avi8892 Goto Github PK
Name: AviOz
Type: User
Name: AviOz
Type: User
π A collection of interesting, funny, and depressing search queries to plug into https://shodan.io/ π©βπ»
A curated list of awesome Security Hardening techniques for Windows.
A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.
Security auditing tool for Azure environments
(kinda) Malicious Outlook Reader
Windows ζιζε BadPotato
BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
Custom Query list for the Bloodhound GUI based off my cheatsheet
Python based BloodHound data importer
PoC (DoS + scanner) for CVE-2020-0609 & CVE-2020-0610 - RD Gateway RCE
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
ε ζshellcodeε θ½½ε¨
Web Content Discovery Tool
FUD win32 msfvenom payload generator
β‘ Perform subdomain enumeration using the certificate transparency logs from Censys.
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Cheat sheets for various projects.
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
Test a host for susceptibility to CVE-2019-19781
Check-LocalAdminHash is a PowerShell tool that attempts to authenticate to multiple hosts over either WMI or SMB using a password hash to determine if the provided credential is a local administrator. It's useful if you obtain a password hash for a user and want to see where they are local admin on a network. It is essentially a Frankenstein of two of my favorite tools along with some of my own code. It utilizes Kevin Robertson's (@kevin_robertson) Invoke-TheHash project for the credential checking portion. Additionally, the script utilizes modules from PowerView by Will Schroeder (@harmj0y) and Matt Graeber (@mattifestation) to enumerate domain computers to find targets for testing admin access against.
Scans your AWS cloud resources and generates reports. Check out free hosted version:
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
CMSζΌζ΄ζ΅θ―η¨δΎιε
WIPE YOUR ASS WITH THE REAL COBALT STRIKE
Tired of typing execute-assembly everytime you use Cobalt Strike? Clone this.
CobaltStrike's source code
Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322
Covenant is a .NET command and control framework that aims to highlight the attack surface of .NET, make the use of offensive .NET tradecraft easier, and serve as a collaborative command and control platform for red teamers.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. πππ
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google β€οΈ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.