iptables rules to only have incoming connections from the machine on TryHackMe

Collection of various WINAPI tricks / features used or abused by Malware

bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)

PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments

Alternative Shellcode Execution Via Callbacks

A curated list of awesome forensic analysis tools and resources

Get file less command execution for lateral movement.

Code samples for No Starch Press Black Hat Go

A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.

A collection of lua filters for pandoc

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A collection of awesome one-liner scripts especially for bug bounty tips.

A pentest reporting tool written in Python. Free yourself from Microsoft Word.

Detailed writeups of how I solved various infosec Capture The Flag (CTF) challenges I've played.

Purple Teaming Attack & Hunt Lab - Terraform

Defcon 28 - Red Team Village - Applied Purple Teaming - Why Can't We Be Friends

Image with the more used tools to create a pentest environment easily and quickly.

OpenVPN road warrior installer for Ubuntu, Debian, CentOS and Fedora

Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.

Fancy reverse and bind shell handler

Handy bash scripts

🔍 A collection of interesting, funny, and depressing search queries to plug into https://shodan.io/ 👩‍💻

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Simple REST-style web service for the CVE searching

An Ansible role for installing Cobalt Strike.