Slyther – AWS Security Tool
Slyther is AWS Security tool to check read/write/delete access for S3 buckets Requirements aws-cli Installation pip3 install -r requirements.txt Usage...
Tools
Spring-Spel-0Day-Poc – Spring-Cloud / spring-cloud-function, spring.cloud.function.routing-expression, RCE, 0day, 0-day, POC, EXP
spring-cloud/spring-cloud-function get path lists for test find . -name "*.java"|xargs -I % cat %|grep -Eo '"({8,})"'|sort -u|sed 's/"//g' ...functionRouteruppercaselowercase... poc1...
CVE-2022-22963 – PoC Spring Java Framework 0-day Remote Code Execution Vulnerability
To run the Credits https://github.com/hktalent/spring-spel-0day-poc Download CVE-2022-22963 If you like the site, please consider joining the telegram channel or supporting...
CVE-2022-27254 – PoC For Vulnerability In Honda’s Remote Keyless System
PoC for vulnerability in Honda's Remote Keyless System(CVE-2022-27254) Disclaimer: For educational purposes only. Kindly note that the discoverers for this...
Casper-Fs – A Custom Hidden Linux Kernel Module Generator. Each Module Works In The File System To Protect And Hide Secret Files
Casper-fs is a custom Linux Kernel Module generator to work with resources to protect or hide a custom list of...
LAZYPARIAH – A Tool For Generating Reverse Shell Payloads On The Fly
A low-dependency command-line tool for generating reverse shell payloads on the fly. Description LAZYPARIAH is a simple and easily installable...
Socid-Extractor – Extract Accounts Info From Personal Pages On Various Sites For OSINT Purpose
Extract information about a user from profile webpages / API responses and save it in machine-readable format. Usage As a...
Fennec – Artifact Collection Tool For *Nix Systems
fennec is an artifact collection tool written in Rust to be used during incident response on *nix based systems. fennec...
Gitcolombo – Extract And Analyze Contributors Info From Git Repos
OSINT tool to extract info about persons from git repositories: common names, emails, matches between different (as it may seems)...
Ostorlab – A Security Scanning Platform That Enables Running Complex Security Scanning Tasks Involving Multiple Tools In An Easy, Scalable And Distributed Way
The Sales Pitch If this is the first time you are visiting the Ostorlab Github page, here is the sales...
Nimcrypt2 – .NET, PE, And Raw Shellcode Packer/Loader Written In Nim
Nimcrypt2 is yet another PE packer/loader designed to bypass AV/EDR. It is an improvement on my original Nimcrypt project, with...
Request_Smuggler – Http Request Smuggling Vulnerability Scanner
Based on the amazing research by James Kettle. The tool can help to find servers that may be vulnerable to...
Zkar – A Java Serialization Protocol Analysis Tool Implement In Go
Tests ZKar is a well-tested tool that passed all ysoserial generated gadgets parsing and rebuilding tests. It means that gadget...
SysWhispers3 – AV/EDR Evasion Via Direct System Calls
SysWhispers helps with evasion by generating header/ASM files implants can use to make direct system calls. Why on earth didn't...
Factual-Rules-Generator – An Open Source Project Which Aims To Generate YARA Rules About Installed Software From A Machine
Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a running operating system....
Tiktok-Scraper – TikTok Scraper. Download Video Posts, Collect User/Trend/Hashtag/Music Feed Metadata, Sign URL And Etc
Docker By using docker you won't be able to use --filepath and --historypath , but you can set volume(host path...
ADExplorerSnapshot.py – An AD Explorer Snapshot Parser. It Is Made As An Ingestor For BloodHound, And Also Supports Full-Object Dumping To NDJSON
ADExplorerSnapshot.py is an AD Notes This library is now supporting the BloodHound v4.1+ output format (JSON format v4). For the...
ShellcodeTemplate – An Easily Modifiable Shellcode Template For Windows X64/X86
An easily modifiable shellcode template for Get Started Clone this project and you are ready to start git clone https://www.github.com/Cracked5pider/ShellcodeTemplate...
FastFinder – Incident Response – Fast Suspicious File Finder
FastFinder is a lightweight tool made for threat hunting, live forensics and triage on both Windows and Linux Platforms. It...
Vortex – VPN Overall Reconnaissance, Testing, Enumeration And eXploitation Toolkit
VPN Overall Reconnaissance, Testing, Enumeration and This kind of behaviour makes Vortex really easy to use. General Workflow Vortex has...
Oh365UserFinder – Python3 O365 User Enumeration Tool
Oh365UserFinder is used for identifying valid o365 accounts and domains without the risk of account lockouts. The tool parses responses...
PSRansom – PowerShell Ransomware Simulator With C2 Server
PSRansom is a PowerShell Ransomware Simulator with C2 Server capabilities. This tool helps you simulate encryption process of a generic...
S3Sec – Check AWS S3 Instances For Read/Write/Delete Access
Test AWS S3 buckets for read/write/delete access This tool was developed to quickly test a list of s3 buckets for...
Nuclei-Burp-Plugin – Nuclei Plugin For BurpSuite
A BurpSuite plugin intended to help with Credits Created with <3 by Download Nuclei-Burp-Plugin If you like the site, please...
