kingofthebeat

awesome-flipperzero

🐬 A collection of awesome resources for the Flipper Zero device.

Awesome-RCE-techniques

Awesome list of techniques to achieve Remote Code Execution on various apps!

cheat.sh

the only cheat sheet you need

Cloud-Security-Attacks

Azure and AWS Attacks

CloudBrute

Awesome cloud enumerator

cloudsploit

Cloud Security Posture Management (CSPM)

Coercer

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 9 methods.

comply

Compliance automation framework, focused on SOC2

crack-sec-eng-interviews

Cracking the Security Engineer Interviews

CursedChrome

Chrome-extension implant that turns victim Chrome browsers into fully-functional HTTP proxies, allowing you to browse sites as your victims.

DevSecOps-Playbook

This is a step-by-step guide to implementing a DevSecOps program for any size organization

GCP-IAM-Privilege-Escalation

A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.

IAM-Deescalate

IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)

javasec-1

Java安全☞流下了不会Java的眼泪 : )

Methodology

moonwalk

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.

my-re0-k8s-security

:atom: [WIP] 整理过去的分享，从零开始的Kubernetes攻防 ...

OffensiveCloud

Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)

osed-scripts

bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)

oswe-prep-2022

Offensive Security OSWE Prep 2022

PayloadsAllThePDFs

PDF Files for Pentesting

PurplePanda

Identify privilege escalation paths within and across different clouds

Red-Team-Management

scan4all

Vulnerabilities Scan: 15000+PoCs; 20 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty...

secure-gcp-reference

Best practice example for secure and compliant Google Cloud Platform infrastructure

security-champions-playbook

Security Champions Playbook v 2.1

sret

Salesforce Recon and Exploitation Toolkit

stratus-red-team

:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud

Ultimate.Hosts.Blacklist

The Ultimate Unified Hosts file for protecting your network, computer, smartphones and Wi-Fi devices against millions of bad web sites. Protect your children and family from gaining access to bad web sites and protect your devices and pc from being infected with Malware or Ransomware.

Vajra

Vajra is a UI-based tool with multiple techniques for attacking and enumerating in the target's Azure environment. It features an intuitive web-based user interface built with the Python Flask module for a better user experience. The primary focus of this tool is to have different attacking techniques all at one place with web UI interfaces.