GoogD0rker
Note: Going through a full re-write of the tooling so the current versions in the repo do not work!BugBountyTemplates
A collection of templates for bug bounty reportingCVE-2020-1350_HoneyPoC
HoneyPoC: Proof-of-Concept (PoC) script to exploit SIGRed (CVE-2020-1350). Achieves Domain Admin on Domain Controllers running Windows Server 2000 up to Windows Server 2019.DockerAttack
Various Tools and Docker ImagesWordlists
Various Payload wordlistsBloodhound-CustomQueries
Custom Queries - Brought Up to BH4.1 syntaxstatic-tools
Static compiled binaries + scripts ready to use on systemsBurpFeed
Hacked together script for feeding urls into Burp's SitemapAzureAttackKit
Collection of Azure Tools to Pull down for Attacking an Environment + quick tips and other useful informationXSSPayloads
Cross Site Scripting Payloads -- VariationsF5-CVE-2022-1388-Exploit
Exploit and Check Script for CVE 2022-1388RandomScripts
Random Shell Scripts and other ideas I have along the wayCVE-2021-22893_HoneyPoC2
DO NOT RUN THIS.AttackDeploy
Scripts for Deploying new serverWindowsHardeningScript
Some settings stolen from multiple scripts @ZephrFishGoogD0rk
Stompy
Timestomp Tool to flatten MAC times with a specific timestampAutoHoneyPoC
AutoPoC Generator HoneyPoCCVE-2023-20198-Checker
CVE-2023-20198 & 0Day Implant ScannerExch-CVE-2021-26855
CVE-2021-26855: PoC (Not a HoneyPoC for once!)CVE-2020-16898
HoneyPoC 2.0: Proof-of-Concept (PoC) script to exploit IPv6 (CVE-2020-16898).Blog_Backup
A repository with various tutorials on how to do things in Pentesting, setup environments and other thingsCVE-2021-41773-PoC
SandboxSpy
Code for profiling sandboxes - Initially an idea to profile sandboxes, the code is written to take enviromental variables and send them back in a Base32 string over HTTP to an endpoint.NessusPreFlight
Nessus Preflight(NPF) Check for local and remote systems. Essentially sets three registry keys and restarts a service to allow nessus to scan a machinePotUtils
CVE-2021-28480_HoneyPoC3
DO NOT RUN THIS.MoveIT-WebShellCheck
Autopeeper
Automated Screenshot ToolXSS
A collection of XSS Attack vectorsMediaCenterSetup
A setup script for Plex, Sonarr, Radarr & Jackettxss-proxy
BeEF-inspired XSS proxy serviceNotProxyShellScanner
Python implementation for NotProxyShell aka CVE-2022-40140 & CVE-2022-41082PurpleTeamWorkshop-LabManual
Purple Team Workshop by @jorgeorchillesHeadlessBounties
A shell script that bundles Eyewitness and Sublist3r to create a great fingerprinting toolZephrFish
LogsSteelcon
CSVInjectionPayloads
A list of various ways of injecting payloads for CSV InjectionOldGold
Sysadmin ToolsPS-Scripts
Useful scripts for labsDoNotRunMe
Random-Yara-Rules
A collection of yara rules I've gathered over the years :-)CVE-2021-22986_Check
CVE-2021-22986 Checker Script in Python3Exch-CVE-2021-26855_Priv
patched to workMailgun-python
Python Wrapper for sending email with mailgunLegacyResearch
zephrfish.github.io
zsec backup blogWebSocketsAreFun
FAFO with WebSocketscsc_cypher
Cyber Security Challenge Cipher Challengerengine
reNgine is an automated reconnaissance framework meant for gathering information during penetration testing of web applications. reNgine has customizable scan engines, which can be used to scan the websites, endpoints, and gather information.ghostDebian
GhostDeployment Script for Debianredsocial
SSH_Notify
Different Scripts for SSH hardening blogWriteups
Various write-ups from CTFs, fixes for things and othersCTF-Solutions
cloudathost-debian
Provision Script for Debian on CACBootspeed
Check the boot speed of a windows machineFSMF-BurpExtension
Find Subdomains MoFo - Burp Extension WIPSub2CDN
VPNConnectScript
VPN Connection Menu Script, Created in BashLearnTheRopes
An outline as to how to get the basics nailed down before approaching information security as a careerKali_Setup
Epic Kali Script, oracle and other thinfs need to be added soon.subroot
Another subdomain bruteforcerLTR101
Repository for Breaking into Information Security: Learning the Ropes 101 (https://leanpub.com/ltr101-breaking-into-infosec)HoffPwn
Hoff in StyleIncomeTaxCalc
A basic python script that takes your weekly wage and works out how much tax you payUnlmtdCalc
A python application that takes the Value of a Cineworld Unlimited card and then works out if it's worth while you getting one based upon your film choicesLearningThings
CVE-2024-3400-Canary
Have we not learnt from HoneyPoC?xfer
ingress toolingAzureHound
configFiles
zsh stuffsSH
MultiPotato
Love Open Source and this site? Check out how you can help us