virgilcj Goto Github PK
Name: r3b3llion
Type: User
Twitter: r3b3llion_sec
Name: r3b3llion
Type: User
Twitter: r3b3llion_sec
Red_teaming/Pentesting notes and experiments for a real world engagements
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Active Directory Security For Red & Blue Team
Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
Active Directory Assessment and Privilege Escalation Script
An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.
All about bug bounty (bypasses, payloads, and etc)
Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities
A W.I.P Android Security Ref
A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis
Checklist of the most important security countermeasures when designing, testing, and releasing your API
🤖 A CLI application that automatically prepares Android APK files for HTTPS inspection
Apple BLE research
Intro to x86 Assembly Language.
Tools and PoCs for Windows syscall investigation.
A DLL loader with advanced evasive features
This is just an semi-automated fully working, no-bs, non-metasploit version of the public exploit code for MS17-010 AKA EternalBlue
Utility to craft HTML or SVG smuggled files for Red Team engagements
This repository will serve as the "master" repo containing all trainings and tutorials done in preperation for OSWE in conjunction with the AWAE course. This repo will likely contain custom code by me and various courses.
Advanced Windows Exploitation (AWE)/Offensive Security Exploitation Expert (OSEE) Preparation for BlackHat 2020
A curated list of amazingly awesome Burp Extensions
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
A Collection of Hacks in IoT Space so that we can address them (hopefully).
List of Awesome Red Teaming Resources
This publication is a collection of various common attack scenarios on Azure Active Directory and how they can be mitigated or detected.
Steal Net-NTLM Hashes with Bad-PDF
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.