Pinned Repositories
-Payloads_web--Cmd-Injection
🎯 Command Injection Payload List
-Payloads_web--Directory-brute-force
🎯 Directory Payload List
-Payloads_web--LFI-RFI
🎯 RFI/LFI Payload List
-Payloads_web--OPEN-retdirect
🎯 Open Redirect Payload List
-Payloads_web--SQL
🎯 SQL Injection Payload List
-Payloads_web--XXE
🎯 XML External Entity (XXE) Injection Payload List
Payloads_web--XSS
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
Reverse-Engineering
A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
VulnerableActiveDirectory
Vulnerable AD environment
tov-a's Repositories
tov-a/attack_range
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
tov-a/authz0
🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
tov-a/awesome-ctf-resources
A list of Capture The Flag (CTF) frameworks, libraries, resources and software for started/experienced CTF players 🚩
tov-a/awesome-gcp-pentesting
Tools and blogs I use to perform GCP red teams
tov-a/awesome-honeypots
an awesome list of honeypot resources
tov-a/BSCP-ExamPrep---references
This repo has Every thing related to the BSCP exam...
tov-a/Cisco-Images-for-GNS3-and-EVE-NG
Free Images for EVE-NG and GNS3 containing routers, switches,Firewalls and other appliances, including Cisco, Fortigate, Palo Alto, Sophos and more. Master the art of networking and improve your skills!, our repository provides a one-stop solution for a comprehensive hands-on experience.
tov-a/cloudfox
Automating situational awareness for cloud penetration tests.
tov-a/Dorks-collections-list
List of Github repositories and articles with list of dorks for different search engines
tov-a/galah
Galah: An LLM-powered web honeypot. Wasting attackers' time with faker-than-ever HTTP responses!
tov-a/garak
LLM vulnerability scanner
tov-a/HowToHunt
Collection of methodology and test case for various web vulnerabilities.
tov-a/john--4-wordlist
John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs
tov-a/kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
tov-a/MMSF
Massive Mobile Security Framework
tov-a/MobileHackersWeapons
Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
tov-a/nomore403
Tool to bypass 403/40X response codes.
tov-a/Offensive-Pentesting-Lab
tov-a/OSCP-Prep-reference
this is my Directory with everything preparing for OSCP
tov-a/Pentest-Everything
A collection of CTF write-ups, pentesting topics, guides and notes. Notes compiled from multiple sources and my own lab research. Topics also support OSCP, Active Directory, CRTE, eJPT and eCPPT.
tov-a/PentestingEverything
Penetration Testing For - Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting, etc...
tov-a/PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
tov-a/Red-Teaming-TTPs
Useful Techniques, Tactics, and Procedures for red teamers and defenders, alike!
tov-a/RExpository
tov-a/sliver--framework
Adversary Emulation Framework
tov-a/SQL_Injection-Techniques
Advanced SQL Injection Techniques for Bug Bounty Hunters
tov-a/test-GCP
testing for OIDC exploit cross-github action to GCP
tov-a/thc-tips-tricks-hacks-cheat-sheet
Various tips & tricks
tov-a/WebHackersWeapons
⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
tov-a/write-ups---references
my write ups. Not the prettiest, but good for future me. Thanks!