Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for offensive security
offensive-security
x
250 search results found
Defaultcreds Cheat Sheet
⭐
5,023
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Redteaming Tactics And Techniques
⭐
3,852
Red Teaming Tactics and Techniques
Villain
⭐
3,376
Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).
Oscp Exam Report Template Markdown
⭐
3,087
📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report
Raccoon
⭐
2,928
A high performance offensive security tool for reconnaissance and vulnerability scanning
Nosqlmap
⭐
2,765
Automated NoSQL database enumeration and web application exploitation tool.
Black Hat Rust
⭐
2,662
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
Oscp
⭐
2,235
OSCP Cheat Sheet
Reconnoitre
⭐
2,053
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Awesome Cybersecurity Handbooks
⭐
1,980
A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.
Awesome Oscp
⭐
1,962
A curated list of awesome OSCP resources
Ligolo Ng
⭐
1,950
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Keylogger
⭐
1,634
Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.
Rapidscan
⭐
1,489
🆕 The Multi-Tool Web Vulnerability Scanner.
Digital Forensics Guide
⭐
1,232
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
Chimera
⭐
1,192
Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
Vhostscan
⭐
1,161
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
007 Thebond
⭐
931
This Script will help you to gather information about your victim or friend.
Open Source Security Guide
⭐
795
Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.
Saas Attacks
⭐
794
Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threats they face. #nolockdown
Oscp Tricks 2023
⭐
769
OSCP 2023 Preparation Guide | Courses, Tricks, Tutorials, Exercises, Machines
Blackmamba
⭐
688
C2/post-exploitation framework
Oscp Human Guide
⭐
582
My own OSCP guide
Powershell Obfuscation Bible
⭐
574
A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository are the result of personal research, including reading materials online and conducting trial-and-error attempts in labs and pentests.
Oscp Exam Report Template
⭐
559
Modified template for the OSCP Exam and Labs. Used during my passing attempt
Psmapexec
⭐
549
A PowerShell tool that takes strong inspiration from CrackMapExec.
Penetration Testing Cheat Sheet
⭐
540
Work in progress...
Redteam_toolkit
⭐
512
Red Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.
Vault
⭐
499
swiss army knife for hackers
Offensive Resources
⭐
498
A Huge Learning Resources with Labs For Offensive Security Players
Goop
⭐
494
Yet another tool to dump a git repository from a website, focused on as-complete-as-possible dumps and handling weird edge-cases.
Bigbountyrecon
⭐
471
BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
Offsec Reporting
⭐
459
Offensive Security OSCP, OSWP, OSEP, OSWA, OSWE, OSED, OSMR, OSEE, OSDA Exam and Lab Reporting / Note-Taking Tool
Oscp Pwk
⭐
434
This is my cheatsheet and scripts developed while taking the Offensive Security Penetration Testing with Kali Linux course.
Flask Session Cookie Manager
⭐
429
🍪 Flask Session Cookie Decoder/Encoder
Vanquish
⭐
422
Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.
Gtfonow
⭐
414
Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries using GTFOBins.
Badkarma
⭐
413
network reconnaissance toolkit
Pentest Everything
⭐
379
A collection of CTF write-ups, pentesting topics, guides and notes. Notes compiled from multiple sources and my own lab research. Topics also support OSCP, Active Directory, CRTE, eJPT and eCPPT.
Php Reverse Shell
⭐
363
PHP shells that work on Linux OS, macOS, and Windows OS.
Chimera
⭐
346
Automated DLL Sideloading Tool With EDR Evasion Capabilities
Ffm
⭐
327
Freedom Fighting Mode: open source hacking harness
Android Penetration Testing Cheat Sheet
⭐
304
Work in progress...
East
⭐
293
Exploits and Security Tools Framework 2.0.1
Agartha
⭐
292
a burp extension creates dynamic payloads to reveal injection flaws(LFI, RCE, SQLi), generates user access tables to spot authentication/authorization issues, and copys Http requests as JavaScript code.
Invoker
⭐
292
Penetration testing utility and antivirus assessment tool.
Knary
⭐
282
A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams/Lark/Telegram & Pushover support
Wifi Penetration Testing Cheat Sheet
⭐
277
Work in progress...
Wifi Pentesting Guide
⭐
269
WiFi Penetration Testing Guide
Powershell Reverse Tcp
⭐
263
PowerShell scripts for communicating with a remote host.
Credphish
⭐
262
CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.
