GazettEl's Stars
CyberSecurityUP/smart-contracts-audit-checklist
RikunjSindhwad/Task-Ninja
Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!
excalidraw/excalidraw
Virtual whiteboard for sketching hand-drawn like diagrams
GuayoyoCyber/CVE-2024-24919
Nmap script to check vulnerability CVE-2024-24919
iamunixtz/FireHawk
FireHawk: The Elite Firebase Security Testing Utility
kgretzky/evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
bit4woo/Fiora
Fiora:漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行,也可作为burp插件使用。
d3vilbug/HackBar
HackBar plugin for Burpsuite
API-Security/APIKit
APIKit:Discovery, Scan and Audit APIs Toolkit All In One.
xnl-h4ck3r/GAP-Burp-Extension
Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
NH-RED-TEAM/RustHound
Active Directory data collector for BloodHound written in Rust. 🦀
ad0nis/ntlm_relay_gat
Sam0x90/CTI
Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
grimlockx/ADCSKiller
An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
Cloud-Architekt/AzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.
n1nj4sec/pupy
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
sil3ntH4ck3r/WebVulnLab
Herramienta donde puedes practicar las vulnerabilidades web más conocidas
jthack/PIPE
Prompt Injection Primer for Engineers
t3l3machus/toxssin
An XSS exploitation command-line interface and payload generator.
shadawck/awesome-anti-forensic
Tools and packages that are used for countering forensic activities, including encryption, steganography, and anything that modify attributes. This all includes tools to work with anything in general that makes changes to a system for the purposes of hiding information.
osV22/ejpt_notes
eLearnSecurity Junior Penetration Tester Certificate (eJPT) PTS Notes
kylemanna/docker-openvpn
🔒 OpenVPN server in a Docker container complete with an EasyRSA PKI CA
terjanq/Tiny-XSS-Payloads
A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
ivan-sincek/android-penetration-testing-cheat-sheet
Work in progress...
ivan-sincek/wifi-penetration-testing-cheat-sheet
Work in progress...
ffffffff0x/BerylEnigma
ffffffff0x team toolset for penetration testing, cryptography research, CTF and daily use. | ffffffff0x 团队工具集,用来进行渗透测试,密码学研究,CTF和日常使用。
p0dalirius/ApacheTomcatScanner
A python script to scan for Apache Tomcat server vulnerabilities.
arkadiyt/bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
nemesida-waf/waf-bypass
Check your WAF before an attacker does
jiep/offensive-ai-compilation
A curated list of useful resources that cover Offensive AI.