Pinned Repositories
403bypasser
Advanced-SQL-Injection-Cheatsheet
A cheat sheet that contains advanced queries for SQL Injection of all types.
allsafe
Intentionally vulnerable Android application.
Anonymous
API-SecurityEmpire
API Security Projecto aims to present unique attack & defense methods in API Security field
appmon
Documentation:
assesment2
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
attack-scripts
Scripts and a (future) library to improve users' interactions with the ATT&CK content
kingx48's Repositories
kingx48/Advanced-SQL-Injection-Cheatsheet
A cheat sheet that contains advanced queries for SQL Injection of all types.
kingx48/API-SecurityEmpire
API Security Projecto aims to present unique attack & defense methods in API Security field
kingx48/AutomatedLab
AutomatedLab is a provisioning solution and framework that lets you deploy complex labs on HyperV and Azure with simple PowerShell scripts. It supports all Windows operating systems from 2008 R2 to 2019, some Linux distributions and various products like AD, Exchange, PKI, IIS, etc.
kingx48/awesome-bugbounty-builder
Awesome Bug bounty builder Project
kingx48/aws-security-reference-architecture-examples
Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation and Customizations for AWS Control Tower.
kingx48/AzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Azure Active Directory and how they can be mitigated or detected.
kingx48/bbrf-server
The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
kingx48/Bugbounty-Checklist
Tips and Tutorials for Bug Bounty and also Penetration Tests.
kingx48/cloud-security-remediation-guides
Security Remediation Guides
kingx48/cve
Gather and update all available and newest CVEs with their POC.
kingx48/ddosify
High-performance load testing tool, written in Golang.
kingx48/EvilSelenium
EvilSelenium is a tool that weaponizes Selenium to attack Chrome.
kingx48/FBI-tools
Tools for gathering information and actions forensic
kingx48/goop
Yet another tool to dump a git repository from a website, focused on as-complete-as-possible dumps and handling weird edge-cases.
kingx48/jaeles
The Swiss Army knife for automated Web Application Testing
kingx48/karma_v2
β‘·β πππππ ππΈβ β’Ύ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)
kingx48/metasploit-framework
Metasploit Framework
kingx48/msdorkdump
Google Dork File Finder
kingx48/nmap-nse-vulnerability-scripts
NMAP Vulnerability Scanning Scripts
kingx48/Nuclei-BurpExtension
Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
kingx48/opencti
Open Cyber Threat Intelligence Platform
kingx48/prowler
Prowler is an Open Source security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
kingx48/public-apis
A collective list of free APIs
kingx48/qiling
Qiling Advanced Binary Emulation Framework
kingx48/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
kingx48/resources-1
A curated list of different pentesting resources
kingx48/Reverse-Engineering
A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
kingx48/shosubgo
Small tool to Grab subdomains using Shodan api.
kingx48/sqlmap
Automatic SQL injection and database takeover tool
kingx48/sysmon-config
Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events.