sh3bu / Portswigger_labsView external linksLinks
This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's name, description, and my step-by-step solution, as well as any additional notes or observations.
☆104Jul 14, 2025Updated 7 months ago
Alternatives and similar repositories for Portswigger_labs
Users that are interested in Portswigger_labs are comparing it to the libraries listed below
Sorting:
- Web Penetration Testing Course Materials☆32May 13, 2024Updated last year
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆45Mar 8, 2024Updated last year
- Python tool to compare and analyse Nmap XML files to create a spreadsheet with results. Can also be used to create a markdown report usin…☆24Nov 12, 2024Updated last year
- Multi-agent AI system using GPT-4o, DeepSeek v3, and Llama 3.3 to detect if CVE vulnerabilities were exploited as zero-days. Analyzes…☆19Aug 31, 2025Updated 5 months ago
- ☆650Feb 6, 2026Updated last week
- An automated script to extract hidden images from Tecno Camon X☆12Sep 23, 2023Updated 2 years ago
- All Apprentice and Practitioner-level Portswigger labs☆31May 18, 2023Updated 2 years ago
- Powershell tools used for Red Team / Pentesting.☆80Jan 8, 2024Updated 2 years ago
- Penetration Testing & Red Team tools & scripts☆12Sep 22, 2023Updated 2 years ago
- ☆13Dec 21, 2023Updated 2 years ago
- SNMP Bash Script to discover valid community strings, dump basic information, check for write permission and check for RCE.☆11Apr 27, 2024Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆13Oct 29, 2022Updated 3 years ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆45Jun 3, 2024Updated last year
- Unauthorized Docker Exploitation Tool☆37Dec 24, 2023Updated 2 years ago
- This repository contains a graphical representation (Mind maps) of specific topics, so one can utilize it as a handbook for that specific…☆17Feb 10, 2022Updated 4 years ago
- This repository contains a list of roadmaps I created with my suggestions on LinkedIn and Twitter.🤞🏻😌☆214Nov 27, 2023Updated 2 years ago
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆258Nov 24, 2023Updated 2 years ago
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆674Jun 4, 2024Updated last year
- ☆25Jan 11, 2023Updated 3 years ago
- The Primate Pack is a suite of extensions for Caido.☆13Sep 29, 2024Updated last year
- Study notes from PortSwigger's Web Security Academy☆30Jan 6, 2023Updated 3 years ago
- A collection of solutions for every PortSwigger Academy Lab (in progress)☆111Feb 22, 2022Updated 3 years ago
- An Incredibly Annoying, Insufferable Authentication Implementation☆31Apr 17, 2024Updated last year
- exfiltration/infiltration toolkit☆23Dec 20, 2023Updated 2 years ago
- Comprehensive AWS cloud reconnaissance and privilege escalation toolkit written in Python. Features IAM, EC2, S3, Lambda, ECS, Secrets Ma…☆49Jul 8, 2025Updated 7 months ago
- A collection of CTF write-ups, pentesting topics, guides and notes. Notes compiled from multiple sources and my own lab research. Topics …☆597Sep 24, 2025Updated 4 months ago
- Collection of Notes and CheatSheets used for Red teaming Certs☆490Feb 13, 2023Updated 3 years ago
- Automatically look for paramater reflections in the HTTP response☆18Apr 30, 2025Updated 9 months ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆50Nov 5, 2025Updated 3 months ago
- Windows Thread Pool Injection Havoc Implementation☆33Mar 23, 2024Updated last year
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆92Jan 11, 2025Updated last year
- I will be uploading all the codes which I created with the help either opensource projects or blogs. This is a step by step EDR learning …☆287Aug 1, 2025Updated 6 months ago
- ☆176Apr 9, 2025Updated 10 months ago
- A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.☆1,177Dec 27, 2023Updated 2 years ago
- Command and Control Framework using powershell implants☆35Jun 17, 2025Updated 7 months ago
- OSCP Cheatsheet☆16Jun 14, 2023Updated 2 years ago
- Lateral Movement☆125Nov 14, 2023Updated 2 years ago
- Active Directory data ingestor for BloodHound Legacy written in Rust. 🦀☆1,125Oct 21, 2024Updated last year
- RCE through a race condition in Apache Tomcat☆56Dec 21, 2024Updated last year