A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository…

Simply generates a wordpress plugin that will grant you a reverse shell once uploaded. I recommend installing Kali Linux, as msfvenom is used to generate the payload.

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

Take a list of domains and probe for working HTTP and HTTPS servers

A fuzzer for detecting open redirect vulnerabilities

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

Tool for Active Directory Certificate Services enumeration and abuse

This exploit allows to connect to the remote RemoteMouse 3.008 service to virtually press arbitrary keys and execute code on the machine.

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

Search for potential frontable domains

⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

Automatic SQL injection and database takeover tool

Use AI to translate code from one language to another.

My self coded personal website build with React.js

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

Swaks - Swiss Army Knife for SMTP

OSCP Cheat Sheet

🐧 Abuse of Google Colab for cracking hashes.

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

cURL Tool Usage for OSINT (Open-Source Intelligence)

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…

A swiss army knife for pentesting networks

🔧 Deploy customizable Active Directory labs in Azure - automatically.

AutomatedLab is a provisioning solution and framework that lets you deploy complex labs on HyperV and Azure with simple PowerShell scripts. It supports all Windows operating systems from 2008 R2 to…

A repository of sysmon configuration modules

The Hunting ELK

Payload Arsenal for Pentration Tester and Bug Bounty Hunters