Blog about hacking things I've learned
-
Updated
Aug 20, 2022 - HTML
#
offensive-security
Here are 33 public repositories matching this topic...
Offensive Security Cheatsheet
-
Updated
Feb 14, 2023 - HTML
A CTF challenge we put together for Ekoparty's 2023 main CTF
-
Updated
Dec 20, 2023 - HTML
A dynamic cross-site scripting (XSS) payload delivery system with team server abilities.
-
Updated
Feb 21, 2024 - HTML
Simple API for storing all incoming XSS requests and various XSS templates.
javascript api php cors security web xss penetration-testing bug-bounty csrf offensive-security ethical-hacking cross-origin-resource-sharing web-penetration-testing blind-xss red-team-engagement cross-site-scripting cross-site-request-forgery
-
Updated
Jul 18, 2024 - HTML
Most realistic social media phishing page for Instagram and facebook
open-source phishing hacking cybersecurity penetration-testing pentesting social-login offensive-security hacking-tool redteam readteaming penetration-testing-tools phishing-page redteam-tools social-media-phishing
-
Updated
Aug 29, 2024 - HTML
This central repository is crafted for cybersecurity enthusiasts, researchers, and professionals aiming to advance their skills. It offers valuable resources for those focused on analyzing and understanding different types of malware.
-
Updated
May 22, 2025 - HTML
Public Portfolio Website
-
Updated
Jun 12, 2025 - HTML
NetSentinel is a Python-based red team reconnaissance framework designed for stealthy internal enumeration, service discovery, and lateral movement preparation.
smb active-directory python3 cybersecurity infosec kerberos post-exploitation offensive-security network-scanner reconnaissance pentest-tool redteam kerberoasting redteam-tools internal-networking as-rep-roasting ldap-enumeration opsec-safe covert-ops
-
Updated
Jun 29, 2025 - HTML
SVG XSS Exploiter is a web tool built with Python and Flask that lets users inject JavaScript payloads into SVG images to simulate XSS attacks. Made for ethical hackers and security researchers, it offers a simple UI to upload and test malicious SVGs safely in a local environment. Built strictly for educational and authorized testing purposes only.
cybersecurity penetration-testing infosec web-security bugbounty offensive-security vulnerability-assessment javascript-injection web-hacking security-testing hacking-tools svg-xss xss-web-security xss-web svg-exploitation
-
Updated
Jul 10, 2025 - HTML
Educational deserialization attack on a hydroelectric plant simulator (HydroFlow Console)
training docker iot simulator firmware hacking cybersecurity educational infosec ctf pickle scada vulnerable offensive-security writeup red-team critical-infrastructure htb water-systems deserializacion
-
Updated
Jul 14, 2025 - HTML
🔐 A powerful Node.js-based offensive security toolbox for security testing, subdomain/content discovery, SSL and header checks, and Tor proxying — all in one dashboard.
nodejs checklist express osint proxy infosec web-security pentesting bugbounty offensive-security ethical-hacking content-discovery tor-proxy security-tools redteam http-headers subdomain-enumeration gemini-ai ssl-analysis
-
Updated
Jul 18, 2025 - HTML
This repo is intended for capture the flag tasks and its write ups
osint reverse-engineering dfir cybersecurity ctf-writeups pwn appsec offensive-security blueteam redteam
-
Updated
Aug 13, 2025 - HTML
CyberMoriarty is a research-driven prototype for an "AI-assisted offensive security framework". The vision is to build an "AI-powered Metasploit alternative" that can assist red teamers and penetration testers.
nodejs python open-source ai prototype cybersecurity penetration-testing electron-app exploitation offensive-security exploit-development cybersecurity-tools redteaming-tools
-
Updated
Aug 24, 2025 - HTML
Sploit -- All-in-one, AI-powered cybersecurity toolkit for web, network, and phishing tests. Modular, cross-platform, Docker-ready, with GUI & CLI. Open source by AUX-441 Team.
python cross-platform python3 cybersecurity penetration-testing web-security threat-hunting malware-analysis bugbounty pentest offensive-security vulnerability-assessment ethical-hacking network-security blueteam security-automation devsecops redteam ai-security phishing-simulation
-
Updated
Aug 29, 2025 - HTML
Educational pentesting lab – Red Team exercises with Kali Linux, Metasploitable2, Nessus, Burp Suit, Wireshark, tcpdump, Nmap, Metasploit Framework, SET, Hydra, sqlmap, aircrack-ng and vulnerable apps. Step-by-step reports, commands, and captures.
hydra cybersecurity nmap wireshark pentesting ctf nessus kali-linux sqlmap offensive-security metasploitable ethical-hacking red-team burpsuite metasploit aircrack-ng security-lab
-
Updated
Sep 12, 2025 - HTML
Site where I publish my articles and writeups.
android security mobile cybersecurity writeups android-security mobile-security offensive offensive-security write-ups mobile-security-testing mobile-writeups
-
Updated
Sep 14, 2025 - HTML
Personal technical guide to offensive cybersecurity and pentesting. Documentation of tools, commands, labs, and best practices.
-
Updated
Sep 18, 2025 - HTML
Another random blog about security
-
Updated
Sep 30, 2025 - HTML
Improve this page
Add a description, image, and links to the offensive-security topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the offensive-security topic, visit your repo's landing page and select "manage topics."