Mastering Bitcoin 3rd Edition - Programming the Open Blockchain

An automated phishing tool with 30+ templates. This Tool is made for educational purpose only ! Author will not be responsible for any misuse of this toolkit !

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

A list of public penetration test reports published by several consulting firms and academic security groups.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve…

Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.

Automate the creation of a lab environment complete with security tooling and logging best practices

Dirty COW

学习安全运营的记录 | The knowledge base of security operation

Everything needed for doing CTFs

Embed and hide any file in an HTML file

A library of pretexts to use on offensive phishing engagements.

Micro8 Online

EmptyPhish is an automated phishing tool that comes with 30+ templates for various popular platforms like Instagram, Facebook, Twitter, Snapchat, GitHub, Yahoo, ProtonMail, Google, Spotify, Netflix…

Certified Red Team Operator

DevBlog is a personal blog website.

A nodejs web application honeypot

Pull some collected APT group related samples, ransomware, remote control and other malicious programs for security researchers to use.

学习OSCP时不认识的单词汇总整理成此表。

Notes for the Offensive Security Windows User Mode Exploit Development Class

Home of the golang.org website

网络安全 · 攻防对抗 · 蓝队清单，中文版