bradcausey-zz's starred repositories
Security-Research
Exploits written by the Rhino Security Labs team
Jbin-website-secret-scraper
Jbin will gather all the URLs from the website and then it will try to expose the secret data from them such as API keys, API secrets, API tokens and many other juicy information.
KrbRelayUp
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
Cheatsheet-God
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
burpsuite-copy-as-xmlhttprequest
Copy as XMLHttpRequest BurpSuite extension
PacketStreamer
:star: :star: Distributed tcpdump for cloud native environments :star: :star:
container.training
Slides and code samples for training, tutorials, and workshops about Docker, containers, and Kubernetes.
owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
passphrase-wordlist
Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords
amazon-linux-cis
Bootstrap script for Amazon Linux to comply CIS Amazon Linux Benchmark v2.0.0
cis-benchmarks-audit
Simple command line tool to check for compliance against CIS Benchmarks
PurplePanda
Identify privilege escalation paths within and across different clouds
python-pty-shells
Python PTY backdoors - full PTY or nothing!
SharpExfiltrate
Modular C# framework to exfiltrate loot over secure and trusted channels.
TREVORspray
TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!