Some HTB, THM, CTF, Penetration Testing, cyber security related resource and writeups
☆25May 21, 2025Updated 9 months ago
Alternatives and similar repositories for security-writeups
Users that are interested in security-writeups are comparing it to the libraries listed below
Sorting:
- Writeups for VishwaCTF'24 Mini and VishwaCTF'24☆11Apr 1, 2024Updated last year
- Experience the power of a PHP webshell designed to overcome the limitations of blacklisted system/exec functions.☆26Jul 14, 2024Updated last year
- Smart and efficient tool to automate open redirect detection at scale.☆10Mar 21, 2022Updated 3 years ago
- A lightweight Python tool to analyze PCAP files and generate network traffic reports. It detects traffic patterns, security concerns, and…☆18Sep 25, 2024Updated last year
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆45Mar 8, 2024Updated last year
- ☆12Apr 10, 2023Updated 2 years ago
- Tool for obtaining information about PPL processes☆16Feb 12, 2024Updated 2 years ago
- Red Teaming tools and techniques☆56Feb 18, 2023Updated 3 years ago
- Custom Binary Ninja Themes☆12Nov 11, 2023Updated 2 years ago
- hackxpert labs☆18Jun 29, 2022Updated 3 years ago
- ☆14Jul 21, 2023Updated 2 years ago
- https://github.com/yeyintminthuhtut/Awesome-Red-Teaming☆16Jan 15, 2022Updated 4 years ago
- Mass bruteforce authentication of common services with common credentials.☆54Dec 2, 2023Updated 2 years ago
- Dump files via Directory Traversal, LFI, Arbitrary File Read in a breeze with the help of ffuf☆19Dec 20, 2023Updated 2 years ago
- Resources, scripts, and overviews of the knowledge I collect going through Offensive Security's macOS Exploit Development course.☆49Oct 6, 2021Updated 4 years ago
- A collection of red blue team staff☆48Jun 1, 2023Updated 2 years ago
- All efforts for the AWE course and preparation for the Offensive Security Exploitation Expert (OSEE) exam.☆48Jun 8, 2020Updated 5 years ago
- Official writeups for Hack The Boo CTF 2023☆45Dec 4, 2024Updated last year
- Resources for Students in the Practical Webapp Security and Testing course☆23Oct 15, 2025Updated 4 months ago
- Curated list of well-developed C# Offensive Tools☆20Jan 30, 2020Updated 6 years ago
- ☆47Nov 16, 2023Updated 2 years ago
- Phishing Abusing Microsoft 365 OAuth Authorization Flow☆24Dec 17, 2021Updated 4 years ago
- ☆12Jul 29, 2019Updated 6 years ago
- Hello, Attack Surface Scan, BurpSuite完全被动扫描插件,不主动发送任何请求,适合挂机使用。☆24Jul 10, 2022Updated 3 years ago
- payload Execution by Fake Windows SmartScreen with requires Administrator privileges & Turn off real SmartScreen Filter☆112Jan 12, 2024Updated 2 years ago
- Nuclei scripts created by @rxerium for zero days / actively exploited vulnerabilities.☆77Feb 5, 2026Updated 3 weeks ago
- PoC for a Havoc agent/handler setup with all C2 traffic routed through GitHub. No direct connections: all commands and responses are rela…☆45Jul 9, 2025Updated 7 months ago
- ADDS (Active Directory Domain Services)☆28Feb 3, 2026Updated 3 weeks ago
- Playground for Race Condition attack☆24Mar 18, 2023Updated 2 years ago
- This is an UNOFFICIAL guide and general list of cheatsheets, references, and walkthroughs aligned with the OffSec OSCP exam process☆33Dec 12, 2025Updated 2 months ago
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆29Dec 19, 2023Updated 2 years ago
- Community curated list of templates for the nuclei engine to find security vulnerabilities.☆26Feb 18, 2026Updated last week
- Compilation of scripts/tools (made by me or not) that help me with Pentest and Bug Bounty.☆26Dec 22, 2025Updated 2 months ago
- Offensive Security MISC Annotations and Payloads for Ethical Hackers / Security Researchers☆30Dec 12, 2024Updated last year
- ☆35Apr 15, 2022Updated 3 years ago
- Malware AV evasion via disable Windows Defender (Registry). C++☆35Jun 5, 2022Updated 3 years ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆72Dec 28, 2023Updated 2 years ago
- Final assignment for the course Data Visualization with Python, part of IBM Data Science Professional Certification on Coursera☆11Jun 22, 2020Updated 5 years ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Dec 26, 2023Updated 2 years ago