An in-depth guide to help people who are new to penetration testing or red teaming and are looking to gain an overview of the penetration testing process. This guide will focus on both the penetration testing and red team process and contain detailed information.
☆172Jan 7, 2025Updated last year
Alternatives and similar repositories for Penetration-Testing-Cheat-Sheet
Users that are interested in Penetration-Testing-Cheat-Sheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- WebDirScan is a tool for brute-forcing URIs (directories and files) on web servers by taking input directory to scan for files & director…☆11Mar 31, 2023Updated 3 years ago
- quick and dirty proof-of-concept to hide shells in images☆52Jun 27, 2024Updated 2 years ago
- A Red Teaming tool focused on profiling the target.☆29Jan 10, 2026Updated 5 months ago
- ☆32Mar 21, 2023Updated 3 years ago
- A curated list wordlists for bruteforcing and fuzzing☆86Apr 3, 2023Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- HaxorHandbook is the ultimate cheat sheet for cybersecurity enthusiasts looking to up their game. Our comprehensive guide includes must-h…☆83Mar 8, 2024Updated 2 years ago
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.☆97Jan 2, 2025Updated last year
- This is a fully automated Active directory Lab made with the purpose to reduce the hustle of creating it manually.☆104Aug 14, 2025Updated 10 months ago
- backdoor exploit for vsftpd 2.3.4 on python☆15Oct 14, 2023Updated 2 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆22Jun 11, 2022Updated 4 years ago
- A RedTeam Toolkit☆407Aug 14, 2025Updated 10 months ago
- Protect your personal information from hackers and cyber criminals with HackAlert. Our product scans the internet for your online persona…☆18Oct 16, 2024Updated last year
- SidePeek.js is a curated set of JavaScript payloads for browser-based recon. Run them in DevTools or as bookmarklets to uncover hidden AP…☆22May 13, 2025Updated last year
- Ansible + Vagrant + Hyper-V + Vulnerable AD 😎☆92Aug 11, 2024Updated last year
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- [BASH] Bounty Meter is a command-line utility tool designed for bug bounty hunters to define their bounty target for a year, maintain and…☆32Jul 21, 2023Updated 2 years ago
- Work in progress...☆483Apr 18, 2026Updated 2 months ago
- Searches for employees of a company on linkedin, generates a list of possible emails and verifies them.☆50Sep 30, 2024Updated last year
- GTFOArgs is a curated list of programs and their associated arguments that can be exploited to gain privileged access or execute arbitrar…☆143Mar 24, 2026Updated 3 months ago
- Command & Control-Framework created for collaboration in python3☆325May 22, 2026Updated last month
- Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab☆2,310Apr 12, 2024Updated 2 years ago
- Fast Search including Dark Web Search☆133Oct 19, 2022Updated 3 years ago
- ☆20Jul 7, 2024Updated last year
- Remote persistent 🔑Logger for Windows and Linux☆292Apr 21, 2023Updated 3 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- ☆91Aug 5, 2023Updated 2 years ago
- An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.☆48Nov 17, 2022Updated 3 years ago
- Web Hacking and Red Teaming MindMap☆80Dec 24, 2025Updated 6 months ago
- "XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected and persist…☆91Jul 26, 2024Updated last year
- Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…☆35Feb 2, 2026Updated 4 months ago
- A compilation of important commands, files, and tools used in Pentesting☆56Jan 17, 2023Updated 3 years ago
- Hide an IP address in scripts using hex/decimal/octal conversions☆73Apr 6, 2025Updated last year
- Maltego Transforms for generating screenshots from Websites and URLs☆16Apr 24, 2023Updated 3 years ago
- How to intercept network trafic on Android☆231May 22, 2024Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Hacking tool for enumeration and automated attacking. Port Scanner, Automatic SSH brute, DNS queries, IP and phonenumber geolocation☆14May 25, 2023Updated 3 years ago
- Automate Scoping, OSINT and Recon assessments.☆115Feb 3, 2026Updated 4 months ago
- ☆28Apr 24, 2025Updated last year
- Cheat-Sheet of tools for penetration testing☆53May 23, 2023Updated 3 years ago
- Recursos y materiales vistos, usados, en el taller de Introducción al Hacking Ético, que ha sido impartido por Jesús Eduardo Lugo Vela y …☆14Mar 14, 2024Updated 2 years ago
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆83Sep 13, 2024Updated last year
- Just some random Red Team Scripts that can be useful☆153May 12, 2026Updated last month