0xBrAinsTorM

0xBrAinsTorM's Stars

• bluscreenofjeff/Red-Team-Infrastructure-Wiki

  Wiki to collect Red Team infrastructure hardening resources

  4.1k2127896

• epinna/tplmap

  Server-Side Template Injection and Code Injection Detection and Exploitation Tool

  Language:Python3.7k8279668

• jonaslejon/malicious-pdf

  💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

  Language:Python2.8k619377

• vletoux/pingcastle

  PingCastle - Get Active Directory Security at 80% in 20% of the time

  Language:C#2.2k65195270

• kost/dvcs-ripper

  Rip web accessible (distributed) version control systems: SVN/GIT/HG...

  Language:Perl1.7k5218310

• Dec0ne/KrbRelayUp

  KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).

  Language:C#1.5k2423202

• irsdl/IIS-ShortName-Scanner

  latest version of scanners for IIS short filename (8.3) disclosure vulnerability

  Language:Java1.4k2931250

• tokyoneon/Chimera

  Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

  Language:PowerShell1.4k347234

• iagox86/hash_extender

  Language:C1.1k3413182

• blacklanternsecurity/TREVORspray

  TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!

  Language:Python1k1728146

• MysticRyuujin/guac-install

  Script for installing Guacamole on Ubuntu

  Language:Shell97654208270

• Greenwolf/ntlm_theft

  A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)

  Language:Python953283122

• cfalta/MicrosoftWontFixList

  A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))

  933634100

• leechristensen/SpoolSample

  PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as well.

  Language:C#904101142

• tomnomnom/qsreplace

  Accept URLs on stdin, replace all query string values with a user-supplied value

  Language:Go7431911123

• nyxgeek/o365recon

  retrieve information via O365 and AzureAD with a valid cred

  Language:PowerShell68619498

• 3v4Si0N/HTTP-revshell

  Powershell reverse shell using HTTP/S protocol with AMSI bypass and Proxy Aware

  Language:PowerShell59118895

• luisfontes19/xxexploiter

  Tool to help exploit XXE vulnerabilities

  Language:TypeScript53514569

• modzero/mod0BurpUploadScanner

  HTTP file upload scanner for Burp Proxy

  Language:Perl47916107138

• mgeeky/tomcatWarDeployer

  Apache Tomcat auto WAR deployment & pwning penetration testing tool.

  Language:Python4101613128

• SafeBreach-Labs/SirepRAT

  Remote Command Execution as SYSTEM on Windows IoT Core (releases available for Python2.7 & Python3)

  Language:Python371261386

• synacktiv/eos

  Enemies Of Symfony - Debug mode Symfony looter

  Language:Python30481242

• cnotin/SplunkWhisperer2

  Local privilege escalation, or remote code execution, through Splunk Universal Forwarder (UF) misconfigurations

  Language:Python2425453

• vivami/OutlookParasite

  Outlook persistence using VSTO add-ins

  Language:PowerShell828022

• ptswarm/impacket

  Impacket Fork for Contributing and Sharing Our Knowledge about Windows

  Language:Python648013

• snovvcrash/peas

  Modified version of PEAS client for offensive operations

  Language:Python38309

• qtc-de/wconv

  wconv - Converting Windows native formats into human readable form

  Language:Python32302

• jackrichardzon/s4p0

  143012

• Loumaris/hetzner_vagrant

  Connecting a vagrant machine to an additional IP or subnet

  2101

• JnTournier/domi-owned

  IBM/Lotus Domino exploitation

  Language:Python1000