nejibnbm Goto Github PK

seclists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

sharing

Cybersecurity, Ethical Hacking, Penetration Testing, IR, Threat Hunting, OSINT, Discovery, Enumeration, Vulnerability Mapping, Exploitation Reporting, Collaboration

siem

SIEM Tactics, Techiques, and Procedures

sigma

Generic Signature Format for SIEM Systems

sigma-rules

Rules generated from our investigations.

sn1per

Automated pentest framework for offensive security experts

snort

Snort Installation and Configuration

soc

socialfish

Educational Phishing Tool & Information Collector

sqli-labs

SQLI labs to test error based, Blind boolean based, Time based.

ssrf_vulnerable_lab

This Lab contain the sample codes which are vulnerable Server-Side Request Forgery attack

static-analysis

⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.

static-binaries

Various *nix tools built as statically-linked binaries

stormspotter

Azure Red Team tool for graphing Azure and Azure Active Directory objects

subfinder

SubFinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.

sublist3r

Fast subdomains enumeration tool for penetration testers

svn-extractor

simple script to extract all web resources by means of .SVN folder exposed over network.

sysmon-config

Sysmon configuration file template with default high-quality event tracing

sysmon-modular

A repository of sysmon configuration modules

telerat

Telegram RAT written in Python

th3inspector

Th3Inspector 🕵️ Best Tool For Information Gathering 🔎

the-art-of-subdomain-enumeration

This repository contains all the supplement material for the book "The art of sub-domain enumeration"

theharvester

E-mails, subdomains and names Harvester - OSINT

thezoo

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

threat-intel

Archive of publicly available threat INTel reports (mostly APT Reports but not limited to).

threathunter-playbook

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

tram

TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE ATT&CK®.

trufflehog

Searches through git repositories for high entropy strings and secrets, digging deep into commit history

twapt

Deploy your own lab of web application penetration testing with docker and docker-compose, webgoat, dvwap, bwapp and Juice Shop

vectr

VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios