Blessed Uyo's Projects
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
Sync all Dotfiles, Brew Binaries, Mac Apps, VSCode extensions with 1 command.
Phish password protected Excel-Files
Backend Python Flask App
Exemplary real world JSON API built with Flask (Python)
Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)
Hands-On AWS Penetration Testing with Kali Linux published by Packt
discontinued
Linux system health check shell script.
Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS
Knockout makes it easier to create rich, responsive UIs with JavaScript
Windows / Linux Local Privilege Escalation Workshop
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat and John the Ripper.
Intelligence tool but without API key
Metasploit Framework
Building my website in AWS
Pass the Hash to a named pipe for token Impersonation
Fast and customizable vulnerability scanner based on simple YAML based DSL.
Community curated list of templates for the nuclei engine to find security vulnerabilities.
A Workflow Engine for Offensive Security
🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
One rule to crack all passwords. or atleast we hope so.
A list of useful payloads and bypass for Web Application Security and Pentest/CTF