2furlongs's Stars
OWASP/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
projectdiscovery/nuclei
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
RustScan/RustScan
🤖 The Modern Port Scanner 🤖
blaCCkHatHacEEkr/PENTESTING-BIBLE
articles
infosecn1nja/Red-Teaming-Toolkit
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
google/tsunami-security-scanner
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
EdOverflow/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
OlivierLaflamme/Cheatsheet-God
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Hackplayers/evil-winrm
The ultimate WinRM shell for hacking/pentesting
lc/gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
mantvydasb/RedTeaming-Tactics-and-Techniques
Red Teaming Tactics and Techniques
tomnomnom/waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
ignis-sec/Pwdb-Public
A collection of all the data i could extract from 1 billion leaked credentials from internet.
dwisiswant0/awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
devanshbatham/ParamSpider
Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
Integration-IT/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
netbiosX/Checklists
Red Teaming & Pentesting checklists for various engagements
nsonaniya2010/SubDomainizer
A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
IvanGlinkin/Fast-Google-Dorks-Scan
The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widespread file types and path traversal. The 100% automated.
gwen001/github-search
A collection of tools to perform searches on GitHub.
0xZDH/o365spray
Username enumeration and password spraying tool aimed at Microsoft O365.
areyou1or0/OSCP
OSCP
InfosecMatter/default-http-login-hunter
Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.
n0x08/ShodanTools
Collection of scripts & fingerprinting tricks for Shodan.io
tagnullde/OSCP
My OSCP notes
cutaway-security/chaps
Configuration Hardening Assessment PowerShell Script (CHAPS)
mdjx/PSLANScan
A PowerShell module for Layer 2 host discovery
xChockax/Cheat-Sheets
Various Cheat Sheets (e.g. Nmap, Metasploit, Common Ports, Subnetting, Wireshark, etc)
ksharinarayanan/bash-hacks
Handy bash and python scripts for bug bounty hunting!