Faisal Fs ⚔️'s repositories
notes-simple-ctf-pentesting-guide
some notes i gathered online when doing pentesting ctf
faisalfs10x.github.io
My InfoSec blog is at https://faisalfs10x.github.io/ || (copyright faisalfs10x.github.io)
AttackDetection
Attack Detection - Suricata PT Open Ruleset
Awesome-Red-Teaming
List of Awesome Red Teaming Resources
Bloodhound-CustomQueries
Custom Queries - Brought Up to BH4.1 syntax
Burp-Suite-Certified-Practitioner-Exam-Study
Burp Suite Certified Practitioner Exam Study
CVE-2022-2639-PipeVersion
CVE-2022-2639 Linux kernel openvswitch local privilege escalation
CVE-2022-40684
A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
dirty-scripts
dirty scripts
faisalfs10x
profile
frameless-bitb
A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented by login pages like Microsoft and the use with Evilginx.
HowToHunt
Tutorials and Things to Do while Hunting Vulnerability.
javascript-obfuscator
A powerful obfuscator for JavaScript and Node.js
MAAD-AF
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Azure AD.
maldev-for-dummies
A workshop about Malware Development
NTLM-leak
Just another script for checking NTLM in data breach based on NTHashes.com
Payload-Download-Cradles
This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR in context of download cradle detections.
Sandman
Sandman is a NTP based backdoor for red team engagements in hardened networks.
wmiexec-Pro
New generation of wmiexec.py