Tuan Anh Nguyen's repositories
lazysploit
Script for scripting Metasploit
bugcrowd-levelup-subdomain-enumeration
This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bucrowd LevelUp 2017 virtual conference
massdns
A high-performance DNS stub resolver for bulk lookups
ElevateKit
The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
burp-vulners-scanner
Vulnerability scanner based on vulners.com search API
CACTUSTORCH
CACTUSTORCH: Payload Generation for Adversary Simulations
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
LinkFinder
A python script that finds endpoints in JavaScript files
xray
XRay is a tool for recon, mapping and OSINT gathering from public networks.
awesome-osint
:scream: A curated list of amazingly awesome OSINT
AttackDeploy
Scripts for Deploying new server
GoogD0rker
GoogD0rker is a tool for firing off google dorks against a target domain, it is purely for OSINT against a specific target domain. Designed for OSX originally however googD0rker txt now works on all nix platforms.
PhrackCTF-Platform-Personal
CTF platfrom developed by Jarvis from Phrack Team. 做一个功能最全的CTF平台。
gshark-framework
This framework can be perform web post exploitation, with this you can interact with multiple web backdoor and execute custom module, script.
wsuxploit
This is a weaponized WSUS exploit
git-all-secrets
A tool to capture all the git secrets by leveraging multiple open source git searching tools
xssor2
XSS'OR - Hack with JavaScript.
s0m3poc
a poc framework to test hosts via zoomeye sdk
WMIcmd
A command shell wrapper using only WMI for Microsoft Windows
RedTips
Red Team Tips as posted by @vysecurity on Twitter
rtfm
A database of common, interesting or useful commands, in one handy referable form
aquatone
A Tool for Domain Flyovers
MS17-011
MS17-010
LazyFuzzer
Ease-of-use extension for Web Application penetration testing
PSAttack
A portable console aimed at making pentesting with PowerShell a little easier.
CloudFail
Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
NXcrypt
python backdoor framework
Exploits-1
Windows Exploits