nxkennedy Goto Github PK
Name: Nolan B. Kennedy
Type: User
Name: Nolan B. Kennedy
Type: User
This repository will serve as the "master" repo containing all trainings and tutorials done in preperation for OSWE in conjunction with the AWAE course. This repo will likely contain custom code by me and various courses.
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
A list of interesting payloads, tips and tricks for bug bounty hunters.
Simple script to test for clickjacking
Scripts to Parse Cofense/PhishMe Raw Exports
Tool for comparing a list of email addresses to the haveibeenpwned database to determine if they have been compromised in a public breach
Companion script to Compromised (https://github.com/nxkennedy/compromised). Compares list of breached accounts to Active Directory dump of 'Last Password Change' dates.
Dict lists using in fuzzing.
An XML External Entity Injection (XXE) vulnerability in the Management System (console) of BlackBerry AtHoc versions earlier than 7.6 HF-567 could allow an attacker to potentially read arbitrary local files from the application server or make requests on the network by entering maliciously crafted XML in an existing field.
deephack
Domain Password Audit Tool for Pentesters
Port of eternal blue exploits to powershell
Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Cobalt Strike 3.x.
Malware source code samples leaked online uploaded to GitHub for those who want to analyze the code.
miscellaneous scripts in mostly working order
Download reports via the Nessus API
Automatically dump tailored reports for each asset or site in your Nexpose installation using the Nexpose API
Sheds light on asset detection accuracy by determining unique MACs found, assets missing MACs, dupes, and the 10 most common dupes.
OSINT Framework
OSWE Preparation
OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and pending test cases.
PowerShell Runspace Post Exploitation Toolkit
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
A simple Python wrapper for the Amazon.com Product Advertising API
A simple Python wrapper for the Verodin Director API
Remote Administration Tool for Windows
Templates to extract failed DISA STIG checks from Nessus scan reports parsed by Risu
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.