Pinned Repositories
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
azure_devops
Azure DevOps pipeline snippets
bbht
A script to set up a quick Ubuntu 17.10 x64 box with tools I use.
deepce
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
dlp_test
gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
hacker101
Source code for Hacker101.com - a free online web and mobile security class.
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
nabilrad's Repositories
nabilrad/AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
nabilrad/Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
nabilrad/azure_devops
Azure DevOps pipeline snippets
nabilrad/bbht
A script to set up a quick Ubuntu 17.10 x64 box with tools I use.
nabilrad/deepce
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
nabilrad/dlp_test
nabilrad/gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
nabilrad/GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
nabilrad/hacker101
Source code for Hacker101.com - a free online web and mobile security class.
nabilrad/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
nabilrad/kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
nabilrad/ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
nabilrad/LinkFinder
A python script that finds endpoints in JavaScript files
nabilrad/Markdown-Cheatsheet
The Ultimate Markdown Cheat Sheet
nabilrad/MSF-Venom-Cheatsheet
Single Page Cheatsheet for common MSF Venom One Liners
nabilrad/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
nabilrad/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
nabilrad/php-reverse-shell
nabilrad/phpbash
A semi-interactive PHP shell compressed into a single file.
nabilrad/nowafpls
Burp Plugin to Bypass WAFs through the insertion of Junk Data
nabilrad/recon_profile
nabilrad/RedTeaming-Tactics-and-Techniques
Red Teaming Tactics and Techniques
nabilrad/Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
nabilrad/Rubeus
Trying to tame the three-headed dog.
nabilrad/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
nabilrad/sliver
Adversary Emulation Framework
nabilrad/xss-payload-list
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List