ZeroCraic's repositories
OneListForAll
Rockyou for web fuzzing
AbuseAzureAPIPermissions
Abuse Azure API permissions for red teaming
Amsi-Bypass-Powershell
This repo contains some Amsi Bypass methods i found on different Blog Posts.
AutoRecon
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
awesome-bugbounty-builder
Awesome Bug bounty builder Project
Awesome-Cybersecurity-Handbooks
A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.
AzureHound
Azure Data Exporter for BloodHound
BloodHound
Six Degrees of Domain Admin
donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
FullBypass
A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell. Feel free to modiy and DM if you find some bugs :)
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
hoaxshell
A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.
linWinPwn
linWinPwn is a bash script that automates a number of Active Directory Enumeration and Vulnerability checks
Malware-Exhibit
🚀🚀 This is a 🎇🔥 REAL WORLD🔥 🎇 Malware Collection I have Compiled & analysed by researchers🔥 to understand more about Malware threats😈, analysis and mitigation🧐.
nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
PowerShellAI
PowerShell AI at command line
Priv2Admin
Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.
pspy
Monitor linux processes without root permissions
reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
RedTeaming_CheatSheet
Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.
ROADtools
A collection of Azure AD tools for offensive and defensive security purposes
ScreenConnect-AuthBypass-RCE
ScreenConnect AuthBypass(cve-2024-1709) --> RCE!!!
shells
Little script for generating revshells by 4ndr34z
theHarvester
E-mails, subdomains and names Harvester - OSINT
TREVORspray
TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!
UACME
Defeating Windows User Account Control
wesng
Windows Exploit Suggester - Next Generation
WinPwn
Automation for internal Windows Penetrationtest / AD-Security