GTFOBins / GTFOBins.github.io

Windows、Linux/Unix*、MacOS 提权脚本合集

#夺旗赛 (CTF) 和网络安全资源#该仓库整理了Web安全相关攻击示例代码和资源

#夺旗赛 (CTF) 和网络安全资源#Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Fast web fuzzer written in Go

大模型Grok-1开源

Scripted Local Linux Enumeration & Privilege Escalation Checks

#夺旗赛 (CTF) 和网络安全资源#SecLists 是安全测试员工作伴侣。该仓库整理了大量用于安全测试的清单集合，清单中包括弱口令，常用用户名，敏感数据特征码、模糊测试载荷等。

#大语言模型#🙌 OpenHands: Code Less, Make More

Linux privilege escalation auditing tool

#端口扫描工具#🤖 一个现代的端口扫描器 🤖

Active Directory and Internal Pentest Cheatsheets

xz 漏洞（CVE-2024-3094）笔记、攻击demo

Devika is an Agentic AI Software Engineer that can understand high-level human instructions, break them down into steps, research relevant information, and write code to achieve the given objective. D...

PowerSploit - A PowerShell Post-Exploitation Framework

#夺旗赛 (CTF) 和网络安全资源#sherlock 是一个社工查询工具，能从上百个社交网站中检索指定 username 的账号是否存在

#夺旗赛 (CTF) 和网络安全资源#E-mails, subdomains and names Harvester - OSINT

Linux enumeration tool for pentesting and CTFs with verbosity levels

The all-in-one browser extension for offensive security professionals 🛠

🕵️‍♂️ All-in-one OSINT tool for analysing any website