adversary_emulation_library

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

algo_and_pseudo_code

Exercices d'algorithme et utilisation du pseudo-code

awesome-hacking

A collection of various awesome lists for hackers, pentesters and security researchers

awesome-vulnerable-apps

Awesome Vulnerable Applications

backbag-lab-vm

Small enough to carry on your back (Backpack) 🎒💻

bash-tp-backup

best-readme-template

An awesome README template to jumpstart your projects!

bwapp

bWAPP Docker image based on raesene/bWAPP and mattrayner/lamp

camera_hack

capsulecorp-pentest

Vagrant VirtualBox environment for conducting an internal network penetration test

cheat-sheet-es5-vs-es6

Les différences entre ES5 et ES2016

checklist-ad

cisco

Cisco Ccna

cisco-ccent-packet-tracer-ultimate-labs-icnd1-exam-preparation-labs

Code repository for Cisco CCENT Packet Tracer Ultimate Labs: ICND1 Exam Preparation Labs, Published by Packt

cloudpeler

CrimeFlare is a useful tool for bypassing websites protected by CloudFlare WAF, with this tool you can easily see the real IP of websites that have been protected by CloudFlare. The resulting information is certainly very useful for conducting further penetration testing, and analyzing websites with the same server.

cmsmap

CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.

ctf-writeups

Write-ups of the vulnhub VMs I have done, and interesting TryHackMe rooms

ctfd

CTFs as you need them

cve-2021-1675-cve-2021-3452

C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527

cve-2021-3156

cve-2021-4034-pwnkit

Self-contained exploit for CVE-2021-4034 - Pkexec Local Privilege Escalation

cve-2021-41773

The first vulnerability with the CVE identifier CVE-2021-41773 is a path traversal flaw that exists in Apache HTTP Server 2.4.49.

cve-2022-0847_dirty-pipe

Hacked up Dirty Pipe (CVE-2022-0847) PoC that hijacks a SUID binary to spawn a root shell. (and attempts to restore the damaged binary as well)

cve-2022-22718-spoolfool

Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE)

cve-2022-22965_spring4shell

A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e. the default, it is not vulnerable to the exploit. However, the nature of the vulnerability is more general, and there may be other ways to exploit it.

cve-2022-26923_ad-certificate-services

The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment with the Active Directory Certificate Services (AD CS) server role installed.

datasets

🤗 Fast, efficient, open-access datasets and evaluation metrics for Natural Language Processing and more in PyTorch, TensorFlow, NumPy and Pandas

detectionlab

Automate the creation of a lab environment complete with security tooling and logging best practices

devops-exercises

Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP, DNS, Elastic, Network, Virtualization. DevOps Interview Questions

digital-forensics-lab

Free hands-on digital forensics labs for students and faculty