Request_Smuggler – Http Request Smuggling Vulnerability Scanner
Based on the amazing research by James Kettle. The tool can help to find servers that may be vulnerable to...
tools
Zkar – A Java Serialization Protocol Analysis Tool Implement In Go
Tests ZKar is a well-tested tool that passed all ysoserial generated gadgets parsing and rebuilding tests. It means that gadget...
SysWhispers3 – AV/EDR Evasion Via Direct System Calls
SysWhispers helps with evasion by generating header/ASM files implants can use to make direct system calls. Why on earth didn't...
Factual-Rules-Generator – An Open Source Project Which Aims To Generate YARA Rules About Installed Software From A Machine
Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a running operating system....
Tiktok-Scraper – TikTok Scraper. Download Video Posts, Collect User/Trend/Hashtag/Music Feed Metadata, Sign URL And Etc
Docker By using docker you won't be able to use --filepath and --historypath , but you can set volume(host path...
ADExplorerSnapshot.py – An AD Explorer Snapshot Parser. It Is Made As An Ingestor For BloodHound, And Also Supports Full-Object Dumping To NDJSON
ADExplorerSnapshot.py is an AD Notes This library is now supporting the BloodHound v4.1+ output format (JSON format v4). For the...
ShellcodeTemplate – An Easily Modifiable Shellcode Template For Windows X64/X86
An easily modifiable shellcode template for Get Started Clone this project and you are ready to start git clone https://www.github.com/Cracked5pider/ShellcodeTemplate...
FastFinder – Incident Response – Fast Suspicious File Finder
FastFinder is a lightweight tool made for threat hunting, live forensics and triage on both Windows and Linux Platforms. It...
Vortex – VPN Overall Reconnaissance, Testing, Enumeration And eXploitation Toolkit
VPN Overall Reconnaissance, Testing, Enumeration and This kind of behaviour makes Vortex really easy to use. General Workflow Vortex has...
Oh365UserFinder – Python3 O365 User Enumeration Tool
Oh365UserFinder is used for identifying valid o365 accounts and domains without the risk of account lockouts. The tool parses responses...
PSRansom – PowerShell Ransomware Simulator With C2 Server
PSRansom is a PowerShell Ransomware Simulator with C2 Server capabilities. This tool helps you simulate encryption process of a generic...
S3Sec – Check AWS S3 Instances For Read/Write/Delete Access
Test AWS S3 buckets for read/write/delete access This tool was developed to quickly test a list of s3 buckets for...
Nuclei-Burp-Plugin – Nuclei Plugin For BurpSuite
A BurpSuite plugin intended to help with Credits Created with <3 by Download Nuclei-Burp-Plugin If you like the site, please...
Ghostbuster – Eliminate Dangling Elastic IPs By Performing Analysis On Your Resources Within All Your AWS Accounts
Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts. Ghostbuster obtains all the DNS...
S1EM – This Project Is A SIEM With SIRP And Threat Intel, All In One
Today, cyber attacks are more numerous and cause damage in companies. Nevertheless, many software products exist to detect cyber threats....
Epagneul – Graph Visualization For Windows Event Logs
Epagneul is a tool to visualize and investigate Deployment Requires docker and docker-compose to be installed. Installing make Offline deployment...
Mip22 – An Advanced Phishing Tool
The program is made for educational purposes only for to see how the phishing method works. Any unnecessary use of...
PurplePanda – Identify Privilege Escalation Paths Within And Across Different Clouds
This tool fetches resources from different cloud/saas applications focusing on permissions in order to identify privilege escalation paths and dangerous...
RefleXXion – A Utility Designed To Aid In Bypassing User-Mode Hooks Utilised By AV/EPP/EDR Etc
Introduction RefleXXion is a utility designed to aid in How to Use You can open and compile the project with...
WMEye – A Post Exploitation Tool That Uses WMI Event Filter And MSBuild Execution For Lateral Movement
WMEye is an experimental tool that was developed when exploring about Windows WMI. The tool is developed for performing Lateral...
Patching – An Interactive Binary Patching Plugin For IDA Pro
Patching A complete listing of the contextual patching actions are described in the following sections. Assemble The main patching dialog...
Lnkbomb – Malicious Shortcut Generator For Collecting NTLM Hashes From Insecure File Shares
Lnkbomb is used for uploading malicious shortcut files to insecure file shares. The Executable Usage Download Lnkbomb from the releases...
CodeAnalysis – Static Code Analysis
Tencent Cloud Experience Apply Link Key Features Language support: It supports Java/C++/Objective-C/C#/JavaScript/Python/Go/PHP and more, covering common programming languages. Code inspection:...
GoodHound – Uses Sharphound, Bloodhound And Neo4j To Produce An Actionable List Of Attack Paths For Targeted Remediation
Attackers think in graphs, defenders think in actions, Documentation All documentation can be found in the wiki Acknowledgments The py2neo...
