Dorkify : Perform Google Dork Search
Dorkify perform Google Dork Search. Google dorking is a hacker technique that uses Google Search to find security holes in the configuration and computer code that websites use. Google Dorking involves using advanced operators in the Google search engine to locate specific strings of text within search results such as finding specific versions of vulnerable Web applications. Users can...
SLSA : Supply-chain Levels For Software Artifacts
SLSA (pronounced "salsa") is security framework from source to service, giving anyone working with software a common language for increasing levels of software security and supply chain integrity. The best way to read about SLSA is to visit slsa.dev. What's in this repo? The primary content of this repo is the docs/ directory, which contains the core SLSA specification and sources to the slsa.dev website. You can read SLSA's...
A Career as an Ethical Hacker
Much of an Ethical Hacker’s skills are put into testing security controls and perimeter penetration vulnerabilities in devices. They also broadly search a network or application for exploitable weaknesses. So, what is Ethical Hacking exactly? Today, we will quickly explore the world of Ethical Hacking and how one can become an Ethical Hacker. Alt Text: A Career as an Ethical...
How to monitor and optimize an SQL database
Are you a database admin looking for ways to make your life easier? There are plenty of effective strategies to implement and tools to use; it’s just a case of picking the right ones. To that end, here are some simple tips for monitoring and optimizing an SQL database that won’t overwhelm relative newcomers. Image Source: Pixabay Get to grips with monitoring...
PSPKIAudit : PowerShell toolkit for auditing Active Directory Certificate Services (AD CS)
PSPKIAudit is a PowerShell toolkit for auditing Active Directory Certificate Services (AD CS). It is built on top of PKISolution's PSPKI toolkit (Microsoft Public License). This repo contains a newer version of PSPKI than what's available in the PSGallery (see the PSPKI directory). Vadims Podans (the creator of PSPKI) graciously provided this version as it contains patches for several bugs. This README is only meant as a starting...
EDD : Enumerate Domain Data
EDD (Enumerate Domain Data) is designed to be similar to Power View but in .NET. Power View is essentially the ultimate domain enumeration tool, and we wanted a .NET implementation that we worked on ourselves. This tool was largely put together by viewing implementations of different functionality across a wide range of existing projects and combining them into EDD. Usage To...
Git-Secret : Go Scripts For Finding An API Key / Some Keywords In Repository
Git-Secret is a go scripts for finding an API key / some keywords in repository. Update V1.0.1 Removing some checkersAdding example file contains github dorks Screenshoot How to Install go get github.com/daffainfo/Git-Secret How to Use ./Git-Secret For path contain dorks, you can fill it with some keywords, for example keyword.txt passwordusernamekeysaccess_keys Download
LazySign – Create Fake Certs For Binaries Using Windows Binaries And The Power Of Bat Files
LazySign create fake certs for binaries using windows binaries and the power of bat files Over the years, several cool tools have been released that are capable of stealing or forging fake signatures for binary files. All of these tools however, have additional dependencies which require Go,python,... This repo gives you the opportunity of fake signing with 0 additional dependencies, all...
Brutus : An Educational Exploitation Framework Shipped On A Modular And Highly Extensible Multi-Tasking And Multi-Processing Architecture
Brutus is an educational exploitation framework shipped on a modular and highly extensible multi-tasking and multi-processing architecture. Introduction Looking for version 1? See the branches in this repository. Brutus is an educational exploitation framework written in Python. It automates pre and post-connection network-based exploits, as well as web-based reconnaissance. As a light-weight framework, Brutus aims to minimize reliance on third-party dependencies....
PickleC2 : A Post-Exploitation And Lateral Movements Framework
PickleC2 is a simple C2 framework written in python3 used to help the community in Penetration Testers in their red teaming engagements. PickleC2 has the ability to import your own PowerShell module for Post-Exploitation and Lateral Movement or automate the process. Features There is a one implant for the beta version which is powershell. PickleC2 is fully encrypted communications, protecting the confidentiality and...
.webp "Ghost – Unmasking The Intricacies Of A Remote Access Trojan")