This is your work, valued

UK

g0tmi1k

Elite
@g0tmi1k

=)

msfpc. MSFvenom Payload Creator (MSFPC)

1.3k

os-scripts. Personal Collection of Operating Systems Scripts

577

debian-ssh. Debian OpenSSL Predictable PRNG (CVE-2008-0166)

410

exe2hex. Inline file transfer using in-built Windows tools (DEBUG.exe or PowerShell).

319

SecLists. SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.

101

VulnInjector. Generates a Windows 'vulnerable' machine from ISOs

91

boot2root-scripts. Homemade scripts to-do various vulnerable challenges

81

crowbar. Crowbar is brute forcing tool that can be used during penetration tests. It is developed to support protocols that are not currently supported by thc-hydra and other popular brute forcing tools.

22

FinalRecon. The Last Web Recon Tool You'll Need

17

gobuster. Directory/file & DNS busting tool written in Go

15

king-phisher. Phishing Campaign Toolkit

13

kippo-g0tmi1k. Personal fork of Kippo SSH honeypot.

13

LFISuite. Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner

12

egressbuster. Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.

12

veil-Evasion. Veil-Evasion is a tool used to generate payloads that bypass antivirus solutions

12

metasploit-framework. Metasploit Framework

11

php-backdoor. A standalone PHP backdoor for use on *nix and Windows systems.

9

wafw00f. WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

8

HomeNetworkSetup. Repo to define my use of docker containers on my home network with Reverse Proxy Configuration

8

reaver-wps-fork-t6x. C

8

wpscan-v3. WPScan is a free, for non-commercial use, black box WordPress vulnerability scanner written for security professionals and blog maintainers to test the security of their sites.

7

commix. Automated All-in-One OS Command Injection and Exploitation Tool

7

wifite. Python

7

exploitdb-papers. exploit-database-papers

7

dirtycow. C

6

nethunter-LRT. The Nethunter Linux Root Toolkit is a collection of bash scripts which install Nethunter onto a supported device.

6

patator. Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

6

GTFOBins.github.io. Curated list of Unix binaries that can be exploited to bypass system security restrictions

6

smbmap. SMBMap is a handy SMB enumeration tool

5

wpscan. WPScan is a black box WordPress vulnerability scanner

5

vmware_escape. VMware Escape Exploit before VMware WorkStation 12.5.5

4

Drupalgeddon2. Exploit for Drupalgeddon 2 - CVE-2018-7600

4

rex-powershell. Rex library for dealing with Powershell Scripts

4

exploitdb-bin-sploits. Exploit Database binary exploits located in the /sploits directory

4

sslscan. sslscan tests SSL/TLS enabled services to discover supported cipher suites

4

backtrack-update. Update script for Backtrack 5 R2/R3

4

kippo-patches. Patches for Kippo (https://code.google.com/p/kippo/) v0.8

4

kippo. Kippo - SSH Honeypot

4

mkdocs. Project documentation with Markdown.

4

Veil. Veil 3.0

4

guac-install. Script for installing Guacamole on Ubuntu

3

lxc-ci. LXC continuous integration and build scripts

3

CeWL. CeWL is a Custom Word List Generator

3

octopress. Octopress is an obsessively designed framework for Jekyll blogging. It’s easy to configure and easy to deploy. Sweet huh?

2

mirrorbits. Mirrorbits is a geographical download redirector written in Go for distributing files efficiently across a set of mirrors.

1

dashboard-icons. 🚀 The best place to find icons for your dashboards.

1

contrib. Contributed stuff for munin (plugins, tools, etc...)

1

subsonic-fluid. Subsonic desktop client for OSX

1

community.rabbitmq. Manage RabbitMQ with Ansible

1