Pinned Repositories
100-redteam-projects
Projects for security students
API-SecurityEmpire
API Security Project aims to present unique attack & defense methods in API Security field
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
awesome-chaos-engineering
A curated list of Chaos Engineering resources.
awesome-java-security
Awesome Java Security Resources 🕶☕🔐
Awesome-Red-Team-Operations
Black-Tool
Install the tools and start Attacking , black-tool v5.0 ! ⬛
dev-github-test
Exegol
Fully featured and community-driven hacking environment
exploit-writing-for-oswe
Tips on how to write exploit scripts (faster!)
o-tsar's Repositories
o-tsar/awesome-chaos-engineering
A curated list of Chaos Engineering resources.
o-tsar/100-redteam-projects
Projects for security students
o-tsar/API-SecurityEmpire
API Security Project aims to present unique attack & defense methods in API Security field
o-tsar/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
o-tsar/awesome-java-security
Awesome Java Security Resources 🕶☕🔐
o-tsar/Awesome-Red-Team-Operations
o-tsar/Black-Tool
Install the tools and start Attacking , black-tool v5.0 ! ⬛
o-tsar/dev-github-test
o-tsar/Exegol
Fully featured and community-driven hacking environment
o-tsar/exploit-writing-for-oswe
Tips on how to write exploit scripts (faster!)
o-tsar/exploitation-course
Offensive Software Exploitation Course
o-tsar/golddigger
o-tsar/InfoSec-Black-Friday
All the deals for InfoSec related software/tools this Black Friday
o-tsar/iron-debian
Hardened debian linux baseimage for Docker.
o-tsar/Kubernetes-security
Kubernetes pentesting, hardening and hunting tools.
o-tsar/PurpleCloud
A little tool to play with Azure Identity - Azure Active Directory lab creation tool
o-tsar/RedTeaming_CheatSheet
Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.
o-tsar/terragoat
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
o-tsar/n0kovo_subdomains
An extremely effective subdomain wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.
o-tsar/rbac-police
Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
o-tsar/Scanners-Box
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
o-tsar/VirusTotalC2
Abusing VirusTotal API to host our C2 traffic, usefull for bypassing blocking firewall rules if VirusTotal is in the target white list , and in case you don't have C2 infrastructure , now you have a free one
o-tsar/waf-bypass
Check your WAF before an attacker does this one