Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP, DNS, Elastic, Network, Virtualization. DevOps Interview Questions

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readines…

OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.

Automated Adversary Emulation Platform

Example projects using the AWS CDK

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.

Python Script to add OpenGapps, Magisk, libhoudini translation library and libndk translation library to waydroid !

Bypass firewall for traffic forwarding using webshell 一款使用webshell进行流量转发的出网工具

Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.

Dig Vulnerabilities in the BlackBox

Tunna is a set of tools which will wrap and tunnel any TCP communication over HTTP. It can be used to bypass network restrictions in fully firewalled environments.

BloodyAD is an Active Directory Privilege Escalation Framework

🚨 CVE-2023-45866 - BlueDucky Implementation (Using DuckyScript) 🔓 Unauthenticated Peering Leading to Code Execution (Using HID Keyboard)

Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.

Standalone binaries for Linux/Windows of Impacket's examples

A tool to make socks connections through HTTP agents

Penelope Shell Handler

Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound

Password spraying and bruteforcing tool for Active Directory Domain Services

PHP CGI Argument Injection (CVE-2024-4577) Remote Code Execution PoC

Impacket is a collection of Python classes for working with network protocols.

Command line interface for keepass database

Vulnerabilities exploitation examples, python

convert specific strace output file to pcap using scapy