mudassarshaik Goto Github PK

allthingsssrf

This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location

android-insecurebankv2

Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

auto_wordlists

awesome-bug-bounty

A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.

bugbounty-cheatsheet

A list of interesting payloads, tips and tricks for bug bounty hunters.

checklists

Red Teaming & Pentesting checklists for various engagements

containers-from-scratch

Writing a container in a few lines of Go code, as seen at DockerCon 2017 and on O'Reilly Safari

csrf-poc-generator

This HTML file creates a CSRF PoC form to any HTTP request.

dirsearch

Web path scanner

gobuster

Directory/File, DNS and VHost busting tool written in Go

golden-guide-for-pentesting

Golden Guide

impacket

Impacket is a collection of Python classes for working with network protocols.

invoke-atomicredteam

Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red-team/tree/master/atomics) of Red Canary's Atomic Red Team project.

jaws

JAWS - Just Another Windows (Enum) Script

learn365

This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.

linenum

Scripted Local Linux Enumeration & Privilege Escalation Checks

linux-exploit-suggester

Linux privilege escalation auditing tool

linux-smart-enumeration

Linux enumeration tool for pentesting and CTFs with verbosity levels

metasploit-framework

Metasploit Framework

mindmap

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

mobileapp-pentest-cheatsheet

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

mutillidae

OWASP Mutillidae II is a free, open source, deliberately vulnerable web-application providing a target for web-security enthusiast. Mutillidae can be installed on Linux and Windows using LAMP, WAMP, and XAMMP. It is pre-installed on SamuraiWTF and OWASP BWA. The existing version can be updated on these platforms. With dozens of vulnerabilities and hints to help the user; this is an easy-to-use web hacking environment designed for labs, security enthusiast, classrooms, CTF, and vulnerability assessment tool targets. Mutillidae has been used in graduate security courses, corporate web sec training courses, and as an "assess the assessor" target for vulnerability assessment software.

netbyte

Netbyte is a Netcat-style tool that facilitates probing proprietary TCP and UDP services. It is lightweight, fully interactive and provides formatted output in both hexadecimal and ASCII.

nikto

Nikto web server scanner

nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

nmapautomator

A script that you can run in the background!

oscp

Here's some resources to help you with your OSCP journey

oscp-exercise-checklist

A checklist to help students track their OSCP exercise progress.

oscp-exercises-check-list

A simple Markdown checklist for Penetration Testing with Kali Linux 2020 course exercises as part of OSCP.