hiw0rld

Active-Directory-Pentest-Notes

个人域渗透学习笔记

ADACLScanner

Repo for ADACLScan.ps1 - Your number one script for ACL's in Active Directory

aesburp

Burp Extension to manipulate AES encrypted payloads

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

ATTACK-Tools

Utilities for MITRE™ ATT&CK

BloodHound

Six Degrees of Domain Admin

bugbounty-cheatsheet

A list of interesting payloads, tips and tricks for bug bounty hunters.

collection-document

Collection of quality safety articles

commando-vm

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@fireeye.com

data

APTnotes data

dpia

GDPR个人数据合规评估

Gitbook

Markdown Gitbook

github-slideshow

A robot powered training repository :robot:

GitMAD

Monitor, Alert, and Discover sensitive info and data leakage on Github.

GTFOBins.github.io

Curated list of Unix binaries that can be exploited to bypass system security restrictions

hiw0rld.github.com

Hi World

hiw0rld.github.io

injection

Invoke-SocksProxy

Socks proxy server using powershell.

IPRotate_Burp_Extension

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

openstar

lua waf,nginx+lua,openresty,luajit,waf+,cdn,nginx

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

pentest-tools

Custom pentesting tools

pingcastle

PingCastle - Get Active Directory Security at 80% in 20% of the time

pupy

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python

Red-Teaming-Toolkit

A collection of open source and commercial tools that aid in red team operations.

RedTeam-BCS

BCS（北京网络安全大会）2019 红队行动会议重点内容

sks

Security Knowledge Structure(安全知识汇总)

SwiftnessX

A cross-platform note-taking & target-tracking app for penetration testers.

xalpha

基金投资管理回测引擎