Pinned Repositories
bash_tricks
a github repo that will be used for teaching bash optimizations in a youtube series
bloodhound-elementary
Command line tool for analyzing .json files generated by bloodhound.py or sharphound for use in Bloodhound.
C4
Cyberdelia, a Collection of Command and Control frameworks
client-side-attacks-lab
Lab Environment for learning client-side attacks such as CSRF, Clickjacking, XSS, and CORS abuse.
DVFPS
A Damn Vulnerable FPS game built using Godot
harpoon
A collection of scripts, and tips and tricks for hacking k8s clusters and containers.
LD_PRELOAD-rand-Hijack-Example
Code samples to go along with the blog post on using LD_PRELOAD to hijack rand() in a number guessing game.
Pequod
Lab VM environment for Container Hacking.
pewapt101
Professionally Evil Web Application Penetration Testing 101
x86_asm
x86 Assembly Code Examples for Blog Posts
Professionally Evil's Repositories
ProfessionallyEvil/pewapt101
Professionally Evil Web Application Penetration Testing 101
ProfessionallyEvil/harpoon
A collection of scripts, and tips and tricks for hacking k8s clusters and containers.
ProfessionallyEvil/C4
Cyberdelia, a Collection of Command and Control frameworks
ProfessionallyEvil/client-side-attacks-lab
Lab Environment for learning client-side attacks such as CSRF, Clickjacking, XSS, and CORS abuse.
ProfessionallyEvil/x86_asm
x86 Assembly Code Examples for Blog Posts
ProfessionallyEvil/LD_PRELOAD-rand-Hijack-Example
Code samples to go along with the blog post on using LD_PRELOAD to hijack rand() in a number guessing game.
ProfessionallyEvil/bash_tricks
a github repo that will be used for teaching bash optimizations in a youtube series
ProfessionallyEvil/DVFPS
A Damn Vulnerable FPS game built using Godot
ProfessionallyEvil/nmap_oui_update
A script to download OUI data from the IEEE and parse it into the nmap-mac-prefixes file so Nmap has the latest OUI data.
ProfessionallyEvil/LD_PRELOAD-run-at-load-time
Code samples to go along with the blog post on how to run code at load/unload time when using LD_PRELOAD to inject libraries.
ProfessionallyEvil/DVMMO
Damn Vulnerable MMO; an mmo game that is deliberately vulnerable and maybe just maybe fun to play.
ProfessionallyEvil/SameSiteAttackDemo
A simple demo web app built with Svelte + Restify that is meant to demonstrate security aspects regarding the SameSite cookie flag.
ProfessionallyEvil/k8s-labs
ProfessionallyEvil/csik
Client Script Injection Kit
ProfessionallyEvil/CVE-2021-38295-PoC
A simple Python proof of concept for CVE-2021-38295.
ProfessionallyEvil/LD_PRELOAD-accept-backdoor
Code samples to go along with the blog post on how to create an LD_PRELOAD backdoor hooking accept()
ProfessionallyEvil/cookie-monster
Coming soon...
ProfessionallyEvil/d0hnut
DNS over HTTPS Security Lab
ProfessionallyEvil/edit_leaked_file_descriptor
An all-in-one tool to edit a leaked file descriptor in SetUID binaries.
ProfessionallyEvil/container-escape-labs
Some container escape labs
ProfessionallyEvil/metasploitable3
Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.
ProfessionallyEvil/PENT
ProfessionallyEvil/static-analysis-ttp
ProfessionallyEvil/blog-ansible-webservers
Repo for this blog: https://www.secureideas.com/blog/ensuring-web-security-via-ansible-apache
ProfessionallyEvil/blog-juiceshop-workshop
Repo for this blog post: https://www.secureideas.com/blog/juiceshop-workshop-in-less-than-5-minutes
ProfessionallyEvil/March-2021-KeyGenMe-Solution
This repo is to provide an example solution to the KeyGenMe challenge binary from March 2021.
ProfessionallyEvil/owasp-modsecurity-crs
OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
ProfessionallyEvil/packer-kali_linux
This is a repository that will be used to help create a process of a new kali vagrant box for hashicorp each month.
ProfessionallyEvil/Top10
Official OWASP Top 10 Document Repository
ProfessionallyEvil/writeup_11_13_2020_challenge
A supporting repo for a blog post write-up of how to solve the November 13th, 2020 Detective Nevils Mystery Challenge.