Clik here to view.
AutoPentest-DRL - Automated Penetration Testing Using Deep Reinforcement...
AutoPentest-DRL is an automated penetration testing framework based on Deep Reinforcement Learning (DRL) techniques. The framework determines the most appropriate attack path for a given network, and...
View ArticleClik here to view.
DivideAndScan - Divide Full Port Scan Results And Use It For Targeted Nmap Runs
Divide Et Impera And Scan (and also merge the scan results)DivideAndScan is used to efficiently automate port scanning routine by splitting it into 3 phases:Discover open ports for a bunch of...
View ArticleClik here to view.
GraphQLmap - A Scripting Engine To Interact With A Graphql Endpoint For...
GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.Install$ git clone https://github.com/swisskyrepo/GraphQLmap$ python graphqlmap.py _____ _ ____ _ / ____| |...
View ArticleClik here to view.
Charlotte - C++ Fully Undetected Shellcode Launcher
c++ fully undetected shellcode launcher ;)releasing this to celebrate the birth of my newborndescription13/05/2021:c++ shellcode launcher, fully undetected 0/26 as of 13th May 2021.dynamic invoking of...
View ArticleClik here to view.
SQLFluff - A SQL Linter And Auto-Formatter For Humans
SQLFluff is a dialect-flexible and configurable SQL linter. Designed with ELT applications in mind, SQLFluff also works with jinja templating and dbt. SQLFluff will auto-fix most linting errors,...
View ArticleClik here to view.
AMSITrigger - The Hunt For Malicious Strings
Hunting for Malicious StringsUsage:AMSI calls (xmas tree mode) -d, --debug Show Debug Info -m, --maxsiglength=VALUE Maximum signature Length to cater for, default=2048 -c, --chunksize=VALUE Chunk size...
View ArticleClik here to view.
MurMurHash - Tool To Calculate A MurmurHash Value Of A Favicon To Hunt...
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.What is MurMurHash?MurmurHash is a non-cryptographic hash function suitable for general...
View ArticleClik here to view.
CiLocks - Android LockScreen Bypass
CiLocks - Android LockScreen BypassFeaturesBrute Pin 4 DigitBrute Pin 6 DigitBrute LockScreen Using WordlistBypass LockScreen {Antiguard} Not Support All OS VersionRoot Android {Supersu} Not Support...
View ArticleClik here to view.
Solr-GRAB - Steal Apache Solr Instance Queries With Or Without A Username And...
Steal Apache Solr instance Queries with or without a username and password.DISCLAIMER: This project should be used for authorized testing and educational purposes only.Downloadgit clone...
View ArticleClik here to view.
Php_Code_Analysis - San your PHP code for vulnerabilities
This script will scan your codethe script can findcheck_file_upload issueshost_header_injectionSQl injectioninsecure deserializationopen_redirectSSRFXSSLFIcommand_injectionfeaturesfastsimple...
View ArticleClik here to view.
Qvm-Create-Windows-Qube - Spin Up New Windows Qubes Quickly, Effortlessly And...
qvm-create-windows-qube is a tool for quickly and conveniently installing fresh new Windows qubes with Qubes Windows Tools (QWT) drivers automatically. It officially supports Windows 7, 8.1 and 10 as...
View ArticleClik here to view.
DNS-Black-Cat(DBC) - Multi Platform Toolkit For An Interactive DNS Shell...
Multi-platform toolkit for an interactive C2C DNS shell, by using DNS-Black-Cat, you will be able to execute system commands in shell mode over a fully encrypted covert channel.Serverported as a python...
View ArticleClik here to view.
FireStorePwn - Firestore Database Vulnerability Scanner Using APKs
fsp scans an APK and checks the Firestore database for rules that are not secure, testing with or without authentication.If there are problems with the security rules, attackers could steal, modify or...
View ArticleClik here to view.
Dystopia - Low To Medium Multithreaded Ubuntu Core Honeypot Coded In Python
Low to medium Ubuntu Core honeypot coded in Python.FeaturesOptional Login PromptLogs commands used and IP addressesCustomize MOTD, Port, Hostname and how many clients can connect at once (default is...
View ArticleClik here to view.
AnalyticsRelationships - Get Related Domains / Subdomains By Looking At...
subdomains by looking at Google Analytics IDs > Python/GO versions > By @JosueEncinar ">> Get related domains / subdomains by looking at Google Analytics IDs> Python/GO versions> By...
View ArticleClik here to view.
HookDump - Security Product Hook Detection
EDR function hook dumpingPlease refer to the Zeroperil blog post for more information https://zeroperil.co.uk/hookdump/Building sourceIn order to build this you will need Visual Studio 2019 (community...
View ArticleClik here to view.
slopShell - The Only Php Webshell You Need
php webshellSince I derped, and forgot to talk about usage. Here goes.For this shell to work, you need 2 things, a victim that allows php file upload(yourself, in an educational environment) and a way...
View ArticleClik here to view.
IMAPLoginTester - Script That Reads A Text File With Lots Of E-Mails And...
IMAPLoginTester is a simple Python script that reads a text file with lots of e-mails and passwords, and tries to check if those credentials are valid by trying to login to the respective IMAP...
View ArticleClik here to view.
CheeseTools - Self-developed Tools For Lateral Movement/Code Execution
This repository has been made basing onto the already existing MiscTool, so big shout-out to rasta-mouse for releasing them and for giving me the right motivation to work on them.CheeseExecCommand Exec...
View ArticleClik here to view.
Kaiju - A Binary Analysis Framework Extension For The Ghidra Software Reverse...
CERT Kaiju is a collection of binary analysis tools for Ghidra.This is a Ghidra/Java implementation of some features of the CERT Pharos Binary Analysis Framework, particularly the function hashing and...
View Article