nicklemesurier

nicklemesurier's Stars

• netbiosX/Checklists

  Red Teaming & Pentesting checklists for various engagements

  2.5k509

• ChadSki/SharpNeedle

  Inject C# code into a running process

  Language:C++33571

• OWASP/owasp-mastg

  The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

  Language:Python11.9k2.4k

• ashishb/android-security-awesome

  A collection of android security related resources

  Language:Shell8.3k1.5k

• netbiosX/Pentest-Bookmarks

  Database of websites for penetration testing

  17450

• rmdavy/WordAmsiBypass

  376

• mvelazc0/defcon27_csharp_workshop

  Writing custom backdoor payloads with C# - Defcon 27 Workshop

  Language:C#1.1k267

• 0xInfection/TIDoS-Framework

  The Offensive Manual Web Application Penetration Testing Framework.

  Language:Python1.8k390

• enaqx/awesome-pentest

  A collection of awesome penetration testing resources, tools and other shiny things

  22.3k4.5k

• infosecn1nja/MaliciousMacroMSBuild

  Generates Malicious Macro and Execute Powershell or Shellcode via MSBuild Application Whitelisting Bypass.

  Language:Python497119

• OTRF/Security-Datasets

  Re-play Security Events

  Language:PowerShell1.6k237

• nettitude/xss_payloads

  Exploitation for XSS

  Language:PHP708160

• RhinoSecurityLabs/AWS-IAM-Privilege-Escalation

  A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.

  902118

• threatexpress/domainhunter

  Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names

  Language:Python1.6k290

• threatexpress/malleable-c2

  Cobalt Strike Malleable C2 Design and Reference Guide

  1.6k297

• d35ha/CallObfuscator

  Obfuscate specific windows apis with different apis

  Language:C++986177

• infosecn1nja/awesome-mitre-attack

  A curated list of awesome resources related to Mitre ATT&CK™ Framework

  591146

• pkb1s/SharpAllowedToAct

  Computer object takeover through Resource-Based Constrained Delegation (msDS-AllowedToActOnBehalfOfOtherIdentity)

  Language:C#18537

• l0ss/Grouper2

  Find vulnerabilities in AD Group Policy

  64384

• djhohnstein/ProcessReimaging

  Process reimaging proof of concept code

  Language:C++9534

• mkaring/ConfuserEx

  An open-source, free protector for .NET applications

  Language:C#2.4k380

• cobbr/Covenant

  Covenant is a collaborative .NET C2 framework for red teamers.

  Language:C#4.3k776

• bitsadmin/wesng

  Windows Exploit Suggester - Next Generation

  Language:Python4.3k571

• michaelneu/webxcel

  🤔 A REST backend built with plain VBA Microsoft Excel macros. Yes. Macros.

  Language:Visual Basic44471

• sevagas/WindowsDefender_ASR_Bypass-OffensiveCon2019

  Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.

  9328

• matterpreter/OffensiveCSharp

  Collection of Offensive C# Tooling

  Language:C#1.4k244

• mdsecactivebreach/SharpPack

  An Insider Threat Toolkit

  Language:Batchfile14934

• djhohnstein/.NET-Profiler-DLL-Hijack

  Implementation of the .NET Profiler DLL hijack in C#

  Language:C#9832

• swisskyrepo/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Language:Python62.5k14.9k

• googleprojectzero/Street-Party

  Street Party is a suite of tools that allows the RTP streams of video conferencing implementations to be viewed and modified.

  Language:C++24237