Pinned Repositories
awesome-ctf
A curated list of CTF frameworks, libraries, resources and softwares
gophish
Open-Source Phishing Toolkit
Hotspot-Generator
TP_Link Atheros USB Dongle
How-to-Frida-Android
Journey to learning frida android.
io.netgarage.org-writeup
level 1 to 5
linux-exploitation-course
A Course on Intermediate Level Linux Exploitation
log-viewer
Logs is a Burp Suite extension to work with log files.
PortTunnelingExplained
I keep notes on how port tunneling works, explain the different techniques and specify which scenario to deploy which techniques.
Vulnerable-VueJS
A repository to study attack surface of VueJS. Many articles online talked about VueJS vulnerabilities in lengthy and wordly sentences with little example codes. Here, I aim to provide short and simple PoC codes for educational purpose.
XXE-study
This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a playground to teach or test with Vulnerability scanners / WAF rules / Secure Configuration settings.
HLOverflow's Repositories
HLOverflow/XXE-study
This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a playground to teach or test with Vulnerability scanners / WAF rules / Secure Configuration settings.
HLOverflow/How-to-Frida-Android
Journey to learning frida android.
HLOverflow/Vulnerable-VueJS
A repository to study attack surface of VueJS. Many articles online talked about VueJS vulnerabilities in lengthy and wordly sentences with little example codes. Here, I aim to provide short and simple PoC codes for educational purpose.
HLOverflow/gophish
Open-Source Phishing Toolkit
HLOverflow/Hotspot-Generator
TP_Link Atheros USB Dongle
HLOverflow/log-viewer
Logs is a Burp Suite extension to work with log files.
HLOverflow/school_stuffs
accumulation of school assignments
HLOverflow/PortTunnelingExplained
I keep notes on how port tunneling works, explain the different techniques and specify which scenario to deploy which techniques.
HLOverflow/aws-mock-metadata
Mock ec2 instance metadata service that can run on a developer machine
HLOverflow/aws_cpt
AWS Cloud Pentest Utility - Helper scripts for a quicker Cloud PT on AWS environments
HLOverflow/Burp-Audit-Configs
Targeted vulnerability scanning for burp suite.
HLOverflow/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
HLOverflow/cloudgoat
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
HLOverflow/cmd-to-powershell
Attempts to map various CMD enumerations to powershell version without creating executable process.
HLOverflow/dockerize-cli-tools
A place to dockerize CLI tools
HLOverflow/dockerize-gui-tools
A place to dockerize GUI tools
HLOverflow/EDRNoiseMaker
Detect WFP filters blocking EDR communications
HLOverflow/HLOverflow.github.io
Testing out blogging on Github
HLOverflow/how2ios
HLOverflow/JSP-Tutorial
A quick tutorial to serve small JSP web
HLOverflow/manual-scan-issues
HLOverflow/oh-my-zsh
A delightful community-driven (with 1,200+ contributors) framework for managing your zsh configuration. Includes 200+ optional plugins (rails, git, OSX, hub, capistrano, brew, ant, php, python, etc), over 140 themes to spice up your morning, and an auto-update tool so that makes it easy to keep up with the latest updates from the community.
HLOverflow/Pastejacking
A demo of overriding what's in a person's clipboard
HLOverflow/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
HLOverflow/ProxyAgent
HLOverflow/RAU_crypto
Telerik UI for ASP.NET AJAX File upload and .NET deserialisation exploit (CVE-2017-11317, CVE-2017-11357, CVE-2019-18935)
HLOverflow/replicator
Burp extension to help developers replicate findings from pen tests
HLOverflow/SharpRDP
Remote Desktop Protocol .NET Console Application for Authenticated Command Execution
HLOverflow/SOAP-study
learn how to set up SOAP in various language.
HLOverflow/StockCat
A small set of dumb tools for a guy who is learning basics of finance.