buglessdr
Senior Developer Identity and Access Management - Info Sec - OSCP - IAM is what I am skilled in and have a passion for red teams
EdgileMesa, Arizona
Pinned Repositories
AD-Attack-Defense
apiExample
An Example of a functional API Build
AutoBlue-MS17-010
This is just an semi-automated fully working, no-bs, non-metasploit version of the public exploit code for MS17-010 AKA EternalBlue
AutoLocalPrivilegeEscalation
An automated script that download potential exploit for linux kernel from exploitdb, and compile them automatically
autopwn
Specify targets and run sets of tools against them
linux-exploit-suggester
Linux privilege escalation auditing tool
Privesc
Windows batch script that finds misconfiguration issues which can lead to privilege escalation.
sandbox-attacksurface-analysis-tools
Set of tools to analyze and attack Windows sandboxes.
windowsEnum
Batch file to help automate Windows enumeration for privilege escalation
buglessdr's Repositories
buglessdr/sandbox-attacksurface-analysis-tools
Set of tools to analyze and attack Windows sandboxes.
buglessdr/apiExample
An Example of a functional API Build
buglessdr/linux-exploit-suggester
Linux privilege escalation auditing tool
buglessdr/myarsenal
buglessdr/oscp-1
oscp study
buglessdr/AD-Attack-Defense
buglessdr/AutoBlue-MS17-010
This is just an semi-automated fully working, no-bs, non-metasploit version of the public exploit code for MS17-010 AKA EternalBlue
buglessdr/AutoSploit
Automated Mass Exploiter
buglessdr/bfg-repo-cleaner
Removes large or troublesome blobs like git-filter-branch does, but faster. And written in Scala
buglessdr/cloaksec-scripts
Some scripts/helpers I made throughout the PWK/OSCP
buglessdr/dostoevsky-pentest-notes
Read in book form on GitBook
buglessdr/exploitpack
Exploit Pack -The next generation exploit framework
buglessdr/fuzzdb
一个fuzzdb扩展库
buglessdr/java-ldap-ssl-test
This is a small test utility that attempts to connect to an LDAP instance, authenticate a given credential and retrieve attributes. It is very helpful for testing secure connections, LDAPS and certificate configuration.
buglessdr/Meltdown
Meltdown PoC for reading passwords from Google Chrome.
buglessdr/mimikatz
A little tool to play with Windows security
buglessdr/OSCP-2
Collection of things made during my OSCP journey
buglessdr/pentest
:no_entry: offsec batteries included
buglessdr/PenTesting-Scripts
A ton of helpful tools
buglessdr/pipe_finder
Automated script to search in SMB protocol for availables pipe names
buglessdr/ptf
The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
buglessdr/sail-point-improved
Project for improved SailPoint features
buglessdr/sailpoint-iiq
buglessdr/scim
SCIM test with jetty
buglessdr/SpectreExploit
SpectreExploit POC
buglessdr/sshuttle
Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
buglessdr/standalone-docker-sailpoint-iiq
A simple way to deploy SailPoint's IdentityIQ 8.0 into a series of docker containers mimicking the core components of most development environments allowing organizations to get new development team members up on their baseline code in minutes.
buglessdr/tutorials
Just Announced - "Learn Spring Security OAuth":
buglessdr/UACME
Defeating Windows User Account Control
buglessdr/Windows-Post-Exploitation
Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. There seems to be a ton of different lists like this, my goal is to include all of them here and include a complete list of commands to use once an OS shell has been established. Contributions are appreciated. Enjoy!