Awesome Open Source

Programming Languages

Search results for penetration testing capture the flag

capture-the-flag x

penetration-testing x

7 search results found

Ciphey ⭐ 16,681

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

Awesome Hacking Resources ⭐ 14,556

A collection of hacking / penetration testing resources to make you better!

Juice Shop ⭐ 9,406

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

1earn ⭐ 4,841

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Monitor linux processes without root permissions

Payloads ⭐ 3,289

Git All the Payloads! A collection of web attack payloads.

Awesome Hacking ⭐ 2,716

Awesome hacking is an awesome collection of hacking tools.

Snoop ⭐ 2,530

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Ssrfmap ⭐ 2,306

Automatic SSRF fuzzer and exploitation tool

Stowaway ⭐ 2,195

👻Stowaway -- Multi-hop Proxy Tool for pentesters

Sudo_killer ⭐ 2,032

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.

Awesome Cybersecurity Handbooks ⭐ 1,980

A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.

Venom ⭐ 1,911

Venom - A Multi-hop Proxy for Penetration Testers

Exegol ⭐ 1,539

Fully featured and community-driven hacking environment

Platypus ⭐ 1,372

🔨 A modern multiple reverse shell sessions manager written in go

Graphqlmap ⭐ 1,226

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)

Awesome Privilege Escalation ⭐ 1,052

A curated list of awesome privilege escalation

Enum4linux Ng ⭐ 896

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

Stegseek ⭐ 815

⚡ Worlds fastest steghide cracker, chewing through millions of passwords per second ⚡

Aboutsecurity ⭐ 762

Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.

Spoilerwall ⭐ 754

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!

Dontgo403 ⭐ 703

Tool to bypass 40X response codes.

Security Data Analysis And Visualization ⭐ 681

2018-2020青年安全圈-活跃技术博主/博客

Vulnhub Ctf Writeups ⭐ 677

This cheasheet is aimed at the CTF Players and Beginners to help them sort Vulnhub Labs. This list contains all the writeups available on hackingarticles.

Injuredandroid ⭐ 628

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

Pentest Env ⭐ 626

Pentest environment deployer (kali linux + targets) using vagrant and chef.

Ctf Notes ⭐ 574

Everything needed for doing CTFs

Cybersecurity ⭐ 568

A collection of essential and foundational cybersecurity knowledge, thoughtfully organized for easy comprehension to passionate learners.

🔑 Hash type identifier (CLI & lib)

Stegcracker ⭐ 519

Steganography brute-force utility to uncover hidden data inside files

Gtfonow ⭐ 414

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries using GTFOBins.

Hacker101 Ctf ⭐ 413

Hacker101 CTF Writeup

Juice Shop Ctf ⭐ 391

Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF

Karkinos ⭐ 386

Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing

CTF Cheat Sheet + Writeups / Files for some of the Cyber CTFs that I've done

Pentest Everything ⭐ 379

A collection of CTF write-ups, pentesting topics, guides and notes. Notes compiled from multiple sources and my own lab research. Topics also support OSCP, Active Directory, CRTE, eJPT and eCPPT.

Script for generating revshells

Pentest Lab ⭐ 343

Pentest Lab on OpenStack with Heat, Chef provisioning and Docker

Covermyass ⭐ 227

Post-exploitation tool to cover your tracks on a compromised machine

Debughunter ⭐ 205

Discover hidden debugging parameters and uncover web application secrets

Linux Soft Exploit Suggester ⭐ 204

Search Exploitable Software on Linux

Tryhackme Ctf ⭐ 178

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Flask Unsign ⭐ 176

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

Awesome Cybersec ⭐ 162

A collection of awesome platforms, blogs, documents, books, resources and cool stuff about security

Pentesting Bugbounty ⭐ 162

Bringing infosec community, group and leaders together that solve community challenges, problems, create cultural and provide value to Infosec community.

Research ⭐ 133

Bug Bounty writeups, Vulnerability Research, Tutorials, Tips&Tricks

Sec Pentesting Toolkit ⭐ 130

👾 𝘁𝗼𝗼𝗹𝘀 𝗳𝗼𝗿 𝘀𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗿𝗲𝘀𝗲𝗮𝗿𝗰𝗵𝗲𝗿𝘀: 𝗽𝗲𝗻𝘁𝗲𝘀𝘁𝗶𝗻𝗴, 𝗖𝗧𝗙𝘀 & 𝘄𝗮𝗿𝗴𝗮𝗺𝗲𝘀

Jwtxploiter ⭐ 130

A tool to test security of json web token

Lctf2018 ⭐ 129

Source code, writeups and exps in LCTF2018.

Print My Shell ⭐ 124

Python script wrote to automate the process of generating various reverse shells.

Tryhackme ⭐ 111

Master cybersecurity skills with this TryHackMe free path, includes a collection of my write-ups, solutions and progress tracking.

Crypto_identifier ⭐ 108

Crypto tool for pentest and ctf : try to uncipher data using multiple algorithms and block chaining modes. Usefull for a quick check on unknown cipher text and key dictionnary

Stegextract ⭐ 102

Detect hidden files and text in images

Pathwar ⭐ 102

☠️ The Pathwar Project ☠️

A cli for cracking, testing vulnerabilities on Json Web Token(JWT)

Labs Pentest ⭐ 100

Free Labs to Train Your Pentest / CTF Skills

Spellbook ⭐ 96

Framework for rapid development of offensive security tools

Wwwordlist ⭐ 92

Wwwordlist is a wordlist generator for pentesters and bug bounty hunters. It extracts words from HTML, URLs, JS/HTTP/input variables, quoted texts in the text and mail files in order to generate wordlists.

