sdcampbell Goto Github PK

alwaysinstallelevated

Visual Studio 2019 project to create an installer to escalate privs when user and computer settings are "AlwaysInstallElevated".

bash_for_pentesters

Various Bash commands and scripts I commonly use while pentesting

bhg

Code samples for No Starch Press Black Hat Go

bhr_labs

Black Hat Ruby book | Lab files | Buy the book https://www.amazon.com/dp/B08JHSF6GT

burp-vps-proxy

This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.

cisco-config-check

Shell script to check Cisco config files, such as those downloaded with Smart Install, for sensitive information.

clioptions

An example of how to create and use CLI option parsing in C#.

coffeeshot

CoffeeShot: Avoid Detection with Memory Injection

crackjob

Crackjob is Bash shell scripts which I use to automate the process of cracking and parsing NTLM password hashes after getting Domain Admin and dumping NTDS hashes.

dockerfiles

A repository to store my Dockerfiles

flask-cors-wrap

simple flask app that wraps responses in various access-control-* headers needed for cors checks

goscan

Goscan is a fast TCP scanner I created while learning Golang.

impacket-examples-windows

The great impacket example scripts compiled for Windows

iot-wifi-ap

A WiFi AP with all HTTP and HTTP traffic proxied through port 8080 for IoT assessments.

lpha3cho-oh-my-zsh-theme-for-pentesters

Oh-my-zsh theme for pentesters which includes the date, time, and IP address for pentest logging.

metasploit-framework

Metasploit Framework

misc

mobileapp-pentest-cheatsheet

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

mount_shares

Tool to mount all readable CIFS shares of a remote system locally to a linux system. This allows the use tools like filesystem GUIs, tree, and grep to parse and examine the remote shares as if they were locally stored.

msf-exploit-loop

Metasploit resource script to read a list of desired RHOST values and run the current exploit module for each.

nessusploitable

Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv

nmapurls

Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automation pipeline.

osep-code-snippets

A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.

phplfi

Tests for LFI in PHP apps and automates the process of leveraging LFI's to recursively download source code and discover new files via includes to download additional source code files.

pypipal

Pipal in python

re-ios-apps

A completely free, open source and online course about Reverse Engineering iOS Applications.

rms-runtime-mobile-security

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime

rubyskel

scancannon

scope-resolver

Expands a pentest scope by taking an input list which includes IP addresses and parses DNS and TLS SAN hostnames and merges the results with the original scope list.