swisskyrepo / PayloadsAllTheThingsLinks
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
☆71,635Updated 2 weeks ago
Alternatives and similar repositories for PayloadsAllTheThings
Users that are interested in PayloadsAllTheThings are comparing it to the libraries listed below
Sorting:
- Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and n…☆10,524Updated this week
- PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)☆18,715Updated 2 weeks ago
- GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems☆12,311Updated 2 months ago
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆9,918Updated last month
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,725Updated 2 years ago
- SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in …☆66,919Updated this week
- Fast web fuzzer written in Go☆15,095Updated 6 months ago
- A list of public penetration test reports published by several consulting firms and academic security groups.☆9,211Updated last month
- List of Awesome Red Teaming Resources☆7,585Updated last year
- A swiss army knife for pentesting networks☆8,973Updated last year
- In-depth attack surface mapping and asset discovery☆13,762Updated this week
- Impacket is a collection of Python classes for working with network protocols.☆15,102Updated this week
- 📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.☆7,382Updated this week
- Most advanced XSS scanner.☆14,475Updated 6 months ago
- Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…☆7,404Updated last month
- 🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List☆7,691Updated last year
- Directory/File, DNS and VHost busting tool written in Go☆12,851Updated this week
- AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.☆5,789Updated 5 months ago
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆8,116Updated last month
- A Workflow Engine for Offensive Security☆5,953Updated 3 months ago
- Adversary Emulation Framework☆10,210Updated last week
- A fast, simple, recursive content discovery tool written in Rust.☆7,196Updated this week
- Attack Surface Management Platform☆9,207Updated last month
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆6,188Updated 6 months ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆6,904Updated last week
- Collection of methodology and test case for various web vulnerabilities.☆6,823Updated 4 months ago
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆6,379Updated 7 months ago
- Nishang - Offensive PowerShell for red team, penetration testing and offensive security.☆9,574Updated last year
- CTF framework and exploit development library☆13,034Updated last week
- RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data☆6,543Updated 2 weeks ago