Pinned Repositories
amass
In-depth attack surface mapping and asset discovery
API-Security
OWASP API Security Project
apkleaks
Scanning APK file for URIs, endpoints & secrets.
ASVS
Application Security Verification Standard
awesome-controls
A collection of awesome security controls mapping for solutions across frameworks.
awesome-ethical-hacking-resources
😎 🔗 Awesome list about all kinds of resources for learning Ethical Hacking and Penetration Testing.
Awesome-Hacking-Resources-tools
PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
presentations
Some presentations i've made so far.
RedTeaming-Tactics-and-Techniques
Red Teaming Tactics and Techniques
LelioCosta's Repositories
LelioCosta/Red-Team-Tools
Repo containing cracked red teaming tools.
LelioCosta/tls-scan
An Internet scale, blazing fast SSL/TLS scanner ( non-blocking, event-driven )
LelioCosta/ctfdump
ctf solutions
LelioCosta/Sandman
Sandman is a NTP based backdoor for red team engagements in hardened networks.
LelioCosta/FBI-tools
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
LelioCosta/collisions
Hash collisions and exploitations
LelioCosta/zsteg
detect stegano-hidden data in PNG & BMP
LelioCosta/Awesome-Hacking-Resources
A collection of hacking / penetration testing resources to make you better!
LelioCosta/cipherscan
A very simple way to find out which SSL ciphersuites are supported by a target.
LelioCosta/WhatWeb
Next generation web scanner
LelioCosta/Awesome-Red-Teaming
List of Awesome Red Teaming Resources
LelioCosta/Venom
Venom is a library that meant to perform evasive communication using stolen browser socket
LelioCosta/opencre-explorer
LelioCosta/RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
LelioCosta/obs-studio
OBS Studio - Free and open source software for live streaming and screen recording
LelioCosta/c-jwt-cracker
JWT brute force cracker written in C
LelioCosta/ctf-jwt-token
An example of a vulnerability in the early JWT token node.js library
LelioCosta/deskreen
Deskreen turns any device with a web browser into a secondary screen for your computer. ⭐️ Star to support our work!
LelioCosta/Awesome-Red-Team-Operations
LelioCosta/webdiscover
The purpose of this script is to automate the web enumeration process and search for exploits
LelioCosta/red-toolkit
A toolkit for your red team operations
LelioCosta/WAFCheck
LelioCosta/www-project-automated-threats-to-web-applications
OWASP Foundation Web Respository
LelioCosta/www-project-redteam-toolkit
OWASP Foundation Web Respository
LelioCosta/WhatWebGUI
WhatWebGUI is a cross-platform compatible Java-based application for Windows 10, Mac OSX and Linux which implements the front end of the popular web scanning tool WhatWeb, the next generation web scanner, and provides it with a fresh-looking UI with some interesting features.
LelioCosta/Mitigating-Obsolete-TLS
Guidance for mitigating obsolete Transport Layer Security configurations. #nsacyber
LelioCosta/vulnserver
Vulnerable server used for learning software exploitation
LelioCosta/Photographer1-Vulnhub-Walkthrough
Here is a walk through for Photographer:1 which is a vulnerable machine on Vulnhub. It was created by Vinícius Vieira, aka v1n1v131r4. This machine was developed to prepare for OSCP. It is boot2root, tested on VirtualBox (but works on VMWare) and has two flags: user.txt and proof.txt.
LelioCosta/OSCP-Buffer-Overflow
OSCP Buffer Overflow cheat sheet
LelioCosta/awesome-controls
A collection of awesome security controls mapping for solutions across frameworks.