Robert Balogh's repositories
parallel-ssh
Asynchronous parallel SSH client library.
CREST-Exam-Prep
Cheatsheets and write ups for the CREST CRT and CCT Exams.
CREST-Mock-Exam
CREST CCT Mock Exam Paper
PPLKiller
Tool to bypass LSA Protection (aka Protected Process Light)
attacking-and-auditing-docker-containers-and-kubernetes-clusters
Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
udemy-docker-mastery
Udemy Course to build, compose, deploy, and manage containers from local development to high-availability in the cloud
Ghostcat-CNVD-2020-10487
Ghostcat read/execute file,CNVD-2020-10487(CVE-2020-1938)
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
CNVD-2020-10487-Tomcat-ajp-POC
CNVD-2020-10487(CVE-2020-1938), tomcat ajp 文件读取漏洞poc
CNVD-2020-10487-Tomcat-Ajp-lfi
Tomcat-Ajp协议文件读取漏洞
RedTeam-Tactics-and-Techniques
Red Teaming Tactics and Techniques
awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
C3
Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits.
Empire
Empire is a PowerShell and Python post-exploitation agent.
CarbonCopy
A tool which creates a spoofed certificate of any online website and signs an Executable for AV Evasion. Works for both Windows and Linux
wavecrack
Wavestone's web interface for password cracking with hashcat
Awesome-Red-Teaming
List of Awesome Red Teaming Resources
macro_pack
macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of MS Office documents, VB scripts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from vba generation to final document generation.
autocrack
Hashcat wrapper to help automate the cracking process
memcrashed
memcrashed poc
Memcrashed-DDoS-Exploit
DDoS attack tool for sending forged UDP packets to vulnerable Memcached servers obtained using Shodan API
Camera
HiddenCamera
Chimay-Red
Working POC of Mikrotik exploit from Vault 7 CIA Leaks
odat
ODAT: Oracle Database Attacking Tool
Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
MITMf
Framework for Man-In-The-Middle attacks