Active-Directory-Exploitation-Cheat-Sheet. A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
6.7kCobalt-Strike-CheatSheet. Some notes and examples for cobalt strike's functionality
1.1kTokenPlayer. Manipulating and Abusing Windows Access Tokens.
298PatternAnalyzer. The purpose of this application is to analyze and create statistics of repetitive lock patterns that everyday users create and use. This project was created for the "security of wireless and mobile network communications" class of 2019. ICSD Department of University of Aegean.
13MyPasswords. A simple and secure password manager i created for my software engineering class.
9Awesome-CobaltStrike. cobaltstrike的相关资源汇总 / A collection of cobaltstrike resources to make you better!
5exploitation-course. Offensive Software Exploitation Course
5WindowsExploitationResources. Some random resources for certain topics of exploit development for Windows and semi-related topics
4Cheatsheet-God. Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
3Resources-for-Beginner-Bug-Bounty-Hunters. A list of resources for those interested in getting started in bug bounties
3Awesome-Bugbounty-Writeups. A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
3WinPwn. Automation for internal Windows Penetrationtest / AD-Security
3ssl_cheat_sheet.
2eBook-BypassingAVsByCSharp. eBook "Bypassing AVS by C#.NET Programming" (Free Chapters only)
2android-interview-questions. Your Cheat Sheet For Android Interview - Android Interview Questions
2Awesome-Hacking. A collection of various awesome lists for hackers, pentesters and security researchers
2AWE-OSEE-Prep. Advanced Windows Exploitation/Offensive Security Exploitation Expert (OSEE) Preparation for AWE 2020 @ BlackHat
2S1ckB0y1337.github.io. Personal InfoSec Blog
2CursedChrome. Chrome-extension implant that turns victim Chrome browsers into fully-functional HTTP proxies, allowing you to browse sites as your victims.
2BetterSafetyKatz. BetterSafetyKatz
1FALCONSTRIKE. A stealthy, targeted Windows Loader for delivering second-stage payloads(shellcode) from Github to the host machine undetected
1ntlm_theft. A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
1upx. UPX - the Ultimate Packer for eXecutables
1mssqli-duet. SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
1winchecksec. Checksec, but for Windows: static detection of security mitigations in executables
1Kage. Kage is Graphical User Interface for Metasploit Meterpreter and Session Handler
1practical-python. Practical Python Programming (course by @dabeaz)
1exploit.
1UsoDllLoader. Windows - Weaponizing privileged file writes with the Update Session Orchestrator service
1PowerSharpPack. PowerShell
1AWAE-OSWE.
1SharpeningCobaltStrike. in realtime v35/40 dotnet compiler for your linux Cobalt Strike C2. New fresh compiled and obfuscated binary for each use
1awesome_windows_logical_bugs. collect for learning cases
1FullPowers. Recover the default privilege set of a LOCAL/NETWORK SERVICE account
1Stormspotter. Azure Red Team tool for graphing Azure and Azure Active Directory objects
1dronesploit. Drone pentesting framework console
1RedRabbit. Red Team PowerShell Script
1malleable-c2. Cobalt Strike Malleable C2 Design and Reference Guide
1SessionGopher. SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.
1the-art-of-command-line. Master the command line, in one page
1RedTeam-Tactics-and-Techniques. Red Teaming Tactics and Techniques
1Empire. Empire 3.0 is a PowerShell and Python 3.x post-exploitation framework.
1