dieberge Goto Github PK
Type: User
Type: User
An Out-of-Band XXE server for retrieving file contents over FTP.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
In-depth Attack Surface Mapping and Asset Discovery
Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests
An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)
A collection of awesome penetration testing resources, tools and other shiny things
List of Awesome Red Teaming Resources
Finds unknown classes of injection vulnerabilities
A list of interesting payloads, tips and tricks for bug bounty hunters.
PowerShell Constrained Language Mode Bypass
Sandbox evasion modules written in PowerShell, Python, Go, Ruby, C, C#, Perl, and Rust.
A fast TCP/UDP tunnel over HTTP
CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection
A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator
Automated All-in-One OS Command Injection Exploitation Tool.
Some usefull Scripts and Executables for Pentest & Forensics
Cheatsheet for the commands learned in Attack and Defense Active Directory Lab
This repository aims to hold suggestions (and hopefully/eventually code) for CTF challenges. The "project" is nicknamed Katana.
🌙🦊 DalFox is an powerful open source XSS scanning tool and parameter analyzer, utility
Uility to embed XXE and XSS payloads in docx,odt,pptx,etc (OXML_XEE on steroids)
DOM XSS scanner for Single Page Applications
DotDotPwn - The Directory Traversal Fuzzer
A tool to create a JScript file which loads a .NET v2 assembly from memory.
List DTDs and generate XXE payloads using those local DTDs.
AV EVASION TECHNIQUES
The ultimate WinRM shell for hacking/pentesting
fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion bugs in webapps.
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.