/try-harder-for-dummies

Offensive Security: Useful Links to #TryHarder

Try Harder for Dummies

Small set of useful info for Offensive Security & Security Research.

Passwords

Lists

Linux

Payloads

PrivEsc

Windows

Linux

  • GTFOBins - common Unix binaries that could be used to bypass local restrictions

Exploit Suggesters

I'd love to have one tool that does all of this, but different tools seem better at detecting / suggesting specific exploits.

Post-Exploitation

Windows

  • ibombshell - Powershell based post-exploitation framework
  • p0wnedShell - PowerShell post-exploitation framework (compiled, does not require PS to run)

Pivoting

Windows

Generic

Windows QoL

Download & Execute Remote Payload

Powershell alternatives

Guides

Upgrading shells to fully interactive TTYs

Buffer Overflows

Debuggers

Fuzzers

  • honggfuzz - security-oriented, evolutionary fuzzer
  • boofuzz - network / protocol fuzzing

Misc

CTF / Challenge Sites