This is your work, valued

frizb

Elite
@frizb

Windows-Privilege-Escalation. Windows Privilege Escalation Techniques and Scripts

982

Hashcat-Cheatsheet. Hashcat Cheatsheet for OSCP

628

Vanquish. Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

516

Hydra-Cheatsheet. Hydra Password Cracking Cheetsheet

427

MSF-Venom-Cheatsheet. Single Page Cheatsheet for common MSF Venom One Liners

319

Bypassing-Web-Application-Firewalls. A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockers

279

Linux-Privilege-Escalation. Tips and Tricks for Linux Priv Escalation

228

PasswordDecrypts. Handy Stored Password Decryption Techniques

163

FirmwareReverseEngineering. Notes and tools from my experiences reverse engineering firmware

148

HackingWithCurl. A list of examples and references of hacking with Bash and the Curl command

56

WordListGen. Super Simple Python Word List Generator for Fuzzing and Brute Forcing in Python

55

BloodHoundCustomQueries. List of Bloodhound Python Custom Queries which I have found to be handy on engagements

17

WindowsShells. Information Repository on Various Methods of getting shell access into a Windows machine

17

Powershell-Cheatsheet. Hand list of Powershell commands frequently used during penetration tests

15

Active-Directory-Fun. Notes on Active Directory analysis and exploitation

11

awesome-pentest-cheat-sheets. Collection of the cheat sheets useful for pentesting

10

SQLMapExamples. A list of sample SQL Map Injection Commands

10

Wordlust. Wordlust is a Password Base Wordlist for Hashcat Mutator Rules

9

WindowsMeterpreterSessionDied. Some exploits are unstable in nature and only allow for a very short shell command window. These scripts can help extend your remote shell session by quickly spawning a new reverse shell.

8

MouseJacking. MouseJacking on Kali Linux with CrazyRadio PA

7

Directory-Traversal-Toolbox. A few handy scripts for pulling important files off remote machines using a directory traversal or local file include vulnerability.

7

OSCP. Collection of things made during my OSCP journey

6

OpenSSL-Enc-By-Example. Examples of how to use openssl-enc for symmetric cipher encryption and decryption

5

Python_DES_Decryptor. A simple python script for decrypting DES that has been generated by a .NET application

5

DirtyStringInjectOneLiner. A one liner dirty string with many common injection techniques

4

atomic-red-team. Small and highly portable detection tests based on MITRE's ATT&CK.

4

CTF-Walkthroughs. A collection of CTF Walkthroughs

4

Windows-Post-Exploitation. Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

4

SSH_Sample_Keys. A collection of Public and Private SSH keys for reference purposes

3

SILENTTRINITY. A post-exploitation agent powered by Python, IronPython, C#/.NET

2

SiteMapMaker. Creates an HTML site map based on a specified base URL and a folder path. Handy for exploring for hidden content in Burp Suite if you have the application’s source code.

2

CLISerialFuzzer. Serial Connection CLI Command Jail Break Fuzzer

2

KaliTroubleshooting. Handy Tricks for Troubleshooting Kali

2

MagicPing. Python 2.7 raw socket ICMP ping to send a embedded message or a magic ping to an endpoint

2

XOR_MOAR. Simple Python Utilities Developed During CTF Events For XORing Data

2

c2. C2

1

SpookFlare. Loader, dropper generator with multiple features for bypassing client-side and network-side countermeasures.

1

VR-Industrial-Control-Room. Virtual Reality experience that transports people into an industrial control room environment.

1