MuLa1's Stars
Hack-with-Github/Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
blaCCkHatHacEEkr/PENTESTING-BIBLE
articles
aboul3la/Sublist3r
Fast subdomains enumeration tool for penetration testers
EmpireProject/Empire
Empire is a PowerShell and Python post-exploitation agent.
yeyintminthuhtut/Awesome-Red-Teaming
List of Awesome Red Teaming Resources
hfiref0x/UACME
Defeating Windows User Account Control
infoslack/awesome-web-hacking
A list of web application security
SecWiki/linux-kernel-exploits
linux-kernel-exploits Linux平台提权漏洞集合
Ullaakut/cameradar
Cameradar hacks its way into RTSP videosurveillance cameras
netbiosX/Checklists
Red Teaming & Pentesting checklists for various engagements
AxtMueller/Windows-Kernel-Explorer
A free but powerful Windows kernel research tool.
Escapingbug/awesome-browser-exploit
awesome list of browser exploitation tutorials
tanprathan/OWASP-Testing-Checklist
OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and pending test cases.
Mr-Un1k0d3r/PowerLessShell
Run PowerShell command without invoking powershell.exe
yeyintminthuhtut/Awesome-Advanced-Windows-Exploitation-References
List of Awesome Advanced Windows Exploitation References
eladshamir/Internal-Monologue
Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS
WindowsExploits/Exploits
Windows Exploits
Tylous/SniffAir
A framework for wireless pentesting.
sagishahar-zz/lpeworkshop
Windows / Linux Local Privilege Escalation Workshop
Mr-Un1k0d3r/RedTeamPowershellScripts
Various PowerShell scripts that may be useful during red team exercise
fox-it/aclpwn.py
Active Directory ACL exploitation with BloodHound
nettitude/xss_payloads
Exploitation for XSS
xtiankisutsa/MARA_Framework
MARA is a Mobile Application Reverse engineering and Analysis Framework. It is a toolkit that puts together commonly used mobile application reverse engineering and analysis tools to assist in testing mobile applications against the OWASP mobile security threats.
bhdresh/SocialEngineeringPayloads
This is a collection of social engineering tricks and payloads being used for credential theft and spear phishing attacks.
obscuritylabs/RAI
Rapid Attack Infrastructure (RAI)
offsecginger/AggressorScripts
Various Aggressor Scripts I've Created.
screetsec/Wordlist-Dracos
Collection My Wordlist
threatexpress/pasties
A collection of random bits of information common to many individual penetration tests, red teams, and other assessments
n00py/Hwacha
Deploy payloads to *Nix systems en masse
FuzzySecurity/DefCon-Beijing-UAC
Slide deck for DefCon Beijing