Pinned Repositories
A-Red-Teamer-diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
AdvPhishing
This is Advance Phishing Tool ! OTP PHISHING
awesome-devsecops
An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
dvl-core
Core.
estoque
Controle de estoque
geo-recon
An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.
grabcam
A tool to hack camera from termux for video tutorial visit youtube.com/noobhackers
Infoga
Infoga - Email OSINT
lockphish
Lockphish it's the first tool (07/04/2020) for phishing attacks on the lock screen, designed to grab Windows credentials, Android PIN and iPhone Passcode using a https link.
mikrot8over
mikrot8over: Fast exploitation tool for Mikrotik RouterOS up to 6.38.4
fernandorochaz's Repositories
fernandorochaz/A-Red-Teamer-diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
fernandorochaz/AvillaForensics
Avilla Forensics 3.0
fernandorochaz/BlackStone
Pentesting Reporting Tool
fernandorochaz/CDK
📦 Make security testing of K8s, Docker, and Containerd easier.
fernandorochaz/deepce
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
fernandorochaz/discover
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
fernandorochaz/Evil-Droid
fernandorochaz/FreeRDP
FreeRDP is a free remote desktop protocol library and clients
fernandorochaz/fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
fernandorochaz/hackthebox-writeups
Writeups for HacktheBox 'boot2root' machines
fernandorochaz/Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
fernandorochaz/jadx
Dex to Java decompiler
fernandorochaz/K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
fernandorochaz/linux-kernel-exploitation
A collection of links related to Linux kernel security and exploitation
fernandorochaz/MS12-020_Esteemaudit
Explorando Remote Desktop do Windows Server 2003 com o exploit Esteemaudit (MS12-020) e obtendo RCE (sem Metasploit)
fernandorochaz/NetworkNightmare
Network Pentesting Mindmap by Caster
fernandorochaz/onedrive_user_enum
onedrive user enumeration - pentest tool to enumerate valid o365 users
fernandorochaz/OneListForAll
Rockyou for web fuzzing
fernandorochaz/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
fernandorochaz/PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
fernandorochaz/phpsploit
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
fernandorochaz/Privilege-Escalation
This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.
fernandorochaz/public-pentesting-reports
A list of public penetration test reports published by several consulting firms and academic security groups.
fernandorochaz/Smap
a drop-in replacement for Nmap powered by shodan.io
fernandorochaz/SUDO_KILLER
A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.
fernandorochaz/TeamsPhisher
Send phishing messages and attachments to Microsoft Teams users
fernandorochaz/webshell
This is a webshell open source project
fernandorochaz/wesng
Windows Exploit Suggester - Next Generation
fernandorochaz/WhatsMyName
This repository has the unified data required to perform user enumeration on various websites. Content is in a JSON file and can easily be used in other projects.
fernandorochaz/WinPwn
Automation for internal Windows Penetrationtest / AD-Security