xFreed0m/RDPassSpray
Python3 tool to perform password spraying using RDP
Language: Python
#password_spray #passwordspraying #pentest_tool #pentesting #rdp #stealth
Stars: 138 Issues: 0 Forks: 25
https://github.com/xFreed0m/RDPassSpray
Python3 tool to perform password spraying using RDP
Language: Python
#password_spray #passwordspraying #pentest_tool #pentesting #rdp #stealth
Stars: 138 Issues: 0 Forks: 25
https://github.com/xFreed0m/RDPassSpray
GitHub
GitHub - xFreed0m/RDPassSpray: Python3 tool to perform password spraying using RDP
Python3 tool to perform password spraying using RDP - xFreed0m/RDPassSpray
Coalfire-Research/Slackor
A Golang implant that uses Slack as a command and control server
Language: Go
#c2 #command_and_control #golang #penetration_testing #penetration_testing_tools #pentest #python #red_team #remote_admin_tool
Stars: 127 Issues: 0 Forks: 22
https://github.com/Coalfire-Research/Slackor
A Golang implant that uses Slack as a command and control server
Language: Go
#c2 #command_and_control #golang #penetration_testing #penetration_testing_tools #pentest #python #red_team #remote_admin_tool
Stars: 127 Issues: 0 Forks: 22
https://github.com/Coalfire-Research/Slackor
GitHub
GitHub - Coalfire-Research/Slackor: A Golang implant that uses Slack as a command and control server
A Golang implant that uses Slack as a command and control server - GitHub - Coalfire-Research/Slackor: A Golang implant that uses Slack as a command and control server
smodnix/31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
#api_pentest #api_security #bug_bounty #bugbounty #bugbountytips #infosec #pentest #security
Stars: 294 Issues: 0 Forks: 34
https://github.com/smodnix/31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
#api_pentest #api_security #bug_bounty #bugbounty #bugbountytips #infosec #pentest #security
Stars: 294 Issues: 0 Forks: 34
https://github.com/smodnix/31-days-of-API-Security-Tips
GitHub
GitHub - inonshk/31-days-of-API-Security-Tips: This challenge is Inon Shkedy's 31 days API Security Tips.
This challenge is Inon Shkedy's 31 days API Security Tips. - inonshk/31-days-of-API-Security-Tips
projectdiscovery/nuclei
Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.
Language: Go
#bugbounty #content_bruteforcing #content_discovery #infosec #pentest_tool #security #web
Stars: 139 Issues: 5 Forks: 22
https://github.com/projectdiscovery/nuclei
Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.
Language: Go
#bugbounty #content_bruteforcing #content_discovery #infosec #pentest_tool #security #web
Stars: 139 Issues: 5 Forks: 22
https://github.com/projectdiscovery/nuclei
GitHub
GitHub - projectdiscovery/nuclei: Nuclei is a fast, customizable vulnerability scanner powered by the global security community…
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the ...
ihebski/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Language: Jupyter Notebook
#blueteam #bugbounty #cheatsheet #credentials_gathering #cybersecurity #default_password #infosec #pentest #pentesting #security
Stars: 167 Issues: 0 Forks: 22
https://github.com/ihebski/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Language: Jupyter Notebook
#blueteam #bugbounty #cheatsheet #credentials_gathering #cybersecurity #default_password #infosec #pentest #pentesting #security
Stars: 167 Issues: 0 Forks: 22
https://github.com/ihebski/DefaultCreds-cheat-sheet
GitHub
GitHub - ihebski/DefaultCreds-cheat-sheet: One place for all the default credentials to assist the Blue/Red teamers identifying…
One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️ - ihebski/DefaultCreds-cheat-sheet
skerkour/black-hat-rust
Deep dive into offensive security with the rust programming language - Early access
Language: Rust
#audit #beacon #c2 #cc #implant #offensive #offensive_security #pentest #pentesting #red_team #red_teaming #rust #security
Stars: 129 Issues: 0 Forks: 2
https://github.com/skerkour/black-hat-rust
Deep dive into offensive security with the rust programming language - Early access
Language: Rust
#audit #beacon #c2 #cc #implant #offensive #offensive_security #pentest #pentesting #red_team #red_teaming #rust #security
Stars: 129 Issues: 0 Forks: 2
https://github.com/skerkour/black-hat-rust
GitHub
GitHub - skerkour/black-hat-rust: Applied offensive security with Rust - https://kerkour.com/black-hat-rust
Applied offensive security with Rust - https://kerkour.com/black-hat-rust - skerkour/black-hat-rust
itm4n/Perfusion
Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
Language: C++
#pentest_tool #windows_privilege_escalation
Stars: 126 Issues: 0 Forks: 13
https://github.com/itm4n/Perfusion
Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
Language: C++
#pentest_tool #windows_privilege_escalation
Stars: 126 Issues: 0 Forks: 13
https://github.com/itm4n/Perfusion
GitHub
GitHub - itm4n/Perfusion: Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012) - itm4n/Perfusion
loseys/BlackMamba
C2/post-exploitation framework
Language: Python
#command_and_control #offensive_security #pentest #pentest_tool #post_exploitation #pyqt5 #python3 #qtframework #red_team #security_tools #spyware
Stars: 305 Issues: 0 Forks: 12
https://github.com/loseys/BlackMamba
C2/post-exploitation framework
Language: Python
#command_and_control #offensive_security #pentest #pentest_tool #post_exploitation #pyqt5 #python3 #qtframework #red_team #security_tools #spyware
Stars: 305 Issues: 0 Forks: 12
https://github.com/loseys/BlackMamba
GitHub
GitHub - loseys/BlackMamba: C2/post-exploitation framework
C2/post-exploitation framework. Contribute to loseys/BlackMamba development by creating an account on GitHub.
