Coalfire-Research/Slackor
A Golang implant that uses Slack as a command and control server
Language: Go
#c2 #command_and_control #golang #penetration_testing #penetration_testing_tools #pentest #python #red_team #remote_admin_tool
Stars: 127 Issues: 0 Forks: 22
https://github.com/Coalfire-Research/Slackor
A Golang implant that uses Slack as a command and control server
Language: Go
#c2 #command_and_control #golang #penetration_testing #penetration_testing_tools #pentest #python #red_team #remote_admin_tool
Stars: 127 Issues: 0 Forks: 22
https://github.com/Coalfire-Research/Slackor
GitHub
GitHub - Coalfire-Research/Slackor: A Golang implant that uses Slack as a command and control server
A Golang implant that uses Slack as a command and control server - GitHub - Coalfire-Research/Slackor: A Golang implant that uses Slack as a command and control server
smodnix/31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
#api_pentest #api_security #bug_bounty #bugbounty #bugbountytips #infosec #pentest #security
Stars: 294 Issues: 0 Forks: 34
https://github.com/smodnix/31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
#api_pentest #api_security #bug_bounty #bugbounty #bugbountytips #infosec #pentest #security
Stars: 294 Issues: 0 Forks: 34
https://github.com/smodnix/31-days-of-API-Security-Tips
GitHub
GitHub - inonshk/31-days-of-API-Security-Tips: This challenge is Inon Shkedy's 31 days API Security Tips.
This challenge is Inon Shkedy's 31 days API Security Tips. - inonshk/31-days-of-API-Security-Tips
projectdiscovery/nuclei
Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.
Language: Go
#bugbounty #content_bruteforcing #content_discovery #infosec #pentest_tool #security #web
Stars: 139 Issues: 5 Forks: 22
https://github.com/projectdiscovery/nuclei
Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.
Language: Go
#bugbounty #content_bruteforcing #content_discovery #infosec #pentest_tool #security #web
Stars: 139 Issues: 5 Forks: 22
https://github.com/projectdiscovery/nuclei
GitHub
GitHub - projectdiscovery/nuclei: Nuclei is a fast, customizable vulnerability scanner powered by the global security community…
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the ...
ihebski/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Language: Jupyter Notebook
#blueteam #bugbounty #cheatsheet #credentials_gathering #cybersecurity #default_password #infosec #pentest #pentesting #security
Stars: 167 Issues: 0 Forks: 22
https://github.com/ihebski/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Language: Jupyter Notebook
#blueteam #bugbounty #cheatsheet #credentials_gathering #cybersecurity #default_password #infosec #pentest #pentesting #security
Stars: 167 Issues: 0 Forks: 22
https://github.com/ihebski/DefaultCreds-cheat-sheet
GitHub
GitHub - ihebski/DefaultCreds-cheat-sheet: One place for all the default credentials to assist the Blue/Red teamers activities…
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️ - ihebski/DefaultCreds-cheat-sheet
skerkour/black-hat-rust
Deep dive into offensive security with the rust programming language - Early access
Language: Rust
#audit #beacon #c2 #cc #implant #offensive #offensive_security #pentest #pentesting #red_team #red_teaming #rust #security
Stars: 129 Issues: 0 Forks: 2
https://github.com/skerkour/black-hat-rust
Deep dive into offensive security with the rust programming language - Early access
Language: Rust
#audit #beacon #c2 #cc #implant #offensive #offensive_security #pentest #pentesting #red_team #red_teaming #rust #security
Stars: 129 Issues: 0 Forks: 2
https://github.com/skerkour/black-hat-rust
GitHub
GitHub - skerkour/black-hat-rust: Applied offensive security with Rust - https://kerkour.com/black-hat-rust
Applied offensive security with Rust - https://kerkour.com/black-hat-rust - skerkour/black-hat-rust
itm4n/Perfusion
Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
Language: C++
#pentest_tool #windows_privilege_escalation
Stars: 126 Issues: 0 Forks: 13
https://github.com/itm4n/Perfusion
Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
Language: C++
#pentest_tool #windows_privilege_escalation
Stars: 126 Issues: 0 Forks: 13
https://github.com/itm4n/Perfusion
GitHub
GitHub - itm4n/Perfusion: Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012) - itm4n/Perfusion
loseys/BlackMamba
C2/post-exploitation framework
Language: Python
#command_and_control #offensive_security #pentest #pentest_tool #post_exploitation #pyqt5 #python3 #qtframework #red_team #security_tools #spyware
Stars: 305 Issues: 0 Forks: 12
https://github.com/loseys/BlackMamba
C2/post-exploitation framework
Language: Python
#command_and_control #offensive_security #pentest #pentest_tool #post_exploitation #pyqt5 #python3 #qtframework #red_team #security_tools #spyware
Stars: 305 Issues: 0 Forks: 12
https://github.com/loseys/BlackMamba
GitHub
GitHub - loseys/BlackMamba: C2/post-exploitation framework
C2/post-exploitation framework. Contribute to loseys/BlackMamba development by creating an account on GitHub.
