curiousseclady's starred repositories
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
CVE-2024-1086
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
awesome-exploit-development
A curated list of resources (books, tutorials, courses, tools and vulnerable applications) for learning about Exploit Development
TeamsPhisher
Send phishing messages and attachments to Microsoft Teams users
InternalAllTheThings
Active Directory and Internal Pentest Cheatsheets
AWS-IAM-Privilege-Escalation
A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.
GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
terraform-iam-policy-validator
A command line tool that validates AWS IAM Policies in a Terraform template against AWS IAM best practices
www-project-ai-security-and-privacy-guide
OWASP Foundation Web Respository
free-API-security-test-action
APIsec|SCAN - Free API security testing using Github actions
Practical-Hardware-Pentesting
Practical Hardware Pentesting, published by Packt
pass-station
CLI & library to search for default credentials among thousands of Products / Vendors
github-dorks
The repository contains useful GitHub dorks for finding open-source vulnerabilities.
OffensiveCon24-uefi-task-of-the-translator
OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
aws-security-checks
AWS Security Checks
security_incidents_from_caching
Collection of incidents resulting from caching issues