This is your work, valued
Exploit Dev & Pentester
Wordpress-Exploits. Collection of Exploit, CVES(Unauthenticated) and Wordpress Scanners
★ 114SubDiscovery. Subdomain Recon Tool
★ 13BotConsultasDiscord. base Bot Queries Discord Made to use API'S CPF, TEL ,CEP, etc...
★ 11GitHub-User-Analyzer. GitHub User Analyzer is a lightweight Python tool that leverages the GitHub API to retrieve and display detailed information about a GitHub user. This tool is perfect for quickly exploring profile data, followers, and public repositories.
★ 3xxe_introduction. explaining xxe vuln
★ 3discord_rich_lua. Discord Rich Lua, made to Show status on your discord profile
★ 2introduction-buffer-overflow. buffer overflow basics
★ 2scriptsbats. compiled of useful .bat scripts for everyday life
★ 2SecLists. SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
★ 1isup. Find alive host from dumped subdomains, huge domain list , alive subdomains
★ 1BurpSuite-collections. 有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
★ 1libcalc. Privilege Escalation Via suid-so
★ 1SHELL-PDF. Shell PDF
★ 1ResolveRex. Simple Dns Resolve Script
★ 1TTWAF. 「🧱」Test a list of payloads and see if you can bypass it
★ 1GitHub-User-Analyzer. GitHub User Analyzer is a lightweight Python tool that leverages the GitHub API to retrieve and display detailed information about a GitHub user. This tool is perfect for quickly exploring profile data, followers, and public repositories.
★ 3base64-to-tgs. Python
★ 23snake. Tool for extracting information from newly spawned processes
★ 782Fuck-Etw. Bypass the Event Trace Windows(ETW) and unhook ntdll.
★ 115Reaper. 「💀」Proof of concept on BYOVD attack
★ 164Infector. This is a simple process injection made in C for Linux systems
★ 28gtranslator. gtranslator is a Go command-line tool that enables text translation to various languages using the Google Translate API.
★ 2dnschef. DNSChef - DNS proxy for Penetration Testers and Malware Analysts
★ 1.1kSpotX. SpotX patcher used for patching the desktop version of Spotify
★ 22kghauri. An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
★ 4kenumerate-iam. Enumerate the permissions associated with AWS credential set
★ 1.2kWindows-Exploit-Suggester. This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.
★ 4.2kpalestras-aratu. Organização das palestras - Evento Aratu | Boitatech
★ 37SQLi. It is a tool for scanning and exploiting the famous SQL injection vulnerability in more than millions of sites. The exploit was programmed by the TYG team.
★ 66D3m0n1z3dShell. Demonized Shell is an Advanced Tool for persistence in linux.
★ 453xss-hawkeye.
★ 4ejpt. some eJPT exam preparation notes
★ 80ZoomEye-python. ZoomEye-python: The official Python library and CLI by Knownsec 404 Team.
★ 566OAO. ⚙️ Operating Account Operators (OAO) is a Golang tool to interact with the LDAP protocol to manage account groups, roles, ACLs/ACEs, etc...
★ 7alterx. Fast and customizable subdomain wordlist generator using DSL
★ 979essence. PHP Lib for web requests
★ 9mantra. 「🔑」A tool used to hunt down API key leaks in JS files and pages
★ 915Diamorphine. LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)
★ 2.4kwolfy. Wolfy AV Bypasser
★ 32zram-config. A complete zram-config utility for swap, directories, and logs to reduce SD, NAND and eMMC block wear.
★ 558nuclei-burp-plugin. Nuclei plugin for BurpSuite
★ 1.3kSimpleASMKernel. 「💻」Simple kernel made in 16-bit assembly only
★ 18o365creeper. Python script that performs email address validation against Office 365 without submitting login attempts.
★ 386PowerSploit. PowerSploit - A PowerShell Post-Exploitation Framework
★ 13ksystemd-backdoor. A simple script to automate systemd backdoor
★ 72Pingoor. 「🚪」Linux Backdoor based on ICMP protocol
★ 62Villain. Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).
