Collection of all previous 1337UP CTF challenges.
☆79Jan 6, 2025Updated last year
Alternatives and similar repositories for CTF
Users that are interested in CTF are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Hijack a slack bot to phish your way in☆57Jul 17, 2025Updated 8 months ago
- A collection of Turbo Intruder scripts.☆71Feb 1, 2025Updated last year
- Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"☆16Apr 10, 2025Updated 11 months ago
- ☆18Feb 2, 2026Updated last month
- PoC shadow SaaS and insecure credential detection system using a browser extension.☆42Feb 8, 2026Updated last month
- Autonomous AI C2☆33Jul 23, 2024Updated last year
- Burp Suite extension for testing Passkey systems.☆75Apr 1, 2025Updated 11 months ago
- Semgrep-based Policy Controller for Kubernetes☆47Apr 4, 2025Updated 11 months ago
- Search engine for CTF writeups with instant results.☆154Mar 6, 2025Updated last year
- Scalable integrity framework for ABAC on AWS☆56Mar 14, 2025Updated last year
- Find what egress ports are allowed☆46Nov 19, 2025Updated 4 months ago
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆30Nov 30, 2025Updated 3 months ago
- Go library for mapping IP address ranges to cloud provider regions (currently: AWS and GCP)☆23Mar 16, 2026Updated last week
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆142Jan 2, 2025Updated last year
- Unauthenticated enumeration of AWS IAM Roles.☆26Sep 7, 2025Updated 6 months ago
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆84Updated this week
- A fork of the Go language with some tweaks☆56Jan 29, 2025Updated last year
- A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.☆174Jan 9, 2026Updated 2 months ago
- Data Backend server that uses eBPF to monitor network connections and provide real-time network analytics.☆18Aug 14, 2025Updated 7 months ago
- Create tar/zip archives that try to exploit zipslip vulnerability.☆48Sep 20, 2024Updated last year
- A recon tool for GCP Service Account Keys that requires no permissions☆27Apr 14, 2025Updated 11 months ago
- A Malware Scarecrow for Windows 10/11 with a user-friendly touch.☆70Oct 30, 2024Updated last year
- Framework for Monitoring File Ingestion Source for Yara Matches☆50Mar 10, 2025Updated last year
- SprayShark is a modular G-Suite password sprayer with threading!☆57May 17, 2025Updated 10 months ago
- This repository contains an IDA processor for loading and disassembling compiled yara rules.☆51Dec 31, 2024Updated last year
- Linux CS bypass technique☆32Feb 4, 2025Updated last year
- Attaché provides an emulation layer for Cloud Provider IMDS APIs☆60Updated this week
- ☆40Nov 29, 2024Updated last year
- Addon for BHCE☆58Apr 1, 2025Updated 11 months ago
- ☆18Jul 30, 2024Updated last year
- ☆86Feb 4, 2026Updated last month
- Proof-of-concept modular implant platform leveraging v8☆54Mar 4, 2025Updated last year
- Mapping of open-source detection rules and atomic tests.☆204Feb 16, 2026Updated last month
- A web honeypot library to create vulnerable-looking endpoints to detect and mislead attackers☆433Jan 14, 2025Updated last year
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆23Aug 30, 2024Updated last year
- A web CTF for training developers in bug hunting and secure coding!☆100Jan 12, 2025Updated last year
- Convert cloudtrail data to MITRE ATT&CK Sightings☆82Jul 25, 2022Updated 3 years ago
- An IAM Simulator that outputs detailed explains of how a request was evaluated.☆100Mar 14, 2026Updated last week
- Feed it a number. Your cloned voice does the social engineering, while you sip your coffee. A ghost that talks on the phone for you.☆111May 30, 2025Updated 9 months ago