D0ntTrustMe's repositories
Web-Attack-Cheat-Sheet
Web Attack Cheat Sheet
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Amass
In-depth DNS Enumeration and Network Mapping
burpcollaborator-docker
This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate. The objective is to simplify as much as possible the process of setting up and maintaining the server.
can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
Cheatsheet-God
Penetration Testing / OSCP Biggest Reference Bank / Cheatsheet
CVE-2021-1675
Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)
custom-bcheck-scan
This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further manual testing.
dalfox
🌘🦊 DalFox is an powerful open source XSS scanning tool and paramter analyzer, utility
dell-xps-9560
Tweaks for Dell XPS 9560
drupal-enum
Repository used to share Drupal enumeration tools for pentest need
Free-Security-eBooks
Free Security and Hacking eBooks
Fuzzing
Fuzzing Payloads to Assist in Web Application Testing.
gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
KeeThief
Methods for attacking KeePass 2.X databases, including extracting of encryption key material from memory.
Masscan-to-CSV
Converts the Masscan XML output option (-oX) to a csv format.
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
nmapAutomator
A script that you can run in the background!
payload_dumper
Android OTA payload dumper
Polkit-exploit
Privilege escalation with polkit - CVE-2021-3560
PrivescCheck
Privilege Escalation Enumeration Script for Windows
S3Scanner
Scan for open AWS S3 buckets and dump the contents
sherlock
🔎 Hunt down social media accounts by username across social networks
Sitemap-Parser
Python script used to extract unique URLs from a sitemap.xml file
ssti-payload
SSTI Payload Generator
subfinder
SubFinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
Ultimate-Facebook-Scraper
🤖 A Software that automates your social media interactions to collect posts, photos, videos, interests, friends, followers, and much more on Facebook.
waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
webshell
This is a webshell open source project