nu11pointer
Follow
Lists (24)
🕸️ ACTIVE DISCOVERY & FUZZING
☁️ CLOUD
🔑 CRACKING & BRUTEFORCING
🪙 CRYPTOGRAPHY
🧩 DEVELOPMENT
🚧 EVASION
AV/IDS/IPS/EDR/XDR/MDR Evasion💥 EXPLOITATION
🚓 FORENSICS
Malware Analysis; Reverse Engineering; Binary Patching; Steganography; Threat Inteligence; Obfuscation; etc😷 MALWARE
Samples; Source Code; Decompiled; Binaries#️⃣ MISC & UTILS
🌎 NETWORKING
Network Exploitation; Network Configuration; Active Directory💻 OS
OSINT
🧑🤝🧑 PASSIVE RECON & OSINT
🚪 POST-EXPLOITATION
📟 PWN
Binary ExploitationRED TEAMING
📚 RESOURCES
🔐 SECURITY
🆔 SERVICE ENUMERATION
Non-web enumeration; Service Enumeration; Subdomain Finding; Etc🧑🦲 SOCIAL ENGINEERING
☕ VULNERABILITY SCANNING
Non-Web Vulnerability Scanning🌐 WEB SCANNERS
Web Vulnerability Scanning - CMS; Misconfigurations; Etc🗒️ WORDLISTS
Stars
Monitor linux processes without root permissions
HashCheck Shell Extension for Windows with added SHA2, SHA3, and multithreading; originally from code.kliu.org
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
A python script that finds endpoints in JavaScript files
SMTP user enumeration via VRFY, EXPN and RCPT with clever timeout, retry and reconnect functionality.
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
Tools to work with android .dex and java .class files
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
🙃 A delightful community-driven (with 2,300+ contributors) framework for managing your zsh configuration. Includes 300+ optional plugins (rails, git, macOS, hub, docker, homebrew, node, php, python…
Sysmon configuration file template with default high-quality event tracing
ctfcli is a tool to manage Capture The Flag events and challenges
Offline decryption of Chrome/Edge browser passwords and cookies.
Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories, installed services, the registry and running drivers for th…
Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories, installed services and each service binaries metadata, inst…
Scan networks searching for NetBIOS information
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
AD Enum is a pentesting tool that allows to find misconfiguration through the the protocol LDAP and exploit some of those weaknesses with kerberos.
A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE ATT&CK® framework.