All Apprentice and Practitioner-level Portswigger labs
☆39May 18, 2023Updated 3 years ago
Alternatives and similar repositories for Portswigger-Labs
Users that are interested in Portswigger-Labs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Repository to gather the BOF files I will be developing☆11Oct 1, 2024Updated last year
- Repository to gather the .NET malware I will be developing☆18Mar 7, 2026Updated 3 months ago
- Exfiltrate files using the HTTP protocol version ("HTTP/1.0" is a 0 and "HTTP/1.1" is a 1)☆24Oct 23, 2021Updated 4 years ago
- A tool to analyze Ntds.dit files once the NTLM and LM hashes have been cracked.☆16May 13, 2021Updated 5 years ago
- The SecurityTube Linux Assembly Expert (SLAE) is an online course and certification which focuses on teaching the basics of 32-bit assemb…☆22Mar 31, 2019Updated 7 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Remap ntdll.dll using only NTAPI functions with a suspended process☆28Apr 13, 2025Updated last year
- Parser of the industrial protocol S7 (S7comm) using Libpcap☆15May 1, 2020Updated 6 years ago
- Script to extract the cached credentials from SSSD, getting Active Directory credentials from Unix systems☆25Jun 14, 2023Updated 3 years ago
- EMQX Dashboard Malicious Plugin leading to RCE☆48Jun 16, 2025Updated last year
- Manage Shadows Copies via the VSS API using C#, C++, Crystal or Python. Working on Windows 11☆86Jan 26, 2026Updated 5 months ago
- P/Invoke definitions from the most-of-the-time offline offline pinvoke.net. Website: https://ricardojoserf.gitbook.io/pinvoke☆23Mar 23, 2025Updated last year
- Listener that spawns a new tmux window for each incoming reverse shell + Supports listening on many ports☆61Jul 13, 2025Updated 11 months ago
- BypassCredGuard CS BOF☆54Jan 23, 2025Updated last year
- Impersonate Tokens using only NTAPI functions☆85Apr 4, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Vulnserver exploits☆14May 1, 2020Updated 6 years ago
- ☆22Jun 24, 2024Updated 2 years ago
- Virtual machines and scripts to attack WPA2-Enterprise networks through Rogue Access Points downgrading the authentication method to GTC☆64May 29, 2023Updated 3 years ago
- ☆28Jun 1, 2026Updated 3 weeks ago
- https://www.nu11secur1ty.com☆24Jun 21, 2026Updated last week
- OSCP preperation and HackTheBox write ups.☆65Apr 2, 2023Updated 3 years ago
- Echo Hack The Talk Materials 2019☆12Sep 12, 2019Updated 6 years ago
- Downloading Spotify Playlists☆28May 20, 2026Updated last month
- A Ligolo-ng JavaScript agent working inside Chrome & Chromium-based browsers by leveraging Isolated Web Applications.☆131Mar 30, 2026Updated 2 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Tinder user searcher and DB creation. Proof of concept for Tinder security team☆19Mar 26, 2019Updated 7 years ago
- Google Drive, OneDrive and Youtube as covert-channels - Control systems remotely by uploading files to Google Drive, OneDrive, Youtube or…☆70Oct 31, 2021Updated 4 years ago
- A not-curated list of cloud hacking labs☆27Apr 18, 2024Updated 2 years ago
- Simple bot visitor service for XSS challenges in CTF☆11Nov 9, 2022Updated 3 years ago
- Android App Reverse Engineering & Analysis Toolkit☆17Jul 10, 2024Updated last year
- Register-based VM as C library☆11Feb 13, 2016Updated 10 years ago
- Automated Pass-the-Ticket (PtT) attack. Standalone alternative to Rubeus and Mimikatz for this attack. Implemented in C#, C++, Crystal, P…☆135Feb 17, 2026Updated 4 months ago
- Hackthebox tools☆13Mar 3, 2019Updated 7 years ago
- bounty collection☆45Sep 1, 2024Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Web Application Attack☆14Dec 16, 2019Updated 6 years ago
- This is a simple REST API application in golang.☆10Jun 9, 2019Updated 7 years ago
- Windows 7/2008 R2 EoP☆13Feb 12, 2021Updated 5 years ago
- HP Data Protector Arbitrary Remote Command Execution☆11Aug 12, 2018Updated 7 years ago
- Solutions from @PortSwigger labs☆15Apr 11, 2024Updated 2 years ago
- Moodle (< 3.6.2, < 3.5.4, < 3.4.7, < 3.1.16) XSS PoC for Privilege Escalation (Student to Admin)☆17Apr 29, 2021Updated 5 years ago
- ☆26Aug 19, 2024Updated last year