avi8892 Goto Github PK

awesome-shodan-queries

🔍 A collection of interesting, funny, and depressing search queries to plug into https://shodan.io/ 👩‍💻

awesome-windows-domain-hardening

A curated list of awesome Security Hardening techniques for Windows.

aws-iam-privilege-escalation

A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.

azucar

Security auditing tool for Azure environments

badoutlook

(kinda) Malicious Outlook Reader

badpotato

Windows 权限提升 BadPotato

bigbountyrecon

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

bloodhound-custom-queries

Custom Query list for the Bloodhound GUI based off my cheatsheet

bloodhound-import

Python based BloodHound data importer

bluegate

PoC (DoS + scanner) for CVE-2020-0609 & CVE-2020-0610 - RD Gateway RCE

breaking-and-pwning-apps-and-servers-aws-azure-training

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

bypassav-1

免杀shellcode加载器

cansina

Web Content Discovery Tool

catchyou

FUD win32 msfvenom payload generator

censys-subdomain-finder

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

cheatsheet-god

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

cheatsheets

Cheat sheets for various projects.

cheatsheetseries

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

check-cve-2019-19781

Test a host for susceptibility to CVE-2019-19781

check-localadminhash

Check-LocalAdminHash is a PowerShell tool that attempts to authenticate to multiple hosts over either WMI or SMB using a password hash to determine if the provided credential is a local administrator. It's useful if you obtain a password hash for a user and want to see where they are local admin on a network. It is essentially a Frankenstein of two of my favorite tools along with some of my own code. It utilizes Kevin Robertson's (@kevin_robertson) Invoke-TheHash project for the credential checking portion. Additionally, the script utilizes modules from PowerView by Will Schroeder (@harmj0y) and Matt Graeber (@mattifestation) to enumerate domain computers to find targets for testing admin access against.

cloud-reports

Scans your AWS cloud resources and generates reports. Check out free hosted version:

cloud-service-enum

cloud_enum

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

cloudpentestcheatsheets

This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.

cms-hunter

CMS漏洞测试用例集合

cobalt4.4

WIPE YOUR ASS WITH THE REAL COBALT STRIKE

cobalt_aliases

Tired of typing execute-assembly everytime you use Cobalt Strike? Clone this.

cobaltstrike

CobaltStrike's source code

comahawk

Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322

covenant

Covenant is a .NET command and control framework that aims to highlight the attack surface of .NET, make the use of offensive .NET tradecraft easier, and serve as a collaborative command and control platform for red teamers.