GraphCrawler. GraphQL automated security testing toolkit
335better-sliver. Adversary Emulation Framework
132CrookedConfluence. A secrets scanner for Confluence - For red teamers and pentesters
14EV1L-J3ST3R. An automated scanning, enumeration, and note taking tool for pentesters
13Smishing-Triad. Tools and dumps related to the Smishing Triad and the USPS smishing campaign from late 2023 into 2024
11Attack-Defense-Tooling. Attack & Defense CTF Tooling created for NSA Cyber Exercise (NCX)
10better-sliver-package. Go package repo for better-sliver
10BB-UACBypass-Loader. Hak5 Bash Bunny UAC Bypass and Loader execution
7CVE-2024-37843-POC. POC for CVE-2024-37843. Craft CMS time-based blind SQLi
4SummitCTF2023Public. Public code for the Summit CTF 2023 event
4RedditOSINT. A tool to help find and collect information on users and communities on Reddit
4Hellbreaker. Evading AV products for MISI Hack the Hospital 2.0
4SimpleBO. Simple buffer overflow scripts. Built for vulnserver but can be edited for use elsewhere.
3Cookie-Monster-XSS. Generate a obfuscated XSS payload to steal cookies
3CCDC-VT. VT CCDC
2SummitHacksburg. Summit CTF - Hacksburg
1KatzParty. MimiKatz output parser, written in Powershell
1BugBountyScanner. A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.
1graphinder. Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce.
1BIT3434CVE. BI T3434 Project on data mining CVEs and Exploits
1New-USPS-Smishing. The 2024 USPS SMS phishing
1