Pinned Repositories
ai-exploits
A collection of real world AI/ML exploits for responsibly disclosed vulnerabilities
ALFA
ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit logs and to perform automated forensic analysis on the audit logs using statistics and the MITRE ATT&CK Cloud Framework
analyst-scripts
Scripts to analyze stuff
AppleJuice
Apple BLE proximity pairing message spoofing
attack_range
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
awesome-osint
:scream: A curated list of amazingly awesome OSINT
bruteforce-lists
Some files for bruteforcing certain things.
bug-bounty-responses
A collection of response templates for invalid bug bounty reports.
Havoc
The Havoc Framework.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Skr1ptKid-0x's Repositories
Skr1ptKid-0x/ai-exploits
A collection of real world AI/ML exploits for responsibly disclosed vulnerabilities
Skr1ptKid-0x/ALFA
ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit logs and to perform automated forensic analysis on the audit logs using statistics and the MITRE ATT&CK Cloud Framework
Skr1ptKid-0x/analyst-scripts
Scripts to analyze stuff
Skr1ptKid-0x/AppleJuice
Apple BLE proximity pairing message spoofing
Skr1ptKid-0x/attack_range
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
Skr1ptKid-0x/awesome-osint
:scream: A curated list of amazingly awesome OSINT
Skr1ptKid-0x/bruteforce-lists
Some files for bruteforcing certain things.
Skr1ptKid-0x/Havoc
The Havoc Framework.
Skr1ptKid-0x/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Skr1ptKid-0x/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
Skr1ptKid-0x/CSS-Exchange
Exchange Server support tools and scripts
Skr1ptKid-0x/dfiq
DFIQ is a collection of investigative questions and the approaches for answering them
Skr1ptKid-0x/dot
The Deepfake Offensive Toolkit
Skr1ptKid-0x/gateway-finder
Tool to identify routers on the local LAN and paths to the Internet
Skr1ptKid-0x/google-sheets-hunting-bad-domains
This project provides a set of Google Apps Scripts designed to help you identify and analyze potentially malicious domains directly from Google Sheets. By leveraging various APIs, these scripts can retrieve information such as VirusTotal reports, WHOIS data, breach information from Have I Been Pwned, and the HTTP status of a domain.
Skr1ptKid-0x/Invictus-AWS
Skr1ptKid-0x/killerbee
IEEE 802.15.4/ZigBee Security Research Toolkit
Skr1ptKid-0x/KubeHound
Kubernetes Attack Graph
Skr1ptKid-0x/objection
📱 objection - runtime mobile exploration
Skr1ptKid-0x/open-cvdb
An open project to list all publicly known cloud vulnerabilities and CSP security issues
Skr1ptKid-0x/payloads
Git All the Payloads! A collection of web attack payloads.
Skr1ptKid-0x/PCredz
This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.
Skr1ptKid-0x/peirates
Peirates - Kubernetes Penetration Testing tool
Skr1ptKid-0x/rapid-endpoint-investigations
Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE
Skr1ptKid-0x/rengine
An automated reconnaissance framework for web apps with a focus on highly configurable recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for pentesters to gather recon with minimal config and with reNgine's correlation
Skr1ptKid-0x/routersploit
Exploitation Framework for Embedded Devices
Skr1ptKid-0x/Sigma-AWS
This repository contains the research and components of our research into using Sigma for AWS Incident Response.
Skr1ptKid-0x/template-generator
A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily replace the variables with content. Data is saved temporarily in local storage. PHP is only needed to generate the list of files in the dropdown of templates.
Skr1ptKid-0x/warhorse
Infrastructure Automation
Skr1ptKid-0x/windows-privesc-check
Standalone Executable to Check for Simple Privilege Escalation Vectors on Windows Systems