cisagov / pen-testing-findings
A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that may be discovered during a penetration test.
☆238Updated 2 years ago
Alternatives and similar repositories for pen-testing-findings:
Users that are interested in pen-testing-findings are comparing it to the libraries listed below
- ☆234Updated last week
- Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)☆320Updated 3 months ago
- Find CVEs associated to Linux and public exploits on github☆117Updated last year
- This repo contains my pentesting template that I have used in PWK and for current assessments. The template has been formatted to be used…☆196Updated last month
- Repository with some necessary information for you to create your PenTest consultancy☆94Updated 2 weeks ago
- A OWASP Based Checklist With 80+ Test Cases☆139Updated 2 years ago
- A collection of companies that disclose adversary TTPs after they have been breached☆244Updated 9 months ago
- An open-source self-hosted purple team management web application.☆250Updated last week
- LOLAPPS is a compendium of applications that can be used to carry out day-to-day exploitation.☆178Updated this week
- This repository contains cutting-edge open-source security notes and tools that will help you during your Red Team assessments.☆201Updated this week
- Halberd : Multi-Cloud Attack Platform☆241Updated this week
- Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scena…☆154Updated 4 months ago
- autoNTDS is an automation script designed to simplify the process of dumping and cracking NTDS hashes using secretsdump.py and hashcat☆108Updated last year
- CSbyGB PenTips Gitbook☆103Updated this week
- This Repo serves as a collection of shared security and penetration testing resources for the cloud.☆252Updated 6 months ago
- ☆258Updated last year
- A Azure Exploitation Toolkit for Red Team & Pentesters☆167Updated last year
- A RedTeam Toolkit☆391Updated 3 months ago
- ☆49Updated last year
- Dredging up secrets from the depths of the file system☆118Updated 2 months ago
- ☆137Updated 2 months ago
- An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.☆181Updated 7 months ago
- Completely Risky Active-Directory Simulation Hub☆99Updated last year
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆223Updated 4 months ago
- ☆162Updated 10 months ago
- Websec interview questions by tib3rius answered☆306Updated last year
- Azure mindmap for penetration tests☆175Updated last year
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆604Updated 7 months ago
- ☆157Updated 3 years ago
- Nuclei templates for honeypots detection.☆196Updated last year