ahrixia
Security Consultant | SRT Researcher | OSCE3 | OSCP+ | OSEP | OSWE | OSED | CRTO | OSWA | OSWP | CRT | PNPT | eMAPT | CPENT | eJPT | CEH Master | CPSA | 9xCVE
SwarmneticsSingapore
ahrixia's Stars
zylon-ai/private-gpt
Interact with your documents using the power of GPT, 100% privately, no data leaks
PromtEngineer/localGPT
Chat with your documents on your local device using GPT models. No data leaves your device and 100% private.
HackTricks-wiki/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
kylemanna/docker-openvpn
🔒 OpenVPN server in a Docker container complete with an EasyRSA PKI CA
streaak/keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
internetwache/GitTools
A repository with 3 tools for pwn'ing websites with .git repositories available
epinna/tplmap
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
tarunkant/Gopherus
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
stark0de/nginxpwner
Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.
WangYihang/GitHacker
🕷️ A `.git` folder exploiting tool that is able to restore the entire Git repository, including stash, common branches and common tags.
carlospolop/Auto_Wordlists
tomnomnom/unfurl
Pull out bits of URLs provided on stdin
chenjj/CORScanner
🎯 Fast CORS misconfiguration vulnerabilities scanner
nop-tech/OSED
Containing my notes, practice binaries + solutions, blog posts, etc. for the Offensive Security Exploit Developer (OSED/EXP-301)
mpgn/BackupOperatorToDA
From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
Hrishikesh7665/Android-Pentesting-Checklist
Delve into a comprehensive checklist, your ultimate companion for Android app penetration testing. Identify vulnerabilities in network, data, storage, and permissions effortlessly. Boost security skills with essential tools and user-friendly guides. Elevate Android security seamlessly!
VerSprite/research
VerSprite Security Research
Hari-prasaanth/Thick-Client-Pentest-Checklist
A OWASP Based Checklist With 80+ Test Cases
RedTeamOperations/Red-Infra-Craft
RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create advanced phishing & payload infras
AngixBlack/Corscan
Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts
ommadawn46/win-x86-shellcoder
A tool for developing bad character-free shellcode to bypass DEP with WriteProcessMemory (32-bit only)
RingLcy/VulnerabilityAnalysisAndExploit
e-a-security/macOS-Exploit-Dev-OSMR
Resources, scripts, and overviews of the knowledge I collect going through Offensive Security's macOS Exploit Development course.
loneicewolf/exp312-osmr
My Preparations for the "macOS Control Bypasses (EXP-312-osmr)" Course By OffensiveSecurity.
jossmoff/ChromePasswordDumper
🔐 Google Chrome password recovery tool written using Powershell and a tiny bit of Batch!
jolestar/docker-proxy
Squid and Stunnel assembled as a proxy server
w0ot-net/VulnWCFService
Example Vulnerable WCF Service and Client
eMVee-NL/SSRF2gopher
Gopher protocol is used a lot when exploiting SSRF. This script generates a gopher payload what can be user to submit data to a webform.
CCIEVoice2009/EPI052_OSEDScript
eMVee-NL/XXE-File-Generator
This script read an `export.xml` file and create several `output*.xml ` with a payload to read `/etc/passwd` or any file given with argument `--file "flagtxt"`