This is your work, valued
Octopus. Open source pre-operation C2 server based on python and powershell
764DNSStager. Hide your payload in DNS
621RCEScanner. Simple python script to extract unsafe functions from php projects
197ExchangeFinder. Find Microsoft Exchange instance for a given domain and identify the exact version
190XMLDecoder-payload-generator. A simple python script to generate XML payloads works for XMLDecoder based on ProcessBuilder and Runtime exec
149Bughound. Static code analysis tool based on Elasticsearch
130Shellcode-In-Memory-Decoder. A simple C implementation to decoded your shellcode and writes it directly to memory
98CVE-2020-8813. The official exploit for Cacti v1.2.8 Remote Code Execution CVE-2020-8813
67shellcode-process-injection. Simple C implementation to perform shellcode process injection via win32 APIs
63XSSRadare. A Cross Site Scripting scanner using selenium webdriver
55Blinder. A python library to automate time-based blind SQL injection
50DNSKeyGen. A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.
40MalleableC2-Profiles. A collection of Cobalt Strike Malleable C2 profiles
36Octopus-C2-RedTeam-infrastructure-automation. Python
22CVE-2020-12078. The official exploit for Open-AudIT v3.3.1 Remote Code Execution CVE-2020-12078
18CVE-2020-14947. The official exploit for OCS Inventory NG v2.7 Remote Command Execution CVE-2020-14947
17CVE-2019-20224. The offical exploit for Pandora v7.0NG Post-auth Remote Code Execution CVE-2019-20224
14CVE-2019-16662. The official exploit for rConfig 3.9.2 Pre-auth Remote Code Execution CVE-2019-16662
13HTTPFuzzer. HTTPFuzzer is a simple python script to perform multiple fuzzing techniques for HTTP protocol
13CVE-2019-13024. The official exploit code for Centreon v19.04 Remote Code Execution CVE-2019-13024
11Linux-Root-Kit. Simple Linux RootKit written in python
10CVE-2024-11320. Exploit for Pandora FMS Remote Code Execution CVE-2024-11320
9CVE-2018-20434. The official exploit code for LibreNMS v1.46 Remote Code Execution CVE-2018-20434
9CVE-2019-15029. The official exploit code for FusionPBX v4.4.8 Remote Code Execution CVE-2019-15029
8CVE-2023-0315. The official exploit for Froxlor Remote Code Execution CVE-2023-0315
7JinjaPwn. Web-based tool to generate and validate Malicious Jinja2 expression to use in offensive operations
7CVE-2019-16663. The official exploit for rConfig 3.9.2 Post-auth Remote Code Execution CVE-2019-16663
6Dr0p1t-Framework. A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks
5BlindSQLinjectionExploit. Python
5powershell-extractor-elasticsearch. Python script to extract powershell scrips from elasticsearch based on windows event "4104"
4wifi-jammer. Python automated wifi jammer
3JiraLab. Docker-based lab to run multiple jira instances for security researchers
3shellcodes. C
3MicrosoftDCFTokenRequester. Simple and lazy script to request tokens from Microsoft using Device Code Flow
3APT-Hunter. APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
3PowerShell. Useful PowerShell scripts
3CVE-2019-11510. Exploit for Arbitrary File Read on Pulse Secure SSL VPN (CVE-2019-11510)
3GitTools. A repository with 3 tools for pwn'ing websites with .git repositories available
3impacket. Impacket is a collection of Python classes for working with network protocols.
2Internet-Programming. HTML
2auto_sniffer. Python
2Stuff. Python
2centreon. Centreon is a network, system, applicative supervision and monitoring tool
2linuxprivchecker. linuxprivchecker.py -- a Linux Privilege Escalation Check Script
2Fingerprinter. CMS/LMS/Library etc Versions Fingerprinter
2stem_finder. Python
1python_Backdoor. Python
1sqlmap-tamper-api. Allow SQLMap tamper to accept tamper scripts from all languages
1shields. Concise, consistent, and legible badges in SVG and raster format
1BOF_Collection. Various Cobalt Strike BOFs
1