iNoSec2's repositories
GTFOBins.github.io
Curated list of Unix binaries that can be exploited to bypass system security restrictions
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
systeminformer
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals.com
algo
Set up a personal VPN in the cloud
azurehound-queries
🌩️ Collection of BloodHound queries for Azure
DomainPasswordSpray
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
DonPAPI
Dumping DPAPI credz remotely
GoodHound
Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.
h4cker
This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.
hackingthe.cloud
Content for hackingthe.cloud
inventory
Asset inventory of over 800 public bug bounty programs.
iodine
Official git repo for iodine dns tunnel
keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
LightsOut
Generate an obfuscated DLL that will disable AMSI & ETW
Malwear-Sweet
Malware?
masm_shc
A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.
noseyparker
Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.
ohmyzsh
🙃 A delightful community-driven (with 1800+ contributors) framework for managing your zsh configuration. Includes nearly 300 optional plugins (rails, git, OSX, hub, docker, homebrew, node, php, python, etc), over 140 themes to spice up your morning, and an auto-update tool so that makes it easy to keep up with the latest updates from the community.
OperatorsKit
Collection of Beacon Object Files (BOF) for Cobalt Strike
OSCP-Exam-Report-Template-Markdown
:orange_book: OSCP Exam Report Template in Markdown
oxml_xxe
A tool for embedding XXE/XML exploits into different filetypes
pphack
The Most Advanced Client-Side Prototype Pollution Scanner
rengine
reNgine is an automated reconnaissance framework meant for gathering information during penetration testing of web applications. reNgine has customizable scan engines, which can be used to scan the websites, endpoints, and gather information.
ScrapPY
ScrapPY is a Python utility for scraping manuals, documents, and other sensitive PDFs to generate wordlists that can be utilized by offensive security tools to perform brute force, forced browsing, and dictionary attacks against targets. The tool dives deep to discover keywords and phrases leading to potential passwords or hidden directories.
sublime-rules
Sublime rules for email attack detection, prevention, and threat hunting.
TokenUniverse
An advanced tool for working with access tokens and Windows security policy.
Web-Attack-Cheat-Sheet
Web Attack Cheat Sheet
wesng
Windows Exploit Suggester - Next Generation
wordlists
Various wordlists FR & EN - Cracking French passwords