inosec2 Goto Github PK

offensive_tools

offensivevba

This repo covers some code execution and AV Evasion methods for Macros in Office documents

office-phish-templates

Tricks the target into enabling content (macros) with fake messages. Once enabled, uses macros to reduce the risk of suspision from target user via verious methods.

ohmybackup

Scan Victim Backup Directories & Backup Files

ohmyzsh

🙃 A delightful community-driven (with 1800+ contributors) framework for managing your zsh configuration. Includes nearly 300 optional plugins (rails, git, OSX, hub, docker, homebrew, node, php, python, etc), over 140 themes to spice up your morning, and an auto-update tool so that makes it easy to keep up with the latest updates from the community.

onaws

Fetch the details of assets hosted on AWS.

onionscan

OnionScan is a free and open source tool for investigating the Dark Web.

open-redirect-payload-list

🎯 Open Redirect Payload List

operator-mono-fonts

Operator Mono Fonts

operatorskit

Collection of Beacon Object Files (BOF) for Cobalt Strike

oscp-exam-report-template-markdown

:orange_book: OSCP Exam Report Template in Markdown

oscp-markdownreportingtemplates

Markdown reporting templates and Pandoc styling references to generate sleek reports for OSCP/PWK with little effort.

oscp-priv-esc

Mind maps / flow charts to help with privilege escalation on the OSCP.

osep-code-snippets

A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.

osep-tools

osint

Collections of tools and methods created to aid in OSINT collection

oswe

OSWE Preparation

owncraft

offensive notes & resources

oxml_xxe

A tool for embedding XXE/XML exploits into different filetypes

packmypayload

A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX

pafish

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

parth

Heuristic Vulnerable Parameter Scanner

passphrase-wordlist

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

patchlessclrloader

.NET assembly loader with patchless AMSI and ETW bypass

payload-cob

Helping to automate payload development, testing, Opsec checking, beacon tasking, and deployment for Cobalt Strike

payloadsallthethings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

pc_settings

some of my personal settings like zsh

peas

Modified version of PEAS client for offensive operations

penetration-testing-tools

A collection of more than 170+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

penetration_testing_poc

渗透测试有关的POC、EXP、脚本、提权、小工具等，欢迎补充、完善---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms