JeffBarron's Stars
papers-we-love/papers-we-love
Papers from the computer science community to read and discuss.
GTFOBins/GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
LOLBAS-Project/LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
nomi-sec/PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
RedSiege/EyeWitness
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
fastfire/deepdarkCTI
Collection of Cyber Threat Intelligence sources from the deep and dark web
RoganDawes/P4wnP1
P4wnP1 is a highly customizable USB attack platform, based on a low cost Raspberry Pi Zero or Raspberry Pi Zero W.
Anorov/cloudflare-scrape
A Python module to bypass Cloudflare's anti-bot page.
dafthack/CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
pymodbus-dev/pymodbus
A full modbus protocol written in python
google/pyringe
Debugger capable of attaching to and injecting code into python processes.
dirkjanm/krbrelayx
Kerberos unconstrained delegation abuse toolkit
rip1s/vmware_escape
VMware Escape Exploit before VMware WorkStation 12.5.5
bcoles/kernel-exploits
Various kernel exploits
apurvsinghgautam/dark-web-osint-tools
OSINT Tools for the Dark Web
TheParmak/conti-leaks-englished
Google and deepl translated conti leaks, which is shared by a member of the conti ransomware group.
zeronetworks/rpcfirewall
salt-die/batgrl
badass terminal graphics library
paranoidninja/Pandoras-Box
This repo contains my custom scripts for Penetration Testing and Red Team Assessments. I will keep on updating this repo as and when I get time.
CriticalPathSecurity/Zeek-Intelligence-Feeds
Zeek-Formatted Threat Intelligence Feeds
captainGeech42/ransomwatch
Ransomware leak site monitoring
ly4k/PetitPotam
Python implementation for PetitPotam
bb00/zer0dump
Abuse CVE-2020-1472 (Zerologon) to take over a domain and then repair the local stored machine account password.
clemos/haxe-js-kit
Haxe tools and externs for Javascript and Node.js
threatexpress/pasties
A collection of random bits of information common to many individual penetration tests, red teams, and other assessments
giterlizzi/nmap-log4shell
Nmap Log4Shell NSE script for discovery Apache Log4j RCE (CVE-2021-44228)
ucki/umpf
My pentest cheat sheet
zer010bs/rayvyn
Rayvyn - CVE Monitoring Tool
PwnDefend/badExchangePews
seansawyer/pyatl-redis
Examples from a talk at PyATL