ctf

A collection of hacking / penetration testing resources to make you better!

CTF framework and exploit development library

A curated list of CTF frameworks, libraries, resources and softwares

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Platform to host Capture the Flag competitions

Come and join us, we need you!

Course materials for Modern Binary Exploitation by RPISEC

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

CTF竞赛权威指南

Monitor linux processes without root permissions

Google CTF

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

Wiki-like CTF write-ups repository, maintained by the community. 2017

Automatic SSRF fuzzer and exploitation tool

Web CTF CheatSheet 🐈

The best tool for finding one gadget RCE in libc.so.6

Ctf solutions from p4 team

Venom - A Multi-hop Proxy for Penetration Testers

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

Writeups for HacktheBox 'boot2root' machines

Snoop — инструмент разведки на основе открытых данных (OSINT world)

👻Stowaway -- Multi-hop Proxy Tool for pentesters

Here record some tips about pwn. Something is obsoleted and won't be updated. Sorry about that.

China's first CTFTools framework.中国国内首个CTF工具框架,旨在帮助CTFer快速攻克难关

A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me

Build a database of libc offsets to simplify exploitation