pacmayop Goto Github PK

adalanche

Active Directory ACL Visualizer and Explorer - who's really Domain Admin?

arsenal

Arsenal is just a quick inventory and launcher for hacking programs

assessment-mindset

Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.

awesome-bug-bounty

A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.

awesome-pentest

A collection of awesome penetration testing resources, tools and other shiny things

awesome-pentest-cheat-sheets

Collection of the cheat sheets useful for pentesting

beginner-network-pentesting

Notes for Beginner Network Pentesting Course

bug-bounty-reference

Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature

bugbounty-cheatsheet

A list of interesting payloads, tips and tricks for bug bounty hunters.

bugbountytoolkit

A multi-platform bug bounty toolkit that can be installed on Debian/Ubuntu or set up with Docker.

burpsuite-for-pentester

command-injection-payload-list

🎯 Command Injection Payload List

cve-2022-21882

win32k LPE

cve-2022-22963-spring-core-rce

A Proof-of-Concept (PoC) of the Spring Core RCE (Spring4Shell or CVE-2022-22963) in Bash (Linux).

discover

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

empire

Empire is a PowerShell and Python 3.x post-exploitation framework.

fast-google-dorks-scan

The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widespread file types and path traversal. The 100% automated.

godot

Godot Engine – Multi-platform 2D and 3D game engine

google_dork_list

Google Dorks | Google helps you to find Vulnerable Websites that Indexed in Google Search Results. Here is the latest collection of Google Dorks. A collection of 13.760 Dorks. Author: Jolanda de Koff

jaws

JAWS - Just Another Windows (Enum) Script

kingofbugbountytips

Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..

linenum

Scripted Local Linux Enumeration & Privilege Escalation Checks

metasploit-payloads

Unified repository for different Metasploit Framework payloads

osint_stuff_tool_collection

A collection of several hundred online tools for OSINT

payloads

Git All the Payloads! A collection of web attack payloads.

payloadsallthethings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

peass-ng

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

pentest

:no_entry: offsec batteries included

pentest-guide

Penetration tests guide based on OWASP including test cases, resources and examples.

pentest-tools

Custom pentesting tools