The iOS Agent for the Needle Security Assessment Framework

Git All the Payloads! A collection of web attack payloads.

Just some links for the resources

Wiki-like CTF write-ups repository, maintained by the community. 2015

Created on 10th August 2017. Purpose of this Project is to note down every useful object I gained during the time I spent working on OSCP/PWK.

Post Exploitation Collection

Terminals is a secure, multi tab terminal services/remote desktop client. It uses Terminal Services ActiveX Client (mstscax.dll). The project started from the need of controlling multiple connectio…

SAML2 Burp Extension

Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised.

An Open Source KoTH Platform

Collection of the cheat sheets useful for pentesting

linux-kernel-exploits Linux平台提权漏洞集合

All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers

A curated list of Awesome Threat Intelligence resources

Scripts to control an "OSCP-like" lab environment.

Documentation:

Universal Serial aBUSe is a project to demonstrate the risks of hardware bypasses of software security by Rogan Dawes at SensePost.

The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering.

A Java 8 Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)

ESP8266 + OLED = WiFi Packet Monitor

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

A collection of Burpsuite Intruder payloads, fuzz lists and file uploads

Simple DuckyScript to Arduino converter.

OSX and iOS related security tools

A list of useful payloads and bypass for Web Application Security and Pentest/CTF