security-testing

Automated Adversary Emulation Platform

kunpeng是一个Golang编写的开源POC框架/库，以动态链接库的形式提供各种语言调用，通过此项目可快速开发漏洞检测类的系统。

🎯 Command Injection Payload List

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses

Awesome Python Security resources 🕶🐍🔐

Hacking Toolkit

My collection of various security tools created mostly in Python and Bash. For CTFs and Bug Bounty.

secureCodeBox (SCB) - continuous secure delivery out of the box

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

A friendly car security exploration tool for the CAN bus

Awesome .NET Security Resources

🔎 shodansploit > v1.3.0

Web application vulnerability scanner

🎯 HackerTarget ToolKit - Tools And Network Intelligence To Help Organizations With Attack Surface Discovery 🎯

NERVE Continuous Vulnerability Scanner

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

Fuzz your Rust code with Google-developed Honggfuzz !

This is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder

Red Team Attack Lab for TTP testing & research