$root: Whoami's repositories
guide-aws-hacking
This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS weaknesses you will be verse enough to provide the correct countermeasures.
Algo_Ds_Notes
It is a repository that is a collection of algorithms and data structures with implementation in various languages.
aSiagaming
Browser, VMEscape and Kernel Exploitation
awesome-cheatsheets-1
超级速查表 - 编程语言、框架和开发工具的速查表,单个文件包含一切你需要知道的东西 :zap:
awesome-malware-analysis
A curated list of awesome malware analysis tools and resources.
Awesome-WAF
🔥 A curated list of awesome web-app firewall (WAF) stuff.
beemka
Basic Electron Exploitation
browser-pwn
An updated collection of resources targeting browser-exploitation.
classroom
GitHub Classroom automates repository creation and access control, making it easy for teachers to distribute starter code and collect assignments on GitHub.
command-injection-payload-list
🎯 Command Injection Payload List
Command-Mobile-Penetration-Testing-Cheatsheet
Mobile penetration testing android command cheatsheet
CppCon2018
Slides and other materials from CppCon 2018
DNSGrep
Quickly Search Large DNS Datasets
Gorsair
Gorsair hacks its way into remote docker containers that expose their APIs.
hackim-2019
Sources for challenges of Nullcon's HackIM 2019
impacket
Impacket is a collection of Python classes for working with network protocols.
Intranet_Penetration_Tips
2018年初整理的一些内网渗透TIPS,后面更新的慢,所以公开出来希望跟小伙伴们一起更新维护~
Jenkins-PreAuth-RCE-PoC
:smiling_imp: Jenkins RCE PoC. From unauthenticated user to remote code execution - it's a hacker's dream! (Chaining CVE-2019-1003000, CVE-2018-1999002, and more)
js-vuln-db
A collection of JavaScript engine CVEs with PoCs
leakScraper
LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.
Offensive-Security-OSCP-Cheatsheets
Red Teaming Experiments / Offensive Security / OSCP & Pentesting Cheat Sheets and more
Pentest-and-Development-Tips
A collection of pentest and development tips
pown-recon
A powerful target reconnaissance framework powered by graph theory.
professional-programming
A collection of full-stack resources for programmers.
reverseengineering-reading-list
A list of Reverse Engineering articles, books, and papers
Spring-2018-Labs
RITSEC Weekly Labs
sqli-platform
Training for SQL injections
Writeups-2
国内各大CTF赛题及writeup整理