Newly registered Domain Monitoring to detect phishing and brand impersonation with subdomain enumeration and source code scraping

An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRIDE methodology.

CERT Transparency Log Monitoring for brand names and mailing domain names to detect phishing and brand impersonations

Phishing catcher using Certstream

MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs

Hayabusa is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

CVE-2023-34362: MOVEit Transfer Unauthenticated RCE

IATelligence is a Python script that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&CK matrix related

A curated list of awesome OSCP resources

One Stop Anomaly Shop: Anomaly detection using two-phase approach: (a) pre-labeling using statistics, Natural Language Processing and static rules; (b) anomaly scoring using supervised and unsuperv…

Python exploit code for CVE-2021-4034 (pwnkit)

Writeups for vulnerable machines.

Tools & Interesting Things for RedTeam Ops

Web path scanner

This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.

A repository with 3 tools for pwn'ing websites with .git repositories available

Linux enumeration tool for pentesting and CTFs with verbosity levels

Automation for internal Windows Penetrationtest / AD-Security

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

Our OSCP repo: from popping shells to mental health.

Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins ⬆️ ☠️

Mind maps / flow charts to help with privilege escalation on the OSCP.

Machine Learning for Cyber Security

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

list of useful commands, shells and notes related to OSCP