This is your work, valued
Pentest-Cheatsheets. Python
1.2kActive-Directory-Exploitation-Cheat-Sheet. A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
219Windows-PrivEsc-Setup. Batchfile
86Hallucinet-Explorer. A web browser where every page is hallucinated by an LLM. No real HTTP requests. Browse the World Vibe Web.
83Turbo-Intruder-Scripts. A collection of Turbo Intruder scripts.
73SemiAutoRecon. Python
68windowsprivchecker. Windows privilege escalation (enumeration) script designed with OSCP labs (legacy Windows) in mind
62Copier. A Burp extension to help pentesters copy requests / responses for reports.
54linuxprivchecker. linuxprivchecker.py -- a Linux Privilege Escalation Check Script
39Tibs-TUBs. A collection of TUBs (Totally Useless Bambdas) for Burp Suite, created by Tib3rius & friends.
35creddump7. Python
33Kali-Configs. Shell
32privesc-setup. Shell
30Windows-PrivEsc-Tools.
30privilege-escalation-awesome-scripts-suite. PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
26Linux-PrivEsc-Tools.
26Collector. Java
26tib3rius.github.io. HTML
22Burp-Suite-Certified-Practitioner-Exam-Study. Burp Suite Certified Practitioner Exam Study
19LinEnum. Scripted Local Linux Enumeration & Privilege Escalation Checks
19nitko. Nitko web server scanner
15Free_Tech_Resources. Compiling a list of free learning resources in different areas of tech
13rsg. ReverShellGenerator - A tool to generate various ways to do a reverse shell
13revshellgen. Simple script to generate commands to achieve reverse shells.
12burpsuite-montoya-dev. Java
12Dynamic-DTD. A python Flask app that generates dynamic DTDs for easy data exfiltration.
11dirsearch. Web path scanner
11lpeworkshop. Windows / Linux Local Privilege Escalation Workshop
11XXE-Demos. Java
9pspy. Monitor linux processes without root permissions
8TryHarder-InfoSecPrep. Discord bot for InfoSec Prep server
7infosecstreams.github.io. A (hopefully) actively maintained activity-based-autosorted list of InfoSec Streamers
6security-creators. Vue
6every-password. Every single password leaked, from 4 to 32 chars
4InfoSec-Black-Friday. All the deals for InfoSec related software/tools this Black Friday
3vulnerable-nodejs-express-mysql. Example of a vulnerable NodeJS+Express+MySQL service
2autoBambda. AI-powered toolkit for generating Bambda custom scan checks for Burp Suite Professional using the Montoya API.
2