MattBurmanTyco's repositories
powershell_notes
https://hacknpentest.com/windows-penetration-testing/windows-privilege-escalation-using-powershell/
active-scan-plus-plus
ActiveScan++ Burp Suite Plugin
awesome-bash
A curated list of delightful Bash scripts and resources.
awesome-code-review
An "Awesome" list of code review resources - articles, papers, tools, etc
Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
awesome-static-analysis
A curated list of linters, code quality checkers, and other static analysis tools for various programming languages
aws-recon
Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
C-_pentest_toolkit
some tools that should be used for pen testing C#
cloudmapper
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
cloudsploit
Cloud Security Posture Management (CSPM)
cve-2017-9805.py
Better Exploit Code For CVE 2017 9805 apache struts
ipppsecrocks
to remember https://ippsec.rocks/ exists
Limelighter
A tool for generating fake code signing certificates or signing real ones
lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
OSCP
OSCP cheet sheet
OSCP-survival-guide-2
Kali Linux Offensive Security Certified Professional Survival Exam Guide
pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
prowler
Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls listed here https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf and more than 100 additional checks that help on GDPR, HIPAA and other security requirements.
Reconnoitre-1
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
research
VerSprite Security Research
smuggler
Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3