Pinned Repositories
Alpha
Frame of word game with ReactNative
Cloud-Hacking
CVE-2018-9276
CVE-2018-9276 PRTG < 18.2.39 Reverse Shell (Python3 support)
FreePBX-2.10.0---Elastix-2.2.0---Remote-Code-Execution
Modified version of the original one for HackTheBox Beep
Hack-Tools
The all-in-one Red Team extension for Web Pentester 🛠
JSONBee
A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.
OSCP-PWK
https://alvinsmith.gitbook.io/progressive-oscp/
OSEP
Wiki page as CheatSheet. Please also focus on your PEN-300 studying!
Passkeys-availability-check
WIP, PR more than welcome
A1vinSmith's Repositories
A1vinSmith/OSCP-PWK
https://alvinsmith.gitbook.io/progressive-oscp/
A1vinSmith/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
A1vinSmith/kerbrute
A tool to perform Kerberos pre-auth bruteforcing
A1vinSmith/RunasCs
RunasCs - Csharp and open version of windows builtin runas.exe
A1vinSmith/RustScan
🤖 The Modern Port Scanner 🤖
A1vinSmith/BloodHound.py
A Python based ingestor for BloodHound
A1vinSmith/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
A1vinSmith/Coercer
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
A1vinSmith/dnschef
DNSChef - DNS proxy for Penetration Testers and Malware Analysts
A1vinSmith/DOMinic
A1vinSmith/DSInternals
Directory Services Internals (DSInternals) PowerShell Module and Framework
A1vinSmith/gdbfuzz
Fuzzing Embedded Systems using Hardware Breakpoints
A1vinSmith/gokrb5
Pure Go Kerberos library for clients and services
A1vinSmith/impacket
Impacket is a collection of Python classes for working with network protocols.
A1vinSmith/InfoSec-Notes
InfoSec Notes
A1vinSmith/jwt-hack
🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)
A1vinSmith/MagiskTrustUserCerts
A Magisk/KernelSU module that automatically adds user certificates to the system root CA store
A1vinSmith/ModSecurity
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.
A1vinSmith/naiveproxy
Make a fortune quietly
A1vinSmith/nginxpwner
Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.
A1vinSmith/oletools
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
A1vinSmith/phaser
Phaser is a fun, free and fast 2D game framework for making HTML5 games for desktop and mobile web browsers, supporting Canvas and WebGL rendering.
A1vinSmith/phaser3-examples
Phaser 3 Examples
A1vinSmith/Seatbelt
Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
A1vinSmith/SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
A1vinSmith/sssd
A daemon to manage identity, authentication and authorization for centrally-managed systems.
A1vinSmith/Useful-bash-aliases-and-functions
List of useful bash aliases and functions that i made during work
A1vinSmith/Whisker
Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.
A1vinSmith/XSStrike
Most advanced XSS scanner.
A1vinSmith/ysoserial.net
Deserialization payload generator for a variety of .NET formatters