Amr-Hamza's repositories
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
arsenal1
Arsenal is just a quick inventory and launcher for hacking programs
Bashfuscator
A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.
can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
commando-vm
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com
cupp
Common User Passwords Profiler (CUPP)
CVE-2024-21338
Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.
CVE-2024-6387-Vulnerability-Checker
This Python script checks for the CVE-2024-6387 vulnerability in OpenSSH servers. It supports multiple IP addresses, URLs, CIDR ranges, and ports. The script can also read addresses from a file.
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
dnschef-ng
DNSChef (NG) - DNS proxy for Penetration Testers and Malware Analysts
firefox_decrypt
Firefox Decrypt is a tool to extract passwords from Mozilla (Firefox™, Waterfox™, Thunderbird®, SeaMonkey®) profiles
Frida-Labs
The repo contains a series of challenges for learning Frida for Android Exploitation.
HowToHunt
Collection of methodology and test case for various web vulnerabilities.
jenkins-credentials-decryptor
Command line tool for dumping Jenkins credentials.
LaZagne
Credentials recovery project
Mindmap
This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them
Mythic
A collaborative, multi-platform, red teaming framework
Nemesis
An offensive data enrichment pipeline
NoSQLMap
Automated NoSQL database enumeration and web application exploitation tool.
OSCP-Cheatsheet
OSCP Cheatsheet by Sai Sathvik
penelope
Penelope Shell Handler
PracticalCyberSecurityResources
This repository contains a curated list of resources I suggest on LinkedIn and Twitter.📝🌝
psgetsystem
getsystem via parent process using ps1 & embeded c#
PsMapExec
A PowerShell tool that takes strong inspiration from CrackMapExec.
SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
the-book-of-secret-knowledge
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
unredacter
Never ever ever use pixelation as a redaction technique
WTSImpersonator
WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"
x64dbg
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.