This is your work, valued

Internets

Rob Fuller

Elite
@mubix

Certified Checkbox Unchecker

post-exploitation. Post Exploitation Collection

1.6k

shellshocker-pocs. Collection of Proof of Concepts and Potential Targets for #ShellShocker

889

post-exploitation-wiki. Post Exploitation Wiki

527

solarflare. SolarWinds Orion Account Audit / Password Dumping Utility

354

netview. Netview enumerates systems using WinAPI calls

300

IOXIDResolver. IOXIDResolver.py from AirBus Security

270

vt-notify. Get email notification when Virus Total has a copy of your binary.

168

pykek. Kerberos Exploitation Kit

164

CVE-2021-44228-Log4Shell-Hashes. Hashes for vulnerable LOG4J versions

155

osx-wificleaner. Cleans out "open" wireless connections from OSX machine

153

howtowinccdc. Notes, Slides, Comments and Commands on How to Win CCDC

149

nfsclient. NFS client written in Go

104

repos. List of Repositories

103

cfdb. Common Findings Database

101

akb. Attack Knowledge Base

101

redteam-collab. Red Team Collaboration Infrastructure

97

ditto. Binary resource copier

97

Not-In-Pentesting-Class. The Dirty Secrets They Didn't Teach You In Pentesting Class

96

open-ssids. SSIDs for the Hak5 Wifi Pineapple's PineAP setup

92

sectaskbars. Security Product Taskbar Icons (to identify from screenshots)

58

WhiteChapel. password cracking front end

58

tools. Operational toolset utilizing git's submodule feature

57

FakeNetBIOS. See here:

43

manage2decrypt. ManageEngine OpManager Decryption Tools

33

stuff. Things I've coded, or use (cause I can't find them online anymore)

32

DeleteThatTweet. Monitors a Twitter stream and saves off any tweet that is deleted.

27

windows-hardening. Because I can't find scripts to do this anywhere else...

26

certexp. Certificate Export Utility

26

windows-declutter. Windows 10 De-Clutter script

25

securitytitles.com. Standardizing Security Titles

25

mubix.github. Malicious Link Blog

25

attackbox. Ansible scripts to build an attack box

24

ntds_decode. Decrypt NTDS hashes

24

ccdc_malware. Talk given at DerbyCon and RuxCon 2016

23

lmo. LetMeOutOfYour.net Resources

21

whitechapel-ng. Next Generation of White Chapel

21

local-hibp. How to set up a local copy of Have-I-Been-Pwned's password checking service

21

metasploitwiki. Clone of Metasploit's wiki w/ additions

17

htshells. Self contained htaccess shells and attacks

16

GScriptOldEmal. Deletes old email from my Gmail accounts

15

Interceptor. PowerShell HTTP(s) Intercepting Proxy

14

hackingtogether. #HackingTogether

14

PCredz. This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.

13

ctf. Capture The Flag Information

12

twitter-list-follow. Follow all members of a list

12

SecLists. SecLists is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.

12

metasploit-framework. Metasploit Framework

11

elgamalcrypto. Simple Python Elgamal Encryption and Decryption Tool

10

scoreproxy. CCDC Scorebot SOCKS5 checks proxy

10

presentations. Public copies of my previous presentations

8

evil-winrm. The ultimate WinRM shell for hacking/pentesting

8

decryptcpuu. Decrypt "Unrestricted" CPUU.ini passwords

7

getPatrons. Pulls down list of Patrons in tab formatted list

1