Pinned Repositories
ace-cloud-ops
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
active-directory-pentest
AD-Pentesting
AD-Pentesting-Tools
Anti-Virus-Evading-Payloads
During the exploitation phase of a pen test or ethical hacking engagement, you will ultimately need to try to cause code to run on target system computers. Whether accomplished by phishing emails, delivering a payload through an exploit, or social engineering, running code on target computers is part of most penetration tests. That means that you will need to be able to bypass antivirus software or other host-based protection for successful exploitation. The most effective way to avoid antivirus detection on your target's computers is to create your own customized backdoor. Here is a simple way to evade anti-virus software when creating backdoors!
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
arachni
Web Application Security Scanner Framework
assemblyline
AssemblyLine 4 - File triage and malware analysis
awesome-aws-security
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
hell0scp's Repositories
hell0scp/ace-cloud-ops
hell0scp/Anti-Virus-Evading-Payloads
During the exploitation phase of a pen test or ethical hacking engagement, you will ultimately need to try to cause code to run on target system computers. Whether accomplished by phishing emails, delivering a payload through an exploit, or social engineering, running code on target computers is part of most penetration tests. That means that you will need to be able to bypass antivirus software or other host-based protection for successful exploitation. The most effective way to avoid antivirus detection on your target's computers is to create your own customized backdoor. Here is a simple way to evade anti-virus software when creating backdoors!
hell0scp/API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
hell0scp/arachni
Web Application Security Scanner Framework
hell0scp/assemblyline
AssemblyLine 4 - File triage and malware analysis
hell0scp/awesome-aws-security
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
hell0scp/awesome-azure-architecture
AWESOME-Azure-Architecture
hell0scp/awesome-forensics
A curated list of awesome forensic analysis tools and resources
hell0scp/awesome-incident-response
A curated list of tools for incident response
hell0scp/awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
hell0scp/awesome-rtc-hacking
a list of awesome resources related to security and hacking of VoIP, WebRTC and VoLTE
hell0scp/awesome-security-newsletters
Periodic cyber security newsletters that capture the latest news, summaries of conference talks, research, best practices, tools, events, vulnerabilities, and analysis of trending threats and attacks
hell0scp/awesome-web-hacking
A list of web application security
hell0scp/awesome-websocket-security
Awesome information for WebSockets security research
hell0scp/community-threats
The largest, public library of adversary emulation plans in JSON. A place to share custom SCYTHE threats with the community. #ThreatThursday
hell0scp/CTB
hell0scp/CyberThreatHunting
A collection of resources for Threat Hunters - Sponsored by Falcon Guard
hell0scp/fastfinder
Incident Response - Fast suspicious file finder
hell0scp/h4cker
This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.
hell0scp/hawk
Powershell Based tool for gathering information related to O365 intrusions and potential Breaches
hell0scp/HoneySpot
A complete system to deploy functional Honeypots to all infrastructures that needs to be notified when something anomalous occur
hell0scp/Linux_LPE_io_uring_CVE-2021-41073
hell0scp/Logout4Shell
Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell
hell0scp/lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
hell0scp/monkey
Infection Monkey - An automated pentest tool
hell0scp/osep-code-dump-2022
Code dump from PEN-300/OSEP updated 2022
hell0scp/PoC
Advisories, proof of concept files and exploits that have been made public by @pedrib.
hell0scp/RedTeam-OffensiveSecurity
Tools & Interesting Things for RedTeam Ops
hell0scp/sipvicious
SIPVicious OSS has been around since 2007 and is actively updated to help security teams, QA and developers test SIP-based VoIP systems and applications.
hell0scp/Windows-Penetration-Testing
Technical notes and list of tools, scripts and Windows commands that I find useful during internal penetration tests..