Send phishing messages and attachments to Microsoft Teams users

onedrive user enumeration - pentest tool to enumerate valid o365 users

FreeRDP is a free remote desktop protocol library and clients

Dex to Java decompiler

Pentesting Reporting Tool

Avilla Forensics 3.0

A list of public penetration test reports published by several consulting firms and academic security groups.

a drop-in replacement for Nmap powered by shodan.io

A collection of links related to Linux kernel security and exploitation

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetN…

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

📦 Make security testing of K8s, Docker, and Containerd easier.

This is a webshell open source project

Rockyou for web fuzzing

Writeups for HacktheBox 'boot2root' machines

This repository has the unified data required to perform user enumeration on various websites. Content is in a JSON file and can easily be used in other projects.

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Automation for internal Windows Penetrationtest / AD-Security

Explorando Remote Desktop do Windows Server 2003 com o exploit Esteemaudit (MS12-020) e obtendo RCE (sem Metasploit)

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

Network Pentesting Mindmap by Caster

Windows Exploit Suggester - Next Generation

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.