Pinned Repositories
Amsi-Bypass-Powershell
This repo contains some Amsi Bypass methods i found on different Blog Posts.
Android-Reports-and-Resources
A big list of Android Hackerone disclosed reports and other resources.
Collection-of-over-9000-xss-payloads.heavy-xss-collection
Collection of over 9000 xss payloads | heavy xss collection
Elnoby0x1
Config files for my GitHub profile.
MalDEV
Malware development From zero 2 hero
OSCE-Complete-Guide
OSWE, OSEP, OSED
requests-ntlm
NTLM authentication support for Requests.
Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
Shhmon
Neutering Sysmon via driver unload
wwwolf-php-webshell
WhiteWinterWolf's PHP web shell
Amr-Hamza's Repositories
Amr-Hamza/Adalanche
Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
Amr-Hamza/AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
Amr-Hamza/arsenal1
Arsenal is just a quick inventory and launcher for hacking programs
Amr-Hamza/blutter
Flutter Mobile Application Reverse Engineering Tool
Amr-Hamza/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
Amr-Hamza/cupp
Common User Passwords Profiler (CUPP)
Amr-Hamza/CVE-2024-21338
Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.
Amr-Hamza/CVE-2024-6387-Vulnerability-Checker
This Python script checks for the CVE-2024-6387 vulnerability in OpenSSH servers. It supports multiple IP addresses, URLs, CIDR ranges, and ports. The script can also read addresses from a file.
Amr-Hamza/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Amr-Hamza/dnschef-ng
DNSChef (NG) - DNS proxy for Penetration Testers and Malware Analysts
Amr-Hamza/firefox_decrypt
Firefox Decrypt is a tool to extract passwords from Mozilla (Firefox™, Waterfox™, Thunderbird®, SeaMonkey®) profiles
Amr-Hamza/Frida-Labs
The repo contains a series of challenges for learning Frida for Android Exploitation.
Amr-Hamza/HowToHunt
Collection of methodology and test case for various web vulnerabilities.
Amr-Hamza/jenkins-credentials-decryptor
Command line tool for dumping Jenkins credentials.
Amr-Hamza/LaZagne
Credentials recovery project
Amr-Hamza/Mindmap
This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them
Amr-Hamza/Mythic
A collaborative, multi-platform, red teaming framework
Amr-Hamza/Nemesis
An offensive data enrichment pipeline
Amr-Hamza/NoSQLMap
Automated NoSQL database enumeration and web application exploitation tool.
Amr-Hamza/OSCP-Cheatsheet
OSCP Cheatsheet by Sai Sathvik
Amr-Hamza/Packer_Development
Amr-Hamza/penelope
Penelope Shell Handler
Amr-Hamza/PracticalCyberSecurityResources
This repository contains a curated list of resources I suggest on LinkedIn and Twitter.📝🌝
Amr-Hamza/psgetsystem
getsystem via parent process using ps1 & embeded c#
Amr-Hamza/PsMapExec
A PowerShell tool that takes strong inspiration from CrackMapExec.
Amr-Hamza/SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
Amr-Hamza/the-book-of-secret-knowledge
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
Amr-Hamza/unredacter
Never ever ever use pixelation as a redaction technique
Amr-Hamza/WTSImpersonator
WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"
Amr-Hamza/x64dbg
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.