Pinned Repositories
-Pen-Test-Reports_Walk-Throughs-
AttackSurfaceMapper
Attack Surface Mapper is a reconnaissance tool that uses a mixture of open source intellgence and active techniques to expand the attack surface of your target. You feed in a mixture of one or more domains, subdomains and IP addresses and it uses numerous techniques to find more targets. It enumerates subdomains with bruteforcing and passive lookups, Other IPs of the same network block owner, IPs that have multiple domain names pointing to them and so on. Once the target list is fully expanded it performs passive reconnaissance on them, taking screenshots of websites, generating visual maps, looking up credentials in public breaches, passive port scanning with Shodan and scraping employees from LinkedIn.
AutoRDPwn
The Shadow Attack Framework
averagesecurityguy.github.io
awesome-oscp
A curated list of awesome OSCP resources
boxDetox
OSCP exam helper tool
CatMyPhish
Search for categorized domain
commando-vm
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@fireeye.com
Pen-Test-Reports_Walk-Throughs
A collection of oenetration test reports and walkttrough for various practice box engagements conducted while preparing to take the OSCP certification.
Pentesting
Pentesting Cheatsheets and Guides
jaxmayhem's Repositories
jaxmayhem/Pen-Test-Reports_Walk-Throughs
A collection of oenetration test reports and walkttrough for various practice box engagements conducted while preparing to take the OSCP certification.
jaxmayhem/-Pen-Test-Reports_Walk-Throughs-
jaxmayhem/awesome-oscp
A curated list of awesome OSCP resources
jaxmayhem/boxDetox
OSCP exam helper tool
jaxmayhem/domainhunter
Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names
jaxmayhem/Hack-the-Box-OSCP-Preparation
Hack-the-Box-OSCP-Preparation
jaxmayhem/incognito
One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/
jaxmayhem/kerbrute
A tool to perform Kerberos pre-auth bruteforcing
jaxmayhem/LazyTools
A repo containing simple programs to ease pentester with generated commands to avoid syntax issues
jaxmayhem/massrecon
This reconissance tool is specific written for OSCP engagements.
jaxmayhem/Ninja
Open source C2 server created for stealth red team operations
jaxmayhem/oscp-command-filtering-tool
jaxmayhem/OSCP-Exam-Report-Template
Modified template for the OSCP Exam and Labs. Used during my passing attempt
jaxmayhem/OSCP-Exam-Report-Template-Markdown
:orange_book: Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report
jaxmayhem/OSCP-Preparation-Material
All in One OSCP Preparation Material
jaxmayhem/OSCP2020
Tools and scripts written for personal use
jaxmayhem/OSCPRepo
A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
jaxmayhem/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
jaxmayhem/PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
jaxmayhem/privilege-escalation-awesome-scripts-suite
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
jaxmayhem/ptf
The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
jaxmayhem/pwnagotchi
(⌐■_■) - Deep Reinforcement Learning instrumenting bettercap for WiFi pwning.
jaxmayhem/rapidscan
:new: The Multi-Tool Web Vulnerability Scanner.
jaxmayhem/Reconnoitre
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
jaxmayhem/Red-Teaming-Toolkit
A collection of open source and commercial tools that aid in red team operations.
jaxmayhem/reGeorg
The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
jaxmayhem/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
jaxmayhem/Shr3dKit
Red Team Tool Kit
jaxmayhem/Sn1per
Automated pentest framework for offensive security experts
jaxmayhem/USBAttackWorkshop
USBAttackWorkshop