superkojiman's repositories
onetwopunch
Use unicornscan to quickly scan all open ports, and then pass the open ports to nmap for detailed scans.
vulnerabilities
Published vulnerabilities and exploits.
CVE-2018-7600
CVE-2018-7600 - Drupal 7.x RCE
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
JS2PDFInjector
Inject a JS file into a PDF file.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
ZipPasswords
Passwords from SecLists compressed into 7z archives for Hashcat.
CTF-pwn-tips
Here records some tips about pwn.
gallimaufry
Command Line Parsing Library for USB PCAP Files
superkojiman.github.io
Build a Jekyll blog in minutes, without touching the command line.
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
create-dmg
Create a good-looking DMG for your macOS app in seconds
filetype
Small, dependency-free, fast Go package to infer file types based on the magic numbers signature
GTFOBins.github.io
Curated list of Unix binaries that can be exploited to bypass system security restrictions
metagoofil
An updated version of metagoofil
open-golang
Open a file, directory, or URI using the OS's default application for that object type. Optionally, you can specify an application to use.
Platypus
Create Mac applications from command line scripts
PowerUpSQL
PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
pwn-machine
The Pwning Machine
r1cksec_cheatsheets
Collection of knowledge about information security