A list of useful payloads and bypass for Web Application Security and Pentest/CTF

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

A collection of hacking / penetration testing resources to make you better!

CTF framework and exploit development library

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Bartosz Milewski's 'Category Theory for Programmers' unofficial PDF and LaTeX source

A curated list of CTF frameworks, libraries, resources and softwares

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Exploit Development and Reverse Engineering with GDB & LLDB Made Easy

Some setup scripts for security research tools.

Come and join us, we need you!

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data

CTFs as you need them

Platform to host Capture the Flag competitions

Course materials for Modern Binary Exploitation by RPISEC

Monitor linux processes without root permissions

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Google CTF

CTF竞赛权威指南

【Hello CTF】题目配套，免费开源的CTF入门教程，针对0基础新手编写，同时兼顾信息差的填补，对各阶段的CTFer都友好的开源教程，致力于CTF和网络安全的开源生态！

Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Linux enumeration tool for pentesting and CTFs with verbosity levels

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

Automatic SSRF fuzzer and exploitation tool

😎 🔗 Awesome list about all kinds of resources for learning Ethical Hacking and Penetration Testing.

👻Stowaway -- Multi-hop Proxy Tool for pentesters

A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.