MattBurmanTyco

OSCP-Prep

A comprehensive guide/material for anyone looking to get into infosec or take the OSCP exam

OSCP-training-stuff

powershell_notes

https://hacknpentest.com/windows-penetration-testing/windows-privilege-escalation-using-powershell/

active-scan-plus-plus

ActiveScan++ Burp Suite Plugin

awesome-bash

A curated list of delightful Bash scripts and resources.

awesome-code-review

An "Awesome" list of code review resources - articles, papers, tools, etc

Awesome-Hacking

A collection of various awesome lists for hackers, pentesters and security researchers

awesome-static-analysis

A curated list of linters, code quality checkers, and other static analysis tools for various programming languages

AWS-exploitation-framework

aws-recon

Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.

C-_pentest_toolkit

some tools that should be used for pen testing C#

cloudmapper

CloudMapper helps you analyze your Amazon Web Services (AWS) environments.

cloudsploit

Cloud Security Posture Management (CSPM)

CSP_bypass

cve-2017-9805.py

Better Exploit Code For CVE 2017 9805 apache struts

HASH_cracking_tool

ipppsecrocks

to remember https://ippsec.rocks/ exists

Limelighter

A tool for generating fake code signing certificates or signing real ones

lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

OSCP

OSCP cheet sheet

OSCP-survival-guide-2

Kali Linux Offensive Security Certified Professional Survival Exam Guide

OSCP_Survival_Guide

pacu

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

phpversion

privesc_notes

prowler

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls listed here https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf and more than 100 additional checks that help on GDPR, HIPAA and other security requirements.

Reconnoitre-1

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

research

VerSprite Security Research

smuggler

Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3

spawing_a_shell