Pinned Repositories
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
AWS-Advanced-Networking-Guide
This repository curates content that is useful to study and pass the AWS Advance Networking Speciality Certification.
C-learning
personal repo for my C++ learning journey
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
CppCoreGuidelines
The C++ Core Guidelines are a set of tried-and-true guidelines, rules, and best practices about coding in C++
ebpf
ebpf-go is a pure-Go library to read, modify and load eBPF programs and attach them to various hooks in the Linux kernel.
gitops-test-lab-resources
This repository contains the code listings, examples and other resources for the book "GitOps and Kubernetes", written by Jesse Suen, Alex Matyushentsev, Billy Yuen and Todd Ekenstam, published by Manning Publications.
kubernetes
Production-Grade Container Scheduling and Management
metasploit-framework
Metasploit Framework
pen_test_tools_script_resources
krouser's Repositories
krouser/masscan
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
krouser/ysoserial.net
Deserialization payload generator for a variety of .NET formatters
krouser/ABD
Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories
krouser/AllThingsSSRF
This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
krouser/Amass
In-depth Attack Surface Mapping and Asset Discovery
krouser/azure-mol-samples
Supporting resources for "Learn Azure in a Month of Lunches" (Manning Publications)
krouser/bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/etc) that are eligible for reports
krouser/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
krouser/chisel
A fast TCP tunnel over HTTP
krouser/dirsearch
Web path scanner
krouser/Empire
Empire is a PowerShell and Python post-exploitation agent.
krouser/exploitdb
The official Exploit Database repository
krouser/exploitdb-bin-sploits
Exploit Database binary exploits located in the /sploits directory
krouser/EyeWitness
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
krouser/gatekeeper-policies
Kubernetes admission control on Kubernetes with Gatekeeper policies.
krouser/gitrob
Reconnaissance tool for GitHub organizations
krouser/GitTools
A repository with 3 tools for pwn'ing websites with .git repositories available
krouser/H5SC
HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
krouser/hakrawler
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
krouser/jd-gui
A standalone Java Decompiler GUI
krouser/my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
krouser/pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
krouser/PowerShell
PowerShell for every system!
krouser/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
krouser/security
Stuff about it-security that might be good to know
krouser/sub.sh
Online Subdomain Detect Script
krouser/UACME
Defeating Windows User Account Control
krouser/wappalyzer
Cross-platform utility that uncovers the technologies used on websites.
krouser/ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
krouser/zaproxy
The OWASP ZAP core project