Giter Site home page Giter Site logo

Header

Hi there šŸ‘‹

Offsec Cybermage casting technoincendiary incantations across the internet so you can reassemble the pieces into something more impressive.

I wrote a book on recon for pentesters, bug bounty hunters and OSINT lifers recently - "Enumerating Esoteric Attack Surfaces" is the most comprehensive and esoteric tome on performing uncomfortably pervasive data sweeps against your target. The hidden attack surfaces will go from subterranean whispers of ghosts to radioactive bioluminescent glowies after you read this book.
https://www.amazon.com/Enumerating-Esoteric-Attack-Surfaces-Penetration-ebook/dp/B0CWDPHHMR

Certs

  • OSCP
  • eWPT
  • eCPPTv2 (eLearnSecurity Certified Professional Penetration Tester)
  • CompTIA Pentest+
  • Python Institute PCEP

HackerOne :: 99th percentile TryHackMe :: USA Top 10 and Global Top 50 (2021-2022)

CVEs

  • CVE-2023-3757 (critical SQLI in Rail Pass Management System Project in PHP" v 1.0)
  • CVE-2023-5303 (Multiple Stored-XSS Discovered in Online Banquet Booking System v1.0)
  • CVE-2023-5304 (Stored XSS via book-services.php)
  • CVE-2023-5305 (Stored XSS via mail.php)
  • CVE-2023-6074 (CVSS 9.8 SQLI in PHPGuruKui Restaurant Table Booking System 1.0)
  • CVE-2023-6075 (Stored XSS via Reservation Request Handler)
  • CVE-2023-6076 (CVSS 7.5 Information disclosure via booking-details.php)

Blog about Penetration Testing, Hacking and Bug Bounty: https://scumdestroy.com

TryHackMe - Scumdestroy

LinkedIn Instagram

  • šŸ”­ Iā€™m currently working on a deep, obsessive, Marianis-Trench level recon campaign against a single target web app while ignoring 135 private bug bounty program invitations (Unauth Read/write on Internal Documents x 3, rXSS and Critical Information Disclosure x 2)

  • šŸ‘Æ Iā€™m looking to collaborate on bounty programs or CTF teams!! Let's hack them to chunks!!

  • šŸŒ± Iā€™m currently researching GraphQL, Android Pentesting, Windows API/Malware Dev and the pursuit of those juicy CVEs and zero days every day.

Jann Moon's Projects

100-redteam-projects icon 100-redteam-projects

Attempt to grind out the 100 offsec project challenges, conceptualized by github user, @kurogai, at his repo [https://github.com/kurogai/100-redteam-projects]

bypass-403 icon bypass-403

A simple script just made for self use for bypassing 403

docs icon docs

Linode guides and tutorials.

fatfree-incendiary-pentest-gems icon fatfree-incendiary-pentest-gems

Amassing wealth in the form of biochemical tactical nuclear hack precision strike notes for existential fulfillment and destruction of the opps

ghost icon ghost

headless Node.js blog I publish thru heroku : scumdestroy.com

hackingthe.cloud icon hackingthe.cloud

An encyclopedia for offensive and defensive security knowledge in cloud native technologies.

illustration-portfolio icon illustration-portfolio

Minimalistic portfolio/photography site with masonry grid, page transitions and big images. Themeable with Theme UI. Includes Light/Dark mode.

js-simp-projects-101 icon js-simp-projects-101

Grinding out the necessary hours to become proficient at source code analysis in order to make the thicc bad boy CVEs drop on your crew and y'all gonna be like CVSS 10 :(

online-cv icon online-cv

A minimal Jekyll Theme to host your resume (CV)

python-learning-projects icon python-learning-projects

Just a place to dump code from python challenges, koans, CTFs, contests, online exercises, self-given homework and experiments

rw.rs icon rw.rs

Free shell account and web 1.0 hosting @ http://rw.rs/~you

warlusts icon warlusts

If you found this, you are among the truly lucky, to be given providence to my curated and often custom wordlists. Enjoy, buddy, you've earned it.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    šŸ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. šŸ“ŠšŸ“ˆšŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ā¤ļø Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.