sanreee

sanreee's Stars

• dmaasland/dmaasland.github.io

  Language:Ruby243

• chenjj/CORScanner

  🎯 Fast CORS misconfiguration vulnerabilities scanner

  Language:Python1.1k180

• balgan/binaryedge-cheatsheet

  A list of queries and actions that I repeat over and over again

  6513

• m4ll0k/SecretFinder

  SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files

  Language:Python2.1k383

• ION28/BLUESPAWN

  An Active Defense and EDR software to empower Blue Teams

  Language:C++1.2k170

• m4ll0k/BBTz

  BBT - Bug Bounty Tools (examples💡)

  Language:Python1.7k476

• Integration-IT/Active-Directory-Exploitation-Cheat-Sheet

  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

  Language:PowerShell2.5k504

• ncsc-fi/minion-rules

  Minion rules for DFIR work.

  61

• Elemental-attack/Elemental

  Elemental - An ATT&CK Threat Library

  Language:HTML31653

• maldevel/intelspy

  Perform automated network reconnaissance scans

  Language:Python22348

• TheBinitGhimire/Web-Shells

  Some of the best web shells that you might need!

  Language:PHP331155

• jhaddix/tbhm

  The Bug Hunters Methodology

  4k810

• mitre/cti

  Cyber Threat Intelligence Repository expressed in STIX 2.0

  1.8k422

• microsoft/Microsoft-365-Defender-Hunting-Queries

  Sample queries for Advanced hunting in Microsoft 365 Defender

  Language:Jupyter Notebook1.9k539

• iGotRootSRC/Dorkers

  Dorks for Google, Shodan and BinaryEdge

  14331

• 1N3/Goohak

  Automatically Launch Google Hacking Queries Against A Target Domain

  Language:Shell717180

• pinnace/burp-jwt-fuzzhelper-extension

  JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.

  Language:Python9821

• minimaxir/big-list-of-naughty-strings

  The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

  Language:Python46.8k2.1k

• hakluke/hakrawler

  Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

  Language:Go4.6k504

• GerbenJavado/LinkFinder

  A python script that finds endpoints in JavaScript files

  Language:Python3.8k608

• elkokc/reflector

  Burp plugin able to find reflected XSS on page in real-time while browsing on site

  Language:Java1.1k162

• lc/gau

  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

  Language:Go4.1k462

• itm4n/FullPowers

  Recover the default privilege set of a LOCAL/NETWORK SERVICE account

  Language:C++58488

• P4T12ICK/Sigma2SplunkAlert

  Converts Sigma detection rules to a Splunk alert configuration.

  Language:Python10721

• ropnop/windapsearch

  Python script to enumerate users, groups and computers from a Windows domain through LDAP queries

  Language:Python815150

• Tib3rius/AutoRecon

  AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

  Language:Python5.2k890

• ropnop/kerbrute

  A tool to perform Kerberos pre-auth bruteforcing

  Language:Go2.7k424

• BishopFox/GadgetProbe

  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.

  Language:Java59095

• aarju/Kibana_ForensicDashboards

  Dashboards for conducting forensic investigation using windows events in Kibana

  172

• OTRF/ThreatHunter-Playbook

  A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

  Language:Python4.1k816