Trending repositories for topic enumeration
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
A high performance offensive security tool for reconnaissance and vulnerability scanning
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping
Python code snippets from Discrete Mathematics for Computer Science specialization at Coursera
External attack surface discovery, enumeration and reconnaissance for massive networks
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
A fast, simple, recursive content discovery tool written in Rust.
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.
A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
A fast, simple, recursive content discovery tool written in Rust.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Automated NoSQL database enumeration and web application exploitation tool.
💻 Certified ethical hacker summary in bullet points
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
Study materials for the Certified Red Team Pentesting (CRTP) exam, covering essential concepts in red teaming and penetration testing
LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping
Python code snippets from Discrete Mathematics for Computer Science specialization at Coursera
Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypas...
A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security L...
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
A fast, simple, recursive content discovery tool written in Rust.
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
💻 Certified ethical hacker summary in bullet points
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
External attack surface discovery, enumeration and reconnaissance for massive networks
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
A fast, simple, recursive content discovery tool written in Rust.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping
A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.
Roadmap for preparing for OSCP, anyone is free to use this, and also feedback and contributions are welcome
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
Roadmap for preparing for OSCP, anyone is free to use this, and also feedback and contributions are welcome
SMTP user enumeration via VRFY, EXPN and RCPT with clever timeout, retry and reconnect functionality.
🧮 SOCKS5/4/4a 🌾 validating proxy pool and upstream SOCKS5 server for 🤽 LOLXDsoRANDum connections 🎋
Python code snippets from Discrete Mathematics for Computer Science specialization at Coursera
Study materials for the Certified Red Team Pentesting (CRTP) exam, covering essential concepts in red teaming and penetration testing
Aggregated wordlist pulled from commonly used tools for discovery, enumeration, fuzzing, and exploitation.
AD Enum is a pentesting tool that allows to find misconfiguration through the the protocol LDAP and exploit some of those weaknesses with kerberos.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypas...
LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping
Username enumeration and password spraying tool aimed at Microsoft O365.
A fast, simple, recursive content discovery tool written in Rust.
A guide to help people who are new to penetration testing and are looking to gain an overview of the penetration testing process. This guide will help anyone hoping to take the CREST CRT or Offensive...
Study materials for the Certified Red Team Pentesting (CRTP) exam, covering essential concepts in red teaming and penetration testing
A PHP package for effortless Enumeration handling with Laravel Collections 📦 ✨
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
SSH Private Key Looting Wordlists. A collection of wordlists to aid in locating or brute-forcing SSH private key file names.
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
A fast, simple, recursive content discovery tool written in Rust.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping
Automated NoSQL database enumeration and web application exploitation tool.
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
onedrive user enumeration - pentest tool to enumerate valid o365 users
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
A PHP package for effortless Enumeration handling with Laravel Collections 📦 ✨
CHOMTE.SH is a powerful shell script designed to automate reconnaissance tasks during penetration testing. It utilizes various Go-based tools to gather information and identify the attack surface, mak...
Study materials for the Certified Red Team Pentesting (CRTP) exam, covering essential concepts in red teaming and penetration testing
SSH Private Key Looting Wordlists. A collection of wordlists to aid in locating or brute-forcing SSH private key file names.
Incursore came from nmapAutomator to be your personal raider while you enumerate a target.
Active Directory Penetration Testing for Red Teams
onedrive user enumeration - pentest tool to enumerate valid o365 users
Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability
An extremely effective subdomain enumeration wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.
This cheat sheet contains common enumeration and attack methods for Windows Active Directory with the use of powershell.
🧮 SOCKS5/4/4a 🌾 validating proxy pool and upstream SOCKS5 server for 🤽 LOLXDsoRANDum connections 🎋
LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping
Brutuer is an OSINT tooling, an experiment to build a reconnaissance simple app to have fun 🕵️♂️