OSCP
All Useful Linux Commands (For OSCP & daily pen-testing usage)
My OSCP Pre-Preparation Phase. I'm not sure if I'll be able to afford the exam but what count's trying and learning things. I'm gonna give it a try. [Start Date: 21st March 2022]
Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss.
This a notes/handbook i made and gathered from a great resources on the internet. It consist of a very detailed cheat sheets and useful commands that every pentester use on a daily basis.
Impacket is a collection of Python classes for working with network protocols.
Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.
Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat…
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Automation for internal Windows Penetrationtest / AD-Security
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Red Teaming Tactics and Techniques
Advanced Windows Exploitation/Offensive Security Exploitation Expert (OSEE) Preparation for AWE 2020 @ BlackHat
A tool to dump the login password from the current linux user
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Windows privilege escalation (enumeration) script designed with OSCP labs (legacy Windows) in mind
A script for advanced discovery of Privileged Accounts - includes Shadow Admins
PowerShell Scripts focused on Post-Exploitation Capabilities
This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.
Python script to enumerate valid Microsoft 365 domains, retrieve tenant name, and check for an MDI instance.
Ad hoc collection of Red Teaming & Active Directory tooling.