★ 4.4kCondor. 「🛡️」AVs/EDRs Evasion tool
★ 103Havoc. The Havoc Framework
★ 8.5kproxychains-windows. Windows and Cygwin port of proxychains, based on MinHook and DLL Injection
★ 1.1kCMSeeK. CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs
★ 2.6kCVE-2022-40684. PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)
★ 87libcalc. Privilege Escalation Via suid-so
★ 1linux-exploit-suggester. Linux privilege escalation auditing tool
★ 6.6kCVE-2019-1388. CVE-2019-1388 UAC提权 (nt authority\system)
★ 193Sophos-Vulnerability. CVE-2022-1040
★ 18Seatbelt. Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
★ 4.6kdnstrace. DNS resolution tracing tool
★ 37Farllen. 「🚪」Port forwarding tool to gain access to internal devices
★ 12pwnfaces. exploit for CVE-2017-1000486 vulnerability with SOCKS proxy support
★ 19poor-mans-pentest. This a collection of the code that I have written for the Poor Man's Pentest presentation.
★ 580Awesome-AV-EDR-XDR-Bypass. Awesome AV/EDR/XDR Bypass Tips
★ 285phpggc. PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
★ 3.8kRPI4-Covenant-C2-Installer. 「🖥️」Covenant C2 Installer for RPI 4
★ 9ropeme. ROPME is a set of python scripts to generate ROP gadgets and payload.
★ 149pro. A crappy tool used in our private PS4 jailbreak
★ 100bbrf-client. The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
★ 647reverse-shell. Reverse Shell as a Service
★ 2kAwesome-Red-Teaming. List of Awesome Red Teaming Resources
★ 8kCabalyonTheme.
★ 2CVE-2022-33891. 「💥」CVE-2022-33891 - Apache Spark Command Injection
★ 25pacu. The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
★ 5.3kpocsuite3. pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
★ 3.9kcve-2022-33891. cve-2022-33891-poc
★ 51rubyhackchallenge. Ruby
★ 497pwnkit. PoC for the CVE-2021-4034 vulnerability, affecting polkit < 0.120.
★ 24jira-mobile-ssrf-exploit. Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)
★ 85rawhttp. Raw HTTP client in Go for complete request control and customization.
★ 165Web-Coldfusion-Vulnerability-POC. Python
★ 3PHP-binary-bugs. PHP binary bugs advisory
★ 175MBROverwrite. 「💽」MBR Overwrite malware for linux
★ 29Pinkerton. 🕵️ Python project to crawl for JavaScript files and search for secrets like API keys, authorization tokens, hardcoded credentials, etc.
★ 439CVE-2022-26134. 「💥」CVE-2022-26134 - Confluence Pre-Auth RCE
★ 14toxssin. An XSS exploitation command-line interface and payload generator.
★ 1.4kSubDiscovery. Subdomain Recon Tool
★ 13XSS-Payload. 「💉」XSS Payload List
★ 46CRLFsuite. The most powerful CRLF injection (HTTP Response Splitting) scanner.
★ 598graphme. a dirty tool to beautify GraphQL Schema Introspection
★ 4Corsy. CORS Misconfiguration Scanner
★ 1.5kTTWAF. 「🧱」Test a list of payloads and see if you can bypass it
★ 64Simple-Calculator. Simple calculator made in c# made for study
★ 5Discord-Token-Cheker. Application to check discord user tokens
★ 6Consult. PHP
★ 3BruteforceDnsSimple. Bruteforce DNS simples
★ 3argon-dashboard. Argon - Dashboard for Bootstrap 5 by Creative Tim
★ 713vuls. Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
★ 12kReconnoitre. A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
★ 2.2kObjectPwnStream. a Ruby implementation of Java's ObjectInputStream and ObjectOutputStream.
★ 16EHoney. 「🍯」Simple low-interaction honeypot with FTP, Telnet and Web
★ 12BetterViewer. a replacement for the image viewing mode built into Firefox and Chrome-based web browsers.
★ 492CVE-2020-5410-POC. CVE-2020-5410 Spring Cloud Config directory traversal vulnerability
★ 30BurpSuite-collections. 有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
★ 3.9kportscanner. Port scanning tool, using Python.
