Collection of all previous 1337UP CTF challenges.
☆79Jan 6, 2025Updated last year
Alternatives and similar repositories for CTF
Users that are interested in CTF are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Hijack a slack bot to phish your way in☆57Jul 17, 2025Updated 11 months ago
- A collection of Turbo Intruder scripts.☆73Feb 1, 2025Updated last year
- Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"☆16Apr 10, 2025Updated last year
- ☆18Feb 2, 2026Updated 5 months ago
- PoC shadow SaaS and insecure credential detection system using a browser extension.☆45May 8, 2026Updated last month
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Autonomous AI C2☆33Jul 23, 2024Updated last year
- Burp Suite extension for testing Passkey systems.☆76Apr 1, 2025Updated last year
- Semgrep-based Policy Controller for Kubernetes☆47Apr 4, 2025Updated last year
- Search engine for CTF writeups with instant results.☆157Mar 6, 2025Updated last year
- Scalable integrity framework for ABAC on AWS☆56Mar 14, 2025Updated last year
- Find what egress ports are allowed☆47Nov 19, 2025Updated 7 months ago
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆31Nov 30, 2025Updated 7 months ago
- Go library for mapping IP address ranges to cloud provider regions (currently: AWS and GCP)☆24Jun 24, 2026Updated last week
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆146Jan 2, 2025Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆87Apr 7, 2026Updated 2 months ago
- Unauthenticated enumeration of AWS IAM Roles.☆28Apr 18, 2026Updated 2 months ago
- A fork of the Go language with some tweaks☆55Jan 29, 2025Updated last year
- A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.☆181Jan 9, 2026Updated 5 months ago
- Data Backend server that uses eBPF to monitor network connections and provide real-time network analytics.☆19Aug 14, 2025Updated 10 months ago
- Create tar/zip archives that try to exploit zipslip vulnerability.☆48Sep 20, 2024Updated last year
- A recon tool for GCP Service Account Keys that requires no permissions☆27Apr 14, 2025Updated last year
- A Malware Scarecrow for Windows 10/11 with a user-friendly touch.☆73Oct 30, 2024Updated last year
- SprayShark is a modular G-Suite password sprayer with threading!☆59May 17, 2025Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Framework for Monitoring File Ingestion Source for Yara Matches☆52Mar 10, 2025Updated last year
- This repository contains an IDA processor for loading and disassembling compiled yara rules.☆53Dec 31, 2024Updated last year
- Linux CS bypass technique☆33Feb 4, 2025Updated last year
- Attaché provides an emulation layer for Cloud Provider IMDS APIs☆59Jun 21, 2026Updated last week
- Addon for BHCE☆58Apr 1, 2025Updated last year
- ☆18Jul 30, 2024Updated last year
- ☆87Mar 30, 2026Updated 3 months ago
- Proof-of-concept modular implant platform leveraging v8☆55Mar 4, 2025Updated last year
- Mapping of open-source detection rules and atomic tests.☆213Feb 16, 2026Updated 4 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A web honeypot library to create vulnerable-looking endpoints to detect and mislead attackers☆438Jan 14, 2025Updated last year
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆24Apr 27, 2026Updated 2 months ago
- Convert cloudtrail data to MITRE ATT&CK Sightings☆82Jul 25, 2022Updated 3 years ago
- A web CTF for training developers in bug hunting and secure coding!☆101Jan 12, 2025Updated last year
- An IAM Simulator that outputs detailed explains of how a request was evaluated.☆103Updated this week
- Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide☆44Dec 16, 2024Updated last year
- Feed it a number. Your cloned voice does the social engineering, while you sip your coffee. A ghost that talks on the phone for you.☆114May 30, 2025Updated last year