Jon's repositories
atomic-red-team
Small and highly portable detection tests.
Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
continuous-threat-modeling
A Continuous Threat Modeling methodology
Invoke-NeutralizeAV
Quick PoC I Wrote for Bypassing Next Gen AV Remotely for Pentesting
libssh-scanner
Script to identify hosts vulnerable to CVE-2018-10933
mana
Our mana toolkit for wifi rogue AP attacks and MitM - see hostapd-mana too
mimipenguin
A tool to dump the login password from the current linux user
owasp-cloud-security
OWASP Cloud Security - Enabling conversations through threat and control stories
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
pen-testing-findings
A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that may be discovered during a penetration test.
post-exploitation
Post Exploitation Collection
post-exploitation-wiki
Post Exploitation Wiki
pwnwiki.github.io
PwnWiki - The notes section of the pentesters mind.
SSRF-Testing
SSRF (Server Side Request Forgery) testing resources
UltimateAppLockerByPassList
The goal of this repository is to document the most common techniques to bypass AppLocker.