sdcampbell

goscan

Goscan is a fast TCP scanner I created while learning Golang.

lpha3cho-Oh-My-Zsh-theme-for-pentesters

Oh-my-zsh theme for pentesters which includes the date, time, and IP address for pentest logging.

Nessusploitable

Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv

nmapurls

Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automation pipeline.

ScanCannon

phpLFI

Tests for LFI in PHP apps and automates the process of leveraging LFI's to recursively download source code and discover new files via includes to download additional source code files.

Dockerfiles

A repository to store my Dockerfiles

OSEP-Code-Snippets

A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.

bash_for_pentesters

Various Bash commands and scripts I commonly use while pentesting

bhg

Code samples for No Starch Press Black Hat Go

Scripts

Random Scripts

Serpico

SimplE RePort wrIting and COllaboration tool

swag-count

Count the number of Swagger API endpoints for API pentest scoping.

CLIOptions

An example of how to create and use CLI option parsing in C#.

Crackjob

Crackjob is Bash shell scripts which I use to automate the process of cracking and parsing NTLM password hashes after getting Domain Admin and dumping NTDS hashes.

MobileApp-Pentest-Cheatsheet

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

scope-resolver

Expands a pentest scope by taking an input list which includes IP addresses and parses DNS and TLS SAN hostnames and merges the results with the original scope list.

sdcampbell

AlwaysInstallElevated

Visual Studio 2019 project to create an installer to escalate privs when user and computer settings are "AlwaysInstallElevated".

BHR_Labs

Black Hat Ruby book | Lab files | Buy the book https://www.amazon.com/dp/B08JHSF6GT

burp-vps-proxy

This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.

impacket-examples-windows

The great impacket example scripts compiled for Windows

IoT-WiFi-AP

A WiFi AP with all HTTP and HTTP traffic proxied through port 8080 for IoT assessments.

metasploit-framework

Metasploit Framework

mount_shares

Tool to mount all readable CIFS shares of a remote system locally to a linux system. This allows the use tools like filesystem GUIs, tree, and grep to parse and examine the remote shares as if they were locally stored.

pypipal

Pipal in python

RE-iOS-Apps

A completely free, open source and online course about Reverse Engineering iOS Applications.

RMS-Runtime-Mobile-Security

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime

rubyskel

xsshunter-express

An easy-to-setup version of XSS Hunter. A fork of the original that has Discord and Slack Notifications