offensive-security

There are 117 repositories under offensive-security topic.

• ihebski / DefaultCreds-cheat-sheet

  One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

  infosecdefault-passwordpentestingbugbountypentestcredentials-gatheringcheatsheetcybersecurityblueteamoffensive-securityexploit
  Language:Python 5304

• mantvydasb / RedTeaming-Tactics-and-Techniques

  Red Teaming Tactics and Techniques

  redteampentestingredteamingredteam-infrastructureoffensive-securityoscp
  Language:PowerShell 3838

• t3l3machus / Villain

  Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).

  c2cybersecurityhackinghacking-tooloffensive-securityopen-sourcepenetration-testingpenetration-testing-toolspentestpentestingreadteamingredteamredteam-tools
  Language:Python 3581
• OSCP-Exam-Report-Template-Markdown

  noraj / OSCP-Exam-Report-Template-Markdown

  :orange_book: Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

  oscpoffensive-securityreportoscp-prepreporting-toolpandocmarkdown-templatemarkdownmarkdown-to-pdfexamlatexosweosceoseeoswpexam-report
  Language:Ruby 3322

• skerkour / black-hat-rust

  Applied offensive security with Rust - https://kerkour.com/black-hat-rust

  rustsecuritypentestpentestingoffensive-securityred-teamauditbeaconc2bug-bountybug-huntingwasmshellcodesscannerphishingtrojanvirushackinginfosecsecurity-tools
  Language:Rust 3046

• evyatarmeged / Raccoon

  A high performance offensive security tool for reconnaissance and vulnerability scanning

  reconnaissancescannervulnerability-assessmentvulnerability-scannerenumerationpentestingpentest-toolhacking-tooloffensive-securitysecurity-scannerfuzzinginformation-gatheringhackingraccoonosint
  Language:Python 3003

• codingo / NoSQLMap

  Automated NoSQL database enumeration and web application exploitation tool.

  nosqlnosql-databasespenetration-testingscannersecurity-auditsecurity-toolssecurity-toolsetoffensive-securityenumerationdatabasesmongodbcouchdbweb-application-securitybugbountyredismongodb-databasesql-injectionhackinghacking-toolhacktoberfest
  Language:Python 2763

• 0xsyr0 / OSCP

  OSCP Cheat Sheet

  oscposcp-guidecheat-sheetcheatsheetoffensiveoffensive-securityoffsecpenetration-testingpentestingsecurity
  Language:Python 2466

• 0x4D31 / awesome-oscp

  A curated list of awesome OSCP resources

  oscposcp-preposcp-toolsoffensive-securityawesome-listpentestingpenetration-testingpentest
  2427

• nicocha30 / ligolo-ng

  An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

  golangoffensive-securitypentest-toolpentestingpivotingpost-exploitationredteamtunneling
  Language:Go 2194

• 0xsyr0 / Awesome-Cybersecurity-Handbooks

  A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.

  ctfcybersecurityinfosecpentestingred-teamingcapture-the-flaghandbooksoffensiveoffensive-securitypenetration-testingsecurity
  2083

• codingo / Reconnoitre

  A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

  oscppenetration-testingscannersecuritysecurity-auditsecurity-toolssecurity-scanneroffensive-securitynmapenumerationscanningkali-linuxservice-enumerationservices-discovereddiscover-servicesrangesnmphackinghacking-toolvirtual-hosts
  Language:Python 2076

• aydinnyunus / Keylogger

  Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.

  keyloggerkeyloggingkeylogger-screenshotkeylogkeylogskeylogger-analysiskeylogerhackinghacking-toolhacking-toolshacking-codehackingtoolspythonpython3python-hackingpython-toolscybersecuritycyber-securityoffensive-securityoffensive-scripts
  Language:Python 1942

• skavngr / rapidscan

  :new: The Multi-Tool Web Vulnerability Scanner.

  scannervulnerability-scannersscanner-webweb-vulnerabilities-scannersecurity-toolssecurity-scannerpenetration-testing-frameworkpenetration-testingvulnerability-assessmentvulnerability-scannervulnerability-managementoscpvulnerability-detectionkali-scriptskali-linuxvulnerabilitiessecurity-scanningoffensive-securityenumerationreconnaissance
  Language:Python 1660

• jivoi / pentest

  :no_entry: offsec batteries included

  kali-linuxoffensive-securitypentest-environmentpentestingpentesting-windowspython
  Language:Python 1466
• Digital-Forensics-Guide

  mikeroyal / Digital-Forensics-Guide

  Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

  digitalforensicsdigitalforensicreadinessforensicssecurityforensics-toolsdigital-forensicsthreat-intelligenceintrusion-detectionmitre-attackdetection-engineeringnetwork-securityoffensive-securitycyber-securityport-scanningsiemalertingforensic-analysisforensics-investigationsosintdfir
  Language:Python 1364

• tokyoneon / Chimera

  Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

  bypass-antivirusantivirus-evasionantivirusattackoffensive-securitykali-scriptskali-scriptkali-linuxkaliinformation-securityreverse-shellpayloadpayloadspenetration-testingpayload-generatorshellshell-scriptsamsi
  Language:PowerShell 1320