r3curs1v3-pr0xy/vajra
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
Language: JavaScript
#bug_bounty #hacking #information_gathering #osint #pentest_tool #pentesting #recon #scanner #vajra #web_hacking
Stars: 118 Issues: 1 Forks: 26
https://github.com/r3curs1v3-pr0xy/vajra
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
Language: JavaScript
#bug_bounty #hacking #information_gathering #osint #pentest_tool #pentesting #recon #scanner #vajra #web_hacking
Stars: 118 Issues: 1 Forks: 26
https://github.com/r3curs1v3-pr0xy/vajra
GitHub
GitHub - r3curs1v3-pr0xy/vajra: Vajra is a highly customizable target and scope based automated web hacking framework to automate…
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing. ...
robiot/rustcat
⚙️ Netcat Alternative
Language: Rust
#rust #network #netcat #easy_to_use #pentest_tool #port_listener #rustcat
Stars: 110 Issues: 2 Forks: 8
https://github.com/robiot/rustcat
⚙️ Netcat Alternative
Language: Rust
#rust #network #netcat #easy_to_use #pentest_tool #port_listener #rustcat
Stars: 110 Issues: 2 Forks: 8
https://github.com/robiot/rustcat
GitHub
GitHub - robiot/rustcat: Rustcat(rcat) - The modern Port listener and Reverse shell
Rustcat(rcat) - The modern Port listener and Reverse shell - robiot/rustcat
tnpitsecurity/ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Language: Go
#golang #pentesting #post_exploitation #offensive_security #tunneling #pivoting #pentest_tool #redteam
Stars: 92 Issues: 1 Forks: 5
https://github.com/tnpitsecurity/ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Language: Go
#golang #pentesting #post_exploitation #offensive_security #tunneling #pivoting #pentest_tool #redteam
Stars: 92 Issues: 1 Forks: 5
https://github.com/tnpitsecurity/ligolo-ng
GitHub
GitHub - nicocha30/ligolo-ng: An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface. - nicocha30/ligolo-ng
kh4sh3i/ICS-Pentesting-Tools
A curated list of tools related to Industrial Control System (ICS) security and Penetration Testing
#ics #ics_security #pentest_tool #pentesting #pentesting_tools #scada #scada_exploitation #scada_framework #scada_security
Stars: 141 Issues: 1 Forks: 16
https://github.com/kh4sh3i/ICS-Pentesting-Tools
A curated list of tools related to Industrial Control System (ICS) security and Penetration Testing
#ics #ics_security #pentest_tool #pentesting #pentesting_tools #scada #scada_exploitation #scada_framework #scada_security
Stars: 141 Issues: 1 Forks: 16
https://github.com/kh4sh3i/ICS-Pentesting-Tools
GitHub
GitHub - kh4sh3i/ICS-Pentesting-Tools: A curated list of tools related to Industrial Control System (ICS) security and Penetration…
A curated list of tools related to Industrial Control System (ICS) security and Penetration Testing - kh4sh3i/ICS-Pentesting-Tools
SpectralOps/keyscope
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
Language: Rust
#developer_tools #devops #pentest #rust #security #testing #vault
Stars: 121 Issues: 0 Forks: 6
https://github.com/SpectralOps/keyscope
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
Language: Rust
#developer_tools #devops #pentest #rust #security #testing #vault
Stars: 121 Issues: 0 Forks: 6
https://github.com/SpectralOps/keyscope
GitHub
GitHub - SpectralOps/keyscope: Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust - SpectralOps/keyscope
p0dalirius/LDAPmonitor
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
Language: Python
#active #csharp #directory #ldap #monitor #pentest #powershell #python #tool
Stars: 103 Issues: 1 Forks: 10
https://github.com/p0dalirius/LDAPmonitor
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
Language: Python
#active #csharp #directory #ldap #monitor #pentest #powershell #python #tool
Stars: 103 Issues: 1 Forks: 10
https://github.com/p0dalirius/LDAPmonitor
GitHub
GitHub - p0dalirius/LDAPmonitor: Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration! - GitHub - p0dalirius/LDAPmonitor: Monitor creation, deletion and changes to LDAP objects ...
