Alternatives and similar repositories for security-cheatsheets

Users that are interested in security-cheatsheets are comparing it to the libraries listed below

• artkond / artkond.github.io

  View on GitHub
  Security Notes
  ☆11Oct 10, 2018Updated 7 years ago
• mobdk / VBA-DLL-WMI-EXECUTION

  View on GitHub
  Call your own DLL from VBA and execute code under process svchost.exe with WMI
  ☆12Mar 6, 2020Updated 5 years ago
• rabidang3ls / HTTPsC2DoneRight

  View on GitHub
  Slightly modified version of https://raw.githubusercontent.com/killswitch-GUI/CobaltStrike-ToolKit/master/HTTPsC2DoneRight.sh
  ☆12Nov 16, 2017Updated 8 years ago
• eur0pa / tko-subs

  View on GitHub
  A tool that can help detect and takeover subdomains with dead DNS records
  ☆12Aug 23, 2018Updated 7 years ago
• royharoush / DistributedScanning

  View on GitHub
  introduction to distributed scanning using vultr
  ☆10Apr 29, 2017Updated 8 years ago
• hvqzao / burp-token-rewrite

  View on GitHub
  Burp extension for automated handling of CSRF tokens
  ☆16Feb 27, 2018Updated 7 years ago
• anshumanbh / merge-nmap-masscan

  View on GitHub
  Merge results from NMAP and Masscan into one CSV file
  ☆18Jun 19, 2018Updated 7 years ago
• giaplv57 / GuruWebScanner

  View on GitHub
  An On-The-Cloud free "greybox" box scanner for various purposes.
  ☆14Nov 21, 2017Updated 8 years ago
• jstnkndy / scripts

  View on GitHub
  Scripts that I've written that others may find useful
  ☆14Aug 17, 2022Updated 3 years ago
• gitgiant / giant_backdoor

  View on GitHub
  Windows login backdoor diagnostic tool
  ☆11Apr 2, 2017Updated 8 years ago
• koutto / java-binary-deserializer

  View on GitHub
  Java Binary data Deserializer/Serializer - Convert serialized Java Objects into readable XML
  ☆13Feb 25, 2019Updated 6 years ago
• sakkis91 / SandboxPPL

  View on GitHub
  Golang PoC that sandboxes Defender (or other PPL) by setting its token integrity to Untrusted.
  ☆12May 28, 2025Updated 8 months ago
• nccgroup / encoderama

  View on GitHub
  String or worldlist encoder for use in fuzzing or web application testing
  ☆19Sep 2, 2019Updated 6 years ago
• interference-security / empyre-web

  View on GitHub
  EmPyre Web Interface
  ☆12Mar 23, 2017Updated 8 years ago
• samisecure / LsassDumpReflectiveDll

  View on GitHub
  Dump Lsass Memory Using a Reflective Dll
  ☆14Feb 4, 2022Updated 4 years ago
• OG-Sadpanda / SharpCat

  View on GitHub
  C# alternative to the linux "cat" command... Prints file contents to console. For use with Cobalt Strike's Execute-Assembly
  ☆15Jul 15, 2021Updated 4 years ago
• Workingdaturah / BOF-Learning

  View on GitHub
  Cobalt Strike BOFS
  ☆16Dec 20, 2023Updated 2 years ago
• mobdk / Sigma

  View on GitHub
  Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx
  ☆15Apr 26, 2021Updated 4 years ago
• averagesecurityguy / pocs

  View on GitHub
  Proof-of-Concept scripts for various issues.
  ☆14Jan 23, 2017Updated 9 years ago
• jamesbcook / fast_meterpreter

  View on GitHub
  ☆43Jun 4, 2014Updated 11 years ago
• Cowonaboat / FtpSheller

  View on GitHub
  ☆12Oct 16, 2017Updated 8 years ago
• Script-Nomad / DeeDee

  View on GitHub
  Stealthy DDE Exploit Payload generator and injector for DOCX files
  ☆17May 16, 2018Updated 7 years ago
• rascal999 / torc

  View on GitHub
  Tool orchestrator. Specify targets and run sets of tools against them.
  ☆19Jun 3, 2016Updated 9 years ago
• packetfocus / RubyOSINT

  View on GitHub
  Ruby based script to perform application scanning of a URL, looking for specific pages to target.
  ☆25Oct 29, 2014Updated 11 years ago
• AlteredSecurity / RBCD

  View on GitHub
  Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.
  ☆21Jul 6, 2021Updated 4 years ago
• AceRockson / WAFFLE

  View on GitHub
  Web Application Firewall For Limited Exploitation
  ☆17Nov 15, 2017Updated 8 years ago
• grutz / squirtle

  View on GitHub
  Squirtle the Browser-based NTLM Attack Toolkit
  ☆17Apr 13, 2015Updated 10 years ago
• Graph-X / Update_Mimikatz

  View on GitHub
  Bash script to take the powerkatz.dll files, encode them using base64 and then replace the old binaries with the new in the Invoke-Mimika…
  ☆16Oct 8, 2016Updated 9 years ago
• ropnop / xxetimes

  View on GitHub
  An interactive OOB XXE data exfiltration tool
  ☆91May 31, 2017Updated 8 years ago
• operatorequals / wormnest

  View on GitHub
  A Web Server to hide stuff
  ☆21Apr 29, 2022Updated 3 years ago
• darkoperator / pyforensics

  View on GitHub
  Collection of single use scripts I worte for windows forensics
  ☆27Feb 1, 2012Updated 14 years ago
• tasox / Apophis

  View on GitHub
  Apophis is a Bash script that leverages tools such as DotNetToJScript, ConfuserEx, Net-Obfuscator etc. to generate 'Shellcode runners'.
  ☆20Mar 12, 2023Updated 2 years ago
• joeminicucci / RedIra

  View on GitHub
  A cloud automation system for Red Teams based on Terraform and Ansible
  ☆24Apr 21, 2021Updated 4 years ago
• rajeshmajumdar / xploit

  View on GitHub
  An automated Python + Ruby based XXE Exploiter (GUI + CLI)
  ☆19Aug 2, 2016Updated 9 years ago
• GKNSB / HTMLSmuggler

  View on GitHub
  Smuggle a file to a user's browser
  ☆20Apr 16, 2022Updated 3 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab

  View on GitHub
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆42Mar 14, 2017Updated 8 years ago
• nitr0us / knock-out

  View on GitHub
  A RAT (Remote Administration Tool) using port-knocking techniques for *NIX systems I wrote in 2006 but still works in 2017. libpcap-based…
  ☆49May 3, 2017Updated 8 years ago
• Arno0x / WebDavDelivery

  View on GitHub
  A WebDAV PROPFIND covert channel to deliver payloads
  ☆52Nov 14, 2017Updated 8 years ago
• killswitch-GUI / lterm

  View on GitHub
  lterm is a small script built to install a bash hook for full terminal logging.
  ☆56Dec 3, 2016Updated 9 years ago