serve as a reverse proxy to protect your web services from attacks and exploits.

E-mails, subdomains and names Harvester - OSINT

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Cyber Security ALL-IN-ONE Platform

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

A collection of awesome security hardening guides, tools and other resources

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Rapidly Search and Hunt through Windows Forensic Artefacts

Tools and Techniques for Blue Team / Incident Response

Investigate malicious Windows logon by visualizing and analyzing Windows event log

Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss.

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

HardeningKitty and Windows Hardening Settings

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

Adversary tradecraft detection, protection, and hunting

The goal of this repository is to document the most common techniques to bypass AppLocker.