resources.md

Lists

• https://github.com/D4nk0St0rM/ethical_hacker_lists

Some Gems

• https://github.com/jhaddix?tab=repositories

Infrastructure

• https://github.com/mantvydasb/Red-Team-Infrastructure-Automation

Recon - OSINT - Human Exploitation

• Credentials
• Weleakinfo
• Dehashed
• https://leakcheck.io/
• Haveibeenpwned
• The Harvester
• Search
  • https://intelx.io/tools
  • http://www.facesaerch.com/
  • https://securitytrails.com/
  • https://www.shodan.io/
  • https://grayhatwarfare.com/
  • https://hunter.io/
  • https://www.voilanorbert.com/
  • https://spydialer.com/
  • https://www.searchmy.bio/
  • https://snapmap.knightlab.com/#top
  • https://www.wolframalpha.com/input/?i=report
  • https://lucksi.github.io/Mr.Holmes/

SocEng

• https://getgophish.com/
• https://www.maltego.com/
• https://le-tools.com/
• https://github.com/xHak9x/SocialPhish
• https://github.com/mxrch/GHunt
• https://commun.it/
• https://www.ired.team/offensive-security/initial-access/phishing-with-ms-office
• https://github.com/D4nk0St0rM/osint_stuff_tool_collection
• https://www.spiderfoot.net/hx/
• http://geosocialfootprint.com/
• https://onemilliontweetmap.com/
• https://www.omnisci.com/demos/tweetmap
• https://www.twiangulate.com/search/
• https://reddit-user-analyser.netlify.app/
• https://cse.google.com/cse?cx=006368593537057042503:efxu7xprihg#gsc.tab=0
• https://github.com/tejado/telegram-nearby-map
• https://chrome.google.com/webstore/detail/findthatlead/lkpekgkhmldknbcgjicjkomphkhhdkjj?hl=en-GB
• https://watools.io/
• https://github.com/tejado/telegram-nearby-map
• https://github.com/ItIsMeCall911/Awesome-Telegram-OSINT
• https://github.com/Malfrats/xeuledoc

Recon - Other Intel

• https://crt.sh/
• https://nitinpandey.in/ihunt/#
• https://github.com/infosec-au/altdns
• https://github.com/imthaghost/goclone
• https://github.com/Josue87/gotator
• https://github.com/infosec-au/altdns
• https://github.com/blechschmidt/massdns
• https://github.com/smicallef/spiderfoot
• https://github.com/lanmaster53/recon-ng
• https://spyse.com/
• https://github.com/jkakavas/creepy
• https://github.com/khast3x/h8mail
• https://github.com/tomnomnom/assetfinder
• https://github.com/tomnomnom/waybackurls
• https://github.com/Screetsec/Sudomy
• https://github.com/m4ll0k/BBTz/blob/master/favihash.py
• http://ptrarchive.com/
• https://github.com/OWASP/Amass
• https://github.com/Tib3rius/AutoRecon

apt-get install

• https://github.com/D4nk0St0rM/kali_instance_setup/blob/main/app-install.list

git clone

• https://github.com/swisskyrepo/PayloadsAllTheThings
• https://github.com/khast3x/h8mail
• https://github.com/21y4d/nmapAutomator.git
• https://github.com/TheRook/subbrute.git
• https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite.git
• https://github.com/aboul3la/Sublist3r.git
• https://github.com/OJ/gobuster.git
• https://github.com/AonCyberLabs/Windows-Exploit-Suggester.git

With physical access

• https://github.com/hak5darren/USB-Rubber-Ducky
• https://blog.hartleybrody.com/rubber-ducky-guide/
• https://github.com/Screetsec/Pateensy

Scanning, sniffing, automation

• https://github.com/bettercap/bettercap
• https://github.com/threat9/routersploit
• https://github.com/nccgroup/autopwn
• https://github.com/1N3/Sn1per
• https://github.com/byt3bl33d3r/CrackMapExec
• https://github.com/Cn33liz/p0wnedShell
• https://github.com/archerysec/archerysec
• https://github.com/vulnersCom/nmap-vulners
• https://github.com/m4ll0k/AutoNSE
• https://github.com/v3n0m-Scanner/V3n0M-Scanner
• https://github.com/zdresearch/OWASP-Nettacker
• https://github.com/rvrsh3ll/SharpSMBSpray

