Pinned Repositories
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
ADCSKiller
An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
cloud-sniper
Cloud Security Operations Orchestrator
Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
kubesploit
Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
mitm6
pwning IPv4 via IPv6
r0secr01x's Repositories
r0secr01x/AMSITrigger
The Hunt for Malicious Strings
r0secr01x/Azure-Red-Team
Azure Security Resources and Notes
r0secr01x/azureOutlookC2
Azure Outlook Command & Control. Threat Emulation Tool for North Korean APT InkySquid / ScarCruft / APT37. TTP = Abuse Microsoft Graph API for C2 Operations.
r0secr01x/CVE-2021-38647
CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD
r0secr01x/DevSecOps
Ultimate DevSecOps library
r0secr01x/dnsrecon
DNS Enumeration Script
r0secr01x/fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
r0secr01x/KaynLdr
KaynLdr is a Reflective Loader written in C/ASM
r0secr01x/Kubernetes-Certified-Administrator
Online resources that will help you prepare for taking the CNCF CKA 2020 "Kubernetes Certified Administrator" Certification exam. with time, This is not likely the comprehensive up to date list - please make a pull request if there something that should be added here.
r0secr01x/NetLoader
Loads any C# binary in mem, patching AMSI + ETW.
r0secr01x/o365spray
Username enumeration and password spraying tool aimed at Microsoft O365.
r0secr01x/OMS-Agent-for-Linux
r0secr01x/OSCE-Complete-Guide
OSWE, OSEP, OSED
r0secr01x/pingcastle
PingCastle - Get Active Directory Security at 80% in 20% of the time
r0secr01x/postenum
Linux enumeration and privilege escalation tool.
r0secr01x/PowerShell
PowerShell functions and scripts (Azure, Active Directory, SCCM, SCSM, Exchange, O365, ...)
r0secr01x/PowerShellForPentesters
Course repository for PowerShell for Pentesters Course
r0secr01x/PowerShx
Run Powershell without software restrictions.
r0secr01x/PracticalXSSPayloads
A collection of practical XSS payloads. POC||GTFO
r0secr01x/Privesc
Windows batch script that finds misconfiguration issues which can lead to privilege escalation.
r0secr01x/RedTeam-Tactics-and-Techniques
Red Teaming Tactics and Techniques
r0secr01x/RemotePotato0
Just another "Won't Fix" Windows Privilege Escalation from User to Domain Admin.
r0secr01x/rengine
reNgine is a reconnaissance engine(framework) that does end-to-end reconnaissance with the help of highly configurable scan engines and does information gathering about the target web application. reNgine makes use of various open-source tools and makes a configurable pipeline of reconnaissance.
r0secr01x/REW-sploit
Emulate and Dissect MSF and *other* attacks
r0secr01x/SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
r0secr01x/siembol
An open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced security analytics framework.
r0secr01x/targetedKerberoast
Kerberoast with ACL abuse capabilities
r0secr01x/theHarvester
E-mails, subdomains and names Harvester - OSINT
r0secr01x/tudo
TUDO - A vulnerable PHP Web Application.
r0secr01x/turbo-intruder
Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.