Hardware/IOT Pentesting Wiki
☆831Nov 9, 2025Updated 4 months ago
Alternatives and similar repositories for HardwareAllTheThings
Users that are interested in HardwareAllTheThings are comparing it to the libraries listed below
Sorting:
- Active Directory and Internal Pentest Cheatsheets☆2,075Feb 23, 2026Updated 2 weeks ago
- Upgrading jsleak with a CI/CD and new rules☆17May 6, 2023Updated 2 years ago
- Source of swisskyrepo.github.io - Public☆27Jul 12, 2025Updated 7 months ago
- GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)☆1,631Mar 11, 2024Updated last year
- Automatic SSRF fuzzer and exploitation tool☆3,493Sep 4, 2025Updated 6 months ago
- Retrieve LAPS password from LDAP☆435Feb 17, 2021Updated 5 years ago
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆75,690Mar 2, 2026Updated last week
- The Havoc Framework☆8,203Dec 18, 2025Updated 2 months ago
- Active Directory data ingestor for BloodHound Legacy written in Rust. 🦀☆1,131Oct 21, 2024Updated last year
- Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and n…☆11,001Updated this week
- One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️☆6,416Dec 20, 2025Updated 2 months ago
- Fully featured and community-driven hacking environment☆2,938Mar 1, 2026Updated last week
- An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.☆4,325Feb 15, 2026Updated 3 weeks ago
- Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.☆1,266Dec 9, 2025Updated 3 months ago
- Arsenal is just a quick inventory and launcher for hacking programs☆3,698Nov 29, 2024Updated last year
- Real-world infosec wordlists, updated regularly☆1,713Updated this week
- Tools and Techniques for Red Team / Penetration Testing☆8,548Mar 18, 2025Updated 11 months ago
- Rust Weaponization for Red Team Engagements.☆2,990Apr 25, 2024Updated last year
- Red Teaming Tactics and Techniques☆4,501Aug 22, 2024Updated last year
- Indirect Syscalls: HellsGate in Nim, but making sure that all syscalls go through NTDLL (as in RecycledGate).☆184Feb 12, 2023Updated 3 years ago
- TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts☆1,371Oct 22, 2025Updated 4 months ago
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆443Oct 1, 2025Updated 5 months ago
- game of active directory☆7,505Mar 4, 2026Updated last week
- The Network Execution Tool☆5,315Updated this week
- A swiss army knife for pentesting networks☆9,086Dec 6, 2023Updated 2 years ago
- Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality…☆4,347May 21, 2025Updated 9 months ago
- A curated list of awesome embedded and IoT security resources.☆2,236Oct 17, 2023Updated 2 years ago
- My useful files for penetration tests, security assessments, bug bounty and other security related stuff☆198Updated this week
- linWinPwn is a bash script that streamlines the use of a number of Active Directory tools☆2,158Updated this week
- GTFOBins is a curated list of Unix-like executables that can be used to bypass local security restrictions in misconfigured systems.☆12,742Mar 3, 2026Updated last week
- Adversary Emulation Framework☆10,798Updated this week
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆6,511Jan 18, 2026Updated last month
- This map lists the essential techniques to bypass anti-virus and EDR☆3,166Mar 28, 2025Updated 11 months ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆7,280Updated this week
- a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )☆2,751Feb 27, 2026Updated last week
- Network Security Sniffer☆842Jan 2, 2026Updated 2 months ago
- Awesome list of step by step techniques to achieve Remote Code Execution on various apps!☆1,940Oct 7, 2023Updated 2 years ago
- A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.☆372Sep 29, 2025Updated 5 months ago
- a tool to help operate in EDRs' blind spots☆766Dec 2, 2024Updated last year