Pinned Repositories
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
AD-PenetrationTesting_Notes-
My Notes about Penetration Testing
adeleg
Active Directory delegation management tool
adPEAS
winPEAS, but for Active Directory
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
android-scripts
Some extremely simple scripts that I use during bug bounty hunting in Android Apps
awesome-aws-security
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
awesome-osint
:scream: A curated list of amazingly awesome OSINT
awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
RedEye
RedEye is a visual analytic tool supporting Red & Blue Team operations
SunandM's Repositories
SunandM/AD-PenetrationTesting_Notes-
My Notes about Penetration Testing
SunandM/adPEAS
winPEAS, but for Active Directory
SunandM/BloodHound
Six Degrees of Domain Admin
SunandM/breach-parse
A tool for parsing breached passwords
SunandM/C2
A localised version of Collaborator with some extra tricks built in
SunandM/CISSP-Study-Resources
CISSP Resources
SunandM/CloakQuest3r
Uncover the true IP address of websites safeguarded by Cloudflare & Others
SunandM/Cloud-Security
This Repo serves as a collection of shared security and penetration testing resources for the cloud.
SunandM/coffin-payloads
SunandM/CRTO-Notes
Certified Red Team Operator (CRTO) Cheatsheet and Checklist
SunandM/CVE-2024-4577
PHP CGI Argument Injection (CVE-2024-4577) Remote Code Execution PoC
SunandM/CVE-2024-4577-
POC & $BASH script for CVE-2024-4577
SunandM/Digital-Forensics-Script-for-Linux
SunandM/Dnsbruter
Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently bruteforce and identify potential subdomains for a given target domain. With its multithreading capability, users can control the concurrency level to speed up the process.
SunandM/exifharvester
Tool for extracting EXIF metadata from website images
SunandM/Frida-Labs
The repo contains a series of challenges for learning Frida for Android Exploitation.
SunandM/hakoriginfinder
Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
SunandM/img-payloads
SunandM/ios-penetration-testing-cheat-sheet
Work in progress...
SunandM/jsluice
Extract URLs, paths, secrets, and other interesting bits from JavaScript
SunandM/ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
SunandM/Maestro
SunandM/MicrosoftPurpleTeamToolkit
SunandM/my-payloads
SunandM/NetExec
The Network Execution Tool
SunandM/payloads
SunandM/public-pentesting-reports
A list of public penetration test reports published by several consulting firms and academic security groups.
SunandM/vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
SunandM/wafer
SunandM/webcopilot
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.