UAC bypass, Elevate, Persistence methods

Windows / Linux Local Privilege Escalation Workshop

Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature

Potentially dangerous files

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

Browser's XSS Filter Bypass Cheat Sheet

PowerSploit - A PowerShell Post-Exploitation Framework

Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.

A tool to dump the login password from the current linux user

Rewrite of the popular wireless network auditor, "wifite"

Damn Vulnerable eXtensive Training Environment

Hardening Tool for *nixes

syzkaller is an unsupervised coverage-guided kernel fuzzer

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

⌚ A wonderful CLI to track your time!

The only tool/technique to punch holes through firewalls/NATs where multiple clients & server can be behind separate NATs without any 3rd party involvement. Pwnat is a newly developed technique, ex…

😎 Awesome lists about all kinds of interesting topics

A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.

Automatic SQL injection and database takeover tool

Python logger with multiple features.

An exploitation shell focusing on exploiting command injection vulnerabilities, eg., LFI, RFI, SSTI, etc.

Setup script for Regon-ng