Interview questions to screen offensive (red team/pentest) candidates

My collection of nmap NSE scripts

Windows Exploits

Simple php backdoor based on extension

Python Process Injection PoC Code from my SteelCon talk in 2014

DNS Sub-domain brute forcer, in Python + gevent

Some wordpress user enumeration scripts.

Run Internet Explorer 8/9/10/11/MS-Edge Virtual machines from Microsoft under Linux via VirtualBox.

Auto Root Exploit Tool

a project aim to collect CTF web practices .

OWASP CSRFGuard 3.1.0

Collection of Proof of Concepts and Potential Targets for #ShellShocker

test script for shellshocker and related vulnerabilities

🚗 A curated list of resources for learning about vehicle security and car hacking.

Non-Official Repo For Web Backdoor Compilation

Find exploits in local and online databases instantly

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

A command line interface to Evernote

Convert plain text notes to an Evernote .enex file

Exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor, exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js.

Say thanks to people who wish you on your birthday on Facebook

How to use a DigiSpark like a RubberDucky

My collection of metasploit auxiliary post-modules

Collection of miscellaneous portable C snippets.

Black Hat Python Labs

Solutions to a variety of Capture The Flag challenges from different competitions.

Pure-Python implementation of AES block-cipher and common modes of operation.

CEHv9 - Practice Exam Questions with Answers

My study material for CEHv9

📕 Both personal and public notes for EC-Council's CEHv10 312-50, because it's thousands of pages/slides of boredom, and a braindump to many