o-tsar's repositories
awesome-chaos-engineering
A curated list of Chaos Engineering resources.
100-redteam-projects
Projects for security students
API-SecurityEmpire
API Security Project aims to present unique attack & defense methods in API Security field
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
awesome-java-security
Awesome Java Security Resources 🕶☕🔐
Black-Tool
Install the tools and start Attacking , black-tool v5.0 ! ⬛
Exegol
Fully featured and community-driven hacking environment
exploit-writing-for-oswe
Tips on how to write exploit scripts (faster!)
exploitation-course
Offensive Software Exploitation Course
InfoSec-Black-Friday
All the deals for InfoSec related software/tools this Black Friday
iron-debian
Hardened debian linux baseimage for Docker.
Kubernetes-security
Kubernetes pentesting, hardening and hunting tools.
PurpleCloud
A little tool to play with Azure Identity - Azure Active Directory lab creation tool
RedTeaming_CheatSheet
Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.
terragoat
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
n0kovo_subdomains
An extremely effective subdomain wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.
rbac-police
Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
Scanners-Box
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
VirusTotalC2
Abusing VirusTotal API to host our C2 traffic, usefull for bypassing blocking firewall rules if VirusTotal is in the target white list , and in case you don't have C2 infrastructure , now you have a free one
waf-bypass
Check your WAF before an attacker does this one