Jrb's repositories
Awesome-hunting-C2s
This repository houses a valuable compilation of data to identify Commands and Controls (C2)
Black-Hat-Bash
The Black Hat Bash book repository
blueteamguides.github.io
BlueTeam Guides
Burp-Suite-Pro
A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.
Certipy
Tool for Active Directory Certificate Services enumeration and abuse
cheat.sh
the only cheat sheet you need
CVE-repository
:beetle: Repository of CVE found by OCD people
Discord-RAT-2.0
Discord Remote Administration Tool fully written in c#, stub size of ~75kb, over 40 post exploitations modules
domainhunter
Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names
DonPAPI
Dumping DPAPI credz remotely
GhostTask
A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.
google-dorks-bug-bounty
A list of Google Dorks for Bug Bounty, Web Application Security, and Pentesting
KeePwn
A python tool to automate KeePass discovery and secret extraction.
legion
Automatic Enumeration Tool based in Open Source tools
lpic1book
LPIC1 Study Guide in plain English
mayfly277.github.io
blog - pentest
NetExec
The Network Execution Tool
ntpescape
NTP Exfiltration Tool
Nuclei-bug-hunter
i will upload more templates here to share with the comunity.
PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte
phishing-frenzy
Ruby on Rails Phishing Framework
porch-pirate
Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitation of API endpoints and secrets committed to workspaces, collections, requests, users and teams. Porch Pirate can be used as a client or be incorporated into your own applications.
pyGPOAbuse
Partial python implementation of SharpGPOAbuse
SharPyShell
SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications
Stowaway
👻Stowaway -- Multi-hop Proxy Tool for pentesters
WADComs.github.io
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.