Simpsonpt / AppSecEzine

Related projects: ⓘ

• netbiosX / Checklists
  Red Teaming & Pentesting checklists for various engagements
  ☆2,475Updated last month
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆2,943Updated 2 months ago
• bluscreenofjeff / Red-Team-Infrastructure-Wiki
  Wiki to collect Red Team infrastructure hardening resources
  ☆4,098Updated 5 months ago
• codingo / Reconnoitre
  A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, al…
  ☆2,102Updated last year
• six2dez / pentest-book
  ☆1,536Updated 2 weeks ago
• redhuntlabs / Awesome-Asset-Discovery
  List of Awesome Asset Discovery Resources
  ☆1,948Updated 3 months ago
• ihebski / A-Red-Teamer-diaries
  RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
  ☆1,721Updated 3 months ago
• dafthack / CloudPentestCheatsheets
  This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…
  ☆2,509Updated last year
• intrigueio / intrigue-core
  Discover Your Attack Surface!
  ☆1,350Updated last year
• adon90 / pentest_compilation
  Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios
  ☆1,317Updated last year
• jivoi / pentest
  offsec batteries included
  ☆1,492Updated 6 months ago
• m0nad / awesome-privilege-escalation
  A curated list of awesome privilege escalation
  ☆1,198Updated 3 months ago
• justinsteven / dostackbufferoverflowgood
  ☆1,374Updated 3 years ago
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,474Updated last year
• vavkamil / awesome-vulnerable-apps
  Awesome Vulnerable Applications
  ☆966Updated last month
• stealthcopter / deepce
  Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
  ☆1,176Updated 3 months ago
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆1,949Updated 2 months ago
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,299Updated 4 months ago
• bugcrowd / HUNT
  ☆2,165Updated 9 months ago
• RedSiege / EyeWitness
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆4,912Updated last month
• sagishahar / lpeworkshop
  Windows / Linux Local Privilege Escalation Workshop
  ☆1,845Updated last year
• wetw0rk / AWAE-PREP
  This repository will serve as the "master" repo containing all trainings and tutorials done in preperation for OSWE in conjunction with t…
  ☆852Updated 3 years ago
• hackerscrolls / SecurityTips
  ☆981Updated 2 years ago
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,636Updated 2 years ago
• nahamsec / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆1,895Updated 3 years ago
• pry0cc / axiom
  The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…
  ☆3,987Updated last month
• blacklanternsecurity / writehat
  A pentest reporting tool written in Python. Free yourself from Microsoft Word.
  ☆1,266Updated 4 months ago
• streaak / keyhacks
  Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
  ☆4,857Updated last month
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆4,756Updated 2 weeks ago
• initstring / cloud_enum
  Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
  ☆1,635Updated 2 months ago