JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.

Hackbat repository

A tool designed to hook into Windows applications and output named (and anonymous?) pipe traffic.

🎤 A collection of presentation materials for my public talks.

MITRE Caldera™ for OT Plugins & Capabilities

All the labs in this repository simulate real world bugs I found in the wild

PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.

Simple (relatively) things allowing you to dig a bit deeper than usual.

Azure deployment template for the excellent hashcat password recovery tool.

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

Burp Suite Certified Practitioner Exam Study

Automatic SSTI detection tool with interactive interface

Checks if files is accessible based on the source code.

Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API related vulnerabilities.

Burp Extension for a passive scanning JS files for endpoint links.

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Mufasa is a powerful comment scraper , mufasa can automatically scrape comments from Main Page, Javascript and CSS files used by a website.

socksh(v3.0) automatically scrapes socks5 proxies from spyones list and can then also add alive proxies to proxychains.conf file in matter of seconds..{its multithreaded}

Hack South is a South African based collective of infosec professionals, security researchers and students. Coming together to share insight, advice and guidance to solve modern day security challe…

Hack-the-Box-OSCP-Preparation

A script that you can run in the background!

PenTest Methodology

edb is a cross-platform AArch32/x86/x86-64 debugger.

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.