A list of useful payloads and bypass for Web Application Security and Pentest/CTF

A workshop about Malware Development

A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX

Universal MCT wrapper script for all Windows 10/11 versions from 1507 to 21H2!

🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024

CrimeFlare is a useful tool for bypassing websites protected by CloudFlare WAF, with this tool you can easily see the real IP of websites that have been protected by CloudFlare. The resulting infor…

Rockyou for web fuzzing

A repository of sysmon configuration modules

Crack hashes in seconds.

Find active github forks of a repo https://git.io/vSnrC

Find leaked secrets via github search

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

Do you want to use x64dbg instead of immunity debugger? oscp eCPPTv2 buffer overflow exploits pocs

GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]

A list of interesting payloads, tips and tricks for bug bounty hunters.

A modern 64-bit position independent implant template

File formats

🐶 A curated list of Web Security materials and resources.

Markdown reporting templates and Pandoc styling references to generate sleek reports for OSCP/PWK with little effort.

A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

XSS payloads designed to turn alert(1) into P1

Small, fast tool for performing reverse DNS lookups en masse.

Takes a list of URLs and returns their HTTP response codes

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …