saberzaid

ADAPE-Script

Active Directory Assessment and Privilege Escalation Script

airgeddon

This is a multi-use bash script for Linux systems to audit wireless networks.

Amass

In-depth Attack Surface Mapping and Asset Discovery

Atlas

Quick SQLMap Tamper Suggester

AutoRecon

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

BlackWidow

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

BurpBounty

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

Cheatsheet-God

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Empire

Empire is a PowerShell and Python 3.x post-exploitation framework.

evil-winrm

The ultimate WinRM shell for hacking/pentesting

IntruderPayloads

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

linux-exploit-suggester

Linux privilege escalation auditing tool

linux-smart-enumeration

Linux enumeration tool for pentesting and CTFs with verbosity levels

nmapAutomator

A script that you can run in the background!

OSCPRepo

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan (py2) in scripts folder. Py3 port coming. Custom ISO coming.

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

privilege-escalation-awesome-scripts-suite

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

rapidscan

:santa: The Multi-Tool Web Vulnerability Scanner.

recon

Enumerate a target Based off of Nmap Results

rohanex

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

sifter

Sifter is a osint, recon & vulnerability scanner. It combines a plethara of tools within different module sets in order to quickly perform recon tasks, check network firewalling, enumerate remote and local hosts, and scan for the 'blue' vulnerabilities within microsft and if unpatched, exploit them. It uses tools like blackwidow and konan for webdir enumeration and attack surface mapping rapidly using ASM. * Because the first step, is enumeration *

Sn1per

Automated pentest framework for offensive security experts

SUDO_KILLER

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo

WeaponizeKali.sh

Automate installation of extra pentest tools on Kali Linux