PagerDuty's Incident Response Documentation.

Work in progress...

A Cheap miniture pentest trainer for Beginners

Knowledge for OSCP

A repository for using windows event forwarding for incident detection and response

Prompt Injection Primer for Engineers

CVE-2024-20338 talk for Behind The Code Talk

Materials for the workshop "Red Team Ops: Havoc 101"

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

CISSP Resources

A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that may be discovered during a penetration test.

A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.

A tool for checking if MFA is enabled on multiple Microsoft Services

Create a USB Rubber Ducky like device using a Raspberry PI Pico

CTF Archives: Collection of CTF Challenges.

C# AV/EDR Killer using less-known driver (BYOVD)

My Notes about Penetration Testing

Pākiki is an intercepting proxy designed to help penetration testers find security vulnerabilities in web or mobile applications. This repository contains the core.

All the deals for InfoSec related software/tools this Black Friday

latest version of scanners for IIS short filename (8.3) disclosure vulnerability

An IIS short filename enumeration tool

This is just an semi-automated fully working, no-bs, non-metasploit version of the public exploit code for MS17-010

Replace Splunk in your small company with this one weird trick!

A full setup guide for scam-baiting with Oracle's VirtualBox.

GregsBestFriend process injection code created from the White Knight Labs Offensive Development course

Encodes (and decodes) data as emojis

Prefetch Explorer Command Line

A list of useful payloads and bypass for Web Application Security and Pentest/CTF