Awesome Open Source

Programming Languages

Search results for offensive security

offensive-security x

250 search results found

Spellbook ⭐ 96

Framework for rapid development of offensive security tools

Offensive security tools weaponized

Terminatorz ⭐ 95

TerminatorZ is a highly sophisticated and efficient web security tool that scans for top potential vulnerabilities with known CVEs in your web applications.

Secfiles ⭐ 94

My files for security assessments, bug bounty and other security related stuff

unix SSH post-exploitation 1337 tool

Superlibrary ⭐ 94

Information Security Library

Docker_offensive_elk ⭐ 90

Elasticsearch for Offensive Security

Pythonizing_nmap ⭐ 85

A detailed guide showing you different ways you can incorporate Python into your workflows around Nmap.

Sharingan ⭐ 84

Offensive Security recon tool

Pentest Everything ⭐ 81

This is a penetration testing cheatsheet I created to get my OSCP certification.

eXtensiable Malware Toolkit: Full Featured Golang C2 Framework with Awesome Features

Various C# projects for offensive security

one-stop resource for all things offensive security.

Httpworker ⭐ 74

A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educational use only.

Awesome Security Feed ⭐ 74

A semi-curated list of Security Feeds

uscan is an automated vulnerability scanner that streamlines the process of website hacking, making it faster and more efficient than ever before.

Oscp Notetaking ⭐ 65

This repository houses some of the small scripts I had used to quickly document throughout my OSCP course. This was referenced on YouTube, and should be made available to others!

Keylogger ⭐ 62

Windows OS keylogger with a hook mechanism (i.e. with a keyboard hook procedure).

GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments

Automated attack surface mapper and vulnerability scanner (Work In Progress 🚧)

Evil Twin ⭐ 52

Learn how to set up a fake authentication web page on a fake WiFi network.

Sqli Postgres Rce Privesc Hacking Playground ⭐ 52

Application with SQL Injection vulnerability and possible privilege escalation. Free vulnerable app for ethical hacking / penetration testing training.

Nimalathatep ⭐ 47

Nim Payload Generation

Oscp A Step Forward ⭐ 46

Opening the door, one reverse shell at a time

Oscp Omnibus ⭐ 46

A collection of resources I'm using while working toward the OSCP

Dnsexplorer ⭐ 46

Bash script that automates the enumeration of domain, subdomains & web servers in the active information gathering.

Sqlmutant ⭐ 44

SQLMutant is a comprehensive SQL injection testing tool that provides several features to test for SQL injection vulnerabilities in web applications, uses various techniques to detect vulnerabilities, including pattern matching, error analysis, and timing attacks. The integration of Waybackurls and Arjun allows the tool to find additional

It records your screenshots and code, then lets you upload to ASHIRT

Hackthebox Reporting ⭐ 41

Hack The Box CPTS, CBBH Exam and Lab Reporting / Note-Taking Tool

Namebuster ⭐ 41

A tool for username enumeration, using text, files, or websites

Try Harder ⭐ 41

"Try Harder" is a cybersecurity retro game designed to simulate 100 real-world scenarios that will help you prepare for the Offensive Security Certified Professional (OSCP) exam, all while offering an immersive experience and retro aesthetic. Enter Real commands correctly, move to the next host, and get a point. Can you get 100?

C# tool to discover low hanging fruits

Machine_learning_ctf_challenges ⭐ 39

CTF challenges designed and implemented in machine learning applications

indirect syscalls for AV/EDR evasion in Go assembly

Pentesting Resources ⭐ 37

Resources, repos and scripts for pentesters and bug bounty.

Buffer_overflow ⭐ 37

Don't let buffer overflows overflow your mind

Offensive Security Cheatsheets ⭐ 37

Offensive Security / Pentesting Cheat Sheets

Security Utilities ⭐ 35

Offensive Security Certified Profesional (OSCP) course scripts, some have been generalized

Python tools for networking

C2 and Post Exploitation Code

A Flask-based HTTP(S) command and control (C2) with a web frontend. Malleable agent written in Go.

Posts about different topics

Java Reverse Tcp ⭐ 34

JAR, Java, and JSP shells that work on Linux OS, macOS, and Windows OS.

Haxtools ⭐ 31

A highly customised CTF, bounty hunting & penetration testing environment based on the official kali-rolling docker image

BOF (Boiboite Opener Framework) is a testing framework for industrial protocols implementations and devices.

Generator Malicious Plugins WordPress

Xss Catcher ⭐ 26

Simple API for storing all incoming XSS requests.

Security Guide ⭐ 25

Capture The Flag | HackTheBox | OSCP | Bug Bounty Hunting | Jobs

Offensive Vlang ⭐ 25

POCs to test Vlang in cybersecurity aspects.

Rust Windows Shellcode ⭐ 25

Windows shellcode development in Rust

VBScript minifier

Kali Linux Wallpapers ⭐ 24

A set of dedicated Kali Linux* wallpapers which I'm going to update regularly. They all done using GIMP and other GNU/Linux/FOSS.

