apocalyptik's Stars
S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
ffuf/ffuf
Fast web fuzzer written in Go
gkbrk/slowloris
Low bandwidth DoS tool. Slowloris rewrite in Python.
AbsoZed/DockerPwn.py
Python automation of Docker.sock abuse
arkadiyt/bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
eth0izzle/bucket-stream
Find interesting Amazon S3 Buckets by watching certificate transparency logs.
eth0izzle/shhgit
Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.
LOLBAS-Project/LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
51x/WHP
Micro$oft Windows Hacking Pack
tanprathan/MobileApp-Pentest-Cheatsheet
The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
prateek147/DVIA
Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security enthusiasts/professionals or students to test their iOS penetration testing skills in a legal environment. This application covers all the common vulnerabilities found in iOS applications (following OWASP top 10 mobile risks) and contains several challenges that the user can try. This application also contains a section where a user can read various articles on iOS application security. This project is developed and maintained by @prateekg147. The vulnerabilities and solutions covered in this app are tested upto iOS 8.1 .
ptoomey3/Keychain-Dumper
A tool to check which keychain items are available to an attacker once an iOS device has been jailbroken
GeoSn0w/Myriam
A vulnerable iOS App with Security Challenges for the Security Researcher inside you.
securing/IOSSecuritySuite
iOS platform security & anti-tampering Swift library
d0nutptr/sic
A tool to perform Sequential Import Chaining
0ang3el/EasyCSRF
0ang3el/aem-rce-bundle
0ang3el/aem-hacker
PortSwigger/upload-scanner
HTTP file upload scanner for Burp Proxy
Den1al/JSShell
An interactive multi-user web JS shell
xsleaks/xsleaks
A collection of browser-based side channel attack vectors.
google/security-research-pocs
Proof-of-concept codes created as part of security research done by Google Security Team.
masatokinugawa/HTTPLeaks
HTTPLeaks - All possible ways, a website can leak HTTP requests
masatokinugawa/filterbypass
Browser's XSS Filter Bypass Cheat Sheet
corkami/pocs
Proof of Concepts (PE, PDF...)
s0md3v/AwesomeXSS
Awesome XSS stuff
neex/gifoeb
exploit for ImageMagick's uninitialized memory disclosure in gif coder
s0md3v/XSStrike
Most advanced XSS scanner.
yassineaboukir/sublert
Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.
s0md3v/MyPapers
Repository for hosting my research papers