S3M73X's repositories
CredMaster
Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling
Penetration-Testing-Tools
A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.
build_a_phish
Ansible playbook to deploy a phishing engagement
juicy-potato
A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.
hcxdumptool
Small tool to capture packets from wlan devices.
awesome-cve-poc
✍️ A curated list of CVE PoCs.
DefenderCheck
Identifies the bytes that Microsoft Defender flags on.
DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
pen_300_osep_prep
Preparation guide for Offensive Security's PEN-300 course and OSEP certification exam
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
hashcat-utils
Small utilities that are useful in advanced password cracking
kubernetes-goat
Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.
breach-parse
A tool for parsing breached passwords
egressbuster
Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.