This is your work, valued
RamiGPT. Autonomous Privilege Escalation using AI
859AWAE-Preparation. This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.
247CVE-2021-23017-PoC. PoC for Nginx 0.6.18 - 1.20.0 Memory Overwrite Vulnerability CVE-2021-23017
136M-Botnet. A C2 project that controls a self-propagating MS17-010 worm.
77Kali-TX. Customized Kali Linux - Ansible playbook
67BlueDucky. Incident Response (IR) tool to create a list of USB-Rubber-Ducky instructions.
56Vulnerable-AD-Lab. Automate the build of a vulnerable AD environment.
42Miner. Local Privilege Escalation Miner
32Restless. A light C# implant that bypasses Windows Firewall and Defender
266-Eyed-Spider. Post-exploitation tool collects data going out and coming into the browser and makes use of it.
23AutomatedHunter. Google Chrome Extension automates testing fundamental Web Problems via Chrome
20Tunnel-Manager. GUI manager for network tunnels developed for Command and Control systems.
17nmap-vulnerability-scan-scripts. nmap detection scripts for CVE-2022-45477, CVE-2022-45479, CVE-2022-45482, CVE-2022-45481
16HackMeGPT. Vulnerable LLM Application
14Nemo. A copy of my little beautiful malware I used in IRSeC 2019
12Android-Tester-Panel-App. It provides configurable shortcuts to help make the pre-qual/testing process more efficient.
11Quick-and-Dirty-Recon. Quick and dirty reconnaissance hacks for BB and pentesting
11CVE-2024-32002. local poc for CVE-2024-32002
9Bfsense. Malicious patch for Pfsense router to perform Red Team activities.
8Its-ours-now. This tool backs up all downloaded files during the malware execution period and helps the dynamic malware analysis process.
6Guessing-passwords-using-machine-learning. ML experiment
6tlde. Fast TLD parser in Go
5VeloTheHelo. A deployment and testing platform for Velociraptor's client artifacts
5TorMultiplier. Creates multiple Tor sockets
4Custom.DFIR.Yara.AllRules. A Velociraptor artifact for automated Thor YARA scanning
4Proof-of-Concept-CSharp-Ransomware. Low-hanging fruit deployed in IRSeC 2021
4CellTower. Shell
3Covert-Channel-by-Exploiting-HTTP-Post. A post-exploitation script that sniffs for POST req data and covertly sends it back to the attackers server using TCP SYN ISN
3NSA-CIA-Blocklist. This is the github repository for all NSA and CIA spying servers, including those revealed by Edward Snowden and other studies we conducted on the whole world's servers, enumerating those that spy on individuals and sell data to the NSA and CIA.
3CVE-2017-13156. To determine if an APK is vulnerable to CVE-2017-13156
3Regex-Jungle. regex.shellcode.blog
2I-WILL-FIND-U-AND-I-WILL-KILL-U. Python
2SharpWatchdogs. Processes used to guard Red Team property against and watch for, unwanted or unexpected blue team actions.
2Rabin-Miller-Algorithm-in-Cryptography. Primality Testing with Rabin-Miller Algorithm in Cryptography
2subzy. Improved version of Subzy, subdomain takeover vulnerability checker.
2WindowsPlague. Windows Malware monitors and infects specific kinds of files.
2QSearchSploit. Customized outputs for SearchSploit
2RandMalware. RandMalware randomly selects malware and deploys it.
1SOC_Tools_Dashboard. SOC Tools Dashboard: To help optimize and standardize SOC analysis
1Ansible-SOS-Agents-Installation-On-Clients. To deploy Wazuh, Kolide Fleet launcher, OSquery, Winlogbeat, Rsyslog agents for Windows and Linux.
1nuclei-templates. Community curated list of templates for the nuclei engine to find security vulnerabilities.
1kali-like. Kali Linux Zsh theme
1