Alternatives and similar repositories for OSEP

Users that are interested in OSEP are comparing it to the libraries listed below

• 0x4xel / Bat-Potato
  Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.
  ☆48Updated 2 years ago
• kljunowsky / CVE-2022-42889-text4shell
  Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.
  ☆56Updated last year
• liquidsec / aspnetCryptTools
  Just some random small tools for dealing with asp.net Forms Authentication Cookies
  ☆26Updated 4 years ago
• PenTestical / CVE-2020-9484
  ☆34Updated 3 years ago
• ksecurity45 / ADCheatgen
  ☆19Updated 3 years ago
• H0j3n / EzpzSharepoint
  ☆27Updated 3 years ago
• byt3hx / research
  The purpose of this repo is to share my research
  ☆14Updated 6 months ago
• ClickCyber / cve-2022-42889
  cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…
  ☆39Updated 3 years ago
• smokeintheshell / CVE-2023-20198
  CVE-2023-20198 Exploit PoC
  ☆58Updated last year
• PortSwigger / sensitive-discoverer
  Introduction to CYS4-SensitiveDiscoverer, a Burp extension that discovers sensitive information inside HTTP messages.
  ☆22Updated 10 months ago
• p0dalirius / Tomcat-webshell-application
  A webshell application and interactive shell for pentesting Apache Tomcat servers.
  ☆121Updated 8 months ago
• PortSwigger / server-side-prototype-pollution
  ☆39Updated 2 years ago
• a6avind / spoofcheck
  Spoofcheck
  ☆42Updated 5 months ago
• mohemiv / dodgypass
  Golden collection of weak passwords
  ☆69Updated 10 months ago
• praetorian-inc / NTLMRecon
  A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.
  ☆98Updated last year
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆52Updated 3 years ago
• 0xMrNiko / Cobalt-Strike-Cheat-Sheet
  ☆25Updated 3 years ago
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆43Updated 3 years ago
• J0ey17 / CVE-2022-22963_Reverse-Shell-Exploit
  CVE-2022-22963 is a vulnerability in the Spring Cloud Function Framework for Java that allows remote code execution. This python script w…
  ☆24Updated 2 years ago
• dwisiswant0 / cve-2023-50164-poc
  Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")
  ☆57Updated last year
• surya-dev-singh / AmsiBypass-OpenSession
  This code bypass AMSI by setting JE instruction to JNE in assembly of amsi.dll file
  ☆36Updated 2 years ago
• horizon3ai / CVE-2023-27532
  POC for Veeam Backup and Replication CVE-2023-27532
  ☆70Updated 2 years ago
• horizon3ai / CVE-2024-0204
  Authentication Bypass in GoAnywhere MFT
  ☆64Updated last year
• watchtowrlabs / watchTowr-vs-FortiWeb-CVE-2025-25257
  ☆88Updated 3 months ago
• alt3kx / CVE-2022-1388_PoC
  F5 BIG-IP RCE exploitation (CVE-2022-1388)
  ☆88Updated 3 years ago
• k4sth4 / SeLoadDriverPrivilege
  Windows Privilege Escalation
  ☆20Updated 3 years ago
• e1abrador / Crackmapexec-custom-modules
  Crackmapexec custom scripts used in my internal pentests.
  ☆24Updated last year
• ambionics / vbulletin-exploits
  Exploits targeting vBulletin.
  ☆74Updated 2 years ago
• winterwolf32 / Red-teaming
  ☆24Updated 6 years ago
• kh4sh3i / exchange-penetration-testing
  The great Microsoft exchange hack: A penetration tester’s guide (exchange penetration testing)
  ☆114Updated 2 months ago