Nabil Radouane's repositories
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
azure_devops
Azure DevOps pipeline snippets
bbht
A script to set up a quick Ubuntu 17.10 x64 box with tools I use.
deepce
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
hacker101
Source code for Hacker101.com - a free online web and mobile security class.
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
LinkFinder
A python script that finds endpoints in JavaScript files
Markdown-Cheatsheet
The Ultimate Markdown Cheat Sheet
MSF-Venom-Cheatsheet
Single Page Cheatsheet for common MSF Venom One Liners
nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
phpbash
A semi-interactive PHP shell compressed into a single file.
nowafpls
Burp Plugin to Bypass WAFs through the insertion of Junk Data
Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
xss-payload-list
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List