Pinned Repositories
awesome-infosec
A curated list of awesome infosec courses and training resources.
CookieMonster
ctf-tools
Some setup scripts for security research tools.
CVE-2018-20555
Social Network Tabs Wordpress Plugin Vulnerability - CVE-2018-20555
datasploit
An #OSINT Framework to perform various recon techniques on Companies, People, Phone Number, Bitcoin Addresses, etc., aggregate all the raw data, and give data in multiple formats.
Infosec_Reference
An Information Security Reference That Doesn't Suck
Jackett
API Support for your favorite torrent trackers.
osint-scraper
Social Recon
passphrase-wordlist
Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords
ReconT
reconnaisance - footprinting - information disclosure (0.7)
W1ck3dTh1ngs's Repositories
W1ck3dTh1ngs/archey4
:computer: Maintained fork of the original Archey (Linux) system tool
W1ck3dTh1ngs/boopkit
Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
W1ck3dTh1ngs/chainsaw
Rapidly Search and Hunt through Windows Event Logs
W1ck3dTh1ngs/collector-management-client
A Python script for quickly managing a subset of installed Collectors
W1ck3dTh1ngs/CVE-2019-18634
My n-day exploit for CVE-2019-18634 (local privilege escalation)
W1ck3dTh1ngs/CVE-2021-1675
C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527
W1ck3dTh1ngs/DeepFaceLive
W1ck3dTh1ngs/DevOps-The-Hard-Way-AWS
This repository contains free labs for setting up an entire workflow and DevOps environment from a real-world perspective in AWS
W1ck3dTh1ngs/Flipper-IRDB
A collective of different IRs for the Flipper
W1ck3dTh1ngs/flipper_zero_amiibo
All Amiibo for Flipper Zero Emulation
W1ck3dTh1ngs/jwt_tool
:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens
W1ck3dTh1ngs/learn-to-cloud
Learn the fundamentals of cloud computing
W1ck3dTh1ngs/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform (formely known as Malware Information Sharing Platform)
W1ck3dTh1ngs/police-brutality
Repository containing evidence of police brutality during the 2020 George Floyd protests
W1ck3dTh1ngs/PortBender
TCP Port Redirection Utility
W1ck3dTh1ngs/push-button-wordle-solver
W1ck3dTh1ngs/reconftw
Simple script for full recon
W1ck3dTh1ngs/Reconnoitre
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
W1ck3dTh1ngs/s3-malware-scanner
Uses VirusTotal to scan S3 files in a specified S3 bucket
W1ck3dTh1ngs/ShadowSteal
Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation
W1ck3dTh1ngs/sigma
Generic Signature Format for SIEM Systems
W1ck3dTh1ngs/SKLootMaster
A tool to manage Suicide Kings looting via Trello API.
W1ck3dTh1ngs/soc_workflow_app_ce
SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack, and view Saved Searches configured by teammates.
W1ck3dTh1ngs/spiderfoot
SpiderFoot, the most complete OSINT collection and reconnaissance tool.
W1ck3dTh1ngs/subfinder
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
W1ck3dTh1ngs/Sublist3r
Fast subdomains enumeration tool for penetration testers
W1ck3dTh1ngs/unleashed-firmware
Flipper Zero Unleashed Firmware
W1ck3dTh1ngs/usbrubberducky-payloads
The Official USB Rubber Ducky Payload Repository
W1ck3dTh1ngs/VECTR
VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios
W1ck3dTh1ngs/Wordpresscan
WPScan rewritten in Python + some WPSeku ideas