Subdomains

• https://github.com/nsonaniya2010/SubDomainizer
• https://github.com/Cillian-Collins/subscraper
• https://github.com/TheRook/subbrute.git
• https://github.com/aboul3la/Sublist3r.git
• https://github.com/projectdiscovery/subfinder
• https://github.com/Findomain/Findomain
• https://github.com/shmilylty/OneForAll
• https://github.com/tomnomnom/assetfinder

Website clone

• wget -mk -nH
• https://github.com/imthaghost/goclone
• https://github.com/trustedsec/social-engineer-toolkit

Web App

• https://github.com/OJ/gobuster.git
• https://portswigger.net/burp
• https://github.com/snoopysecurity/awesome-burp-extensions
• https://github.com/wpscanteam/wpscan
• https://github.com/s0md3v/XSStrike
• https://github.com/OWASP/joomscan
• nikto -h
• whatweb -a 4
• wapiti -u
• W3af
• zaproxy
• nuclei -t nuclei-templates
• https://nmap.org/nsedoc/scripts/http-waf-detect.html
• https://github.com/EnableSecurity/wafw00f
• https://book.hacktricks.xyz/pentesting/pentesting-web/web-api-pentesting
• https://gist.github.com/yassineaboukir/8e12adefbd505ef704674ad6ad48743d
• Dirb
• Dirbuster
• Dirsearch
• Gobuster
• Feroxbuster
• wfuzz
• ffuf
• https://www.ired.team/offensive-security-experiments/offensive-security-cheetsheets/sql-injection-xss-playground
• https://github.com/swisskyrepo/PayloadsAllTheThings

Network

• nmap
• https://github.com/21y4d/nmapAutomator.git
• https://github.com/scipag/vulscan
• https://github.com/robertdavidgraham/masscan
• https://book.hacktricks.xyz/pentesting/pentesting-network#discovering-hosts-from-the-outside
• https://github.com/vincentcox/bypass-firewalls-by-DNS-history
• https://github.com/OWASP/Nettacker
• https://blog.detectify.com/2019/07/31/bypassing-cloudflare-waf-with-the-origin-server-ip-address/
• https://github.com/gwen001/vhost-brute
• https://pentest-tools.com/information-gathering/find-virtual-hosts

WIFI Hacking

• https://book.hacktricks.xyz/pentesting/pentesting-network/wifi-attacks

PCAP search

• https://github.com/lgandx/PCredz
• https://github.com/DanMcInerney/net-creds
• https://github.com/Srinivas11789/PcapXray

Code and Cloud

• https://searchcode.com/
• https://github.com/jordanpotti/CloudScraper
• https://github.com/initstring/cloud_enum
• https://github.com/projectdiscovery/cloudlist

General

• https://book.hacktricks.xyz/
• https://www.ired.team/
• https://github.com/mantvydasb/RedTeaming-Tactics-and-Techniques

Exploit hosting

• https://github.com/kgretzky/pwndrop
• https://github.com/sc0tfree/updog

Exploit / Priv Esc

• https://github.com/AonCyberLabs/Windows-Exploit-Suggester.git
• https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite.git

Bruteforce

• https://github.com/x90skysn3k/brutespray
• John
• Hashcat
• https://github.com/InfosecMatter/default-http-login-hunter

Clone & Capture

• SMS
• RFID
• https://scund00r.com/all/rfid/tutorial/2018/07/12/rfid-theif-v2.html
• https://bishopfox.com/blog/tastic-rfid-thief-silent-deadly
• https://hackaday.com/2013/11/03/rfid-reader-snoops-cards-from-3-feet-away/

Tunnels

• https://github.com/sshuttle/sshuttle
• https://github.com/jpillora/chisel
• Proxychains
• https://github.com/klsecservices/rpivot
• https://github.com/D4nk0St0rM/pentesting_ethical_hacking/blob/main/method/pivoting/Pivots_SSH_Dynamic_Port_Forwarding.md
• https://github.com/klsecservices/rpivot
• https://github.com/sysdream/ligolo
• https://github.com/blackarrowsec/pivotnacci