Rmiscout
⭐
254
RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
Threathunting Keywords
⭐
252
Awesome list of keywords for Threat Hunting sessions
Csprecon
⭐
248
Discover new target domains using Content Security Policy
Ios Penetration Testing Cheat Sheet
⭐
241
Work in progress...
Sshd_backdoor
⭐
238
/root/.ssh/authorized_keys evil file watchdog with ebpf tracepoint hook.
Fudgec2
⭐
236
FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
Hawk
⭐
227
Network, recon and offensive-security tool for Linux.
Nativepayloads
⭐
219
All my Source Codes (Repos) for Red-Teaming & Pentesting + Blue Teaming
Invoke Psobfuscation
⭐
209
An in-depth approach to obfuscating the individual components of a PowerShell payload whether you're on Windows or Kali Linux.
Go Exploitdb
⭐
208
Tool for searching Exploits from Exploit Databases, etc.
Forbidden
⭐
208
Bypass 4xx HTTP response status codes and more. Based on PycURL and Python Requests.
Hades
⭐
198
Go shellcode loader that combines multiple evasion techniques
Handbook
⭐
196
A living document for penetration testing and offensive security.
Conti Pentester Guide Leak
⭐
191
Leaked pentesting manuals given to Conti ransomware crooks
Offsec Tools
⭐
181
Compiled tools for internal assessments
Invoke Apex
⭐
175
A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.
Pwk Oscp Preparation Roadmap
⭐
175
Roadmap for preparing for OSCP, anyone is free to use this, and also feedback and contributions are welcome
Novaldr
⭐
172
Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)
Black Widow
⭐
168
GUI based offensive penetration testing tool (Open Source)
Atomic Red Team Intelligence C2
⭐
163
ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.
Infosechouse
⭐
162
Tools & Resources for Cyber Security Operations
Pyphisher
⭐
154
Python tool for phishing
Crithit
⭐
152
Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Kaliwiki
⭐
150
Unofficial Kali Documentation Project
Favirecon
⭐
149
Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.
Nix Security Box
⭐
147
Tool set for Information security professionals and all others
Wwwtree
⭐
146
A utility for quickly and easily locating, web hosting and transferring resources (e.g., exploits/enumeration scripts) from your filesystem to a victim machine during privilege escalation.
Flipperzero
⭐
143
This repo contains my own Ducky/BadUSB scripts, related PowerShell scripts and other Flipper Zero related stuff.
Corsme
⭐
141
Cross Origin Resource Sharing MisConfiguration Scanner
Offensive Azure
⭐
135
Collection of offensive tools targeting Microsoft Azure
Offensive Dockerfiles
⭐
132
Offensive tools as Dockerfiles. Lightweight & Ready to go
Redteamguides.github.io
⭐
130
Red Team Guides
Awesome Lists
⭐
124
Security lists for SOC detections
Empirectf
⭐
123
EmpireCTF – write-ups, capture the flag, cybersecurity
Red Team Playbooks
⭐
123
This repository contains cutting-edge open-source security notes and tools that will help you during your Red Team assessments.
Cve 2021 21315 Poc
⭐
121
CVE 2021-21315 PoC
Osee
⭐
117
Collection of resources for my preparation to take the OSEE certification.
Dfshell
⭐
115
D3Ext's Forward Shell
Rs Shell
⭐
113
A dirty PoC for a reverse shell with cool features in Rust
Ashirt Server
⭐
112
Adversary Simulators High-Fidelity Intelligence and Reporting Toolkit
Sysplant
⭐
111
Your syscall factory
Awae Preparation
⭐
108
This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.
Synergy Httpx
⭐
106
A Python http(s) server designed to assist in red teaming activities such as receiving intercepted data via POST requests and serving content dynamically (e.g. payloads).
Sharpshellpipe
⭐
102
This lightweight C# demo application showcases interactive remote shell access via named pipes and the SMB protocol.
Noobsec Toolkit
⭐
102
NoobSecToolkit is a Python Based Tool kit that brings together powerful security and anonymity tools and scripts with predefined security configurations and modifications. Making it very simple for students and the inexperienced to get started with offensive security!
Pathwar
⭐
102
☠️ The Pathwar Project ☠️
Oscp
⭐
100
My OSCP journey
Php Ransomware
⭐
97
PHP ransomware that encrypts your files, as well as file and directory names.
Some_pentesters_securityresearchers_redteamers
⭐
97
Some Pentesters, Security Researchers, Red Teamers which i learned from them a lot...
1-100 of 250 search results
Next >
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.