Local penetration testing lab using docker-compose.
☆215Jun 17, 2025Updated last year
Alternatives and similar repositories for pentest_lab
Users that are interested in pentest_lab are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Script to manage and create local pentesting training virtual lab☆52Jun 7, 2020Updated 6 years ago
- This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities☆94Jun 11, 2023Updated 3 years ago
- OWASP practice lab, just a few copy/pastes away. Fully stacked and ready to go with Docker☆22Oct 13, 2018Updated 7 years ago
- Pentesting lab with a Kali Linux instance accessible via ssh & wireguard VPN and with vulnerable instances in a private subnet☆196Jul 4, 2024Updated 2 years ago
- Red Team Attack Lab for TTP testing & research☆594May 15, 2023Updated 3 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A simple Node.js Express REST app with some OWASP vulnerabilities.☆23May 14, 2026Updated last month
- Vagrant VirtualBox environment for conducting an internal network penetration test☆994Jun 5, 2023Updated 3 years ago
- Keycloak with Cloudflare Tunnel using docker-compose☆15Oct 26, 2020Updated 5 years ago
- Intentionaly very vulnerable API with bonus bad coding practices☆53Nov 15, 2025Updated 7 months ago
- Fast and easy script to manage pentesting training apps☆384Feb 17, 2024Updated 2 years ago
- Collection of my slide decks, conference videos and research white papers☆27Sep 23, 2025Updated 9 months ago
- qsinject (Query String Inject) is a tool that allows you to quickly substitute query string values with regex matches, one-at-a-time.☆30May 6, 2020Updated 6 years ago
- Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab☆2,312Apr 12, 2024Updated 2 years ago
- Slide deck for DEF CON 30 - Read Team Village - Offensive Wireless Security presentation☆13Aug 16, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Active Directory Lab for Penetration Testing☆57Jul 16, 2025Updated 11 months ago
- Awesome Vulnerable Applications☆1,433Jun 15, 2026Updated 3 weeks ago
- ☆88May 1, 2023Updated 3 years ago
- ☆10May 15, 2020Updated 6 years ago
- This repository provides examples of Vulnerable and Mitigated code as per CWE Categorization.☆23May 4, 2024Updated 2 years ago
- Kudzu is a Go C2 platform with an emphasis on extensibility.☆11Mar 30, 2021Updated 5 years ago
- ManageEngine ADManager Command Injection☆11Oct 2, 2023Updated 2 years ago
- Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automat…☆44Jun 15, 2025Updated last year
- This contains a number of examples demonstrating how to use callback functions in supported aggressor script functions☆38Mar 17, 2025Updated last year
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Passive reconnaissance/enumeration of interesting targets by watching for SSL certificates being issued☆67Oct 11, 2022Updated 3 years ago
- A collection of awesome penetration testing resources☆13Jan 13, 2019Updated 7 years ago
- This contains notes, slides, and code for my Infosec World talk☆19Sep 26, 2023Updated 2 years ago
- Dockerfile with advanced configurations for Offensive Docker.☆13Sep 18, 2020Updated 5 years ago
- Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04☆116Jun 12, 2024Updated 2 years ago
- Burp Suite Configuration Tweak☆13Mar 15, 2024Updated 2 years ago
- a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations…☆535Mar 27, 2022Updated 4 years ago
- Listing of my writeups from HackTheBox, VulnHub, TryHackMe, others...☆19May 26, 2021Updated 5 years ago
- ☆12Oct 2, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A Docker container for remote penetration testing.☆141Mar 16, 2021Updated 5 years ago
- Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.☆675Jun 14, 2023Updated 3 years ago
- this is a small script for extracting questions from try hack me room ,and creating a MD file☆13Mar 6, 2023Updated 3 years ago
- A proof of concept to dump Django website's source code affected by NGINX's off-by-slash alias directive misconfiguration.☆24Dec 8, 2022Updated 3 years ago
- your bestfried for finding LinkedIn Employees on github☆15Mar 28, 2023Updated 3 years ago
- Noob Penetration tester☆11Jul 17, 2025Updated 11 months ago
- 🐰 Managing command snippets for hackers/bug bounty hunters. with pet.☆110May 6, 2023Updated 3 years ago