cptfrankdatank
Father, veteran and InfoSec professional. Trying to learn something new everyday.
[Private][Private]
Pinned Repositories
.tmux
Oh My Tmux! My pretty + versatile tmux configuration that just works (imho the best tmux configuration)
5-day-weather-forecast
Python application which calls the OpenWeatherMap API to get a 5 day weather forecast
api_wordlist
A wordlist of API names for web application assessments
assessment-mindset
Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
attack_range
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
AutoRecon-Tib3rius
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
Awesome-Hacking-Tools
Awesome Hacking Tools
awesome-incident-response
A curated list of tools for incident response
blackhat-python3
Source code for the book "Black Hat Python" by Justin Seitz. The code has been fully converted to Python 3, reformatted to comply with PEP8 standards and refactored to eliminate issues of dependency resolution involving deprecated modules.
cptfrankdatank's Repositories
cptfrankdatank/blackhat-python3
Source code for the book "Black Hat Python" by Justin Seitz. The code has been fully converted to Python 3, reformatted to comply with PEP8 standards and refactored to eliminate issues of dependency resolution involving deprecated modules.
cptfrankdatank/api_wordlist
A wordlist of API names for web application assessments
cptfrankdatank/attack_range
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
cptfrankdatank/AutoRecon-Tib3rius
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
cptfrankdatank/Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
cptfrankdatank/CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
cptfrankdatank/the-book-of-secret-knowledge
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
cptfrankdatank/ThreatHunter-Playbook
A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
cptfrankdatank/awesome-threat-detection
A curated list of awesome threat detection and hunting resources
cptfrankdatank/aws-incident-response-runbooks
cptfrankdatank/cloud-sniper
Virtual Security Operations Center
cptfrankdatank/cloud-sniper-1
Cloud Security Operations
cptfrankdatank/CRT
Contact: CRT@crowdstrike.com
cptfrankdatank/CTF-notes-1-Shiva108
Everything needed for doing CTFs by Shiva108
cptfrankdatank/DeTTECT
Detect Tactics, Techniques & Combat Threats
cptfrankdatank/domainhunter
Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names
cptfrankdatank/DomainPasswordSpray
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
cptfrankdatank/Internal-Pentest-Playbook
Internal Network Penetration Test Playbook
cptfrankdatank/joystick
Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances in the results.
cptfrankdatank/MFASweep
A tool for checking if MFA is enabled on multiple Microsoft Services
cptfrankdatank/O365-InvestigationTooling
cptfrankdatank/public-pentesting-reports
Curated list of public penetration test reports released by several consulting firms and academic security groups
cptfrankdatank/purple-team-exercise-framework
Purple Team Exercise Framework
cptfrankdatank/recon-pipeline
An automated target reconnaissance pipeline.
cptfrankdatank/RedTeaming-Tactics-and-Techniques
Red Teaming Tactics and Techniques
cptfrankdatank/Security-Testing-Handbook
Stuff about it-security that might be good to know
cptfrankdatank/Serpico
SimplE RePort wrIting and COllaboration tool
cptfrankdatank/SprayingToolkit
Scripts to make password spraying attacks against Lync/S4B & OWA a lot quicker, less painful and more efficient
cptfrankdatank/tools-hacker-tools
A collection of pen-testing/hacking scripts. Various uses.
cptfrankdatank/wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.