pamhrituc's Stars
sherlock-project/sherlock
Hunt down social media accounts by username across social networks
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
OWASP/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
icsharpcode/ILSpy
.NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform!
jupyter/jupyter
Jupyter metapackage for installation, docs and chat
zaproxy/zaproxy
The ZAP core project
juice-shop/juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
aboul3la/Sublist3r
Fast subdomains enumeration tool for penetration testers
fuzzdb-project/fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
xmendez/wfuzz
Web application fuzzer
The-Z-Labs/linux-exploit-suggester
Linux privilege escalation auditing tool
RsaCtfTool/RsaCtfTool
RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data
cobbr/Covenant
Covenant is a collaborative .NET C2 framework for red teamers.
dirtycow/dirtycow.github.io
Dirty COW
stellar/stellar-core
Reference implementation for the peer-to-peer agent that manages the Stellar network.
andrew-d/static-binaries
Various *nix tools built as statically-linked binaries
mandiant/red_team_tool_countermeasures
netbiosX/Checklists
Red Teaming & Pentesting checklists for various engagements
S3cur3Th1sSh1t/Pentest-Tools
WebBreacher/WhatsMyName
This repository has the JSON file required to perform user enumeration on various websites.
ius/rsatool
rsatool can be used to calculate RSA and RSA-CRT parameters
hmaverickadams/TCM-Security-Sample-Pentest-Report
Sample pentest report provided by TCM Security
firefart/dirtycow
Dirty Cow exploit - CVE-2016-5195
superkojiman/onetwopunch
Use unicornscan to quickly scan all open ports, and then pass the open ports to nmap for detailed scans.
mandiant/sunburst_countermeasures
so87/OSCP-PwK
This is my cheatsheet and scripts developed while taking the Offensive Security Penetration Testing with Kali Linux course.
CiscoCXSecurity/creddump7
Static-Flow/BurpSuite-Team-Extension
This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes through your Burpsuite instance will be replicated in the history of the other testers and vice-versa!
pamhrituc/TryHackMe_Writeups
lxd-images/alpine-3-7-apache-php5-6
LXD Image: Alpine 3.7 (Apache, PHP5.6)