A coder who likes his code open and collaborative.
fimap. fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion bugs in webapps.
588old-school-viruses. This is a collection of really old (mid 90s) virus source code
31Sparkler. The tool creates a Microsoft Active Directory Domain with a structure and objects for learning.
29wordhound. It builds dictionaries off of generic websites, plain text (for example emails), PDF's and Reddit.
27Active-Directory-User-Script. Create Users in Active Directory This script creates 270 + users in Active Directory.
19OpenVas-Management-Scripts. Scripts for starting, stopping, checking setup and others ported from Kali Linux for general systemd systems
17metagoofil. Metagoofil is an information gathering tool designed for extracting metadata of public documents (pdf,doc,xls,ppt,docx,pptx,xlsx) belonging to a target company.
17suricata-alert-extractor. A suricata alert extractor to be used with pfsense logs
8Fail2ban-GROK-Log-Pattern.
8PassWord-List-Getter. A script to grab a helpful collection of password lists
6cchef. A simple bash script that sets up, updates and launches a local install of CyberChef.
5phishing_hosts. A host file generated from updated phishing site feeds
4TinyNuke. zeus-style banking trojan
4Hacking_Cheat_Sheet. All my Hacking|Pentesting Notes
4password_lists. Password Lists I've Found or Made
3Checklists. Pentesting checklists for various engagements
3sliver-extensions. Extensions for the C2
2nomx. nomx
2Powershell-Empire-Install-Script. Because I got grumpy one day and needed order.
2packer-kali-linux. Packer build for Kali Linux
2simple-php-upload. A super simple php page for uploading files.
2FuzzDict. A collection of lists to aid in the discovery of interesting things.
1fuzzdb. Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
1Block-the-Loop. A domain denylist for breaking the tap cycle.
1Keylogger. A simple keylogger for Windows, Linux and Mac by Giacomo Lawrance
1Graylog_Sysmon. Advanced Threat detection Configurations for Graylog
1p0wnedShell. PowerShell Runspace Post Exploitation Toolkit
1medusa_combo_files. Combinations of default usernames and passwords for the Medusa password cracker
1SharpShooter. Payload Generation Framework
1JS-Downloader. JS Jscript - download file from url then run it
1zap-scripts. just my scripts
1Sharepoint2010_library_permissions. A script to update the security permissions at the library level.
1jigsaw. A simple ruby script for enumerating information about a company's employees. It is useful for Social Engineering or Email Phishing.
1clamav_db. Just a handmade clamav database.
1ThreatHunting. An informational repo about hunting for adversaries in your IT environment.
1freedomfighting. A collection of scripts which may come in handy during your freedom fighting activities.
1PoshRat. PowerShell Reverse HTTPs Shell
1SecLists. SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
1Bash-Cheatsheet.
1Mastodon-Install-Script. A bash script for installing your own mastodon instance
1openvas_install. OpenVas SourceCode Ubuntu Installer
1osintstalker. osintstalker
1UFW-GROK-Log-Pattern.
1hechizo. A fork of mana-toolkit
1