panckazzz

Spring4Shell-POC

Dockerized Spring4Shell (CVE-2022-22965) PoC application and exploit

agentic_security

Agentic LLM Vulnerability Scanner

alpha-stage-scripts

Repo contains a list of random scripts that I use while testing out random things.

Android_Security

This repository is a suplimentary material for Android Training's done by Anant Shrivastava

aws-nuke

Nuke a whole AWS account and delete all its resources.

Bad-Pdf

Steal Net-NTLM Hash using Bad-PDF

can-i-take-over-xyz

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

CISSP-Study-Guide

study material used for the 2018 CISSP exam

CloudPentestCheatsheets

This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.

credential-digger

A Github scanning tool that identifies hardcoded credentials while filtering the false positive data through machine learning models :lock:

CTF

CTF chall write-ups, files, scripts etc (trying to be more organised LOL)

CVE-2024-6387_Check

CVE-2024-6387_Check is a lightweight, efficient tool designed to identify servers running vulnerable versions of OpenSSH

damn-vulnerable-llm-agent

dockerlabs

Docker | Kubernetes - Beginners | Intermediate | Advanced

free-API-security-test-action

APIsec|SCAN - Free API security testing using Github actions

getaltname

Extract subdomains from SSL certificates in HTTPS sites.

jurassic-security

Learning security fundamentals through Jurassic Park

kal-droid

Kal-droid is free, fast, lightweight, and simple android emulator for pentester and aslo normal usage . its support latest android apis.

lpeworkshop

Windows / Linux Local Privilege Escalation Workshop

mantis

Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.

my-arsenal-of-aws-security-tools

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

mySapAdventures

A quick methodology on testing / hacking SAP Applications for n00bz and bug bounty hunters

nahamsec.training

The labs for my Udemy course (https://www.udemy.com/course/intro-to-bug-bounty-by-nahamsec)

nmapAutomator

A script that you can run in the background!

poc

poc file

Security-Research

Exploits written by the Rhino Security Labs team

Serpico

SimplE RePort wrIting and COllaboration tool

setting-up-an-open-source-project

:repeat: Setting Up An Open Source Project

vapi

vAPI is a Vulnerable Adversely Programmed Interface which is Self-Hostable PHP Interface that demonstrates OWASP API Top 10 in the means of Exercises.

W0rm-Gpt

This tool named "W0rm-GPT" is mainly use to research all activities which ChatGPT cant't give , All working apis are present in the script , If you do any illegal activites through this script we are not responsible