wcope81

wstg

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

commando-vm

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

Sn1per

Attack Surface Management Platform

monkey

Infection Monkey - An open-source adversary emulation platform

thc-hydra

hydra

Scanners-Box

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

h4cker

This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.

Awesome-Hacking-Resources

A collection of hacking / penetration testing resources to make you better!

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

OSCP-Exam-Report-Template-Markdown

:orange_book: Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

awesome-security

A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.

awesome-bug-bounty

A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.

awesome-osint

:scream: A curated list of amazingly awesome OSINT

HackTheBox-CTF-Writeups

This cheasheet is aimed at the CTF Players and Beginners to help them sort Hack The Box Labs on the basis of Operating System and Difficulty.

Linux-Privilege-Escalation

This cheatsheet is aimed at the OSCP aspirants to help them understand the various methods of Escalating Privilege on Linux based Machines and CTFs with examples.

Privilege-Escalation

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

Web-Application-Cheatsheet

This cheatsheet is aimed at the CTF Players and Beginners to help them understand Web Application Vulnerablity with examples.

API-Security-Checklist

Checklist of the most important security countermeasures when designing, testing, and releasing your API

cybersecurity-career-path

Cybersecurity Career Path

Windows

Awesome tools to exploit Windows !

Awesome-Security-Gists

A collection of various GitHub gists for hackers, pentesters and security researchers

Awesome-Hacking

A collection of various awesome lists for hackers, pentesters and security researchers

pentesting-dump

Scripts, tools, and proof-of-concepts to aid in a penetration test.

public-pentesting-reports

A list of public penetration test reports published by several consulting firms and academic security groups.

OSCPRepo

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Cyber-Security-Resources

static-toolbox

A collection of statically compiled tools like Nmap and Socat.

static-binaries

Various *nix tools built as statically-linked binaries

Windows-Privilege-Escalation

Windows Privilege Escalation Techniques and Scripts

Linux-Privilege-Escalation

Tips and Tricks for Linux Priv Escalation