ostif-org/OSTIF external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ostif-org/OSTIF

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ostif-org/OSTIF)

Close

ostif-org / OSTIFView on GitHubMore

• External links
• Readme badge

Security Work and Manual Reviews facilitated by Open Source Technology Improvement Fund, aka OSTIF

☆35May 12, 2026Updated last week

Alternatives and similar repositories for OSTIF

Users that are interested in OSTIF are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• zruvv / OffensiveSecurity

  View on GitHub
  Penetration Testing & Red Team tools & scripts
  ☆12Sep 22, 2023Updated 2 years ago
• 0x3rhy / BOF-DCOMPotato-PrintNotify

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…
  ☆13Feb 4, 2024Updated 2 years ago
• jayateertha043 / WebDirScan

  View on GitHub
  WebDirScan is a tool for brute-forcing URIs (directories and files) on web servers by taking input directory to scan for files & director…
  ☆11Mar 31, 2023Updated 3 years ago
• tardc / CVE-2023-27524

  View on GitHub
  Apache Superset Auth Bypass (CVE-2023-27524)
  ☆11May 9, 2023Updated 3 years ago
• ethicalhackingplayground / erebus-templates

  View on GitHub
  Community curated list of templates for the erebus engine to find security vulnerabilities.
  ☆16Jul 10, 2021Updated 4 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• Totes5706 / Offensive-Security-Cheat-Sheet

  View on GitHub
  A compilation of important commands, files, and tools used in Pentesting
  ☆56Jan 17, 2023Updated 3 years ago
• madalin-dogaru / profiler

  View on GitHub
  A Red Teaming tool focused on profiling the target.
  ☆29Jan 10, 2026Updated 4 months ago
• Atomics-on-A-Friday / Emulation-Tools

  View on GitHub
  ☆32Mar 21, 2023Updated 3 years ago
• binxio / cloud-dns-integrity-checker

  View on GitHub
  Utility to check the integrity of your DNS managed zones at your cloud service provider
  ☆15Jan 19, 2022Updated 4 years ago
• CSDSkilling / blueprints

  View on GitHub
  ☆21Jul 16, 2025Updated 10 months ago
• regorsec / Linux-Post-Exploitation

  View on GitHub
  Tips, Tricks, and Scripts for Linux Post Exploitation
  ☆37Mar 13, 2023Updated 3 years ago
• berez23 / canvas

  View on GitHub
  ☆13Mar 4, 2021Updated 5 years ago
• SevenStones / auditpolCIS

  View on GitHub
  CIS Benchmark testing of Windows SIEM configuration
  ☆45May 25, 2023Updated 2 years ago
• yo-yo-yo-jbo / macos_sandbox

  View on GitHub
  ☆32Apr 15, 2023Updated 3 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• N1arut / Pentesting-Mind-Map

  View on GitHub
  Web Hacking and Red Teaming MindMap
  ☆79Dec 24, 2025Updated 5 months ago
• suvendu-dash / misconfig-s3-bucket

  View on GitHub
  ☆18Apr 3, 2023Updated 3 years ago
• Macmod / goblob

  View on GitHub
  A fast enumeration tool for publicly exposed Azure Storage blobs.
  ☆119Mar 25, 2023Updated 3 years ago
• alicangnll / SandAnalyze

  View on GitHub
  Simulate Windows EXE for Malware Research!
  ☆20Sep 4, 2024Updated last year
• rootshooter / oswe-prep-2022

  View on GitHub
  Offensive Security OSWE Prep 2022
  ☆79Sep 10, 2022Updated 3 years ago
• kn32 / parallels-plist-escape

  View on GitHub
  Exploits for CVE-2023-27327 and CVE-2023-27328
  ☆15May 9, 2023Updated 3 years ago
• redlure / redlure-console

  View on GitHub
  Distributed phishing framework designed to streamline offensive security phishing
  ☆41Feb 16, 2023Updated 3 years ago
• riparino / Task_Scheduler_ALPC

  View on GitHub
  PoC exploit for late August 2018 Task Scheduler ALPC Vulnerability
  ☆23Oct 10, 2019Updated 6 years ago
• uni-due-syssec / efcf-framework

  View on GitHub
  EF/CF - Extremely Fast smart Contract Fuzzing
  ☆70Jul 11, 2023Updated 2 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• veritas501 / CVE-2022-25636-PipeVersion

  View on GitHub
  CVE-2022-25636 exploit rewritten with pipe primitive
  ☆19Apr 5, 2022Updated 4 years ago
• fr4nkxixi / CVE-2022-24481-POC

  View on GitHub
  POC for CLFS CVE-2022-24481
  ☆14May 14, 2023Updated 3 years ago
• PolGs / Persistent-Backdoor

  View on GitHub
  Ethical Remote Acces Tool Client and Server for W10 and Linux Persist functionality
  ☆49Feb 12, 2023Updated 3 years ago
• 0xInfection / EPScalate

  View on GitHub
  Exploit for elevation of privilege vulnerability in QuickHeal's Seqrite EPS (CVE-2023-31497).
  ☆18Oct 30, 2023Updated 2 years ago
• elihypoo414 / favfound

  View on GitHub
  ☆16Apr 21, 2023Updated 3 years ago
• yeahhub / awesome-pentest

  View on GitHub
  A collection of awesome penetration testing resources, tools and other shiny things
  ☆13May 18, 2018Updated 8 years ago
• l0n3m4n / CVE-2024-22274-RCE

  View on GitHub
  PoC - Authenticated Remote Code Execution in VMware vCenter Server (Exploit)
  ☆46Jul 16, 2024Updated last year
• veritas501 / CVE-2022-0185-PipeVersion

  View on GitHub
  CVE-2022-0185 exploit rewritten with pipe primitive
  ☆16Apr 5, 2022Updated 4 years ago
• heriet / acropalypse-gif

  View on GitHub
  ☆11Nov 6, 2023Updated 2 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• VKo9 / AD-attacks-automation-scripts

  View on GitHub
  This repository contains scripts about ACL abuse and any other active directory attacking methods.
  ☆36Aug 20, 2023Updated 2 years ago
• root-at-iyn / Offensive-Security

  View on GitHub
  My journey and notes on learning Offensive Security from the ground up
  ☆21Dec 22, 2025Updated 5 months ago
• zphw / dns-cache-poisoning-demo

  View on GitHub
  An isolated environment for DNS cache poisoning attack investigation and demonstration.
  ☆10Nov 22, 2020Updated 5 years ago
• phith0n / race-condition-playground

  View on GitHub
  Playground for Race Condition attack
  ☆24Mar 18, 2023Updated 3 years ago
• hackedbyagirl / Offensive-Security-Vault

  View on GitHub
  Offensive Security Vault structure for Obsidian
  ☆24Jan 9, 2023Updated 3 years ago
• fruh / ExtendedMacro

  View on GitHub
  ExtendedMacro - BurpSuite plugin providing extended macro functionality
  ☆15Jan 13, 2021Updated 5 years ago
• SorceryIE / cfor_exploit

  View on GitHub
  Exploit script for the CFOR vulnerability using Github's GraphQL API
  ☆28Aug 7, 2024Updated last year