Red teamer | Author of Black Hat Ruby | MCITP-EA, CCNA, RHCE, CEH, OSCP, GWAPT, OSCE. Support Me: https://ko-fi.com/kingsabri
godofwar. GodOfWar - Malicious Java WAR builder with built-in payloads
127jwtear. Modular command-line tool to parse, create and manipulate JWT tokens for hackers
104CVE-in-Ruby. Exploits written & ported to Ruby - no Metasploit
81ServerlessRedirector. Serverless Redirector in various cloud vendor for red team
73sqlmap-tamper-api. SQLMap tamper api to accept tamper scripts from all languages
60goCabrito. Super organized and flexible script for sending phishing campaigns
56DotNetToJScriptMini. A simplified version of DotNetToJScript to create a JScript file which loads a .NET v2 assembly from memory.
46chkdfront. Check Domain Fronting (chkdfront) - It checks if your domain fronting is working
44MSI-AlwaysInstallElevated. A Collection of templates that can be used for abusing window's AlwaysInstallElevated policy
39BufferOverflow-Kit. We collect many tools used in buffer overflow development in one place, repeating with new idea is not a shame - thanks China :)
36AssemblyLoader. Various implementations for C# in memory execution. Assembly.Load() Assembly.LoadFile() AppDomain.ExecuteAssembly()
34Burp_Suite_Extension_Ruby. BurpSuite Extension Ruby Template to speed up building a Burp Extension using Ruby
30creds-harvester. A simple, yet highly customizable, script to use with cloned websites for phishing and credentials harvesting
21AggressorScripts. A collection of Cobalt Strike aggressor scripts
17USBNinjaPayloads. A centralized place to collect USB Ninja payloads
17hacker-gems. Hacker-gems installs most needed gems for hackers
13Spammers. A collection of files sent by spammers to my email
10ruby-port-forward. an easy way to port forwarding using ruby
9sql. a console-based tool to connect to MSSQL server for red teamer and pentesters
7nipper_parser. NipperPrser gem is an unofficial parser for Titania Nipper Studio XML report.
7nessus-search. parse nessus report and search for specific data
6kingsabri-blog.
6soap_enumerator. Soap Enumerator converts WSDL document into Ruby objects. Inspired by SoapUI
4getCabrito. Email open & click tracking server for goCabrito
4HackerNote. Hacker's Note - A command-line tool creates gitbook compatible structure for pentest and read team projects documentation.
3Bash-scripts. Some Bash scripts
3kingsabri.gituhub.io. KING SABRI's blog
2nmap-did-what. Nmap Dashboard Mini Project
2wordpress-exploit-framework. A Ruby framework for developing and using modules which aid in the penetration testing of WordPress powered websites and systems.
2mimipenguin. A tool to dump the login password from the current linux user
2Cheatsheets. Penetration Testing/Security Cheatsheets
2Some_Pentesters_SecurityResearchers_RedTeamers. Some Pentesters, Security Researchers, Red Teamers which i learned from them a lot...
2RubyCat. RubyCat - A Pure Ruby NetCat Alternative
2bigip2ip. Extracting the private IP of servers behind F5 loadbalancer from cookies
2Books2Ruby. Rubyfu initiative: Convert scripts written in information security books to ruby
2OSCE. Collection of things made during my preparation to take on OSCE
2WebShellConsole. WebShellConsole is a small interactive console connect simple web shell from command line using GET
2injection-C. C++
1ScareCrow. ScareCrow - Payload creation framework designed around EDR bypass.
1unidecode2en. ASCII transliterations of Unicode text to English.
1Awesome-Profile-README-templates. A collection of awesome readme templates to display on your profile
1c-sharp-memory-injection. A set of scripts that demonstrate how to perform memory injection in C#
1Misc. PowerShell
1API-Security. OWASP API Security Project
1Learning-C. A series of mini-projects used to learn C for beginners
1Sharp-rportfwd. C#
1pentest-bookmarks. a collection of handy bookmarks
1ninja-firewall. Ruby
1sqli-browser. CLI-based browser for manual SQLi exploitation.
1avet. AntiVirus Evasion Tool
1ExpDev-Scripts. collection of helper scripts I use during exploitation development
1yasuo. A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network
1rex. Rex provides a variety of classes useful for security testing and exploit development.
1