xmco-qla's Stars
ihebski/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Z4kSec/Masky
Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory
hackerscrolls/SecurityTips
defparam/smuggler
Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
peass-ng/PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
ffuf/ffuf
Fast web fuzzer written in Go
mitmproxy/mitmproxy
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
gwen001/pentest-tools
A collection of custom security tools for quick needs.
qkaiser/cottontail
Capture all RabbitMQ messages being sent through a broker.
nccgroup/LoggerPlusPlus
Advanced Burp Suite Logging Extension
NetSPI/PowerUpSQL
PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
internetwache/GitTools
A repository with 3 tools for pwn'ing websites with .git repositories available
Bo0oM/fuzz.txt
Potentially dangerous files
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
GerbenJavado/LinkFinder
A python script that finds endpoints in JavaScript files