id3s3c's repositories
sysreptor
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
Red_Team
Some scripts useful for red team activities
iam-vulnerable
Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
id3s3c.github.io
blog
TTPForge
The TTPForge is a Framework created to facilitate the development, automation, and execution of Tactics, Techniques, and Procedures (TTPs).
ForgeArmory
ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
EnterprisePurpleTeaming
Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.
Havoc
The Havoc Framework
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
DInvoke
Dynamically invoke arbitrary unmanaged code from managed code without PInvoke.
bombcrypto-bot
This is a python bot that automatically logs in, clicks the new button, and sends heroes to work in the bombcrypto game. It is fully open source and free.
nuclei-templates
Community curated list of templates for the nuclei engine to find a security vulnerability in application.
DPAT
Domain Password Audit Tool for Pentesters
linkedin2username
OSINT Tool: Generate username lists for companies on LinkedIn
SprayingToolkit
Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient
pwndb
Search for leaked credentials
RedELK
Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
AutoRecon
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
hat
HAT (Hashcat Automation Tool) - An Automated Hashcat Tool for common wordlists and rules to speed up the process of cracking hashes during engagements. Created for Linux based systems
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
HELK
The Hunting ELK
Covenant
Covenant is a collaborative .NET C2 framework for red teamers.
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
Pwdb-Public
A collection of all the data i could extract from 1 billion leaked credentials from internet.
CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.