Yeah, that's it!
xen00rw Goto Github PK
Name: Will
Type: User
Bio: Cyber Security Professional. Actually doing activities like Pentesting/Red Teaming/Bug hunting
Twitter: willxenoo
Location: Brazil
Name: Will
Type: User
Bio: Cyber Security Professional. Actually doing activities like Pentesting/Red Teaming/Bug hunting
Twitter: willxenoo
Location: Brazil
All about bug bounty (bypasses, payloads, and etc)
Work in progress... Thanks for all the stars, I will try to prioritize this project :)
C2Hack, sharing tips and tricks for pentesters
A fast TCP/UDP tunnel over HTTP
Conference slides
this html file creates a csrf poc form to any http request.
Default bash that i use in my O.S.
一款信息泄漏利用工具,适用于.git/.svn/.DS_Store泄漏和目录列出
An basic python exfiltration server (HTTP) to handle with multiple files and save it local with different hash names.
Collection of useful FRIDA Mobile Scripts
Frida Scripts
A tool to dump a git repository from a website
Easier way to use advanced search syntax on common search engines like Google, Yandex, DuckDuckGo and more.
User enumeration and password bruteforce on Azure, ADFS, OWA, O365, Teams and gather emails on Linkedin
HTTPLeaks - All possible ways, a website can leak HTTP requests
A simple IMAP password sprayer
Nuclei (https://github.com/projectdiscovery/nuclei) templates for extracting juicy info from web pages
Basic javascript snippets to interact with DOM in some web services in order to extract usefull information.
A Collection of Logger++ Filters for Hunting API Vulnerabilities
Living Off The Land (LOTL) persistent Reverse shell
A tool for checking if MFA is enabled on multiple Microsoft Services
A Python implementation of dafthack's MSOLSpray. A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, if the account is locked, or if the account is disabled.
retrieve information via O365 and AzureAD with a valid cred
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
Tools and Techniques for Red Team / Penetration Testing
IIS shortname scanner written in Go
Fetches javascript file from a list of URLS or subdomains.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.