Offensive Web is a documentation website about web security research, bypass and new exploitation techniques.
☆34Feb 14, 2026Updated last month
Alternatives and similar repositories for OffensiveWeb
Users that are interested in OffensiveWeb are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Documentation and cheatsheets about CTF and pentest (mirror of https://gitlab.com/xanhacks/ctf-docs).☆13Aug 23, 2023Updated 2 years ago
- ☆24Dec 31, 2025Updated 3 months ago
- A python script to automatically add a KeyCredentialLink to newly created users, by quickly connecting to them with default credentials.☆27Mar 17, 2024Updated 2 years ago
- ☆51Jan 20, 2022Updated 4 years ago
- Resolve symbols from release rust binaries on Windows☆21Jan 17, 2024Updated 2 years ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆67Oct 13, 2024Updated last year
- dead-simple blog template powered by Markdown and PHP☆10May 6, 2025Updated 11 months ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆34Jun 27, 2025Updated 9 months ago
- Challenges of the HeroCTF v7 edition.☆52Nov 30, 2025Updated 4 months ago
- A tool implementing process hollowing making your PE polymorphic☆16Aug 11, 2020Updated 5 years ago
- 🗂 Knowledge Base on the Security of Chromium Extensions (https://extensions.neplox.security)☆21Jan 24, 2025Updated last year
- A cybersecurity challenge, based on a real world finding☆11Jul 11, 2024Updated last year
- Auto-Recon script that will help you in the Burp Suite Certified Practitioner Examor with any web-security lab.☆53Jul 8, 2024Updated last year
- ☆15Jan 6, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆112Jun 23, 2025Updated 9 months ago
- My ctf challenges, mostly cryptography☆15Jul 13, 2025Updated 8 months ago
- Simple Golang JWT Bruteforcer 2☆10May 25, 2021Updated 4 years ago
- Challenges and write-ups for GCC-CTF 2024☆19Mar 3, 2024Updated 2 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆11Sep 22, 2023Updated 2 years ago
- Easily create and share Proof of Concepts in HTML, JavaScript, etc. with custom headers, all via query parameters☆14Oct 1, 2025Updated 6 months ago
- VolchockC2 is a custom-built Command & Control (C2) framework, currently under active development. Designed for red team operations and a…☆32Jul 31, 2025Updated 8 months ago
- Simple demonstration for how to fuzz test a C++ program with AFL.☆27Mar 10, 2020Updated 6 years ago
- ☆11Dec 8, 2023Updated 2 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- SALSA 💃⚡ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.☆29Jan 26, 2025Updated last year
- A python exploit to automatically dump all the data stored by the auto-completion plugin of Ametys CMS to a local sqlite database file.☆14May 3, 2022Updated 3 years ago
- List of awesome starred repositories☆15Apr 3, 2026Updated last week
- A Golang implementation of clubby789's implementation of CVE-2021-4034☆11Jan 27, 2022Updated 4 years ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆24Oct 4, 2021Updated 4 years ago
- A Python script to list valid emails of GSuite accounts.☆16Feb 11, 2025Updated last year
- A ruby web shell that is very ape and very nice☆52Jan 3, 2011Updated 15 years ago
- A simple python script to download videos hosted on streamable from their link☆11Mar 16, 2024Updated 2 years ago
- Shellcode Loader | xss.is☆13Jul 26, 2024Updated last year
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- BurpSuite extension that helps find user input in a GWT body.☆12May 29, 2020Updated 5 years ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Dec 26, 2023Updated 2 years ago
- Guide journalisation Microsoft☆70Feb 23, 2026Updated last month
- Displays HDF5 files in VS code☆11Dec 20, 2022Updated 3 years ago
- A script to factorize integers with sagemath and factordb.☆12Feb 11, 2025Updated last year
- Docker files for hosting Pwn challenges,Web Challeges and Python Challenges in CTFs☆20Oct 1, 2020Updated 5 years ago
- A dirty PoC for a reverse shell with cool features in Rust☆188Mar 29, 2026Updated last week