Shimon Catenda's repositories
Active-Directory-Penetration-Testing
Active Directory Penetration Testing for Red Teams
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
CTF
CTF chall write-ups, files, scripts etc (trying to be more organised LOL)
CVE-2023-0297_Pre-auth_RCE_in_pyLoad
CVE-2023-0297: The Story of Finding Pre-auth RCE in pyLoad
CVE-2023-20887
VMWare vRealize Network Insight Pre-Authenticated RCE (CVE-2023-20887)
CVE-2023-34362
CVE-2023-34362: MOVEit Transfer Unauthenticated RCE
Data_breach_archive
A personnel identity management system has suffered a data breach
ELITEWOLF
OT security monitoring #nsacyber
ExtractBitlockerKeys
A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.
ldap_shell
AD ACL abuse
linWinPwn
linWinPwn is a bash script that automates a number of Active Directory Enumeration and Vulnerability checks
Logsensor
A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanning
nishang-Powershell
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
OSCP-Cheatsheet
OSCP Cheatsheet by Sai Sathvik
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Pentest-Cheat-Sheets
A collection of snippets of codes and commands to make your life easier!
PowerShell-collection
PowerShell Scripts, Tools, and Modules
PsMapExec
A PowerShell tool that takes strong inspiration from CrackMapExec.
RustHound
Active Directory data collector for BloodHound written in Rust. 🦀
S4UTomato
Escalate Service Account To LocalSystem via Kerberos
ssh-audit
SSH server & client security auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
vulnerable-AD
Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab
wso-webshell
🕹 wso php webshell
XDocs
My Docs.
XSStrike
Most advanced XSS scanner.
zerologon
Test script for CVE-2020-1472 for both RPC/TCP and RPC/SMB