rosonsec's repositories
Cheatsheets
My cheatsheets, mostly about pentesting
Pentesting
Pentesting Resources
Kali
Kali postinstallation script for Virtual Box machines installed from iso images
Awesome-Advanced-Windows-Exploitation-References
List of Awesome Advanced Windows Exploitation References
Awesome-HTTPRequestSmuggling
A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻
awesome-shodan-queries
🔍 A collection of interesting, funny, and depressing search queries to plug into https://shodan.io/ 👩💻
BetterBugBounty
BetterBugBounty - Here tools are classic, bugs are hunted, and nostalgia is the ultimate weapon!
CVE-2020-5902
Proof of concept for CVE-2020-5902
CVE-2022-0540-Preauth-RCE
Atlassian Jira Seraph Authentication Bypass RCE(CVE-2022-0540)
CVE-2022-26133
Atlassian Bitbucket Data Center RCE(CVE-2022-26133) verification and exploitation.
faxhell
A Bind Shell Using the Fax Service and a DLL Hijack
firefox-webtesting-preference
Firefox configuration settings for web application testing
Hob0Rules
Password cracking rules for Hashcat based on statistics and industry patterns
lazyrecon
This script is intended to automate your reconnaissance process in an organized fashion
MS17-010
MS17-010
PrintDemon
PrintDemon is a PoC for a series of issues in the Windows Print Spooler service, as well as potetial misuses of the functionality.
samlists
Free, libre, effective, and data-driven wordlists for all!
security-research
Security Research
VulnCode
Examples of vulnerable code
WAF-Bypass
🔥 Web application firewalls (WAF) bypass