★ 7AnonfilesAPI. Anonfiles.com API Wrapper
★ 9Wordpress-Exploits. Collection of Exploit, CVES(Unauthenticated) and Wordpress Scanners
★ 1141nf0-hunt3r. 『🔍』Simple Information finder using Google Dork
★ 34WSOB. 😭 WSOB is a python tool created to exploit the new vulnerability on WSO2 assigned as CVE-2022-29464.
★ 28Cheatsheets. Helped during my OSCP lab days.
★ 818CVE-2022-26133. Atlassian Bitbucket Data Center RCE(CVE-2022-26133) verification.
★ 147LKM-Command-Line-Parsing. LKM Command Line Parsing - Parte 2
★ 6Find-Syscall-table. C
★ 7xxe_introduction. explaining xxe vuln
★ 3trufflehog. Find, verify, and analyze leaked credentials
★ 27kSoftGL. C++
★ 3insiders. Archive of Potential Insider Threats
★ 155introduction-buffer-overflow. buffer overflow basics
★ 2twitterBFTD. Twitter Back From The Dead looks in a user tweets history for domain names that are available for registration
★ 221markdown-here. Google Chrome, Firefox, and Thunderbird extension that lets you write email in Markdown and render it before sending.
★ 60kBugBountyTricks. 「🐞」Bug Bounty Tricks
★ 41kernel-exploit-factory. Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your environment anymore.
★ 1.3kBlueTeam-CheatSheets.
★ 4the-book-of-secret-knowledge. A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
★ 233kfirefox_decrypt. Firefox Decrypt is a tool to extract passwords from Mozilla (Firefox™, Waterfox™, Thunderbird®, SeaMonkey®) profiles
★ 2.4kinteractsh. An OOB interaction gathering server and client library
★ 4.4kwfi. Windows File Integrity -- an archive of information on installed Windows binaries.
★ 34Rootkit-4x_5x. C
★ 4known_hosts-hashcat. A guide and tool for cracking ssh known_hosts files with hashcat
★ 340AzureHunter. A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
★ 791gentleman. quick script for mixing wordlists in a way that maintains order. ([1,2],[3,4],[5,6] -> [1,3,5,2,4,6])
★ 10gosecretsdump. Dump ntds.dit really fast
★ 409Pentest-Cheatsheets. Python
★ 1.2kattacktive-directory-tools.
★ 41ResolveRex. Simple Dns Resolve Script
★ 1CVE-2022-21971. PoC for CVE-2022-21971 "Windows Runtime Remote Code Execution Vulnerability"
★ 301CVE-2021-40444. CVE-2021-40444 PoC
★ 1.8kSarcophagus. BSPWM (GruvBox Rice)
★ 20bspwmthemes. My bspwm awesome themes collection
★ 34ASWCrypter. An Bash&Python Script For Generating Payloads that Bypasses All Antivirus so far [FUD]
★ 293rce-finder. A tool to find good RCE
★ 169CVE-2017-0213. Fixed No Virus Manual Automatic Loader exe no zip because zip picks up the anti virus detector.
★ 14OSCP-Cheatsheets. OSCP Cheatsheets
★ 100filesmanager-python. TXT file handling system made in Python.
★ 4Linux-Kernel-Module-basic-explanation. Estudos sobre LKM - Linux Kernel Module.
★ 7consulta-cep. Consulta CEP em Python utilizando a API ViaCEP.
★ 2tomcter. 😹 Python project to bruteforce Apache Tomcat manager login with known-default credentials
★ 97waybackurls. Fetch all the URLs that the Wayback Machine knows about for a domain
★ 4.5kOSCPRepo. A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
★ 2.7kjuumla. 🦁 Python project to identify and scan for vulnerabilities related to the Joomla CMS project. It scans for common misconfigurations and public vulnerabilities.
★ 177BotConsultasDiscord. base Bot Queries Discord Made to use API'S CPF, TEL ,CEP, etc...
★ 11discord_rich_lua. Discord Rich Lua, made to Show status on your discord profile
★ 2