Beast code in Giters

bradcausey-zz's starred repositories

owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

Language:PythonCC-BY-SA-4.011486 430 1086

checkov

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

Language:PythonApache-2.06773 61 1768

PRET

Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.

Language:PythonGPL-2.03823 198 69

container.training

Slides and code samples for training, tutorials, and workshops about Docker, containers, and Kubernetes.

Language:ShellNOASSERTION3579 133 93

powercat

netshell features all in version 2 powershell

Language:PowerShellApache-2.02094 87 23

PacketStreamer

:star: :star: Distributed tcpdump for cloud native environments :star: :star:

Language:GoApache-2.01864 13 15

mentalist

Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat and John the Ripper.

Language:PythonMIT1761 42 28

KrbRelayUp

KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).

Language:C#1496 24 23

PowerSharpPack

Language:PowerShell1475 30 6

kerberoast

Language:PythonApache-2.01372 67 14

VECTR

VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios

1349 72 266

passphrase-wordlist

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Language:PythonMIT1177 38 5

stackrox

The StackRox Kubernetes Security Platform performs a risk analysis of the container environment, delivers visibility and runtime alerts, and provides recommendations to proactively improve security by hardening the environment.

Language:GoApache-2.01090 29 190

Security-Research

Exploits written by the Rhino Security Labs team

Language:PythonBSD-3-Clause1048 62 14

TREVORspray

TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!

Language:PythonGPL-3.0995 17 28

DPAT

Domain Password Audit Tool for Pentesters

Language:PythonMIT882 50 12

python-pty-shells

Python PTY backdoors - full PTY or nothing!

Language:PythonWTFPL734 33 3

o365spray

Username enumeration and password spraying tool aimed at Microsoft O365.

Language:PythonMIT713 8 13

PurplePanda

Identify privilege escalation paths within and across different clouds

Language:PythonNOASSERTION649 8 6

GoMapEnum

User enumeration and password bruteforce on Azure, ADFS, OWA, O365, Teams and gather emails on Linkedin

Language:GoGPL-3.0418 14 7

frostbyte

FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads

Language:C#370 7 1

cis-benchmarks-audit

Simple command line tool to check for compliance against CIS Benchmarks

Language:PythonNOASSERTION241 12 39

Jbin-website-secret-scraper

Jbin will gather all the URLs from the website and then it will try to expose the secret data from them such as API keys, API secrets, API tokens and many other juicy information.

Language:JavaScript148 2 3