KING SABRI

Elite
@KINGSABRI

Red teamer | Author of Black Hat Ruby | MCITP-EA, CCNA, RHCE, CEH, OSCP, GWAPT, OSCE. Support Me: https://ko-fi.com/kingsabri

godofwar. GodOfWar - Malicious Java WAR builder with built-in payloads

127

jwtear. Modular command-line tool to parse, create and manipulate JWT tokens for hackers

104

CVE-in-Ruby. Exploits written & ported to Ruby - no Metasploit

81

ServerlessRedirector. Serverless Redirector in various cloud vendor for red team

73

sqlmap-tamper-api. SQLMap tamper api to accept tamper scripts from all languages

60

goCabrito. Super organized and flexible script for sending phishing campaigns

56

DotNetToJScriptMini. A simplified version of DotNetToJScript to create a JScript file which loads a .NET v2 assembly from memory.

46

chkdfront. Check Domain Fronting (chkdfront) - It checks if your domain fronting is working

44

MSI-AlwaysInstallElevated. A Collection of templates that can be used for abusing window's AlwaysInstallElevated policy

39

BufferOverflow-Kit. We collect many tools used in buffer overflow development in one place, repeating with new idea is not a shame - thanks China :)

36

AssemblyLoader. Various implementations for C# in memory execution. Assembly.Load() Assembly.LoadFile() AppDomain.ExecuteAssembly()

34

Burp_Suite_Extension_Ruby. BurpSuite Extension Ruby Template to speed up building a Burp Extension using Ruby

30

creds-harvester. A simple, yet highly customizable, script to use with cloned websites for phishing and credentials harvesting

21

AggressorScripts. A collection of Cobalt Strike aggressor scripts

17

USBNinjaPayloads. A centralized place to collect USB Ninja payloads

17

hacker-gems. Hacker-gems installs most needed gems for hackers

13

Spammers. A collection of files sent by spammers to my email

10

ruby-port-forward. an easy way to port forwarding using ruby

9

sql. a console-based tool to connect to MSSQL server for red teamer and pentesters

7

nipper_parser. NipperPrser gem is an unofficial parser for Titania Nipper Studio XML report.

7

nessus-search. parse nessus report and search for specific data

6

kingsabri-blog.

6

soap_enumerator. Soap Enumerator converts WSDL document into Ruby objects. Inspired by SoapUI

4

getCabrito. Email open & click tracking server for goCabrito

4

HackerNote. Hacker's Note - A command-line tool creates gitbook compatible structure for pentest and read team projects documentation.

3

Bash-scripts. Some Bash scripts

3

kingsabri.gituhub.io. KING SABRI's blog

2

nmap-did-what. Nmap Dashboard Mini Project

2

wordpress-exploit-framework. A Ruby framework for developing and using modules which aid in the penetration testing of WordPress powered websites and systems.

2

mimipenguin. A tool to dump the login password from the current linux user

2

Cheatsheets. Penetration Testing/Security Cheatsheets

2

Some_Pentesters_SecurityResearchers_RedTeamers. Some Pentesters, Security Researchers, Red Teamers which i learned from them a lot...

2

RubyCat. RubyCat - A Pure Ruby NetCat Alternative

2

bigip2ip. Extracting the private IP of servers behind F5 loadbalancer from cookies

2

Books2Ruby. Rubyfu initiative: Convert scripts written in information security books to ruby

2

OSCE. Collection of things made during my preparation to take on OSCE

2

WebShellConsole. WebShellConsole is a small interactive console connect simple web shell from command line using GET

2

injection-C. C++

1

ScareCrow. ScareCrow - Payload creation framework designed around EDR bypass.

1

unidecode2en. ASCII transliterations of Unicode text to English.

1

Awesome-Profile-README-templates. A collection of awesome readme templates to display on your profile

1

c-sharp-memory-injection. A set of scripts that demonstrate how to perform memory injection in C#

1

Misc. PowerShell

1

API-Security. OWASP API Security Project

1

Learning-C. A series of mini-projects used to learn C for beginners

1

Sharp-rportfwd. C#

1

pentest-bookmarks. a collection of handy bookmarks

1

ninja-firewall. Ruby

1

sqli-browser. CLI-based browser for manual SQLi exploitation.

1

avet. AntiVirus Evasion Tool

1

ExpDev-Scripts. collection of helper scripts I use during exploitation development

1

yasuo. A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

1

rex. Rex provides a variety of classes useful for security testing and exploit development.

1
53
Apply