Joas A Santos's starred repositories
what-happens-when
An attempt to answer the age old interview question "What happens when you type google.com into your browser and press enter?"
BloodHound
Six Degrees of Domain Admin
django-DefectDojo
DevSecOps, ASPM, Vulnerability Management. All on one platform.
interactsh
An OOB interaction gathering server and client library
PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte
guiadecybersecurity
Esse guia contém todas as informações necessárias para se introduzir na área de segurança da informação, dessa maneira, você encontrará, cursos, indicações de livros, roadmaps, playlists, certificações e demais outras coisas.
AndroBugs_Framework
AndroBugs Framework is an efficient Android vulnerability scanner that helps developers or hackers find potential security vulnerabilities in Android applications. No need to install on Windows.
DVIA-v2
Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security enthusiasts/professionals or students to test their iOS penetration testing skills in a legal environment. This project is developed and maintained by @prateekg147. The vulnerabilities and solutions covered in this app are tested up to iOS 11. The current version is writen in Swift and has the following vulnerabilities.
SharpHound
C# Data Collector for BloodHound
ESP8266-Captive-Portal
:key: WiFi captive portal for ESP8266 for phishing WiFi passwords
BLUETOOTH-DOS-ATTACK-SCRIPT
Script for quick and easy DOS-attacks on bluetooth devices for pentest purposes
UltimateWDACBypassList
A centralized resource for previously documented WDAC bypass techniques
JustEvadeBro
JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.
bruteforce-salted-openssl
Try to find the password of a file that was encrypted with the 'openssl' command.
amd-ryzen-master-driver-v17-exploit
Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).
Bugbounty-Checklist
Tips and Tutorials for Bug Bounty and also Penetration Tests.
Sudo-1.8.31-Root-Exploit
Root shell PoC for CVE-2021-3156
ronin-vulns
Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.
Get-Shellcode
A solution to create obfuscated shellcode from msfvenom for PowerShell.
gohellsgate
Golang Implementation of Hell's gate
bloodhound-import
Python based BloodHound data importer