5xshanks Goto Github PK
Type: User
Type: User
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
In-depth Attack Surface Mapping and Asset Discovery
This repo contains some Amsi Bypass methods i found on different Blog Posts.
The Hunt for Malicious Strings
All in One Recon Tool for Bug Bounty
This is just an semi-automated fully working, no-bs, non-metasploit version of the public exploit code for MS17-010
:computer:🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.
List of Awesome Red Teaming Resources
Open source education content for the researcher community
Examples of build scripts and unit test frameworks for various languages, and how these can be used with the Jenkins continuous integration server. Contact: @mikej888
Red Teaming & Pentesting checklists for various engagements
Linux privilege escalation exploit via snapd (CVE-2019-7304)
Dumping DPAPI credz remotely
Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation , it contains Anti-sandbox , if you run it under unperformant Virtual Machine you need to uncomment the code related to it and recompile.
Supporting Repo for ELK installation Youtube video
The ultimate WinRM shell for hacking/pentesting
Compiled Binaries for Ghostpack (.NET v4.0)
🕵️♂️ Investigate Google Accounts with emails.
Curated list of Unix binaries that can be exploited to bypass system security restrictions
This cheasheet is aimed at the CTF Players and Beginners to help them sort Hack The Box Labs on the basis of Operating System and Difficulty.
PIC lsass dumper using cloned handles
A tool for automating cracking methodologies through Hashcat from the TrustedSec team.
Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain backup keys to decrypt them.
Web browser forensics for Google Chrome/Chromium
.NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform!
PowerShell Obfuscator
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.