• codingo / VHostScan

  A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

  security-auditpenetration-testingpenetration-testvirtual-hostsweb-application-securitydiscovery-servicehackinghacking-toolvirtual-hostvhostvhostssecurity-toolssecurityhacktheboxoscpctf-toolsoffensive-securitybugbountyreverse-lookupsscanner
  Language:Python 1161

• Viralmaniar / BigBountyRecon

  BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

  osintreconreconnaissancecybersecurityoffensive-securitypentestingpentest-toolbugbountybugbounty-toolbugbountytipsred-teamred-teamingblue-teampurple-teampurple-teams
  Language:C# 1133
• 007-TheBond

  Deadshot0x7 / 007-TheBond

  This Script will help you to gather information about your victim or friend.

  kali-linuxparrotosnithackingtermux-tooltermux-hackingkali-toolshacking-toolhacking-toolstermuxhackingtoolsmetasploitinformation-gatheringnoobhackersytoffensive-securityopen-source-intelligenceinformation-extractioncybersecuirtymetaspoilttools
  Language:Python 1041
• BlackMamba

  loseys / BlackMamba

  C2/post-exploitation framework

  pyqt5python3spywarepost-exploitationpentestpentest-tooloffensive-securityred-teamsecurity-toolscommand-and-controlqtframeworkpython
  Language:Python 991

• whoisflynn / OSCP-Exam-Report-Template

  Modified template for the OSCP Exam and Labs. Used during my passing attempt

  oscposcp-toolsoffensive-securityreportingexamoscp-prep
  927

• ForbiddenProgrammer / conti-pentester-guide-leak

  Leaked pentesting manuals given to Conti ransomware crooks

  cybersecuritypentestinginfosecoffensive-securityredteamingcobalt-strikeransomwareransomware-detectionmitigationiocguidepentesting-toolspentest-scripts
  Language:Batchfile 905

• pushsecurity / saas-attacks

  Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threats they face. #nolockdown

  offensive-securitysaasweb-security
  891
• Open-Source-Security-Guide

  mikeroyal / Open-Source-Security-Guide

  Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.

  compliancecyber-securitydetection-engineeringforensics-toolsincident-managementincident-responseinformation-securityinfosecintrusion-detectionkali-linuxmitre-attacknetwork-analysisoffensive-securitypentestersprivacy-protectionscanning-toolsiemsurveillancevulnerabilitiesvulnerability-detection
  Language:Go 857

• Zeyad-Azima / Offensive-Resources

  A Huge Learning Resources with Labs For Offensive Security Players

  apiinfrastructurelearningsecuritymobilewebhackhackingowaspcybersecurityweb-securitymobile-securityoffensiveoffensive-securityred-teamowasp-top-10redteamcloud-securityapi-securityred-teaming
  835

• six2dez / OSCP-Human-Guide

  My own OSCP guide

  oscposcp-guideoffensive-securitypentestinghackingvulnhubhackthebox
  795

• joaoviictorti / RustRedOps

  🦀 | RustRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Rust programming language.

  hackingmalwaremalware-developmentoffensive-securityredteamrustsecuritywindows
  Language:Rust 767

• ivan-sincek / penetration-testing-cheat-sheet

  Work in progress...

  bug-bountyethical-hackingoffensive-securitypenetration-testingred-team-engagementsecuritywebweb-penetration-testing
  Language:PHP 583
• OffSec-Reporting

  Syslifters / OffSec-Reporting

  Offensive Security OSCP, OSWP, OSEP, OSWA, OSWE, OSED, OSMR, OSEE, OSDA Exam and Lab Reporting / Note-Taking Tool

  lab-reportoffensive-securityoffsecoscposeeosweoswppentest-reportpentesting-toolsreportingreporting-toolpenetration-testingoscp-toolsred-teamingsecurity-toolsoseposedoswa
  581

• noraj / flask-session-cookie-manager

  :cookie: Flask Session Cookie Decoder/Encoder

  flaskcookiedecoderencodertooloffensive-securitypentest
  Language:Python 577

• nyancrimew / goop

  Yet another tool to dump a git repository from a website, focused on as-complete-as-possible dumps and handling weird edge-cases.

  bug-bountygitinfosecoffensive-security
  Language:Go 538

• Frissi0n / GTFONow

  Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries using GTFOBins.

  pentestingctfsuid-binariesprivilege-escalationpost-exploitationgtfobinshacktheboxpentestredteamhackingsecuritysecurity-toolsctf-toolsoffensive-security
  Language:Python 503

• frizb / Vanquish

  Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

  kali-linuxoscpvulnerability-scannersvulnerability-assessmentoffensive-securitypythonpenetration-testingpenetration-testing-framework
  Language:Python 501

• abhisharma404 / vault

  swiss army knife for hackers

  pythonpentestingsecuritynetworkingoffensive-securityscannerhackingxss-vulnerabilitylfirfisqlitessl-inspectionport-scannercrawlerscrapyfuzzinghacking-toolinformation-gatheringosintvault
  Language:Python 497

• shreyaschavhan / oscp-pre-preparation-plan-and-notes

  My OSCP Pre-Preparation Phase. I'm not sure if I'll be able to afford the exam but what count's trying and learning things. I'm gonna give it a try. [Start Date: 21st March 2022]

  certificationoffensive-securityoffensive-security-certified-professional
  495