Tom Yang's repositories
CVE-2023-2825
GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the /etc/passwd file from a system running GitLab 16.0.0.
Active_Directory_Advanced_Threat_Hunting
This repo is about Active Directory Advanced Threat Hunting
AD_Miner
AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses
ASVS
Application Security Verification Standard
AuthLogParser
AuthLogParser is a powerful DFIR tool designed specifically for analyzing Linux authentication logs, commonly known as auth.log
Blackhole
Block excessive crawlers, bots and spiders traffic on your web site 👾
digital-forensics-lab
Free hands-on digital forensics labs for students and faculty
Disable-Windows-Defender-
Disable Windows Defender (+ UAC Bypass, + Upgrade to SYSTEM)
FHook
FHook is a Command and Control server which allows an individual to accept connections from multiple remote clients via a remote access tool.
fsociety
fsociety Hacking Tools Pack – A Penetration Testing Framework
ghidra
Ghidra is a software reverse engineering (SRE) framework
Killer
Is a tool created to evade AVs and EDRs or security tools.
LaZagne
Credentials recovery project
linphone-desktop
Linphone is a free VoIP and video softphone based on the SIP protocol. Mirror of git://git.linphone.org/linphone-desktop.git
Microsoft-Defender-for-Cloud
Welcome to the Microsoft Defender for Cloud community repository
Mind_Maps
cyber security mind maps collection
Mindmap
This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them
MustLearnKQL
Code included as part of the MustLearnKQL blog series
OSCE3-Complete-Guide
OSWE, OSEP, OSED, OSEE
paccor
The Platform Attribute Certificate Creator can gather component details, create, sign, and validate the TCG-defined Platform Credential. #nsacyber
privateGPT
Interact privately with your documents using the power of GPT, 100% privately, no data leaks
qgis-latlontools-plugin
QGIS tools to capture and zoom to coordinates using decimal, DMS, WKT, GeoJSON, MGRS, UTM, UPS, GEOREF, ECEF, H3, and Plus Codes notation. Provides external map support, MGRS & Plus Codes conversion and point digitizing tools.
RandPassGenerator
A command-line utility for generating random passwords, passphrases, and raw keys. #nsacyber
StackRot
CVE-2023-3269: Linux kernel privilege escalation vulnerability
SupplyChainScanner
Scanning Supply Chain dependency confusion vulnerability on Package Managers for Interpreted Languages
sysplant
Your syscall factory
The-Purified-Elements
The Purified Windows 11: without Defender, Updater, Patches, System Health, etc.
volatility
An advanced memory forensics framework
Windows-Local-Privilege-Escalation-Cookbook
Windows Local Privilege Escalation Cookbook