qemm,javiespejo,github

malwaresourcecode

Collection of malware source code for a variety of platforms in an array of different programming languages.

mitigating-web-shells

Guidance for mitigation web shells. #nsacyber

mobileapp-pentest-cheatsheet

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

nosql-mongodb-injection-username-password-enumeration

Using this script, you can enumerate Usernames and passwords of Nosql(mongodb) injecion vulnerable web applications.

onionr

Private Decentralized Communication Network 🎭 🧅

orion

A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

payloadsallthethings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

pegasus-lime-hvnc

For the time being, project will be published like this, more as test of my protector project.

peghvncclient

This repo is just to teach owner a lesson, that life isnt Turkish soap drama and that there are consequences of behaving like soap actress ;)

phishing.database

Phishing Domains, urls websites and threats database. We use the PyFunceble testing tool to validate the status of all known Phishing domains and provide stats to reveal how many unique domains used for Phishing are still active.

php-malware-analysis

Deobfuscation and analysis of PHP malware captured by a WordPress honey pot

privilege-escalation-awesome-scripts-suite

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

prowler

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls listed here https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf and more than 100 additional checks that help on GDPR, HIPAA and other security requirements.

public-pentesting-reports

Curated list of public penetration test reports released by several consulting firms and academic security groups

scout

🔭 Lightweight URL fuzzer and spider: Discover a web server's undisclosed files, directories and VHOSTs

scoutsuite

Multi-Cloud Security Auditing Tool

sec-tools

A set of security related tools

some-tools

Some Pentest Tools. Install and keep up to date some pentesting tools. I used this to pass my OSCP exam.

supercookie

⚠️ Browser fingerprinting via favicon!

the-big-list-of-hacked-malware-web-sites

This repository contains a list of all web sites I come across that are either hacked with or purposefully hosting malware, ransomware, viruses or trojans.

the-collection

Collection of cracked malware, and ebooks

thetick

A simple backdoor for servers and embedded systems.

threatpursuit-vm

Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.

top25-parameter

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

vulnerable-oauth-2.0-applications

vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.

waf-brain

Machine Learning WAF Based

wifi-arsenal

WiFi arsenal

wishfish

Powerful Tool For Grab Front Camera Snap Using A Link

qemm Goto Github PK

qemm's Projects

Recommend Projects

Recommend Topics

Recommend Org