Bruter is an OSINT tooling, an experiment to build a reconnaissance simple app to have fun 🕵️‍♂️

This repository contains walkthroughs of Hack The Box machines I have completed

A W3b enumeration Script

Grabbing the results from a crt.sh search

Walkthrough of VulnHub's LazySysAdmin machine — covers web enumeration, password reuse, and Linux privilege escalation.

FuzzAI is an AI-driven directory fuzzing tool that intelligently selects or generates optimized wordlists, understands folder structures, and performs fast multi-threaded scans. Built with smart filtering, automation, and SecLists integration, it streamlines security reconnaissance with precision and speed.

This repository contains walkthroughs of TryHackMe machines I have completed

This repository contains walkthroughs of Root-Me Challenges I have completed

IA: Tornado is an intermediate Linux CTF on VulnHub. Challenges include web enumeration techniques, SQL Truncation exploits, encrypted file decoding, remote code execution, and privilege escalation based on creative Caesar Cipher password guessing.

Simple CLI (Command Line Interface) that Enumerates websites for Robots.txt paths, Links and hidden Directories.

Jangow 1.0.1 VulnHub Lab Walkthrough & Exploit. A black-box boot-to-root pentest simulation focusing on external network enumeration, web application command injection, credential harvesting via config files, and local Linux kernel privilege escalation to achieve root access. Includes automated exploit scripts

Find the needle in a haystack with NitH. Discover what truly matters in your target.

Evidence-backed, frontend-only cybersecurity dashboard showcasing independent offensive, defensive, and compliance security work — featuring real attack workflows, failed and successful attempts, and an on-demand tools & commands matrix.

Phantom Strike is a 7-phase kill-chain adversary emulation framework for authorized red team and purple team engagements. Built in Bash for Kali Linux, it maps operations to MITRE ATT&CK, auto-detects environments (AD, Cloud, Web, OT/ICS), and executes evasion-first TTPs with operator safety controls and executive reporting.

Python-based asset discovery tool

Hands-on web hacking labs and writeups from various platforms

Capture The Flag (CTF) challenge involving reconnaissance, web enumeration, packet analysis, credential discovery, SQL Injection, FTP exploitation, SSH access, and privilege escalation techniques.