Lior Ethan's repositories
Cheatsheets-1
Penetration Testing/Security Cheatsheets
awesome-threat-detection
A curated list of awesome threat detection and hunting resources
Cheatsheet-God
Penetration Testing / OSCP Biggest Reference Bank / Cheatsheet
injectAllTheThings
Seven different DLL injection techniques in one single project.
awesome-appsec
A curated list of resources for learning about application security
aws-security-automation
Collection of scripts and resources for DevSecOps and Automated Incident Response Security
Blazy
Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .
CarbonCopy
A tool which creates a spoofed certificate of any online website and signs an Executable for AV Evasion. Works for both Windows and Linux
cve-2019-1003000-jenkins-rce-poc
Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)
devsecops
This repository contains information about DevSecOps and how to get involved in this community effort.
diva-android
DIVA Android - Damn Insecure and vulnerable App for Android
Excel4-DCOM
PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
Free-Security-eBooks
Free Security and Hacking eBooks
homebrew-pentest
Homebrew Tap - Pen Test Tools
malware-2
Malware Samples. Uploaded to GitHub for those want to analyse the code. Code mostly from: http://www.malwaretech.com
mitm6
pwning IPv4 via IPv6
nmap-nse-scripts
My collection of nmap NSE scripts
OWASP-Web-Checklist
OWASP Web Application Security Testing Checklist
Penetration-Testing
List of awesome penetration testing resources, tools and other shiny things
Penetration-Testing-Study-Notes
Penetration Testing notes, resources and scripts
pythem
pentest framework
Reconnoitre
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
securityheaders
Check any website (or set of websites) for insecure security headers.
V3n0M-Scanner
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns