5l33m's repositories
Azure-Red-Team
Azure Security Resources and Notes
tesla_bitcoin_miner
This is the code for "Tesla Bitcoin Miner" this week's live machine learning game show hosted by Siraj Raval
CVE-2021-26855
CVE-2021-26855 exp
CVE-2021-26856
PoC of proxylogon chain SSRF(CVE-2021-26855) to write file by testanull, censored by github
CVE-2021-3156
Exploit for Sudo heap overflow (CVE-2021-3156) on Debain 10
FiercePhish
FiercePhish is a full-fledged phishing framework to manage all phishing engagements. It allows you to track separate phishing campaigns, schedule sending of emails, and much more.
Go365
An Office365 User Attack Tool
gophish
Open-Source Phishing Toolkit
HideMadMiner
Hide Mad Miner XMR and ETH
htb-ca-2021
Hack The Box Cyber Apocalypse 2021
LazyRecon
An automated approach to performing recon for bug bounty hunting and penetration testing.
log4j-scan
A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
log4j-shell-poc
A Proof-Of-Concept for the recently found CVE-2021-44228 vulnerability.
muraena
Muraena is an almost-transparent reverse proxy aimed at automating phishing and post-phishing activities.
netscan.sh
Script to be used for automated network scanning
Ninja
Open source C2 server created for stealth red team operations
o365recon
retrieve information via O365 with a valid cred
OffensivePipeline
OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.
OffensiveVLang
Offensive V Programming
OSCP-Cheat-Sheet
This is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
SprayingToolkit
Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient
Windows10Exploits
Microsoft » Windows 10 : Security Vulnerabilities
xss-payload-list
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List