xanhacks / OffensiveWebLinks
Offensive Web is a documentation website about security research, difficult concepts, bypass and new exploitation techniques.
☆31Updated 8 months ago
Alternatives and similar repositories for OffensiveWeb
Users that are interested in OffensiveWeb are comparing it to the libraries listed below
Sorting:
- Auto-Recon script that will help you in the Burp Suite Certified Practitioner Examor with any web-security lab.☆51Updated last year
- Some tips for Bug Bounty using LibreOffice☆56Updated 11 months ago
- SkillArch☆43Updated this week
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆41Updated 2 years ago
- A python module to explore the object tree to extract paths to interesting objects in memory.☆101Updated 11 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆126Updated last year
- The most complete code auditing platform with thousands of real-world challenges☆135Updated 7 months ago
- A list of all Active Directory machines from HackTheBox☆210Updated 2 months ago
- Offensive Security OSWE Prep 2022☆76Updated 3 years ago
- A collection of config files for linux focusing on hackthebox theme☆53Updated 3 months ago
- Just A list Of Some Multilingual XSS Payloads and other weird ones i made☆122Updated 4 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆70Updated 2 years ago
- WConsole Extractor is a python library which automatically exploits a Werkzeug development server in debug mode. You just have to write a…☆61Updated 7 months ago
- Azure mindmap for penetration tests☆194Updated 2 years ago
- Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a dat…☆89Updated 11 months ago
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆103Updated 6 months ago
- Advanced APK analysis tool with intelligent caching, pattern matching, and comprehensive security vulnerability detection☆82Updated 3 months ago
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆86Updated 10 months ago
- Real-Time JavaScript reverse engineering and debugging suite - Burp Suite, but for JavaScript☆16Updated 6 months ago
- Dump files via Directory Traversal, LFI, Arbitrary File Read in a breeze with the help of ffuf☆19Updated 2 years ago
- ☆47Updated 10 months ago
- Repository with quick triggers to help during Pentest in an Active Directory environment.☆46Updated 6 months ago
- Burp extension for Recursive Request Exploits (RRE) — DEFCON 2025☆114Updated 5 months ago
- Mining URLs from Wayback Machine for bug hunting/fuzzing/further probing☆54Updated 2 years ago
- some of the commands I usually use when doing HTB machines☆49Updated 2 years ago
- This repository serves as a curated resource for OffSec's OSEP (PEN-300) certification preparation, containing useful links, materials, a…☆65Updated last year
- HTTP redirection service designed to help bypass SSRF filters. Integrated with Burp Suite.☆62Updated 6 months ago
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…☆104Updated 6 months ago
- Search for all leaked keys/secrets using one regex! bugbounty☆182Updated 10 months ago
- A collection of tools that I use in CTF's or for assessments☆107Updated 11 months ago