babywyrm's repositories
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
apiflask
A lightweight Python web API framework.
BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
burp_bug_finder
Automatic Bug finder with buprsuite
bytecode-viewer
A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)
chaos-monkey-spring-boot
Chaos Monkey for Spring Boot
CrackMapExec
A swiss army knife for pentesting networks
curlconverter
generate code from cURL commands
fab-classic
Simple, Pythonic remote execution - Fork of Fabric 1.x
gitleaks
Protect and discover secrets using Gitleaks 🔑
gixy
Nginx configuration static analyzer
iam-vulnerable
Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
JustTryHarder
JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
k9s
🐶 Kubernetes CLI To Manage Your Clusters In Style!
Offensive-Reverse-Shell-Cheat-Sheet
Collection of reverse shells for red team operations, penetration testing, and offensive security.
okta-jhipster-k8s-eks-microservices-example
Example for Java Microservices on Amazon EKS Using Terraform and Kubernetes
ouroboros
Automatically update running docker containers with newest available image
pihole-kubernetes
PiHole on kubernetes
pwncat
pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)
shcheck
A basic tool to check security headers of a website
shellerator
Simple CLI tool for the generation of bind and reverse shells in multiple languages
sshd-lite
A feature-light sshd(8) for Windows, Mac, and Linux written in Go
vuls
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
webappsec-csp
WebAppSec Content Security Policy
xss-payload-list
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
XXE-study
This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a playground to teach or test with Vulnerability scanners / WAF rules / Secure Configuration settings.