Michael Mancuso's repositories
AD-WIN-Pentesting-CRTP
Attacking & Defending Active Directory Lab CRTP
nmapAutomator
A script that you can run in the background!
Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
ADRecon
ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.
awesome-osint
:scream: A curated list of amazingly awesome OSINT
MichaelMancuso
about_me
AWS_Azure_Cloud_Security_Attacks
Azure and AWS Attacks
dalfox
🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
DSInternals
Directory Services Internals (DSInternals) PowerShell Module and Framework
guac-install
Script for installing Guacamole on Ubuntu
hackingthe.cloud
An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
michaelmancuso.github.io
DNS Security
my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
nodejsscan
nodejsscan is a static security code scanner for Node.js applications.
OSCP-1
OSCP
OSCP-PwK
This is my cheatsheet and scripts developed while taking the Offensive Security Penetration Testing with Kali Linux course.
pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
pentest_compilation
Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios
Red-Teaming-Toolkit-EXT-Only
A collection of open source and commercial tools that aid in red team operations.
RedTeam-OffensiveSecurity
Tools & Interesting Things for RedTeam Ops
Security-Research
Exploits written by the Rhino Security Labs team
web-security-academy
Solutions for Web Security Academy
WOPR
War Operation Plan Response
wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.