hasr00t
Ethical Hacker | Consulting | Red Team | Network Penetration Testing | Web Application Testing | Social Engineering | OSINT
Pinned Repositories
awesome-attack-surface-monitoring
Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.
awesome-mental-health
A curated list of awesome articles, websites and resources about mental health in the software industry.
Azure-Red-Team
Azure Security Resources and Notes
CVE-2021-33766
ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit
dnscat2
Frameworthy
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
OSCP
Our OSCP repo: from popping shells to mental health.
OSCP-Exam-Report-Template-Markdown
:orange_book: Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report
ParamPamPam
hasr00t's Repositories
hasr00t/Frameworthy
hasr00t/awesome-attack-surface-monitoring
Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.
hasr00t/awesome-mental-health
A curated list of awesome articles, websites and resources about mental health in the software industry.
hasr00t/Azure-Red-Team
Azure Security Resources and Notes
hasr00t/CVE-2021-33766
ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit
hasr00t/dnscat2
hasr00t/Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
hasr00t/OSCP
Our OSCP repo: from popping shells to mental health.
hasr00t/OSCP-Exam-Report-Template-Markdown
:orange_book: Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report
hasr00t/ParamPamPam
hasr00t/PetitPotam
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
hasr00t/PurpleCloud
Hybrid + Identity Cyber Range
hasr00t/rdp-sec-check
rdp-sec-check is a Perl script to enumerate security settings of an RDP Service (AKA Terminal Services)
hasr00t/Rubeus
Trying to tame the three-headed dog.
hasr00t/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
hasr00t/SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
hasr00t/SharpShares
Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain
hasr00t/sliver
Adversary Emulation Framework
hasr00t/statistically-likely-usernames
Wordlists for creating statistically likely username lists for use in password attacks and security testing
hasr00t/TitanLdr
Titan: A crappy Reflective Loader written in C and assembly for Cobalt Strike. Redirects DNS Beacon over DoH