Cheatsheet for the commands learned in Attack and Defense Active Directory Lab

Windows community collection for Ansible

Villain is a Windows & Linux backdoor generator and multi-session handler that allows users to connect with sibling servers (other machines running Villain) and share their backdoor sessions, handy…

PowerShell Scripts, Tools, and Modules

Ansible Playbooks for Security Onion Deployment to VMware ESXi

Sysmon configuration file template with default high-quality event tracing

CVE Alerting Platform

Covenant is a collaborative .NET C2 framework for red teamers.

The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.

Automatic tool using for crawling code to find low-hang fruit vulnerabilities - Based on OWASP Secure Code Review Guide

Windows / Linux Local Privilege Escalation Workshop

Top 100 Hacking & Security E-Books (Free Download)

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and re…

cve-search - a tool to perform local searches for known vulnerabilities

CyTrONE: Integrated Cybersecurity Training Framework

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Red Teaming Tactics and Techniques

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

This repository was created and developed by Ammar Amer @cry__pto Only. Updates to this repository will continue to arrive until the number of links reaches 10000 links & 10000 pdf files .Learn Eth…

Linux enumeration tool for pentesting and CTFs with verbosity levels

Simple shell script for automated domain recognition with some tools

The OWASP Web Security Testing Guide includes a "best practice" penetration testing framework which users can implement in their own organizations and a "low level" penetration testing guide that d…

Credentials gathering tool automating remote procdump and parse of lsass process.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

File upload vulnerability scanner and exploitation tool.

A collection of awesome security hardening guides, tools and other resources

Collection of resources for my preparation to take the OSEE certification.