These are the labs for my Intro class. Yes, this is public. Yes, this is intentional.

Small and highly portable detection tests based on MITRE's ATT&CK.

Modular and decentralised honeypot

🍯 T-Pot - The All In One Multi Honeypot Platform 🐝

game of active directory

Compilation of Resources from TCM's Practical Ethical Hacking Udemy Course

Compilation of Resources from TCM's OSINT Course

Compilation of Resources for TCM's Linux Privilege Escalation course

Compilation of Resources from TCM's Windows Priv Esc Udemy Course

Web recon script. No need to fear, sumrecon is here!

🔍 gowitness - a golang, web screenshot utility using Chrome Headless

Find domains and subdomains related to a given domain

pwning IPv4 via IPv6

VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data exfiltration techniques used by advanced threat actors, allo…

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Python application to decrypt Netscaler Load Balancer Persistence Cookies

Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.

A curated list of free courses & certifications.

A Powershell incident response framework

This repo contains some Amsi Bypass methods i found on different Blog Posts.

Main Sigma Rule Repository

Sysmon configuration file template with default high-quality event tracing

OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and pending test cases.

Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner

A unique automated LFi Exploiter with Bind/Reverse Shells

Local file inclusion exploitation tool

Username tools for penetration testing

Cmd.exe Command Obfuscation Generator & Detection Test Harness

A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.