Windows post-foothold

• https://github.com/SnaffCon/Snaffler
• Mimikatz
• https://github.com/djhohnstein/SharpShares
• https://github.com/0xthirteen/MoveKit
• https://github.com/0xthirteen/SharpRDP
• https://github.com/byt3bl33d3r/DeathStar
• https://github.com/DanMcInerney/icebreaker
• https://github.com/nettitude/Invoke-PowerThIEf
• https://github.com/checkymander/Carbuncle
• https://github.com/hlldz/pickl3
• https://github.com/shantanu561993/SharpLoginPrompt
• https://github.com/BloodHoundAD/BloodHound
• https://github.com/GhostPack/Seatbelt
• https://github.com/mdsecactivebreach/Farmer

Windows Priv Esc

• https://github.com/itm4n/PrivescCheck
• https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite/tree/master/winPEAS
• https://github.com/AlessandroZ/BeRoot
• https://github.com/rasta-mouse/Sherlock
• https://github.com/hfiref0x/UACME
• https://github.com/FatRodzianko/SharpBypassUAC
• https://github.com/AzAgarampur/byeintegrity8-uac
• https://github.com/rootm0s/WinPwnage
• https://github.com/abatchy17/WindowsExploits
• https://github.com/dafthack/HostRecon
• https://github.com/sensepost/rattler
• https://github.com/WindowsExploits/Exploits
• https://github.com/Cybereason/siofra
• https://github.com/0xbadjuju/Tokenvator
• https://github.com/MojtabaTajik/Robber
• https://github.com/411Hall/JAWS
• https://github.com/GhostPack/SharpUp
• https://github.com/GhostPack/Seatbelt
• https://github.com/A-mIn3/WINspect
• https://github.com/hausec/ADAPE-Script
• https://github.com/SecWiki/windows-kernel-exploits
• https://github.com/bitsadmin/wesng
• https://github.com/itm4n/Perfusion
• https://github.com/gtworek/Priv2Admin
• https://github.com/itm4n/UsoDllLoader
• https://github.com/TsukiCTF/Lovely-Potato
• https://github.com/antonioCoco/RogueWinRM
• https://github.com/antonioCoco/RoguePotato
• https://github.com/itm4n/PrintSpoofer
• https://github.com/BeichenDream/BadPotato
• https://github.com/zcgonvh/EfsPotato
• https://github.com/antonioCoco/RemotePotato0
• https://github.com/itm4n/FullPowers

Linux Priv Esc

• https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite/tree/master/linPEAS
• https://github.com/mzet-/linux-exploit-suggester
• https://github.com/rebootuser/LinEnum
• https://github.com/diego-treitos/linux-smart-enumeration
• https://github.com/CISOfy/lynis
• https://github.com/AlessandroZ/BeRoot
• https://github.com/future-architect/vuls
• https://github.com/ngalongc/AutoLocalPrivilegeEscalation
• https://github.com/b3rito/yodo
• https://github.com/belane/linux-soft-exploit-suggester
• https://github.com/sevagas/swap_digger
• https://github.com/NullArray/RootHelper
• https://github.com/NullArray/MIDA-Multitool
• https://github.com/initstring/dirty_sock
• https://github.com/jondonas/linux-exploit-suggester-2
• https://github.com/sosdave/KeyTabExtract
• https://github.com/DominicBreuker/pspy
• https://github.com/itsKindred/modDetective
• https://github.com/nongiach/sudo_inject
• https://github.com/Anon-Exploiter/SUID3NUM
• https://github.com/nccgroup/GTFOBLookup
• https://github.com/TH3xACE/SUDO_KILLER
• https://raw.githubusercontent.com/sleventyeleven/linuxprivchecker/master/linuxprivchecker.py
• https://github.com/inquisb/unix-privesc-check
• https://github.com/hc0d3r/tas
• https://github.com/SecWiki/linux-kernel-exploits
• https://github.com/initstring/uptux
• https://github.com/andrew-d/static-binaries
• https://github.com/liamg/traitor

