IlyassGamra's repositories
black-hat-rust-bonuses
Deep dive into offensive security with the rust programming language - Early access
command-injection-payload-list
🎯 Command Injection Payload List
CVE-2007-2447
CVE-2007-2447 - Samba usermap script
discover
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
eJPT
My notes taken during eJPT labs - in preparation for the exam
Fast-Google-Dorks-Scan
The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widespread file types and path traversal. The 100% automated.
fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
GOAD
game of active directory
KnowledgeBase
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
ModSecurity
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.
msdt-follina
Codebase to generate an msdt-follina payload
OSCE-Complete-Guide
OSWE, OSEP, OSED
OSCP
OSCP Guide
owasp-modsecurity-crs
OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
prettier-vscode
Visual Studio Code extension for Prettier
RedTeam-OffensiveSecurity
Tools & Interesting Things for RedTeam Ops
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
Sublist3r
Fast subdomains enumeration tool for penetration testers
todo-highlighter
A vscode extension that highlights 'todo' keyword and lists all todos in the side bar.
updog
Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.
wifi-penetration-testing-cheat-sheet
Work in progress...