materaj2 Goto Github PK

ceh

Notes for CEH v10 exam (under construction)

cfworkshop

Understanding and analyzing carrier files workshop repo

chainoffools

A PoC for CVE-2020-0601

changedetection.io

changedetection.io - The best and simplest self-hosted open source website change detection monitoring and notification service. An alternative to Visualping, Watchtower etc. Designed for simplicity - the main goal is to simply monitor which websites had a text change. Open source web page change detection - Now also includes XPATH and JSON API change detection and monitoring support!

chaos

:fire: CHAOS is a PoC that allow generate payloads and control remote operating systems.

cheatsheet-god

Penetration Testing / OSCP Biggest Reference Bank / Cheatsheet

cheatsheetseries

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

checkov

Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes and other infrastructure-as-code-languages with Checkov by Bridgecrew.

cicd-goat

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.

ciscorv320dump

CVE-2019-1652 /CVE-2019-1653 Exploits For Dumping Cisco RV320 Configurations & Debugging Data AND Remote Root Exploit!

cissp

CISSP Study Materials

cloudfail

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

cloudgoat

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

cloudmapper

CloudMapper helps you analyze your Amazon Web Services (AWS) environments.

cloudpentestcheatsheets

This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.

cloudsplaining

Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized HTML report with a triage worksheet.

cobalt_strike_extension_kit

Attempting to be an all in one repo for others' userful aggressor scripts as well as things we've found useful during Red Team Operations.

codeql-uboot

command-injection-payload-list

🎯 Command Injection Payload List

command-mobile-penetration-testing-cheatsheet

Mobile penetration testing android command cheatsheet

commodity-injection-signatures

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

community-challenges

computersecurityattacks

Contains SEED Labs solutions from Computer Security course by Kevin Du.

cookie_crimes

Read local Chrome cookies without root or decrypting

cors-vulnerable-lab

Sample vulnerable code and its exploit code

corstest

A simple CORS misconfiguration scanner

cortexdocs

Documentation of Cortex

covenant

Covenant is a .NET command and control framework that aims to highlight the attack surface of .NET, make the use of offensive .NET tradecraft easier, and serve as a collaborative command and control platform for red teamers.

covenanttasks

Source for tasks I have used with Covenant

credsleaker

Credsleaker allows an attacker to craft a highly convincing credentials prompt using Windows Security, validate it against the DC and in turn leak it via an HTTP request.