Leandro Carvalho's repositories
pentest-scripts
Compilation of scripts/tools (made by me or not) that help me with Pentest and Bug Bounty.
pentest-exploits
Here you will find the exploits that I needed to fix or create.
Awesome-Red-Teaming
List of Awesome Red Teaming Resources
g4sp4rz1nh0
A fork of gr1nch's tool called splitter and changes by me to understand and improve some features
personal-security-checklist
🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2021
PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
vulhub-lab
Automate building a home lab with vulnerable docker containers.
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Active-Directory-Exploitation-Cheat-Sheet-1
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
awesome-osint
:scream: A curated list of amazingly awesome OSINT
capsulecorp-pentest
Vagrant VirtualBox environment for conducting an internal network penetration test
code-snippets
Various code snippets
CVE-2022-29464
WSO2 RCE (CVE-2022-29464) exploit and writeup.
dyn-dns-list
This repository contains a comprehensive list of 36,046 dynamic DNS domains as of 2023. The list is provided for informational purposes only and can be used for a variety of purposes, including blocking malicious domains, filtering content, and enhancing privacy and security.
Exchange-AD-Privesc
Exchange privilege escalations to Active Directory
flipper-zero-evil-portal
Evil portal app for the flipper zero + WiFi dev board
hackerone-reports
Top disclosed reports from HackerOne
Mikrotik-Blacklist
Mikrotik friendly blacklist to filter all these damn hackers.
osed-scripts
bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)
OSINT-Brazuca
Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.
PrivescCheck
Privilege Escalation Enumeration Script for Windows
SpoolFool
Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE)
whats-spoofing
Whatsapp Exploit to spoofing impersonate of reply message
windows-ps-callbacks-experiments
Files for http://blog.deniable.org/posts/windows-callbacks/