benmcewan7e

OneLogicalMyth_Shell

A HTA shell to assist with breakout assessments.

awesome-pentest

A collection of awesome penetration testing resources, tools and other shiny things

bug-bounty-dorks

List of Google Dorks for sites that have responsible disclosure program / bug bounty program

CloudUnflare

Reconnaissance Real IP address for Cloudflare Bypass

Code-Samples

csp

Given a list of hosts, this small utility fetches all whitelisted domains from the hosts' CSPs.

CVE-2019-11932

double-free bug in WhatsApp exploit poc

cyberdic

An auxiliary spellcheck dictionary that corresponds with the Bishop Fox Cybersecurity Style Guide

cypheroth

Automated, extensible toolset that runs cypher queries against Bloodhound's Neo4j backend and saves output to csv.

dirstalk

Modern alternative to dirbuster/dirb

discover

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Dr.-Watson

Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's your very own discovery side kick, the Dr. Watson to your Sherlock!

evil-winrm

The ultimate WinRM shell for hacking/pentesting

eyeballer

Convolutional neural network for analyzing pentest screenshots

fav-up

IP lookup from favicon using Shodan

hw_hacking_cheatsheet

Hardware Hacking Cheatsheet infograph

kitematic

Visual Docker Container Management on Mac & Windows

MobileApp-Pentest-Cheatsheet

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

nginx-admins-handbook

How to improve NGINX performance, security, and other important things; @ssllabs A+ 100%, @mozilla A+ 120/100.

OSCP-Cheat-Sheet

This is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder

pythonfuzz

coverage guided fuzz testing for python

RedELK

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

SauronEye

Search tool to find specific files containing specific words, i.e. files containing passwords..

Spartan

My Recon Automation

THPtools

Addition tools when studying follow The Hacker Playbook

totalrecon

TotalRecon installs all the recon tools you need

webHunt

Web App bug hunting

WitnessMe

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

wordlistsbyNahamsec

zephyr

Primary Git Repository for the Zephyr Project. Zephyr is a new generation, scalable, optimized, secure RTOS for multiple hardware architectures.