CryptoHackz

awesome-flipperzero

🐬 A collection of awesome resources for the Flipper Zero device.

evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

arkime

Arkime is an open source, large scale, full packet capturing, indexing, and database system.

cuckoo

Cuckoo Sandbox is an automated dynamic malware analysis system

Advanced-SQL-Injection-Cheatsheet

A cheat sheet that contains advanced queries for SQL Injection of all types.

FreedomGPT

This codebase is for a React and Electron-based app that executes the FreedomGPT LLM locally (offline and private) on Mac and Windows using a chat-based interface

evilgophish

evilginx3 + gophish

Damn-Vulnerable-GraphQL-Application

Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practising GraphQL Security.

Awesome-CloudSec-Labs

Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.

Hunting-Queries-Detection-Rules

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Cloud-Security-Attacks

Azure and AWS Attacks

PowerShell-Obfuscation-Bible

A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository are the result of personal research, including reading materials online and conducting trial-and-error attempts in labs and pentests.

OffSec-Reporting

Offensive Security OSCP, OSWP, OSEP, OSWA, OSWE, OSED, OSMR, OSEE, OSDA Exam and Lab Reporting / Note-Taking Tool

Awesome_Malware_Techniques

This is a repository of resource about Malware techniques

GC2-sheet

GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate files using Google Drive or Microsoft SharePoint Document.

LOOBins

Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in "living off the land" macOS binaries and how they can be used by threat actors for malicious purposes.

File-Smuggling

HTML smuggling is not an evil, it can be useful

Revenant

Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework

monitor

The new Cuckoo Monitor.

community

Repository of modules and signatures contributed by the community

RedTeaming_CheatSheet

ransomware_notes

An Archive of Ransomware Notes Past and Present Collected by Zscaler ThreatLabz

Breach-Report-Collection

A collection of companies that disclose adversary TTPs after they have been breached

Image-Research-OSINT

Learn how to research images and the tools, techniques & tradecraft required.

stacs

Static Token And Credential Scanner

MeliziaC2

DNS over HTTPS targeted malware (only runs once)

Hades-C2

Hades Basic Command & Control Server

hacking-cybersecurity

Hacking & Cybersecurity class materials - Scott J. Shapiro & Sean O'Brien

BlueBox

BlueBox Malware analysis Box and Cyber threat intelligence.

Malware-Threat-Reports

A full analysis report detailing as much as possible of a Malware or a Threat