cryfreak20 Goto Github PK

active-directory-exploitation-cheat-sheet

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

awesome

😎 Awesome lists about all kinds of interesting topics

awesome-azure-pentest

A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.

awesome-pentest-cheat-sheets

Collection of the cheat sheets useful for pentesting

awesome-redteam-cheatsheet

Active Directory & Red-Team Cheat-Sheet in constant expansion.

beginner-network-pentesting

Notes for Beginner Network Pentesting Course

breach-parse

A tool for parsing breached passwords

chimera

Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

domain_audit

The tool is a wrapper around PowerView, Impacket, PowerUpSQL and Bloodhound to execute a lot of checks I normally perform during a AD pentest/assesment.

external-pentest-checklist

internal-pentest-playbook

Internal Network Penetration Test Playbook

lazagne

Credentials recovery project

mailsniper

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.

mindmapstream

offensive-pentesting-host

Penetration testing tools cheat sheet, a quick reference high level overview for typical penetration testing engagements. Convenient commands for your pentesting / red-teaming engagements, OSCP and CTFs.

oscp-2022

Notes compiled for the OSCP exam.

payloadsallthethings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

pentest-dropbox-setup

public-pentesting-reports

Curated list of public penetration test reports released by several consulting firms and academic security groups

redteaming_cheatsheet

Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.

rt-survival-guides

Guides/cheatsheets for red teaming engagements and pentesting.

seclists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

tcm-security-sample-pentest-report

Sample pentest report provided by TCM Security

the-unix-workbench-peer-assignment-guessgame

The Unix Workbench Week 4 Peer review guessgame assignment

violent-python-companion-files

Violent Python scripts used in book and few other required files

windows-exploit-suggester

This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.

windows-kernel-exploits

windows-kernel-exploits Windows平台提权漏洞集合

xss-payloads

List of advanced XSS payloads