ceramicskate0
Hi 👋, Another unpopular former Red Teamer🥇 here. CRTO, CISSP, OASP, CEH, SEC+, NET+ SOC survivor
Looking for new opportunitiesLooking for new opportunities
ceramicskate0's Stars
daffainfo/AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
uBlockOrigin/uAssets
Resources for uBlock Origin, uMatrix: static filter lists, ready-to-use rulesets, etc.
projectdiscovery/proxify
A versatile and portable proxy for capturing, manipulating, and replaying HTTP/HTTPS traffic on the go.
Az0x7/vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
dirkjanm/ROADtools
A collection of Azure AD/Entra tools for offensive and defensive security purposes
Gerenios/AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
CCob/BeaconEye
Hunts out CobaltStrike beacons and logs operator command output
c3c/ADExplorerSnapshot.py
ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.
Perflyst/PiHoleBlocklist
PiHole and AGH Blocklists
foxglovesec/Potato
Sh3lldon/FullBypass
A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell. Feel free to DM if you find some bugs :)
SecurityInnovation/AuthMatrix
AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
icyguider/UAC-BOF-Bonanza
Collection of UAC Bypass Techniques Weaponized as BOFs
americo/sqlifinder
SQL Injection Vulnerability Scanner made with Python
BishopFox/sj
A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
0xEr3bus/PoolPartyBof
A beacon object file implementation of PoolParty Process Injection Technique.
itaymigdal/LOLSpoof
An interactive shell to spoof some LOLBins command line
rasta-mouse/CsWhispers
Source generator to add D/Invoke and indirect syscall methods to a C# project.
j0bin/Pentest-Resources
rasta-mouse/SpawnWith
Uri3n/Thread-Pool-Injection-PoC
Proof of concept code for thread pool based process injection in Windows.
NetSPI/FuncoPop
Tools for attacking Azure Function Apps
cpu0x00/EternelSuspention
a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
EspressoCake/ReadRemoteProcessCommandline_BOF
S3cur3Th1sSh1t/Koppeling
Adaptive DLL hijacking / dynamic export forwarding
a7t0fwa7/Leaked-Credentials
how to look for Leaked Credentials !
nullbind/Whisker
Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.
ceramic-skate0/Proxyman
Modern. Native. Delightful Web Debugging Proxy for macOS, iOS, and Android ⚡️
ceramicskate0/BChecks-PortSwigger
BChecks collection for Burp Suite Professional
H4xl0r/ThievingFox