Pinned Repositories
100DaysOfCloudIdeas
The purpose of this repo is to provide a list of micro-projects to help people with their Cloud Journey.
AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
abaddon
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
AD-control-paths
Active Directory Control Paths auditing and graphing tools
adPEAS
Powershell tool to automate Active Directory enumeration.
aem-hacker
syh4ck's Repositories
syh4ck/AutomatedLab
AutomatedLab is a provisioning solution and framework that lets you deploy complex labs on HyperV and Azure with simple PowerShell scripts. It supports all Windows operating systems from 2008 R2 to 2019, some Linux distributions and various products like AD, Exchange, PKI, IIS, etc.
syh4ck/awesome-cheatsheets
👩💻👨💻 Awesome cheatsheets for popular programming languages, frameworks and development tools. They include everything you should know in one single file.
syh4ck/awesome-python
A curated list of awesome Python frameworks, libraries, software and resources
syh4ck/awesome-shodan-queries
🔍 A collection of interesting, funny, and depressing search queries to plug into https://shodan.io/ 👩💻
syh4ck/Bug-Bounty-Roadmaps
Bug Bounty Roadmaps
syh4ck/bugbountytips
bugbountytips
syh4ck/BurpSuite-Team-Extension
This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes through your Burpsuite instance will be replicated in the history of the other testers and vice-versa!
syh4ck/capsulecorp-pentest
Vagrant VirtualBox environment for conducting an internal network penetration test
syh4ck/CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
syh4ck/Covenant
Covenant is a collaborative .NET C2 framework for red teamers.
syh4ck/django-DefectDojo
DefectDojo is an open-source application vulnerability correlation and security orchestration tool.
syh4ck/festin
FestIn - S3 Bucket Weakness Discovery
syh4ck/FK-AKAMAI-SOLUTIONS
Akamai 1.63 bypass
syh4ck/h4rpy
Automated WPA/WPA2 PSK attack tool.
syh4ck/Hack-Tools
The all-in-one Red Team extension for Web Pentester 🛠
syh4ck/hack-your-government
A list of governments with Vulnerability Disclosure Policies
syh4ck/IOXY
MQTT intercepting proxy
syh4ck/panos-scanner
Determine the Palo Alto PAN-OS software version of a remote GlobalProtect portal or management interface.
syh4ck/Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等,欢迎补充、完善---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
syh4ck/Pentest-Cheat-Sheets
A collection of snippets of codes and commands to make your life easier!
syh4ck/PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
syh4ck/RedELK
Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
syh4ck/shhgit
Ah shhgit! Find GitHub secrets in real time
syh4ck/SIPTorch
A "SIP Torture" (RFC 4475) testing suite.
syh4ck/ssti-payloads
🎯 Server Side Template Injection Payloads
syh4ck/Sudomy
Sudomy is a subdomain enumeration tool, created using a bash script, to analyze domains and collect subdomains in fast and comprehensive way . Report output in HTML or CSV format
syh4ck/taser
Python3 resource library for creating security related tooling
syh4ck/TIDoS-Framework
The Offensive Manual Web Application Penetration Testing Framework.
syh4ck/Tiredful-API
An intentionally designed broken web application based on REST API.
syh4ck/wifipumpkin3
Powerful framework for rogue access point attack.