All Apprentice and Practitioner-level Portswigger labs
☆33May 18, 2023Updated 2 years ago
Alternatives and similar repositories for Portswigger-Labs
Users that are interested in Portswigger-Labs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Repository to gather the .NET malware I will be developing☆17Mar 7, 2026Updated last month
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…☆105Jul 14, 2025Updated 9 months ago
- Exfiltrate files using the HTTP protocol version ("HTTP/1.0" is a 0 and "HTTP/1.1" is a 1)☆24Oct 23, 2021Updated 4 years ago
- PoC to self-delete a binary in C#☆36Feb 6, 2024Updated 2 years ago
- A tool to analyze Ntds.dit files once the NTLM and LM hashes have been cracked.☆15May 13, 2021Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Parser of the industrial protocol S7 (S7comm) using Libpcap☆14May 1, 2020Updated 5 years ago
- Script to extract the cached credentials from SSSD, getting Active Directory credentials from Unix systems☆24Jun 14, 2023Updated 2 years ago
- EMQX Dashboard Malicious Plugin leading to RCE☆47Jun 16, 2025Updated 10 months ago
- Manage Shadows Copies via the VSS API using C#, C++, Crystal or Python. Working on Windows 11☆86Jan 26, 2026Updated 2 months ago
- P/Invoke definitions from the most-of-the-time offline offline pinvoke.net. Website: https://ricardojoserf.gitbook.io/pinvoke☆23Mar 23, 2025Updated last year
- Listener that spawns a new tmux window for each incoming reverse shell + Supports listening on many ports☆61Jul 13, 2025Updated 9 months ago
- BypassCredGuard CS BOF☆51Jan 23, 2025Updated last year
- Obfuscate payloads using IPv4, IPv6, MAC or UUID strings☆23Feb 17, 2024Updated 2 years ago
- Impersonate Tokens using only NTAPI functions☆84Apr 4, 2025Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Vulnserver exploits☆15May 1, 2020Updated 5 years ago
- Exploits written while preparing for the OSED exam☆24Apr 30, 2024Updated last year
- ☆22Jun 24, 2024Updated last year
- Virtual machines and scripts to attack WPA2-Enterprise networks through Rogue Access Points downgrading the authentication method to GTC☆63May 29, 2023Updated 2 years ago
- Collection Of Reverse Shell that can easily generate using Python3☆58Jan 25, 2024Updated 2 years ago
- https://www.nu11secur1ty.com☆24Feb 15, 2026Updated 2 months ago
- OSCP preperation and HackTheBox write ups.☆62Apr 2, 2023Updated 3 years ago
- CVE-2024-24919 exploit☆19May 31, 2024Updated last year
- Echo Hack The Talk Materials 2019☆12Sep 12, 2019Updated 6 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- A Ligolo-ng JavaScript agent working inside Chrome & Chromium-based browsers by leveraging Isolated Web Applications.☆121Mar 30, 2026Updated 2 weeks ago
- Tinder user searcher and DB creation. Proof of concept for Tinder security team☆19Mar 26, 2019Updated 7 years ago
- Google Drive, OneDrive and Youtube as covert-channels - Control systems remotely by uploading files to Google Drive, OneDrive, Youtube or…☆68Oct 31, 2021Updated 4 years ago
- A not-curated list of cloud hacking labs☆26Apr 18, 2024Updated 2 years ago
- Python3 HTTP Server with upload functionality☆21Dec 4, 2023Updated 2 years ago
- Simple bot visitor service for XSS challenges in CTF☆11Nov 9, 2022Updated 3 years ago
- ☆20Dec 23, 2023Updated 2 years ago
- Android App Reverse Engineering & Analysis Toolkit☆17Jul 10, 2024Updated last year
- Register-based VM as C library☆11Feb 13, 2016Updated 10 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Automated Pass-the-Ticket (PtT) attack. Standalone alternative to Rubeus and Mimikatz for this attack. Implemented in C#, C++, Crystal, P…☆129Feb 17, 2026Updated 2 months ago
- bounty collection☆43Sep 1, 2024Updated last year
- Web Application Attack☆14Dec 16, 2019Updated 6 years ago
- HP Data Protector Arbitrary Remote Command Execution☆11Aug 12, 2018Updated 7 years ago
- Solutions from @PortSwigger labs☆14Apr 11, 2024Updated 2 years ago
- ☆25Aug 19, 2024Updated last year
- Moodle (< 3.6.2, < 3.5.4, < 3.4.7, < 3.1.16) XSS PoC for Privilege Escalation (Student to Admin)☆17Apr 29, 2021Updated 4 years ago