Tuan Anh Nguyen's repositories
PHP-WebShell-Bypass-WAF
分享PHP WebShell 绕过WAF 的一些经验 Share some experience about PHP WebShell bypass WAF and Anti-AV
RobotsDisallowed
A harvest of the Disallowed directories from the robots.txt files of the world's top websites.
Awesome-Red-Teaming
List of Awesome Red Teaming Resources
ReconDashboard
Dashboard containing various recon tools
research
Hello and welcome to my GitHub account. If you'd like to know more about me, this is likely the best place to start
OSCP-Survival-Guide
Kali Linux Offensive Security Certified Professional Survival Exam Guide
CORStest
A simple CORS misconfiguration scanner
Tinder
Official September 2017 Documentation for Tinder's API
tinfoleak
Get detailed information about a Twitter user activity
ysoserial.net
Deserialization payload generator for a variety of .NET formatters
WAF-Bypass
WAF Bypass Cheatsheet
masscan
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
AttackDetection
Attack Detection
AWSBucketDump
Security Tool to Look For Interesting Files in S3 Buckets
CVE-2017-8760
Exploit toolkit CVE-2017-8759 - v1.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft .NET Framework RCE. It could generate a malicious RTF file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.
ObfuscateCactusTorch
When CactusTorch meets WebDavDelivery and obfuscation
CVE-2017-8759
CVE-2017-8759 - A vulnerability in the SOAP WDSL parser.
ThunderShell
PowerShell based RAT
Decoder-Improved
Improved decoder for Burp Suite
RemoteRecon
Remote Recon and Collection
KCon
KCon is a famous Hacker Con powered by Knownsec Team.
fuzzdb-1
一个fuzzdb扩展库
notes
Some public notes
Google-dorks
Common google dorks and others you prolly donn know :P
PSKernel-Primitives
Exploit primitives for PowerShell
defcon25_uac_workshop
UAC 0Day all day!
sjet
siberas JMX exploitation toolkit