PowerShell payload generator

Pentest Everything ⭐ 81

This is a penetration testing cheatsheet I created to get my OSCP certification.

Vulnerable Client-Server Application (VuCSA) is made for learning how to perform penetration tests of non-http thick clients. It is written in Java (with JavaFX graphical user interface) and contains multiple challenges including SQL injection, RCE, XML vulnerabilities and more.

Enumerate a target Based off of Nmap Results

Owasp Workshop Android Pentest ⭐ 69

Learning Penetration Testing of Android Applications

🐳 VMs are bloat. Dockerise your CTF environment.

Web2shell ⭐ 60

Automate converting webshells into reverse shells.

Grepaddr ⭐ 60

Use grepaddr to extract (grep) all kinds of addresses from stdin like URLs (incl. IPv4/IPv6), IP addresses & ranges (IPv4/IPv6), e-mail addresses, MAC addresses.

Infosec Notes ⭐ 58

Notes from various sources for preparing to take the OSCP, Capture the Flag challenges, and Hack the Box machines.

Hacking Resources ⭐ 55

This repository contains some resources for ethical hackers penetration tester 😊 This may contain some files, tools, books, and links that need to be used for good purposes only. Do not do any illegal work using these sources.

Awesome Infosec ⭐ 52

A curated list of awesome infosec blog posts, courses, books and more!

Game Of Thrones Hacking Ctf ⭐ 46

Game of Thrones hacking CTF (Capture the flag)

Httpuploadexfil ⭐ 42

A simple HTTP server for delivering and exfiltrating files/data during, for example, CTFs.

A friendly Toolkit for Beginner CTF players

Machine_learning_ctf_challenges ⭐ 39

CTF challenges designed and implemented in machine learning applications

Awesome Security Resources ⭐ 38

This repository is for tools, guides, cheatsheets, and anything else related to learning all different aspects of security.

Cybergym ⭐ 37

Lucideus CyberGym is the internal CTF event we organise for our security professionals to grow and learn together. Now everyone can access the challenges that can be easily setup and start playing.

Blindpie ⭐ 37

Automatically exploit time-based blind SQL injection vulnerabilities.

Cheatsheet ⭐ 35

This is a simple Cheat Sheet which can be helpful while pentesting

Haxtools ⭐ 31

A highly customised CTF, bounty hunting & penetration testing environment based on the official kali-rolling docker image

Padding_oracle.py ⭐ 30

Fast threaded padding oracle attack automation script for Python 3.

Flask Unsign Wordlist ⭐ 30

The following package is the standalone wordlist-only component to flask-unsign.

Ctf Wr1t3ups ⭐ 27

Repository to store summaries of CTF challenges

🌮 INTERACTIVE reverse shell everywhere! (Particularly digestible with socat multi-handler listener)

Hackbox is an open-source, container-based platform that makes it easy to launch vulnerable systems to test your hacking skill!

Doubletap ⭐ 21

A very loud but fast recon scan and pentest template creator for use in CTF's/OSCP/Hackthebox...

Rawsec_cli ⭐ 21

Rawsec's Cybersecurity Inventory cli. Search pentesting tools, resources, ctf, os.

Laravel Ctf Exercise ⭐ 19

Intentionally vulnerable Laravel CTF Style pentesting exercise application used in Laracon Madrid 2019 presentation

Hackthebox Scripts ⭐ 18

Useful scripts to exploit Hack The Box retired machines/challenges

Thehackingsage ⭐ 18

Ggtfobins ⭐ 17

Get GTFOBins info about a given exploit from the command line

Ctf Writeups ⭐ 17

Capture The Flag competition challenge write-ups

Payloadsall ⭐ 17

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Ctf Journey ⭐ 16

Useful tips for various types of cybersecurity challenges

GoRAT (Go Remote Access Tool) is an extremely powerful reverse shell, file server, and control plane using HTTPS reverse tunnels as a transport mechanism.

Red Book ⭐ 16

The Red-book: The Art of Offensive CyberSecurity

Manage and access your Kali Linux or Parrot Security VM from the terminal (SSH support + file sharing, especially convenient during CTFs, Hack The Box, etc.) 🚀🔧

Shockz Mke ⭐ 13

Shockz MKE es mi entorno de trabajo profesional enfocado al pentesting y CR Este cuenta con varias utilidades como una estilo personalizado del prompt con powerlevel10k, una diversas barras superiores con ciertas funcionalidad útiles gracias a polybar, etc.

Tryhackme ⭐ 13

The source files of my completed TryHackMe challenges and walkthroughs with links to their respective rooms

Runasuser ⭐ 13

This tool allows you to run programs as another user from the Windows command line. Example usage is if you have a low privilege shell and find credentials for another user. You can then execute a program as that other user.

A small program for network recon

Related Searches

Python Penetration Testing (1,380)

Python Capture The Flag (990)

Security Penetration Testing (767)

Shell Penetration Testing (468)

Scanner Penetration Testing (373)

Exploitation Penetration Testing (356)

Penetration Testing Pentest Tool (347)

1-7 of 7 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.