🔸 Jul 29 2021 -  APT trends report Q2 2021🔸 Apr 27 2021 -  APT trends report Q1 2021🔸 Nov 04 2020 -  APT trends report Q3

If you just have access to an AD environment but you don't have any credentials/sessions you could: Pentest the network: Scan the network, find machines and

This playbook will help you introduce effective DevSecOps practices in your company, regardless of size. We provide explicit guidance and actionable steps to

Hello! On my Twitter account @cyb_detective I post different services, techniques, tricks and notes about OSINT and more. I collect all the links

Maltego - one of most famous graphical analyze tool for OSINT. There is list of tools that handle different data and make it usable in Maltego:

PoC + vulnerability details for CVE-2022-25262 | JetBrains Hub single-click SAML response takeover

This list contains anything that can help with your Microsoft Azure architecture and quickly get you up and running when designing, planning, and implementing

noraj created CLI & library to search for default credentials among this database using DefaultCreds-Cheat-Sheet.csv. The tool is

reconDNS automates the entire process of reconnaisance for you. It outperforms the work of subdomain enumeration along with various vulnerability checks and

Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

Not a definitive list, cheatsheet, or opsec safe by any means, just things of note....

Python can be used in a lot of computer science fields. In this repository, we have put together resources for each field of computer science that are related

Red Team Toolkit - A curated list of tools that are commonly used in the field for Physical Security, Red Teaming, and Tactical Covert Entry.