r3curs1v3-pr0xy/vajra
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
Language: JavaScript
#bug_bounty #hacking #information_gathering #osint #pentest_tool #pentesting #recon #scanner #vajra #web_hacking
Stars: 118 Issues: 1 Forks: 26
https://github.com/r3curs1v3-pr0xy/vajra
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
Language: JavaScript
#bug_bounty #hacking #information_gathering #osint #pentest_tool #pentesting #recon #scanner #vajra #web_hacking
Stars: 118 Issues: 1 Forks: 26
https://github.com/r3curs1v3-pr0xy/vajra
GitHub
GitHub - r3curs1v3-pr0xy/vajra: Vajra is a highly customizable target and scope based automated web hacking framework to automate…
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing. ...
robiot/rustcat
⚙️ Netcat Alternative
Language: Rust
#rust #network #netcat #easy_to_use #pentest_tool #port_listener #rustcat
Stars: 110 Issues: 2 Forks: 8
https://github.com/robiot/rustcat
⚙️ Netcat Alternative
Language: Rust
#rust #network #netcat #easy_to_use #pentest_tool #port_listener #rustcat
Stars: 110 Issues: 2 Forks: 8
https://github.com/robiot/rustcat
GitHub
GitHub - robiot/rustcat: Rustcat(rcat) - The modern Port listener and Reverse shell
Rustcat(rcat) - The modern Port listener and Reverse shell - robiot/rustcat
tnpitsecurity/ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Language: Go
#golang #pentesting #post_exploitation #offensive_security #tunneling #pivoting #pentest_tool #redteam
Stars: 92 Issues: 1 Forks: 5
https://github.com/tnpitsecurity/ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Language: Go
#golang #pentesting #post_exploitation #offensive_security #tunneling #pivoting #pentest_tool #redteam
Stars: 92 Issues: 1 Forks: 5
https://github.com/tnpitsecurity/ligolo-ng
GitHub
GitHub - nicocha30/ligolo-ng: An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface. - nicocha30/ligolo-ng
kh4sh3i/ICS-Pentesting-Tools
A curated list of tools related to Industrial Control System (ICS) security and Penetration Testing
#ics #ics_security #pentest_tool #pentesting #pentesting_tools #scada #scada_exploitation #scada_framework #scada_security
Stars: 141 Issues: 1 Forks: 16
https://github.com/kh4sh3i/ICS-Pentesting-Tools
A curated list of tools related to Industrial Control System (ICS) security and Penetration Testing
#ics #ics_security #pentest_tool #pentesting #pentesting_tools #scada #scada_exploitation #scada_framework #scada_security
Stars: 141 Issues: 1 Forks: 16
https://github.com/kh4sh3i/ICS-Pentesting-Tools
GitHub
GitHub - kh4sh3i/ICS-Pentesting-Tools: A curated list of tools related to Industrial Control System (ICS) security and Penetration…
A curated list of tools related to Industrial Control System (ICS) security and Penetration Testing - kh4sh3i/ICS-Pentesting-Tools
SpectralOps/keyscope
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
Language: Rust
#developer_tools #devops #pentest #rust #security #testing #vault
Stars: 121 Issues: 0 Forks: 6
https://github.com/SpectralOps/keyscope
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
Language: Rust
#developer_tools #devops #pentest #rust #security #testing #vault
Stars: 121 Issues: 0 Forks: 6
https://github.com/SpectralOps/keyscope
GitHub
GitHub - SpectralOps/keyscope: Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust - SpectralOps/keyscope
p0dalirius/LDAPmonitor
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
Language: Python
#active #csharp #directory #ldap #monitor #pentest #powershell #python #tool
Stars: 103 Issues: 1 Forks: 10
https://github.com/p0dalirius/LDAPmonitor
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
Language: Python
#active #csharp #directory #ldap #monitor #pentest #powershell #python #tool
Stars: 103 Issues: 1 Forks: 10
https://github.com/p0dalirius/LDAPmonitor
GitHub
GitHub - p0dalirius/LDAPmonitor: Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration! - GitHub - p0dalirius/LDAPmonitor: Monitor creation, deletion and changes to LDAP objects ...
Puliczek/CVE-2021-44228-PoC-log4j-bypass-words
🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - A trick to bypass words blocking patches
Language: Java
#bugbounttips #bugbounty #bugbounty_writeups #cve #cve_2021_44228 #cybersecurity #exploit #hacking #log4j #payload #pentest #pentesting #red_team #security #security_writeups #writeups
Stars: 191 Issues: 0 Forks: 38
https://github.com/Puliczek/CVE-2021-44228-PoC-log4j-bypass-words
🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - A trick to bypass words blocking patches
Language: Java
#bugbounttips #bugbounty #bugbounty_writeups #cve #cve_2021_44228 #cybersecurity #exploit #hacking #log4j #payload #pentest #pentesting #red_team #security #security_writeups #writeups
Stars: 191 Issues: 0 Forks: 38
https://github.com/Puliczek/CVE-2021-44228-PoC-log4j-bypass-words
GitHub
GitHub - Puliczek/CVE-2021-44228-PoC-log4j-bypass-words: 🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks - Puliczek/CVE-2021-44228-PoC-log4j-bypass-words
mergebase/log4j-detector
Detects vulnerable log4j versions on your file-system within any application. It is able to even find instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too!
