Perth, Western Australia

Anthony Cozamanis

Expert
@kurobeats

A coder who likes his code open and collaborative.

fimap. fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion bugs in webapps.

588

old-school-viruses. This is a collection of really old (mid 90s) virus source code

31

Sparkler. The tool creates a Microsoft Active Directory Domain with a structure and objects for learning.

29

wordhound. It builds dictionaries off of generic websites, plain text (for example emails), PDF's and Reddit.

27

Active-Directory-User-Script. Create Users in Active Directory This script creates 270 + users in Active Directory.

19

OpenVas-Management-Scripts. Scripts for starting, stopping, checking setup and others ported from Kali Linux for general systemd systems

17

metagoofil. Metagoofil is an information gathering tool designed for extracting metadata of public documents (pdf,doc,xls,ppt,docx,pptx,xlsx) belonging to a target company.

17

suricata-alert-extractor. A suricata alert extractor to be used with pfsense logs

8

Fail2ban-GROK-Log-Pattern.

8

PassWord-List-Getter. A script to grab a helpful collection of password lists

6

cchef. A simple bash script that sets up, updates and launches a local install of CyberChef.

5

phishing_hosts. A host file generated from updated phishing site feeds

4

TinyNuke. zeus-style banking trojan

4

Hacking_Cheat_Sheet. All my Hacking|Pentesting Notes

4

password_lists. Password Lists I've Found or Made

3

Checklists. Pentesting checklists for various engagements

3

sliver-extensions. Extensions for the C2

2

nomx. nomx

2

Powershell-Empire-Install-Script. Because I got grumpy one day and needed order.

2

packer-kali-linux. Packer build for Kali Linux

2

simple-php-upload. A super simple php page for uploading files.

2

FuzzDict. A collection of lists to aid in the discovery of interesting things.

1

fuzzdb. Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

1

Block-the-Loop. A domain denylist for breaking the tap cycle.

1

Keylogger. A simple keylogger for Windows, Linux and Mac by Giacomo Lawrance

1

Graylog_Sysmon. Advanced Threat detection Configurations for Graylog

1

p0wnedShell. PowerShell Runspace Post Exploitation Toolkit

1

medusa_combo_files. Combinations of default usernames and passwords for the Medusa password cracker

1

SharpShooter. Payload Generation Framework

1

JS-Downloader. JS Jscript - download file from url then run it

1

zap-scripts. just my scripts

1

Sharepoint2010_library_permissions. A script to update the security permissions at the library level.

1

jigsaw. A simple ruby script for enumerating information about a company's employees. It is useful for Social Engineering or Email Phishing.

1

clamav_db. Just a handmade clamav database.

1

ThreatHunting. An informational repo about hunting for adversaries in your IT environment.

1

freedomfighting. A collection of scripts which may come in handy during your freedom fighting activities.

1

PoshRat. PowerShell Reverse HTTPs Shell

1

SecLists. SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.

1

Bash-Cheatsheet.

1

Mastodon-Install-Script. A bash script for installing your own mastodon instance

1

openvas_install. OpenVas SourceCode Ubuntu Installer

1

osintstalker. osintstalker

1

UFW-GROK-Log-Pattern.

1

hechizo. A fork of mana-toolkit

1
44
Apply