Windows Credential Harvesting

• https://github.com/gentilkiwi/mimikatz
• https://github.com/GhostPack/SafetyKatz
• https://github.com/Flangvik/BetterSafetyKatz
• https://github.com/GhostPack/Rubeus
• https://github.com/ShutdownRepo/targetedKerberoast
• https://github.com/Arvanaghi/SessionGopher
• https://github.com/peewpw/Invoke-WCMDump
• https://github.com/tiagorlampert/sAINT
• https://github.com/AlessandroZ/LaZagneForensic
• https://github.com/eladshamir/Internal-Monologue
• https://github.com/djhohnstein/SharpWeb
• https://github.com/moonD4rk/HackBrowserData
• https://github.com/mwrlabs/SharpClipHistory
• https://github.com/0x09AL/RdpThief
• https://github.com/chrismaddalena/SharpCloud
• https://github.com/djhohnstein/SharpChromium
• https://github.com/rxwx/chlonium
• https://github.com/V1V1/SharpScribbles
• https://github.com/securesean/DecryptAutoLogon
• https://github.com/G0ldenGunSec/SharpSecDump
• https://github.com/EncodeGroup/Gopher
• https://github.com/GhostPack/SharpDPAPI
• https://github.com/Hackndo/lsassy
• https://github.com/aas-n/spraykatz
• https://github.com/b4rtik/SharpKatz
• https://github.com/login-securite/DonPAPI
• https://github.com/Barbarisch/forkatz
• https://github.com/skelsec/pypykatz

Linux Credential Harvesting

• https://github.com/huntergregal/mimipenguin
• https://github.com/n1nj4sec/mimipy
• https://github.com/dirtycow/dirtycow.github.io
• https://github.com/mthbernardes/sshLooterC
• https://github.com/blendin/3snake
• https://github.com/0xmitsurugi/gimmecredz
• https://github.com/TarlogicSecurity/tickey

Password lists

• Rockyou2021
• cewl
• cupp
• cupp guide
• kwprocesser
• bopscrk
• mentalist
• BEWGor
• pydictor
• g0tm1lk
• FUZZING - SecLists
• FUZZING - FuzzDB
• DOMAIN - Easylist
• DOMAIN - Fanboy/Adblock
• DICTIONNARY - English Words
• DICTIONNARY - Probable Wordlists
• DICTIONNARY - Most common English words from Google sorted by frequency
• DNS - Cisco Umbrella Top 1 million
• DNS - Cisco Umbrella Top TLDs
• DNS - Alexa Top 1 million
• DOMAIN - FilterLists
• PASSWORD - OpenWall
• PASSWORD - CrackStation
• PASSWORD - g0tmi1k's blog
• PASSOWRD - Skull Security
• WORDLIST - Hashcrack
• WORDLIST - md5this
• WORDLIST - Packet Storm
• FIRST & LAST NAMES - philipperemy
• WPA2-Wordlists
• https://github.com/ihebski/DefaultCreds-cheat-sheet
• https://github.com/danielmiessler/SecLists/blob/master/Passwords/Default-Credentials/default-passwords.csv
• https://www.cirt.net/passwords
• https://many-passwords.github.io/

Fake upgrade

• https://github.com/infobyte/evilgrade

Binaries

• https://github.com/andrew-d/static-binaries

Bug bounty

• https://github.com/arkadiyt/bounty-targets-data
• https://github.com/PhotonBolt/chaospy

Tools

• https://etherpad.org/
• https://cryptpad.fr/drive/
• https://bin.privacytools.io/
• https://www.notion.so/
• https://privnote.com/

APIs

• haveibeenpwned
• fullcontact
• Builtwith
• Hashes.org
• Hunter
• Securitytrails
• Shodan
• Bing search
• Google search
• Leaklookup
• EmailRep
• scylla.sh
• Zoopla
• Companies house
• wpvulndb
• snusbase
• Peoplemon
• Dehashed
• Shodan.io
• Leaklookup
• h8mail
• discover
• hunchley
• burp
• nmapAutomator

OSINT

• Recorded Future
• Metagoofil
• Google Dorks / The Google Hacking Database
• OSINT Framework
• Checkusernames
• Security trails API
• exiftool
• Censys
• Wappanalyzer
• zoomeye
• OpenVAS
• Trace Labs OSINT VM Version 2
• Fierce
• Foca
• Unicornscan
• IVRE
• OWSAP AMASS
• Email2phonenumber
• GitGot
• Karma