Pinned Repositories
403-bypass
403-bypass tool to bypass 403 responses.
awesome-cyber-skills
A curated list of hacking environments where you can train your cyber skills legally and safely
bruteforce-lists
Some files for bruteforcing certain things.
CloakQuest3r
Uncover the true IP address of websites safeguarded by Cloudflare
Evilginx3-Phishlets
This repository provides penetration testers and red teams with an extensive collection of dynamic templates designed specifically for use with Evilginx3.
GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
iscsicpl_bypassUAC
UAC bypass for x64 Windows 7 - 11
ollama-telegram
🦙 Ollama Telegram bot, with advanced configuration
ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
Vulnerable-Code-Snippets
A small collection of vulnerable code snippets
gabyavra's Repositories
gabyavra/GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
gabyavra/Vulnerable-Code-Snippets
A small collection of vulnerable code snippets
gabyavra/android-security-awesome
A Collection of Android(Samsung) Security Related Resources
gabyavra/API-SecurityEmpire
API Security Project aims to present unique attack & defense methods in API Security field
gabyavra/ApkStudio
Cross-platform IDE for Reverse-engineering Android applications
gabyavra/awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
gabyavra/aws-security-viz
Visualize your aws security groups.
gabyavra/boring-flutter
gabyavra/conpot
ICS/SCADA honeypot
gabyavra/CVE-2022-21907
HTTP Protocol Stack Remote Code Execution Vulnerability CVE-2022-21907
gabyavra/CVE-2022-21907-http.sys
Proof of concept of CVE-2022-21907 Double Free in http.sys driver, triggering a kernel crash on IIS servers
gabyavra/dvws-node
Damn Vulnerable Web Services is a vulnerable web service and API that can be used to learn about webservices/API related vulnerabilities.
gabyavra/echoip
IP address lookup service
gabyavra/fuzzpayloads
Collection of fuzzing payloads and corpus from all around added as sub modules
gabyavra/ImpulsiveDLLHijack
C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during Red Team Operations to evade EDR's.
gabyavra/Invoke-PSObfuscation
An in-depth approach to obfuscating the individual components of a PowerShell payload whether you're on Windows or Kali Linux.
gabyavra/nexmon
The C-based Firmware Patching Framework for Broadcom/Cypress WiFi Chips that enables Monitor Mode, Frame Injection and much more
gabyavra/OSCE-Complete-Guide
OSWE, OSEP, OSED
gabyavra/osint-namecheckers-list
A list of tools to search accounts by username
gabyavra/pagodo
pagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching
gabyavra/PasswordCrackingMethodology
My Password Cracking Methodology
gabyavra/rpi-gadget-image-creator
Takes a standard Raspbian Lite image and adds USB Ethernet gadget config
gabyavra/scrcpy
Display and control your Android device
gabyavra/SigFlip
SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature.
gabyavra/Some_Pentesters_SecurityResearchers_RedTeamers
Some Pentesters, Security Researchers, Red Teamers which i learned from them a lot...
gabyavra/sshuttle
Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
gabyavra/vapi
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios in the means of Exercises.
gabyavra/WAF-bypass-xss-payloads
XSS payloads for bypassing WAF. This repository is updating continuously.
gabyavra/Web-Attack-Cheat-Sheet
Web Attack Cheat Sheet
gabyavra/Windows10Exploits
Microsoft » Windows 10 : Security Vulnerabilities