Pinned Repositories
Course_AWS_Certified_Machine_Learning
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
RedTeaming-Tactics-and-Techniques
Red Teaming Tactics and Techniques
SecLists
SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
marcostolosa's Repositories
marcostolosa/AwesomeXSS
Awesome XSS stuff
marcostolosa/barq
barq: The AWS Cloud Post Exploitation framework!
marcostolosa/Bolt
CSRF Scanner
marcostolosa/compiler-flags-distro
Usage of enabled-by-default hardening-related compiler flags across Linux distributions
marcostolosa/exe2hex
Inline file transfer using in-built Windows tools (DEBUG.exe or PowerShell).
marcostolosa/expack-msf
Exploit Pack for Metasploit - Collection of modules gathered across time and internets
marcostolosa/filecrawler
File Crawler index files and search hard-coded credentials
marcostolosa/Fully-Undetectable-Techniques
marcostolosa/hookchain
HookChain: A new perspective for Bypassing EDR Solutions
marcostolosa/InjectMyServerlessEvent
A sample AWS Lambda code that contains a Serverless Event Injection vulnerability (OS injection).
marcostolosa/kernel-hardening-checker
A tool for checking the security hardening options of the Linux kernel
marcostolosa/knowsmore
KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync).
marcostolosa/mat2
Read-only mirror of https://0xacab.org/jvoisin/mat2
marcostolosa/metasploit-payloads
Unified repository for different Metasploit Framework payloads
marcostolosa/msfpc
MSFvenom Payload Creator (MSFPC)
marcostolosa/NixImports
A .NET malware loader, using API-Hashing to evade static analysis
marcostolosa/nord-vim
An arctic, north-bluish clean and elegant Vim theme.
marcostolosa/Origami
Packer compressing .net assemblies, (ab)using the PE format for data storage
marcostolosa/os-scripts
Personal Collection of Operating Systems Scripts
marcostolosa/owasp-skfk8-builder
OWASP SKF Kubernetes+Docker scripts forr setup & deployment 'from scratch’ with kops on AWS and/or minikube locally
marcostolosa/paimei
A reverse engineering framework written in Python.
marcostolosa/pandas-cookbook
Recipes for using Python's pandas library
marcostolosa/pwnat
The only tool/technique to punch holes through firewalls/NATs where multiple clients & server can be behind separate NATs without any 3rd party involvement. Pwnat is a newly developed technique, exploiting a property of NAT translation tables, with no 3rd party, port forwarding, DMZ, DNS, router admin requirements, STUN/TURN/UPnP/ICE, or spoofing.
marcostolosa/roop
one-click face swap
marcostolosa/skyjack
A drone engineered to autonomously seek out, hack, and wirelessly take full control over any other Parrot or 3DR drones within wireless or flying distance, creating an army of zombie drones under your control.
marcostolosa/slipstream
NAT Slipstreaming allows an attacker to remotely access any TCP/UDP services bound to a victim machine, bypassing the victim’s NAT/firewall, just by anyone on the victim's network visiting a website
marcostolosa/tosint
Tosint (Telegram OSINT) is a powerful tool designed to extract valuable information from Telegram bots and channels. It serves as an essential resource for security researchers, investigators, and anyone interested in gathering insights from various Telegram entities.
marcostolosa/Unbreakable-Botnet-C2
marcostolosa/url-to-image
PhantomJS screenshotting done right
marcostolosa/XorStringsNET
Easy XOR string encryption for NET based binaries