Offensive Web is a documentation website about web security research, bypass and new exploitation techniques.
☆34Feb 14, 2026Updated 3 months ago
Alternatives and similar repositories for OffensiveWeb
Users that are interested in OffensiveWeb are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Documentation and cheatsheets about CTF and pentest (mirror of https://gitlab.com/xanhacks/ctf-docs).☆15Aug 23, 2023Updated 2 years ago
- ☆26Dec 31, 2025Updated 5 months ago
- A python script to automatically add a KeyCredentialLink to newly created users, by quickly connecting to them with default credentials.☆28Mar 17, 2024Updated 2 years ago
- Some tips for Bug Bounty using LibreOffice☆59Feb 28, 2025Updated last year
- ☆49Jan 20, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Resolve symbols from release rust binaries on Windows☆21Jan 17, 2024Updated 2 years ago
- dead-simple blog template powered by Markdown and PHP☆10May 6, 2025Updated last year
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆68Oct 13, 2024Updated last year
- A tool implementing process hollowing making your PE polymorphic☆16Aug 11, 2020Updated 5 years ago
- 🗂 Knowledge Base on the Security of Chromium Extensions (https://extensions.neplox.security)☆21Jan 24, 2025Updated last year
- A cybersecurity challenge, based on a real world finding☆11Jul 11, 2024Updated last year
- Auto-Recon script that will help you in the Burp Suite Certified Practitioner Examor with any web-security lab.☆57Jul 8, 2024Updated last year
- ☆17Jan 6, 2025Updated last year
- My ctf challenges, mostly cryptography☆16Jul 13, 2025Updated 10 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Challenges and write-ups for GCC-CTF 2024☆19Mar 3, 2024Updated 2 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆11Sep 22, 2023Updated 2 years ago
- Easily create and share Proof of Concepts in HTML, JavaScript, etc. with custom headers, all via query parameters☆15Jun 1, 2026Updated last week
- VolchockC2 is a custom-built Command & Control (C2) framework, currently under active development. Designed for red team operations and a…☆34Jul 31, 2025Updated 10 months ago
- Modern Portfolio Website Using Next.js 14☆10Mar 15, 2024Updated 2 years ago
- A python script to extract information from a Microsoft Remote Desktop Web Access (RDWA) application☆120Jan 5, 2026Updated 5 months ago
- ☆11Dec 8, 2023Updated 2 years ago
- Repository to keep track of python memory corruption bugs that can be used to potentially bypass audit hooks☆69Dec 28, 2025Updated 5 months ago
- ATT&CK Models of the Threat Actor "Phineas Fisher"☆20Apr 30, 2020Updated 6 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A Golang implementation of clubby789's implementation of CVE-2021-4034☆11Jan 27, 2022Updated 4 years ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆24Oct 4, 2021Updated 4 years ago
- A Python script to list valid emails of GSuite accounts.☆16Feb 11, 2025Updated last year
- A simple python script to download videos hosted on streamable from their link☆11Mar 16, 2024Updated 2 years ago
- BurpSuite extension that helps find user input in a GWT body.☆13May 29, 2020Updated 6 years ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆32Dec 26, 2023Updated 2 years ago
- Displays HDF5 files in VS code☆11Dec 20, 2022Updated 3 years ago
- A script to factorize integers with sagemath and factordb.☆12Feb 11, 2025Updated last year
- All Files, Scripts, and exploits can be found here☆75Apr 16, 2021Updated 5 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- A dirty PoC for a reverse shell with cool features in Rust☆187Mar 29, 2026Updated 2 months ago
- REcon 2024 Repo, slides for talk "GOP Complex: Image parsing bugs, EBC polymorphic engines and the Deus ex machina of UEFI exploit dev""☆14Mar 31, 2025Updated last year
- Unauthorized Access to Metadata and User Data like CTF☆28Nov 30, 2024Updated last year
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆78Mar 16, 2024Updated 2 years ago
- Front page README of my GitHub profile☆34Updated this week
- DOM Clobbering Wiki, Browser Testing, and Payload Generation☆62Dec 18, 2025Updated 5 months ago
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆30Dec 19, 2023Updated 2 years ago