josz5930's Stars
OSTEsayed/OSTE-Meta-Scan
The OSTE meta scanner is a comprehensive web vulnerability scanner that combines multiple DAST scanners, including Nikto Scanner, ZAP, Nuclei, SkipFish, and Wapiti.
root-at-iyn/CCT-APP-Prep
Preparation and notes for the Crest Certified Web Application Tester (CCT APP) exam
InfoSecInnovations/concierge
Repo for Concierge AI dev work
hysnsec/awesome-policy-as-code
A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.
hysnsec/awesome-threat-modelling
A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.
violenttestpen/aws_cpt
AWS Cloud Pentest Utility - Helper scripts for a quicker Cloud PT on AWS environments
dh0ck/Wi-Fi-Pentesting-Cheatsheet
Personal notes used to pass the OSWP exam
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
RhinoSecurityLabs/cloudgoat
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
shroudedcode/apk-mitm
🤖 A CLI application that automatically prepares Android APK files for HTTPS inspection
stafordtituss/HazProne
HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enabling you to pentest Vulnerabilities within, and hence, gain a better understanding of what could go wrong and why!!
infosecn1nja/Red-Teaming-Toolkit
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
RhinoSecurityLabs/pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
toniblyx/my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
tanc7/hacking-books
guardicore/monkey
Infection Monkey - An open-source adversary emulation platform
HLOverflow/How-to-Frida-Android
Journey to learning frida android.
HLOverflow/Hotspot-Generator
TP_Link Atheros USB Dongle
mxrch/penglab
🐧 Abuse of Google Colab for cracking hashes.
owasp-amass/amass
In-depth attack surface mapping and asset discovery
peass-ng/PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
Tib3rius/AutoRecon
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
NationalSecurityAgency/ghidra
Ghidra is a software reverse engineering (SRE) framework
996icu/996.ICU
Repo for counting stars and contributing. Press F to pay respect to glorious developers.
six2dez/OSCP-Human-Guide
My own OSCP guide
williballenthin/python-idb
Pure Python parser and analyzer for IDA Pro database files (.idb).
rewardone/OSCPRepo
A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
codingo/Reconnoitre
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
leostat/rtfm
A database of common, interesting or useful commands, in one handy referable form
redcanaryco/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.