A collection of hacking / penetration testing resources to make you better!

CTF framework and exploit development library

Platform to host Capture the Flag competitions

A curated list of CTF frameworks, libraries, resources and softwares

A new start for CTF Wiki! Come and join us, we need you!

Course materials for Modern Binary Exploitation by RPISEC

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging features for exploit developers & reverse engineers ☢

CTF竞赛权威指南

Google CTF

Monitor linux processes without root permissions

Wiki-like CTF write-ups repository, maintained by the community. 2017

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

Web CTF CheatSheet 🐈

Automatic SSRF fuzzer and exploitation tool

Ctf solutions from p4 team

The best tool for finding one gadget RCE in libc.so.6

Venom - A Multi-hop Proxy for Penetration Testers

Here record some tips about pwn. Something is obsoleted and won't be updated. Sorry about that.

Writeups for HacktheBox 'boot2root' machines

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

China's first CTFTools framework.中国国内首个CTF工具框架,旨在帮助CTFer快速攻克难关

Build a database of libc offsets to simplify exploitation

CTF Field Guide

A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me

Snoop — инструмент разведки на основе открытых данных (OSINT world)