Puliczek/CVE-2021-44228-PoC-log4j-bypass-words
🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - A trick to bypass words blocking patches
Language: Java
#bugbounttips #bugbounty #bugbounty_writeups #cve #cve_2021_44228 #cybersecurity #exploit #hacking #log4j #payload #pentest #pentesting #red_team #security #security_writeups #writeups
Stars: 191 Issues: 0 Forks: 38
https://github.com/Puliczek/CVE-2021-44228-PoC-log4j-bypass-words
🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - A trick to bypass words blocking patches
Language: Java
#bugbounttips #bugbounty #bugbounty_writeups #cve #cve_2021_44228 #cybersecurity #exploit #hacking #log4j #payload #pentest #pentesting #red_team #security #security_writeups #writeups
Stars: 191 Issues: 0 Forks: 38
https://github.com/Puliczek/CVE-2021-44228-PoC-log4j-bypass-words
GitHub
GitHub - Puliczek/CVE-2021-44228-PoC-log4j-bypass-words: 🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks - Puliczek/CVE-2021-44228-PoC-log4j-bypass-words
mergebase/log4j-detector
Detects vulnerable log4j versions on your file-system within any application. It is able to even find instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too!
Language: Java
#cve_2021_44228 #cve_2021_45046 #cybersecurity #log4j #pentest #sca
Stars: 320 Issues: 9 Forks: 45
https://github.com/mergebase/log4j-detector
Detects vulnerable log4j versions on your file-system within any application. It is able to even find instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too!
Language: Java
#cve_2021_44228 #cve_2021_45046 #cybersecurity #log4j #pentest #sca
Stars: 320 Issues: 9 Forks: 45
https://github.com/mergebase/log4j-detector
GitHub
GitHub - mergebase/log4j-detector: A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021…
A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J ins...
Esc4iCEscEsc/skanuvaty
Dangerously fast DNS/network/port scanner
Language: Rust
#cybersecurity #dns #dns_client #hacking_tools #osint_tool #penetration_testing #penetration_testing_tools #pentest #pentesting #redteam #redteam_tools #rust #rust_lang #scanner #security #security_tools #subdomain_enumeration #subdomain_scanner
Stars: 139 Issues: 6 Forks: 6
https://github.com/Esc4iCEscEsc/skanuvaty
Dangerously fast DNS/network/port scanner
Language: Rust
#cybersecurity #dns #dns_client #hacking_tools #osint_tool #penetration_testing #penetration_testing_tools #pentest #pentesting #redteam #redteam_tools #rust #rust_lang #scanner #security #security_tools #subdomain_enumeration #subdomain_scanner
Stars: 139 Issues: 6 Forks: 6
https://github.com/Esc4iCEscEsc/skanuvaty
GitHub
GitHub - Esc4iCEscEsc/skanuvaty: Dangerously fast DNS/network/port scanner
Dangerously fast DNS/network/port scanner. Contribute to Esc4iCEscEsc/skanuvaty development by creating an account on GitHub.
Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
Language: HTML
#bugbounty #bugbounty_writeups #bugbountytips #cve #cve_2022_0337 #cybersecurity #exploit #hacking #payload #pentest #pentesting #red_team #security #security_writeups #writeups
Stars: 131 Issues: 0 Forks: 22
https://github.com/Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
Language: HTML
#bugbounty #bugbounty_writeups #bugbountytips #cve #cve_2022_0337 #cybersecurity #exploit #hacking #payload #pentest #pentesting #red_team #security #security_writeups #writeups
Stars: 131 Issues: 0 Forks: 22
https://github.com/Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
GitHub
GitHub - Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera: 🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera…
🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337 - Puliczek/CVE-2022-0337-PoC-Google-Chrom...
Anof-cyber/APTRS
Automated Penetration Testing Reporting System
Language: Python
#aptrs #django #penetration_testing #pentest_report #pentesting #pentesting_tools #python #reporting
Stars: 170 Issues: 1 Forks: 6
https://github.com/Anof-cyber/APTRS
Automated Penetration Testing Reporting System
Language: Python
#aptrs #django #penetration_testing #pentest_report #pentesting #pentesting_tools #python #reporting
Stars: 170 Issues: 1 Forks: 6
https://github.com/Anof-cyber/APTRS
GitHub
GitHub - APTRS/APTRS: Automated pentest reporting with custom Word templates, project tracking, and client management tools. Streamline…
Automated pentest reporting with custom Word templates, project tracking, and client management tools. Streamline your security workflows effortlessly! - APTRS/APTRS