Pinned Repositories
Amsi-Bypass-Powershell
This repo contains some Amsi Bypass methods i found on different Blog Posts.
Android-Reports-and-Resources
A big list of Android Hackerone disclosed reports and other resources.
Collection-of-over-9000-xss-payloads.heavy-xss-collection
Collection of over 9000 xss payloads | heavy xss collection
Elnoby0x1
Config files for my GitHub profile.
MalDEV
Malware development From zero 2 hero
OSCE-Complete-Guide
OSWE, OSEP, OSED
requests-ntlm
NTLM authentication support for Requests.
Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
Shhmon
Neutering Sysmon via driver unload
wwwolf-php-webshell
WhiteWinterWolf's PHP web shell
Amr-Hamza's Repositories
Amr-Hamza/SILENTTRINITY
An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
Amr-Hamza/Collection-of-over-9000-xss-payloads.heavy-xss-collection
Collection of over 9000 xss payloads | heavy xss collection
Amr-Hamza/Android-Reports-and-Resources
A big list of Android Hackerone disclosed reports and other resources.
Amr-Hamza/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Amr-Hamza/wsuxploit
This is a weaponized WSUS exploit
Amr-Hamza/krbrelayx
Kerberos unconstrained delegation abuse toolkit
Amr-Hamza/RDPassSpray
Python3 tool to perform password spraying using RDP
Amr-Hamza/proxychains-windows
Windows and Cygwin port of proxychains, based on MinHook and DLL Injection
Amr-Hamza/Seth
Perform a MitM attack and extract clear text credentials from RDP connections
Amr-Hamza/iOSbackup
A Python 3 class that reads and extracts files from a password-encrypted iOS backup created by iTunes on Mac and Windows. Compatible with iOS 14. Class works on Linux too.
Amr-Hamza/SocksOverRDP
Socks5/4/4a Proxy support for Remote Desktop Protocol / Terminal Services / Citrix / XenApp / XenDesktop
Amr-Hamza/Thick-Client-Pentest-Checklist
A OWASP Based Checklist With 80+ Test Cases
Amr-Hamza/Inveigh
.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers
Amr-Hamza/Misc-Powershell-Scripts
Random Tools
Amr-Hamza/MailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
Amr-Hamza/CTF
CTF chall write-ups, files, scripts etc (trying to be more organised LOL)
Amr-Hamza/Shhmon
Neutering Sysmon via driver unload
Amr-Hamza/Cybersecurity-Resources
A Library of various cybersecurity resources
Amr-Hamza/Invoke-ACLPwn
Amr-Hamza/YapDatabase
YapDB is a collection/key/value store with a plugin architecture. It's built atop sqlite, for Swift & objective-c developers.
Amr-Hamza/AMSITrigger
The Hunt for Malicious Strings
Amr-Hamza/SharpUp
SharpUp is a C# port of various PowerUp functionality.
Amr-Hamza/android-ssl-pinning-signed-demo
A tiny demo app using SSL pinning to block HTTPS MitM interception
Amr-Hamza/Notes
notes at google
Amr-Hamza/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Amr-Hamza/mitm6
pwning IPv4 via IPv6
Amr-Hamza/OSCE-Complete-Guide
OSWE, OSEP, OSED
Amr-Hamza/Elnoby0x1
Config files for my GitHub profile.
Amr-Hamza/KrbRelay
Framework for Kerberos relaying
Amr-Hamza/Windows-Exploit-Suggester
This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.