Lists (1)
Stars
Tips on how to write exploit scripts (faster!)
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Google SafetyNet attestation workarounds for Magisk
Latest Burpsuite Professional v2024.5.*
Docker image to exploit RCE, try for pentest methods and test container security solutions (trivy, falco and etc.)
SubOwner - A Simple tool check for subdomain takeovers.
Whoami provides enhanced privacy, anonymity for Debian and Arch based linux distributions
Zimbra - Remote Command Execution (CVE-2024-45519)
This repository will serve as the "master" repo containing all trainings and tutorials done in preperation for OSWE in conjunction with the AWAE course. This repo will likely contain custom code by…
Useful tips and resources for preparing for the AWAE exam.
A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileg…
Notes from various sources for preparing to take the OSCP, Capture the Flag challenges, and Hack the Box machines.
The Web Application Hacker's Handbook - Extra Content
ADAPT is a tool that performs automated Penetration Testing for WebApps.
A Jekyll-based theme designed for documentation and help systems. See the link for detailed instructions on setting up and configuring everything.
A minimal Jekyll Theme to host your resume (CV) on GitHub with a few clicks.
A network scanner tool, developed in Python 3 using scapy.
Easy to use Frida python binding script
Frida hook some jni functions
A Collection of Android (Samsung) Security Research References
CVE-2024-0044: a "run-as any app" high-severity vulnerability affecting Android versions 12 and 13
DNS over HTTPS / DNS over Tor / DNSCrypt client, WireGuard proxifier, firewall, and connection tracker for Android.
Application Fuzzing: Tools, Techniques, and Best Practices