Burp Suite extension to look for web vulnerabilities such as XSS, SQL and Path Traversal

Custom scan profiles for use with Burp Suite Pro

This repo contains my pentesting template that I have used in PWK and for current assessments. The template has been formatted to be used in Joplin

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A collection of awesome penetration testing resources, tools and other shiny things

List of Directory Traversal/LFI Payloads Scraped from the Internet

Free Labs to Train Your Pentest / CTF Skills

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

This repo contains some Amsi Bypass methods i found on different Blog Posts.

PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains.

Red team Interview Questions

Damn Vulnerable Web Application (DVWA)