Language: Java
#cve_2021_44228 #cve_2021_45046 #cybersecurity #log4j #pentest #sca
Stars: 320 Issues: 9 Forks: 45
https://github.com/mergebase/log4j-detector
Detects vulnerable log4j versions on your file-system within any application. It is able to even find instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too!
Language: Java
#cve_2021_44228 #cve_2021_45046 #cybersecurity #log4j #pentest #sca
Stars: 320 Issues: 9 Forks: 45
https://github.com/mergebase/log4j-detector
GitHub
GitHub - mergebase/log4j-detector: A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021…
A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J ins...
Esc4iCEscEsc/skanuvaty
Dangerously fast DNS/network/port scanner
Language: Rust
#cybersecurity #dns #dns_client #hacking_tools #osint_tool #penetration_testing #penetration_testing_tools #pentest #pentesting #redteam #redteam_tools #rust #rust_lang #scanner #security #security_tools #subdomain_enumeration #subdomain_scanner
Stars: 139 Issues: 6 Forks: 6
https://github.com/Esc4iCEscEsc/skanuvaty
Dangerously fast DNS/network/port scanner
Language: Rust
#cybersecurity #dns #dns_client #hacking_tools #osint_tool #penetration_testing #penetration_testing_tools #pentest #pentesting #redteam #redteam_tools #rust #rust_lang #scanner #security #security_tools #subdomain_enumeration #subdomain_scanner
Stars: 139 Issues: 6 Forks: 6
https://github.com/Esc4iCEscEsc/skanuvaty
GitHub
GitHub - Esc4iCEscEsc/skanuvaty: Dangerously fast DNS/network/port scanner
Dangerously fast DNS/network/port scanner. Contribute to Esc4iCEscEsc/skanuvaty development by creating an account on GitHub.
Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
Language: HTML
#bugbounty #bugbounty_writeups #bugbountytips #cve #cve_2022_0337 #cybersecurity #exploit #hacking #payload #pentest #pentesting #red_team #security #security_writeups #writeups
Stars: 131 Issues: 0 Forks: 22
https://github.com/Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
Language: HTML
#bugbounty #bugbounty_writeups #bugbountytips #cve #cve_2022_0337 #cybersecurity #exploit #hacking #payload #pentest #pentesting #red_team #security #security_writeups #writeups
Stars: 131 Issues: 0 Forks: 22
https://github.com/Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
GitHub
GitHub - Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera: 🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera…
🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337 - Puliczek/CVE-2022-0337-PoC-Google-Chrom...
Anof-cyber/APTRS
Automated Penetration Testing Reporting System
Language: Python
#aptrs #django #penetration_testing #pentest_report #pentesting #pentesting_tools #python #reporting
Stars: 170 Issues: 1 Forks: 6
https://github.com/Anof-cyber/APTRS
Automated Penetration Testing Reporting System
Language: Python
#aptrs #django #penetration_testing #pentest_report #pentesting #pentesting_tools #python #reporting
Stars: 170 Issues: 1 Forks: 6
https://github.com/Anof-cyber/APTRS
GitHub
GitHub - APTRS/APTRS: Automated Penetration Testing Reporting System
Automated Penetration Testing Reporting System. Contribute to APTRS/APTRS development by creating an account on GitHub.
4ra1n/super-xray
XRAY GUI Starter (Web Vulnerability Scanner)
Language: Java
#pentest_tool #vulnerability_scanners #web_security
Stars: 330 Issues: 12 Forks: 42
https://github.com/4ra1n/super-xray
XRAY GUI Starter (Web Vulnerability Scanner)
Language: Java
#pentest_tool #vulnerability_scanners #web_security
Stars: 330 Issues: 12 Forks: 42
https://github.com/4ra1n/super-xray
GitHub
GitHub - 4ra1n/super-xray: Web漏洞扫描工具XRAY的GUI启动器
Web漏洞扫描工具XRAY的GUI启动器. Contribute to 4ra1n/super-xray development by creating an account on GitHub.
CMEPW/BypassAV
This map lists the essential techniques to bypass anti-virus and EDR
#av #bypass #edr #markdown #mindmap #pentest #redteam
Stars: 661 Issues: 0 Forks: 83
https://github.com/CMEPW/BypassAV
This map lists the essential techniques to bypass anti-virus and EDR
#av #bypass #edr #markdown #mindmap #pentest #redteam
Stars: 661 Issues: 0 Forks: 83
https://github.com/CMEPW/BypassAV
GitHub
GitHub - matro7sh/BypassAV: This map lists the essential techniques to bypass anti-virus and EDR
This map lists the essential techniques to bypass anti-virus and EDR - matro7sh/BypassAV