5k1p's repositories
My-Profile
Config files for my GitHub profile.
Bug_Bounty_Tools_and_Methodology
Bug Bounty Tools used on Twitch - Recon
Red-Team-Engagement-Simulation
A Red Team Engagement is a cybersecurity exercise designed to simulate real-world attacks and security breaches on an organization's systems, networks, and applications. The primary goal of a red team engagement is to identify vulnerabilities, weaknesses, and potential points of exploitation within an organization's defenses.
Conferences
Conference slides
MalwareSourceCode
Collection of malware source code for a variety of platforms in an array of different programming languages.
redteamrecipe.github.io
redteamrecipe.com
Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
VX-API
Collection of various malicious functionality to aid in malware development
pentips
CSbyGB PenTips Gitbook
hoaxshell
An unconventional Windows reverse shell, currently undetected by Microsoft Defender and various other AV solutions, solely based on http(s) traffic.
pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Awesome-RCE-techniques
Awesome list of step by step techniques to achieve Remote Code Execution on various apps!
Windows-WiFi-Extractor
Extract Windows Wi-Fi Passwords to Remote URL
caldera
Automated Adversary Emulation Platform
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
awesome-forensics
A curated list of awesome forensic analysis tools and resources
Practical-Ethical-Hacking-Resources
Compilation of Resources from TCM's Practical Ethical Hacking Udemy Course
Ethical-Hacking
These are notes related to Ethical Hacking
CloudPeler
CrimeFlare is a useful tool for bypassing websites protected by CloudFlare WAF, with this tool you can easily see the real IP of websites that have been protected by CloudFlare. The resulting information is certainly very useful for conducting further penetration testing, and analyzing websites with the same server.
tryhackme-ctf
TryHackMe CTFs writeups, notes, dratfs, scrabbles, files and solutions.
Bugbounty-Tools
A curated list of various bug bounty tools
public-pentesting-reports
Curated list of public penetration test reports released by several consulting firms and academic security groups
social-engineer-toolkit
The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.
vapi
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
TCM-Security-Sample-Pentest-Report
Sample pentest report provided by TCM Security
CEH-in-bullet-points
💻 Certified ethical hacker summary in bullet points
MailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
Linux101-Resources
Resources for TCM Security Linux 101 course