 19, 2019Updated 6 years ago
- Notes as I learn basic AWS penetration testing☆67May 28, 2019Updated 6 years ago
- Just lists of lists of lists !☆17Oct 13, 2025Updated 4 months ago
- HTML source files demonstrating HTML5 postmessage vulnerabilities☆20Jul 26, 2020Updated 5 years ago
- Docker Pentest Lists are collection of Dockerfiles or Links to Dockerfiles for containers used in Penetration Tests☆21May 1, 2017Updated 8 years ago
- Subdomains-enumeration, subdomain-takeover monitoring api and S3 bucket scanner.☆40Nov 21, 2025Updated 3 months ago
- ☆21Nov 13, 2019Updated 6 years ago
- A Tool to Extract Open Kibana Instances on Internet and Map them to their Corresponding Organizations for Bug Bounty.☆16Sep 7, 2019Updated 6 years ago
- Cheat Sheets, Metodologies etc.☆19Apr 12, 2019Updated 6 years ago
- CVE-2019-16097 PoC☆23Sep 19, 2019Updated 6 years ago
- Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations☆58Jul 26, 2020Updated 5 years ago
- Index all certificates from certificate transparancy into Elasticsearch☆22Nov 22, 2017Updated 8 years ago
- ☆26Feb 16, 2021Updated 5 years ago
- List out all of payload for security testing☆25May 2, 2022Updated 3 years ago
- Scan secrets from Continuous Integration Build Logs☆53Oct 14, 2019Updated 6 years ago
- ☆27Dec 5, 2019Updated 6 years ago
- Resources I consider useful for security research of web applications☆61Dec 15, 2020Updated 5 years ago
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆62Jan 24, 2019Updated 7 years ago
- Simple vulnearable Flask web application☆29Dec 30, 2025Updated 2 months ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆32Jan 22, 2018Updated 8 years ago
- Takes ip range, Scan all open SSL Certs, Grab Cnames☆113Sep 23, 2018Updated 7 years ago
- CVE-2019-12949☆26Jun 28, 2019Updated 6 years ago
- Secure Coding Rules for Java☆31Oct 20, 2025Updated 4 months ago
- Oracle Database Penetration Testing Reference (10g/11g)☆40Jul 28, 2018Updated 7 years ago
- Deobfuscated + reverse engineered javascript malware☆30Jul 20, 2018Updated 7 years ago
- Misc. Public Reports of Penetration Testing and Security Audits.☆35Jan 8, 2021Updated 5 years ago
- ☆27Feb 7, 2023Updated 3 years ago
- Material from presentations done by GoSecure researchers☆34Oct 10, 2023Updated 2 years ago
- Monitoring for leaks of sensitive information in git repositories☆43Dec 18, 2023Updated 2 years ago
- ☆34Jul 17, 2019Updated 6 years ago
- Zeek scripts that provide an alternative log file logging TLS/SSL traffic☆12May 4, 2021Updated 4 years ago
- Script will enumerate domain name using horizontal enumeration, reverse lookup. Each horziontal domain will then be vertically enumerated…☆31Aug 2, 2019Updated 6 years ago
- Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching☆33May 14, 2016Updated 9 years ago
- pollen - A command-line tool for interacting with TheHive☆36Jun 6, 2019Updated 6 years ago
- Bug Bounty Tools☆34Jul 2, 2020Updated 5 years ago
- ☆38Aug 22, 2018Updated 7 years ago
- vulnerable single sign on☆150Aug 1, 2024Updated last year