Syrkadian

Syrkadian's Stars

• nccgroup/nccfsas

  Information released publicly by NCC Group's Full Spectrum Attack Simulation (FSAS) team.

  Language:C608110

• SecuraBV/CVE-2020-1472

  Test tool for CVE-2020-1472

  Language:Python1.7k360

• lgandx/Responder

  Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.

  Language:Python5.4k771

• teamdfir/sift

  SIFT

  48967

• m4ll0k/BBTz

  BBT - Bug Bounty Tools (examples💡)

  Language:Python1.7k471

• vysecurity/DomLink

  A tool to link a domain with registered organisation names and emails, to other domains.

  Language:Python830142

• zeek/zeek

  Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

  Language:C++6.4k1.2k

• TCM-Course-Resources/Windows-Privilege-Escalation-Resources

  Compilation of Resources from TCM's Windows Priv Esc Udemy Course

  691234

• hakluke/weaponised-XSS-payloads

  XSS payloads designed to turn alert(1) into P1

  Language:JavaScript1.3k216

• SigmaHQ/sigma

  Main Sigma Rule Repository

  Language:Python8.3k2.2k

• Ignitetechnologies/Privilege-Escalation

  This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

  3.3k612

• mandiant/flare-vm

  A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

  Language:PowerShell6.5k915

• BC-SECURITY/Empire

  Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

  Language:PowerShell4.2k576

• ckane/CS7038-Malware-Analysis

  Course Repository for University of Cincinnati Malware Analysis Class (CS[567]038)

  Language:HTML756178

• Mr-xn/Penetration_Testing_POC

  渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

  Language:HTML6.6k2k

• hmaverickadams/TCM-Security-Sample-Pentest-Report

  Sample pentest report provided by TCM Security

  1.1k287

• FULLSHADE/WindowsExploitationResources

  Resources for Windows exploit development

  1.5k318

• jhaddix/pentest-bookmarks

  a collection of handy bookmarks

  1k360

• jhaddix/tbhm

  The Bug Hunters Methodology

  3.9k795

• lukasz-madon/awesome-concepts

  Awesome list about all kinds of interesting topics: Laws, Principles, Mental Models, Cognitive Biases

  49532

• GrrrDog/Java-Deserialization-Cheat-Sheet

  The cheat sheet about Java Deserialization vulnerabilities

  3k596

• frohoff/ysoserial

  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

  Language:Java7.7k1.8k

• moloch--/leakdb

  Web-Scale NoSQL Idempotent Cloud-Native Big-Data Serverless Plaintext Credential Search

  Language:Go18127

• ignis-sec/puff

  Clientside vulnerability / reflected xss fuzzer

  Language:JavaScript15017

• FenrirSec/Documentation

  52

• tanprathan/OWASP-Testing-Checklist

  OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and pending test cases.

  1.5k466

• ohpe/juicy-potato

  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.

  Language:C++2.4k469

• juice-shop/juice-shop

  OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

  Language:TypeScript10.4k10.8k

• Gr1mmie/sumrecon

  Web recon script. No need to fear, sumrecon is here!

  Language:Shell35685

• haccer/subjack

  Subdomain Takeover tool written in Go

  Language:Go1.9k337