Malicious Rmqr Codes ⭐ 23

Collection of (4000+) malicious rMQR Codes for Penetration testing, Vulnerability assessments, Red Team operations, Bug Bounty and more

Oswa Experience And Exam Preparation ⭐ 23

My Offensive Security OSWA certification experience and my personal opinion what helps in preparation for the exam

Kali Live Build Config ⭐ 23

Kali Linux ™ build tool targeted for Hardware Hacking tools

w4af: web advanced application attack and audit framework, the open source web vulnerability scanner.

Pwnkit Exploit ⭐ 22

Proof of Concept (PoC) CVE-2021-4034

It records your terminal, then lets you upload to ASHIRT

Rustredops ⭐ 22

🦀 | RustRedOps is a repository dedicated to gathering and sharing advanced techniques and malware for Red Team, with a specific focus on the Rust programming language. (In Construction)

Oscp Exam Report Template ⭐ 22

OSCP Exam Report Template in Markdown

Bifrost C2. Open-source post-exploitation using Discord API

Powershell Administration Tools ⭐ 20

Powershell scripts for automating common system administration, blue team, and digital forensics tasks

Wordpress_autoexploiter ⭐ 20

Priv8 Tools Offensive Security WordPress_AutoExploiter

Rusty Playground ⭐ 20

Some Rust program I wrote while learning Malware Development

Offsec Misc ⭐ 20

Offensive Security MISC Annotations and Payloads for Ethical Hackers / Security Researchers

Thunderstorm ⭐ 20

Golang C2 Server and Agents using XMT (https://github.com/iDigitalFlame/xmt)

Pvj Ctf Redtools ⭐ 20

Red Team Tools used for Pros Versus Joes CTF Games. Here for Blue Teams to understand the pwnage.

Secure Website ⭐ 19

Secure website with a registration, sign in, session management, and CRUD controls.

Dns Exfiltrator ⭐ 19

Exfiltrate data with DNS queries. Based on CertUtil and NSLookup.

The Road To Zero ⭐ 19

How to develop your own zero day vulnerabilities for iOS

A cross-platform C2/teamserver supporting multiple transport protocols, written in Go.

My notebook for OSCP Lab

Threathunting Keywords Yara Rules ⭐ 17

yara detection rules for hunting with the threathunting-keywords project

Tactics, Techniques, and Procedures

A collection of useful commands, scripts and resources for the OSWA (WEB-200) exam of Offensive Security

Search Google Dorks like Chad. / Social media takeover tool.

Param Ninja ⭐ 16

An automated penetration testing tool , that automates web vulnerabilities testing upon a given URL with an endpoint parameter

Osce_bible ⭐ 16

A collection of OSCE preparation resources.

Autowin is a framework that helps organizations simulate custom attack scenarios in order to improve detection and response capabilities.

Thecollective ⭐ 16

The Collective. A repo for a collection of red team and/or pen test projects found mostly on Github. https://github.com/ceramicskate0/TheCollective #infosec #redteaming #pentest

Webhacking ⭐ 16

This repo contain Myanmar Pentster Community web-hacking class resources and published with education purpose.

Offensiveactivedirectory ⭐ 15

A set of instructions, command and techniques that help during an Active Directory Assessment.

Csc Redops ⭐ 15

HTU Cyber Security Club, Offensive Operations Section (Red Team) learning pathway

Tracking my journey towards earning my OSCP. This includes the process of everything that I learn along the way.

Havoc_profile_generator ⭐ 14

Havoc C2 profile generator

Phishing Mobile App ⭐ 14

Phishing mobile application made in React Native for both Android and iOS devices.

Wagyu Xss ⭐ 13

A dynamic cross-site scripting (XSS) payload delivery system with team server abilities.

Tramphook ⭐ 13

x86 Trampoline Hook

urlyzer is a URL parsing analysis tool.

DASH is deep osint Scanner. You just need username to start osint scan.

Wirebirb ⭐ 12

A scapy based module for programming offensive and defensive networking tools easier than before.

Oscp Practice ⭐ 12

A random set of 5 machines for OSCP

Rti Toolkit ⭐ 12

Remote Template Injection Toolkit

Powerjoker ⭐ 12

A random powershell Reverse-Shell in each execution taking LHOST/LPORT

Hego Wiki ⭐ 12

HEGO Hunting Wiki | Offensive Cybersecurity Checklist

Pointer is a Fast Simple Lightweight Tool for Endpoint Discovery.

Oscp_repo ⭐ 11

Repository for OSCP certification

Arcane is a simple script designed to backdoor iOS packages (iphone-arm) and create the necessary resources for APT repositories.

This is a Python based GUI(Graphical User Interface) application for Google Dorking. Easy and convinient tool

Metagoofeel ⭐ 10

Web crawler and downloader based on GNU Wget.

101-200 of 250 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.