m0chan's starred repositories
my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
ScoutSuite
Multi-Cloud Security Auditing Tool
deepdarkCTI
Collection of Cyber Threat Intelligence sources from the deep and dark web
cloudproxy
Hide your scrapers IP behind the cloud. Provision proxy servers across different cloud providers to improve your scraping success.
Phishing.Database
Phishing Domains, urls websites and threats database. We use the PyFunceble testing tool to validate the status of all known Phishing domains and provide stats to reveal how many unique domains used for Phishing are still active.
TokenTactics
Azure JWT Token Manipulation Toolset
UltimateWDACBypassList
A centralized resource for previously documented WDAC bypass techniques
SnaffPoint
A tool for pointesters to find candies in SharePoint
phishing_kits
Exposing phishing kits seen from phishunt.io
CVE-2024-3400
CVE-2024-3400 Palo Alto OS Command Injection
macos_hardening
This is a macOS hardening to read or set security configuration.
SAP-Security-Audit
Training course materials and notes related to SAP security audit and penetration testing
SprayCannon
Fast multithreaded multiplatform password spraying tool designed for easy use. Supports webhooks, jitter, delay, files, rotation, backend database
PingFederateSpray
Ping Federate Spray Passwords