Kapalov

MacHawkEye

Engine for analyzing binaries on macOS systems to identify potential vulnerabilities

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

ArtifactoryDecryptor

Tool to decrypt Artifactory encrypted secrets

reverse-shell

Reverse Shell as a Service

BChecks

BChecks collection for Burp Suite Professional and Burp Suite Enterprise Edition

cloud

Monitoring the Cloud Landscape

resolvers

The most exhaustive list of reliable DNS resolvers.

evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

A-Red-Teamer-diaries

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

One-Liners

A collection of one-liners for bug bounty hunting.

Awesome-Bugbounty-Writeups

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

FuzzDomain

FuzzDomain

cent

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

awesome-osint

:scream: A curated list of amazingly awesome OSINT

Findomain

The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more.

flipperzero-firmware-wPlugins

RogueMaster Flipper Zero Firmware

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Multi-Tacotron-Voice-Cloning

Phoneme multilingual(Russian-English) voice cloning based on

Rogue_Radius_Server

Rogue Radius Server (freeradius patch + hostapd).

Mobile-application-security-testing

BITB

Browser In The Browser (BITB) Templates

OSINT_Collection

Maintained collection of OSINT related resources. (All Free & Actionable)

extra-phishing-pages

wifiphisher

The Rogue Access Point Framework

local-php-security-checker

PHP security vulnerabilities checker

poor-mans-pentest

This a collection of the code that I have written for the Poor Man's Pentest presentation.

commando-vm

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

Buffer_Overflow

Don't let buffer overflows overflow your mind

Penetration_Testing_POC

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms