Security Work and Manual Reviews facilitated by Open Source Technology Improvement Fund, aka OSTIF
☆35Jun 24, 2026Updated last week
Alternatives and similar repositories for OSTIF
Users that are interested in OSTIF are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Penetration Testing & Red Team tools & scripts☆12Sep 22, 2023Updated 2 years ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆13Feb 4, 2024Updated 2 years ago
- WebDirScan is a tool for brute-forcing URIs (directories and files) on web servers by taking input directory to scan for files & director…☆11Mar 31, 2023Updated 3 years ago
- Apache Superset Auth Bypass (CVE-2023-27524)☆11May 9, 2023Updated 3 years ago
- Community curated list of templates for the erebus engine to find security vulnerabilities.☆16Jul 10, 2021Updated 4 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- A compilation of important commands, files, and tools used in Pentesting☆56Jan 17, 2023Updated 3 years ago
- ☆32Mar 21, 2023Updated 3 years ago
- A Red Teaming tool focused on profiling the target.☆29Jan 10, 2026Updated 5 months ago
- Utility to check the integrity of your DNS managed zones at your cloud service provider☆15Jan 19, 2022Updated 4 years ago
- Tips, Tricks, and Scripts for Linux Post Exploitation☆37Mar 13, 2023Updated 3 years ago
- Command and Control Framework using powershell implants☆36Jun 17, 2025Updated last year
- ☆13Mar 4, 2021Updated 5 years ago
- This repository contains examples of information security policies, GDPR protocols and an operational security guide with examples of bes…☆13Apr 21, 2026Updated 2 months ago
- ☆32Apr 15, 2023Updated 3 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Web Hacking and Red Teaming MindMap☆80Dec 24, 2025Updated 6 months ago
- ☆21Updated this week
- ☆18Apr 3, 2023Updated 3 years ago
- Cloud Pentesting Resource Collection☆40Apr 18, 2026Updated 2 months ago
- A fast enumeration tool for publicly exposed Azure Storage blobs.☆122Mar 25, 2023Updated 3 years ago
- Linux and windows privilege escalation cheatsheet☆11May 18, 2023Updated 3 years ago
- Simulate Windows EXE for Malware Research!☆20Sep 4, 2024Updated last year
- Offensive Security OSWE Prep 2022☆76Sep 10, 2022Updated 3 years ago
- Exploits for CVE-2023-27327 and CVE-2023-27328☆15May 9, 2023Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Burp Suite Extensions☆13Oct 19, 2021Updated 4 years ago
- The results of my small term paper on the topic of the Internet of Vulnerable Things and the exploit for CVE-2022-48194.☆19Jan 20, 2023Updated 3 years ago
- Distributed phishing framework designed to streamline offensive security phishing☆41Feb 16, 2023Updated 3 years ago
- 🏠 my dotfiles☆19Oct 18, 2024Updated last year
- EF/CF - Extremely Fast smart Contract Fuzzing☆70Jul 11, 2023Updated 2 years ago
- CVE-2022-25636 exploit rewritten with pipe primitive☆19Apr 5, 2022Updated 4 years ago
- An MCP Server for Pwndoc (Pentesting Reporting Tool)☆40Jan 23, 2026Updated 5 months ago
- Ethical Remote Acces Tool Client and Server for W10 and Linux Persist functionality☆49Feb 12, 2023Updated 3 years ago
- SBOM generator for Debian-based distributions☆32Updated this week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Exploit for elevation of privilege vulnerability in QuickHeal's Seqrite EPS (CVE-2023-31497).☆18Oct 30, 2023Updated 2 years ago
- ☆16Apr 21, 2023Updated 3 years ago
- PoC - Authenticated Remote Code Execution in VMware vCenter Server (Exploit)☆45Jul 16, 2024Updated last year
- ☆11Nov 6, 2023Updated 2 years ago
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆36Aug 20, 2023Updated 2 years ago
- My journey and notes on learning Offensive Security from the ground up☆21Dec 22, 2025Updated 6 months ago
- An isolated environment for DNS cache poisoning attack investigation and demonstration.☆10Nov 22, 2020Updated 5 years ago