Pinned Repositories
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Active-Directory-Exploitation-Cheat-Sheet-1
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
awesome-command-control
A collection of awesome Command & Control (C2) frameworks, tools and resources for post-exploitation and red teaming assessments.
Awesome-Red-Teaming
List of Awesome Red Teaming Resources
Bug-Bounty-Wordlists
bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
Checklists-Red-Team
Red Teaming & Pentesting checklists for various engagements
CloudPeler
CrimeFlare is a useful tool for bypassing websites protected by CloudFlare WAF, with this tool you can easily see the real IP of websites that have been protected by CloudFlare. The resulting information is certainly very useful for conducting further penetration testing, and analyzing websites with the same server.
dotfiles
Nuclei-Templates
rafaelcaria's Repositories
rafaelcaria/Nuclei-Templates
rafaelcaria/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
rafaelcaria/Active-Directory-Exploitation-Cheat-Sheet-1
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
rafaelcaria/awesome-command-control
A collection of awesome Command & Control (C2) frameworks, tools and resources for post-exploitation and red teaming assessments.
rafaelcaria/Awesome-Red-Teaming
List of Awesome Red Teaming Resources
rafaelcaria/Bug-Bounty-Wordlists
rafaelcaria/bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
rafaelcaria/Checklists-Red-Team
Red Teaming & Pentesting checklists for various engagements
rafaelcaria/CloudPeler
CrimeFlare is a useful tool for bypassing websites protected by CloudFlare WAF, with this tool you can easily see the real IP of websites that have been protected by CloudFlare. The resulting information is certainly very useful for conducting further penetration testing, and analyzing websites with the same server.
rafaelcaria/dotfiles
rafaelcaria/drupalgeddon2-CVE-2018-7600
rafaelcaria/exploits
rafaelcaria/git-dumper
A tool to dump a git repository from a website
rafaelcaria/HackBrowserData
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
rafaelcaria/Invoke-Obfuscation
PowerShell Obfuscator
rafaelcaria/JSScanner
Js File Scanner
rafaelcaria/kubesploit
Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
rafaelcaria/Mindmap-CrackMapExec
This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them
rafaelcaria/pspy
Monitor linux processes without root permissions
rafaelcaria/PwnKit
Self-contained exploit for CVE-2021-4034 - Pkexec Local Privilege Escalation
rafaelcaria/rafaelcaria
rafaelcaria/rafaelcaria.github.io
rafaelcaria/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
rafaelcaria/SecurityTips
rafaelcaria/SQLMutant
SQLMutant is a comprehensive SQL injection testing tool that provides several features to test for SQL injection vulnerabilities in web applications, uses various techniques to detect vulnerabilities, including pattern matching, error analysis, and timing attacks. The integration of Waybackurls and Arjun allows the tool to find additional
rafaelcaria/static-binaries
Various *nix tools built as statically-linked binaries
rafaelcaria/Taipan
Web application vulnerability scanner
rafaelcaria/TREVORproxy
A SOCKS proxy written in Python that randomizes your source IP address. Round-robin your evil packets through SSH tunnels or give them billions of unique source addresses!
rafaelcaria/vulnhub_machines_exploit
rafaelcaria/WPForce
Wordpress Attack Suite